WolfSSL
/
wolfTPM
mirror of https://github.com/wolfSSL/wolfTPM.git
1
0
Fork 0
Code Issues Releases Wiki Activity
1,036 Commits
6 Branches
29 Tags
15 MiB
Commit Graph

1036 Commits (1fa15951eb91a8fe89b3326077b9be6fb105edeb)

Author SHA1 Message Date
JacobBarthelmeh acdbc446d2
Merge pull request #296 from dgarske/secret_seal2 
Seal with RSA fix, PCR extend auth and improvements to NVRAM examples
 2023-09-08 15:27:14 -06:00
David Garske cb66597154 Fix for sealing with RSA (the nameAlg must be set). 2023-09-08 14:07:32 -07:00
David Garske 027ae8a4e9 Make sure PCR extend has the session auth cleared. Added -nvhandle argument to nvram examples. Cleanups for examples. 2023-09-08 08:14:39 -07:00
John Bland 50bfac48a9
Merge pull request #294 from dgarske/secret_seal 
wolfTPM Support for sealing/unsealing based on a PCR that is signed externally
 2023-09-01 12:47:16 -04:00
David Garske 23a5d2595b Fixes for small stack. 2023-08-31 13:37:22 -07:00
David Garske 8e1dce2c76 Take run_examples.sh out of make check and run manually in CI test to avoid parallel builds. 2023-08-31 13:04:33 -07:00
David Garske 8968d89f90 More CI fixes. 2023-08-31 12:29:13 -07:00
David Garske e2d502e773 Peer review fixes and getting CI to pass. 2023-08-31 09:53:39 -07:00
David Garske 97d8845c6f Added CI tests for all examples and additional build tests. 2023-08-30 15:11:24 -07:00
David Garske 78cd7190be Cleanups from testing. 2023-08-30 11:21:43 -07:00
David Garske a15260342f wolfTPM Support for sealing/unsealing based on a PCR that is signed externally. Use an external key to sign a PCR digest. Allows a new signed policy to be sent with updates to continue allowing a sealed secret to be unsealed when PCR's change. This resolves the issue with PCR brittleness. 2023-08-29 18:47:18 -07:00
John Bland 5b7e50a19c
Merge pull request #293 from dgarske/various_20230818 
Handle unknown `TPM2_GetCapability` type and fix bad printf
 2023-08-22 09:56:44 -04:00
David Garske 9a35d84b88 Fixed bad printf. Don't error on unknown `TPM2_GetCapability` type. 2023-08-18 11:28:21 -07:00
John Bland bbbafd68d0
Merge pull request #292 from dgarske/secure_rot4 
Fixes for minor build issues
 2023-08-16 19:18:54 -04:00
David Garske 4946592d7f Fix for `wolfTPM2_ImportPublicKeyBuffer` use of non-existent arg "pass". 2023-08-16 16:11:27 -07:00
David Garske 52668e994f Properly print NULL bin. 2023-08-16 15:06:01 -07:00
David Garske edd0c095bd Fix for public key API when missing `WOLFSSL_PUB_PEM_TO_DER`. 2023-08-16 13:43:55 -07:00
John Bland 2d0ae5f2a8
Merge pull request #291 from dgarske/secure_rot3 
Improvements to the secure_rot example
 2023-08-16 13:36:07 -04:00
David Garske d508180ee3 Fix custom -nvIndex= argument. 2023-08-16 08:08:10 -07:00
David Garske 5b6c7c0368 Improvements to the secure_rot example. Add support for manually placing hash. 2023-08-15 14:41:09 -07:00
John Bland b159d7047a
Merge pull request #290 from dgarske/publickey_import 
Support for importing and loading public ECC/RSA keys formatted as PEM or DER
 2023-08-15 13:57:01 -04:00
David Garske 649c257093 Improve SRK ECC support detection / handling. 2023-08-15 10:51:53 -07:00
David Garske 6126d04be3 Support for importing and loading public ECC/RSA keys formatted as PEM or DER. 2023-08-15 08:27:00 -07:00
John Bland 456424de60
Merge pull request #289 from dgarske/secure_rot2 
Secure Boot (Root of Trust) - Part 2
 2023-08-11 15:53:52 -04:00
David Garske 00c8ffc999 Avoid using heap (malloc/free) for ecc_point. 2023-08-11 12:50:23 -07:00
David Garske 847e0ae595 Fix for wolfTPM2_EncryptSecret to not loose error code. 2023-08-10 14:53:54 -07:00
John Bland c349986173
Merge pull request #276 from dgarske/secure_rot 
Example for Secure Boot solution to store root of trust in NV
 2023-08-10 16:51:30 -04:00
David Garske 5640b9d8c3 Fix for handling session without HMAC key (no bind / no auth) - don't set session salt. 2023-08-10 12:55:25 -07:00
David Garske 3f29c59e87 Add support for encrypting secret using ECC key. Allows using ECC for parameter encryption and importing ECC keys with custom seed. Requires https://github.com/wolfSSL/wolfssl/pull/6683 2023-08-08 16:15:18 -07:00
David Garske 135b61057d Fixes for building with `NO_HMAC`. 2023-08-07 13:15:14 -07:00
David Garske 3251310a3a Cleanup wrapper function order/groups. Make `wolfTPM2_ChangePlatformAuth` session optional. 2023-08-07 11:08:45 -07:00
David Garske bb18c4c550 Added `wolfTPM2_ChangePlatformAuth` wrapper to help set the platform auth. This is useful from the bootloader to make sure no one can use the platform hierarchy from application. 2023-08-07 11:08:02 -07:00
David Garske b58ac14e64 Sanitize the IO TX/RX buffers (make sure they are zero initialized). 2023-08-07 11:08:02 -07:00
David Garske 5a20647313 Minor cleanups. Update wolfSSL test certs. Added TPM_TIS_MAX_WAIT. Fix build with WOLFTPM_DEBUG_VERBOSE only. 2023-08-07 11:08:02 -07:00
David Garske c35b532724 Add support for NV lock. 2023-08-07 11:08:02 -07:00
David Garske 14a331d648 Example for secure boot solution to store root of trust in NV. Provides authentication and tamper protection. Fixed uses of arg= in examples. 2023-08-07 11:08:02 -07:00
John Bland bb82dd26c4
Merge pull request #288 from dgarske/ext_imp_test 
Add code to test external import between two TPM's
 2023-08-03 18:08:14 -04:00
David Garske aade4053f0
Merge pull request #287 from lealem47/stm32cube 
Adding STM32 Expansion Pack
 2023-08-03 14:39:56 -07:00
Lealem Amedie 5f7d7a2e43 Address more feedback 2023-08-03 15:34:25 -06:00
Lealem Amedie eefcf98086 Address feedback 2023-08-03 11:44:21 -06:00
Lealem Amedie 092f283ba4 Improve docs 2023-08-02 14:03:16 -06:00
David Garske bb1ec4acc9 Add code to test external import between two TPM's. 2023-08-01 13:12:44 -07:00
Lealem Amedie b468d7d29a Adding STM23 Expansion Pack 2023-07-28 14:51:39 -06:00
David Garske 7c9391ebf3
Merge pull request #285 from jpbland1/user-settings-no-wolfCrypt 
include user_settings.h manually when wolfCrypt is not in use
 2023-07-27 13:58:34 -07:00
John Bland fafd0c2780 include user_settings.h manually when wolfCrypt is not in use 2023-07-27 16:04:25 -04:00
David Garske cc88dcd4ab
Merge pull request #284 from JacobBarthelmeh/cmake 
make link libraries with wolfSSL be PUBLIC
 2023-07-26 14:48:32 -07:00
JacobBarthelmeh f5c6f371ba make link libraries with wolfSSL be PUBLIC 2023-07-26 12:47:58 -07:00
David Garske a204aba9e8
Merge pull request #283 from JacobBarthelmeh/cmake 
improvement to cmake build
 2023-07-24 14:06:08 -07:00
JacobBarthelmeh 914b6890d0 improvement to cmake build 2023-07-24 12:30:02 -07:00
John Bland 5e173bcb95
Merge pull request #281 from dgarske/tpm_import 
Fixes for TPM private key import with custom seed
 2023-07-20 16:06:10 -04:00