2069ed7976
Fixes for scan-build and g++ warnings.
2025-01-07 10:47:26 -08:00
8b5c5fe897
Peer review feedback. Cleanups for code comments, logging and white-space.
2024-09-11 12:12:15 -07:00
03070dabd7
Improve the TPM TLS examples for use with `WOLFTPM_MFG_IDENTITY`. Tested with ST33KTPM2X SEMI-CUSTOM DEVICE ID.
2024-09-09 10:35:22 -07:00
026c82f799
Fixes and new tests for building wolfCrypt/wolfTPM without ECC or RSA. Fixes ZD 18470. Improved smallstack (eliminated `WOLFTPM2_MAX_BUFFER`). Fixes for building with NO_ASN.
2024-08-19 09:55:15 -07:00
95ae2f7459
wolfTPM v3.4.0 release.
...
* Fixes for building without wolfCrypt or heap.
* Fix for building wolfTPM DLL (was missing tbs.lib).
* Fix for `wolfTPM2_New` to provide default TPM2 HAL IO callback.
2024-07-30 09:09:24 -07:00
57f12df97b
Support for getting TPM EK Certificates. Added `wolfTPM2_GetKeyTemplate_EK` and `wolfTPM2_GetKeyTemplate_EK` API's for getting EK public templates for generating the EK primary key. Fix TLS example build issues with wolfSSL not having crypto callback or PK callback enabled.
2024-07-26 13:02:57 -07:00
c98ee9a71e
Update copyright date.
2024-04-24 10:42:27 -07:00
4157ed5689
Release v3.2.0 prep.
2024-04-24 10:42:25 -07:00
b16a2b133c
OPenSSL Coexist
2024-04-05 13:37:06 -06:00
2cde4102b2
Merge pull request #336 from dgarske/st33_getprodinfo
...
Added ST33 support for pre-provisioned device identity key and certificate
2024-04-01 13:42:47 -05:00
eed7803e96
Fixes for building wolfTPM examples with NO_FILESYSTEM. Tested with `./configure --enable-swtpm CFLAGS="-DNO_FILESYSTEM" && make`.
2024-03-22 14:24:18 -07:00
551d7da51d
Add example for using TPM pre-provisioned device identity to TLS client example.
2024-03-20 15:11:58 -07:00
0b60fae993
Fix for netdb.h.
2024-03-01 11:51:27 -08:00
b395b65287
Fix for config.h, which should only be included from .c files, not headers. ZD 17473
2024-02-07 14:28:33 -08:00
0aa01f4f5a
Added PKCS7 ECC support to example. Added wrapper function to export TPM public key as DER/ASN.1 or PEM. Fix for crypto callback ECC sign to handle getting keySz for unknown cases (like PKCS7 without privateKey set).
2024-01-17 15:50:30 -08:00
a50e4fee6c
Add tests for the TLS PK with TPM.
2023-12-08 11:44:00 -08:00
53acf0bcbf
Use localhost 127.0.0.1 for CSR. Add TLS server option `-self` to use the self signed certs.
2023-12-01 14:37:34 -08:00
137a348c14
TLS PK callback RSA PSS Padding cleanups. TLS server/client cleanups. Added server `-i` option to keep running unless failure.
2023-12-01 14:12:57 -08:00
e601803f1b
Added support for PK callbacks with RSA Sign using PKCSv1.5 and PSS.
...
Fixes for building wolfTPM without crypto callbacks.
Fixes for building/running with FIPS.
2023-12-01 08:25:53 -08:00
18531274da
Fix TLS bidirectional shutdown socket issue. Just use 11111 for all TLS tests, to avoid real random port collision with SWTPM sockets. Resolves TLS issue with "ERROR: failed to bind! errno 98".
2023-11-29 12:34:06 -08:00
4b433f24fb
Troubleshooting issues with socket `tcp bind failed: Address already in use`.
2023-11-20 15:42:26 -08:00
9cad7f4e24
Fix some of the example TODO's. Fixes for seal/unseal example. Fixes for TLS with param enc. Fix signed_timestamp with ECC.
2023-10-30 12:00:37 -07:00
97d8845c6f
Added CI tests for all examples and additional build tests.
2023-08-30 15:11:24 -07:00
0ceeebeaf7
Fix for building with no PEM to DER. Fix for building with static library and no debug, due to missing stdio in examples. Fix for TLS examples missing WOLFCRYPT_ONLY check. Fix for building with WC_NO_RNG. Fix for RSA salt with RNG using crypto cb.
2023-05-02 16:18:21 -07:00
c05bf659c2
Fix broken paths with HAL refactor. Update TLS examples to use latest TLS version (allowing downgrade).
2023-01-20 08:29:53 -08:00
1ea4a591a8
HAL refactor and documentation improvements. Move example HAL implementations into new `hal` directory. Include the example HAL in the library when building. Updated HAL IO documentation.
2023-01-18 12:38:04 -08:00
41e5750ff2
Peer review fixes. Cleanups for return code checking, stdlib functions, unknown args and coding standards.
2022-10-04 13:19:51 -07:00
d491437e08
Use `strcmp` since `argv` is guaranteed to be NULL terminated. Fix keygen example whitespace alignment.
2022-10-04 11:44:16 -07:00
3f84b2efbc
wolfTPM v2.5.0 release prep
2022-07-22 09:32:57 -07:00
9d2483d327
New CSR wrappers to assist with TPM based CSR/Self-Signed-Cert generation including CSharp wrappers. This includes support for subject, key usage, custom request extensions and output as PEM or DER. New structure `WOLFTPM2_CSR`. New API's `wolfTPM2_CSR_*`. New CSharp class `Csr`.
2022-07-12 13:53:04 -07:00
9cb60b14ad
Improve the inline code comments for loading the public key using the `wolfSSL_CTX_use_PrivateKey_buffer` API.
2022-06-27 10:29:38 -07:00
c7b28c1445
TPM support for using the public key with TLS.
2022-06-24 16:21:47 -07:00
d035cd239c
Fix for a few spelling errors. Whitespace cleanup.
2021-12-07 11:10:50 -08:00
ede184c735
configure: keep example directory strcuture during install
2021-11-18 12:04:41 -08:00
d05e503784
Fix for possible leak of ephemeral key in TLS server example.
2021-07-13 12:57:39 -07:00
ed1ec8c52d
Support for QNX with wolfTPM:
...
* Fix for `wolfTPM2_NVCreateAuth` to return `TPM_RC_NV_DEFINED` if already exists (it used to do this, but broke with GPIO changes).
* Fixes for building wolfTPM with wolfCrypt only (no TLS).
* Fix for building without RSA and ECC.
* Fix for `--enable-smallstack` with parameter encryption,
* Fix for nvram/store unused variable.
2021-06-01 10:34:28 -07:00
2b8cfb8692
wolfTPM Release v2.1.0 preparation.
...
* Updated copyright
* Fixed minor cast warning.
* Fixed minor scan-build warnings.
* Cleanup print public and fix possible print of uninitialized field.
2021-03-17 10:13:50 -07:00
c0fa6423d5
Cleanup of the examples to use the key templates. The PKCS7 example was failing because of a key mismatch between the TPM private key and the public key used in the certificate setup using the CSR and ./certs/certreq/sh`.
2021-01-14 16:41:12 -08:00
845b3d1da2
Release fixes and cleanups. Fixes for init of `WOLFTPM2_HASH` in `wolfTPM2_HashStart`. Fix for for various build configurations (--disable-wrapper). Fix for Microchip "sign" bit on symmetric keys. Fix for scan-build warnings. Cleanup whitespace.
2020-12-07 11:01:02 -08:00
523a9f905c
Fixes for properly setting auth (needs to include name for HMAC cpHash/rpHash calculation). Fix for sessionAttributes when command / response doesn't support it. Fixes for the TLS client / server examples. Added back the useful param enc / hmac debugging enabled with `--enable-debug=verbose`.
2020-12-02 16:47:46 -08:00
8087afaf27
Fixes from peer review. Resolve issue with make check. Removed the TPM Simulator for make check (does not build out of the box on all platforms). Make dist was not including the new tpm2_socket.h.
2020-12-01 07:45:04 -08:00
4b0b70861c
Added parameter encryption support to more examples. Fix to not set "encrypt" or "decrypt" if command doesn't allow it. Updated documentation.
2020-11-30 12:00:54 -08:00
4c2e8d3f43
Added response HMAC validation. Fixes for nonce and auth count. Fix for AES CFB decrypt set key (requires `AES_ENCRYPTION` on SetKey). Cleanup verbose debugging. PR ready for review.
2020-11-25 16:04:04 -08:00
4b98d6d637
Fixed minor errors about missing header, variables not used and whitespaces
...
Signed-off-by: Dimitar Tomov <dimi@wolfssl.com>
2020-11-25 12:33:51 +02:00
409fd96502
Fixes for response decryption. Nonce from TPM captured correctly now. Added support for args to all examples.
2020-11-24 16:44:20 -08:00
dbd8e41b47
Refactor of the session authentication. Added "-e" option to some examples to enable parameter encryption and removed the _paramenc.c files. Fixup for the `getPrimaryStoragekey` to allow persisting if not `WOLFTPM_WINAPI`. Improve command line options. Added calculation of command hash and HMAC for sessions.
2020-11-20 16:47:14 -08:00
b48f53f5e7
Improvements to the example tls_server to accept "RSA" or "ECC". Improvement to TLS examples to old load keys/certs that are needed (reduces max handle load count). Added missing `scripts/tls_setup.sh` to automake.
2020-11-13 16:33:14 -08:00
675f7deb22
Fixes for a couple minor build errors and warnings. Found using scan-build, CC=g++ and `NO_FILESYSTEM`.
2020-11-13 15:57:03 -08:00
0bff836fa2
examples: Cleanup TLS examples using keyblob
2020-11-13 11:31:01 -08:00
6bfebf7cb9
examples: tls_client ECC/RSA as command line option
2020-11-12 14:08:16 -08:00
David Garske
Zackery Backman
philljj
Elms
Dimitar Tomov