summaryrefslogtreecommitdiffstats
path: root/meta-tpm2/recipes-tpm
Commit message (Collapse)AuthorAgeFilesLines
* recipes: update SRC_URI branch and protocolsYi Zhao2021-11-151-1/+1
| | | | | | | Update SRC_URIs using git to include branch=master if no branch is set and also to use protocol=https for github urls. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tools: upgrade 4.1.3 -> 4.3.2Yi Zhao2021-11-122-57/+3
| | | | | | | * Drop backported CVE patch. * License-Update: Add Copyrights and move it to doc directory. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-abrmd: upgrade 2.3.2 -> 2.3.3Yi Zhao2021-11-121-1/+1
| | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tss: backport fixes for openssl 3.0Yi Zhao2021-11-124-1/+1307
| | | | | | | | | Backport 3 patches from master branch for openssl 3.0: https://github.com/tpm2-software/tpm2-tss/commit/73d25d6834ad362f9a9a907cb78452deaa336ec0 https://github.com/tpm2-software/tpm2-tss/commit/362fda1daa398da2944e76013c215500761d46a5 https://github.com/tpm2-software/tpm2-tss/commit/e5bb5fb9f070c619415160f8889c372b769431b8 Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tss: upgrade 2.3.3 -> 2.4.6Yi Zhao2021-11-121-2/+3
| | | | | | Add PACKAGECONFIG[fapi] to enable/disable FAPI. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tools: fix build with openssl 3.0Yi Zhao2021-10-212-0/+35
| | | | | | | Backport a patch to disable '-Werror' to fix build error until upstream addresses openssl 3.0 compatibility issue. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* meta-secure-core: Convert to new override syntaxYi Zhao2021-08-092-22/+22
| | | | | | Converting the metadata to use ":" as the override character instead of "_". Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tools: fix CVE-2021-3565Yi Zhao2021-07-072-0/+54
| | | | | | | | | | | | | | | | | CVE-2021-3565: A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality. Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-3565 Patch from: https://github.com/tpm2-software/tpm2-tools/commit/c069e4f179d5e6653a84fb236816c375dca82515 Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-abrmd: Remove obsolete setting regarding the Standard OutputMingli Yu2020-09-232-0/+40
| | | | | | | | | | | The Standard output type "syslog" is obsolete, causing a warning since systemd version 246 [1]. Please consider using "journal" or "journal+console" [1] https://github.com/systemd/systemd/blob/master/NEWS#L202 Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
* tpm2-tools: upgrade 4.1.1 -> 4.1.3Yi Zhao2020-07-223-17/+122
| | | | | | | * License-Update: BSD -> BSD-3-Clause * Add a patch to switch to python3 in test scripts Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tss: upgrade 2.3.2 -> 2.3.3Yi Zhao2020-07-221-7/+2
| | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-abrmd: upgrade 2.3.0 -> 2.3.2Yi Zhao2020-07-221-1/+1
| | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-abrmd: rdepends on libtss2-tcti-device and libtss2-tcti-mssimYi Zhao2020-07-151-1/+1
| | | | | | | | | | | | | | | | | The tpm2-abrmd daemon needs TCTI library for TPM2 device or simulator. But the libtss2-tcti-device and libtss2-tcti-mssim packages are not installed by default which causes the tpm2-abrmd daemon startup failure: systemd[1]: Starting TPM2 Access Broker and Resource Management Daemon... tpm2-abrmd[459]: tcti_conf before: "device:/dev/tpm0" tpm2-abrmd[459]: tcti_conf after: "device:/dev/tpm0" tpm2-abrmd[459]: ERROR:tcti:../tpm2-tss-2.3.2/src/tss2-tcti/tctildr.c:418:Tss2_TctiLdr_Initialize_Ex() Failed to instantiate TCTI tpm2-abrmd[459]: init_thread_func: failed to create TCTI with conf "device:/dev/tpm0" tpm2-abrmd[459]: g_bus_unown_name: assertion 'owner_id > 0' failed Add libtss2-tcti-device and libtss2-tcti-mssim to runtime dependencies. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tss: support usrmergeChangqing Li2020-07-021-2/+2
| | | | | | | fix do_package_qa error: ERROR: QA Issue: tpm2-tss package is not obeying usrmerge distro feature. /lib should be relocated to /usr. [usrmerge] Signed-off-by: Changqing Li <changqing.li@windriver.com>
* update tpm2-tools_3.2.1 -> tpm2-tools_4.1.1.bb, tpm2-abrmd_2.0.3 -> ↵richard2020-06-2715-516/+71
| | | | tpm2-abrmd_2.3.0, tpm2-tss_2.2.3.bb -> tpm2-tss_2.3.2.bb
* tpm2-tools: only support python3 in test scriptsYi Zhao2020-03-132-0/+142
| | | | | | | | | | | The python2 is removed from oe-core and there is no python symblic link by default which will cause an error when running test scripts: $ ./test_tpm2_activecredential.sh: line 66: python: command not found So drop python2 support and only keep python3. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tools: fix yaml.load warning in test scriptsYi Zhao2020-03-132-0/+93
| | | | | | | | | | | | The yaml.load(f) is deprecated since pyyaml 5.1. Use yaml.load(f, Loader=yaml.BaseLoader) instead of it. See https://github.com/yaml/pyyaml/wiki/PyYAML-yaml.load(input)-Deprecation Fixes warning: YAMLLoadWarning: calling yaml.load() without Loader=... is deprecated, as the default Loader is unsafe. Please read https://msg.pyyaml.org/load for full details. Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* tpm2-tools: upgrade 3.2.0 -> 3.2.1Yi Zhao2020-03-101-2/+2
| | | | Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
* meta-tpm2: tpm2-tools: update to version 3.2.0Dmitry Eremin-Solenikov2019-09-041-2/+2
| | | | Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin-solenikov@mentor.com>
* meta-tpm2: tpm2-tss: update to version 2.2.3Dmitry Eremin-Solenikov2019-09-043-5/+8
| | | | Signed-off-by: Dmitry Eremin-Solenikov <dmitry_eremin-solenikov@mentor.com>
* tpm2-abrmd: fix do_compile errorMingli Yu2019-07-242-0/+70
| | | | | | | | | | | | | After commit [5ef547b autoconf-archive: update to 2019.01.06] applied in oe-core, there comes below error when build tpm2-abrmd: | NOTE: make -j 48 | Makefile:4381: *** missing separator. Stop. So backport a patch from tpm2-abrmd upstream to fix this failure. Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
* tpm2-tss: fix do_compile errorMingli Yu2019-07-232-1/+53
| | | | | | | | | | | | | After commit [5ef547b autoconf-archive: update to 2019.01.06] applied in oe-core, there comes below error when build tpm2-tss: | NOTE: make -j 48 | Makefile:14636: *** missing separator. Stop. So backport a patch from tpm2-tss upstream to fix this failure. Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
* Bump tpm2-abrmd from 2.0.1 to 2.0.3 to fix build with muslLuca Boccassi2019-02-261-2/+2
| | | | | | | | | | Several bug fixes were merged in 2.0.1 and 2.0.3, including the following PRs that fix building tpm2-abrmd with the musl C library: https://github.com/tpm2-software/tpm2-abrmd/pull/502 https://github.com/tpm2-software/tpm2-abrmd/pull/503 Signed-off-by: Luca Boccassi <luca.boccassi@microsoft.com>
* tpm2: move configure optionTrevor Woerner2018-08-032-1/+4
| | | | | | | The --with-udevrulesdir configure option has been moved from tpm2-abrmd to tpm2-tss in the code, therefore move its associated EXTRA_OECONF to suit. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2: update release recipesTrevor Woerner2018-08-0315-232/+94
| | | | | | | | tpm2-tss: 1.4.0 -> 2.0.0 tpm2-abrmd: 1.3.1 -> 2.0.1 tpm2-tools: 3.0.4 -> 3.1.1 Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2 git AUTOREV fix for BB_NO_NETWORKTrevor Woerner2018-07-103-3/+21
| | | | | | | | | | | | | | | | | | | Bitbake will try an ls-remote for any recipe whose SRCREV is AUTOREV, even if that recipe will not ultimately be used for a particular build. Therefore if the user specifies 'BB_NO_NETWORK = "1"', the _git versions of the tpm2 recipes will cause the build to fail even if the _git versions are not going to be built (which they won't be by default on account of their DEFAULT_PREFERENCE being set to "-1"). This fix follows the same pattern as https://github.com/sbabic/meta-swupdate/commit/721fcc89c53debcd6582bd1aa972f75297cf12e9 With this fix, the user can disable networking and successfully build the non-_git versions of the tpm2 recipes. If the user wants to build the _git versions, networking must be enabled. The build is expected to fail if the user asks for the _git versions, but disables networking. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* Revert "tpm2-abrmd: move tpm2-abrmd.default to tpm2-abrmd.inc"Trevor Woerner2018-06-265-9/+18
| | | | This reverts commit 0bb383b60a8f61df2c4e078d34294e5ef996445b.
* tpm2-tools: refresh the dlopen patch for 3.0.4Jia Zhang2018-06-162-1/+81
| | | | | | | The latest git version has updated to use dl interface to load the library of tpm2-abrmd, instead of linking it on compilation. Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
* tpm2-abrmd: move tpm2-abrmd.default to tpm2-abrmd.incJia Zhang2018-06-165-18/+9
| | | | | | | Use separate directories to store tpm2-abrmd.default for stable and git version. Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
* tpm2-abrmd: code style cleanupJia Zhang2018-06-162-10/+10
| | | | Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
* tpm2-abrmd: Fix missing tpm2-abrmd.serviceJia Zhang2018-06-161-1/+7
| | | | | | | | | | The default value of --with-systemdsystemunitdir with the prefix "/usr" cannot be used to search tpm2-abrmd.service. In order to fix this issue, explicitly set --with-systemdsystemunitdir as before. In addition, place .perset to the dedicated system-preset directory. Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
* tpm2-tss: code style cleanupJia Zhang2018-06-161-36/+36
| | | | | | Replace tab with four spaces. Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
* tpm2-abrmd: update daemon cmdline optionsTrevor Woerner2018-06-154-11/+25
| | | | | | | | | | | In the latest git version of abrmd: - the following option has been renamed: --max-transient-objects -> --max-transients - the following option has been removed: --fail-on-loaded-trans Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2-tools: cleanup and updateTrevor Woerner2018-06-154-97/+32
| | | | | | | | | | | Cleanup the tpm2-tools recipe such that there is a recipe for building the latest release (the default) and one for building the latest, auto-incrementing version from git master placing all pieces common to the two recipes into an include file. Update release from 3.0.3 to 3.0.4. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2-abrmd: cleanup and updateTrevor Woerner2018-06-153-62/+63
| | | | | | | | | | | Cleanup the tpm2-abrmd recipe such that there is a recipe for building the latest release (the default) and one for building the latest, auto-incrementing version from git master placing all pieces common to the two recipes into an include file. Update release from 1.2.0 to 1.3.1. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2-tss: cleanup and updateTrevor Woerner2018-06-153-71/+131
| | | | | | | | | | | Cleanup the tpm2-tss recipe such that there is a recipe for building the latest release (the default) and one for building the latest, auto-incrementing version from git master placing all pieces common to the two recipes in an include file. Update release from 1.3.0 to 1.4.0. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2-abrmd-init: fix for /dev/tpmrmXTrevor Woerner2018-06-061-1/+1
| | | | | | | | In addition to the expected /dev/tpmX device nodes, newer Linux kernels now also create /dev/tpmrmX nodes. This causes the daemon's startup script to fail, meaning the abrmd daemon is not started automatically. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2.0-tss: rename -> tpm2-tssTrevor Woerner2018-05-303-3/+3
| | | | | | Unify how the TPM2 recipes are named. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* tpm2.0-tools: rename -> tpm2-toolsTrevor Woerner2018-05-302-1/+1
| | | | | | Unify how the TPM2 recipes are named. Signed-off-by: Trevor Woerner <twoerner@gmail.com>
* meta-secure-core: update TSS 2.0 to the latest stable versionJia Zhang2018-02-196-128/+78
| | | | Signed-off-by: Jia Zhang <zhang.jia@linux.alibaba.com>
* meta-tpm2: clean up bootstrapJia Zhang2017-09-203-3/+3
| | | | Signed-off-by: Jia Zhang <qianyue.zj@alibaba-inc.com>
* tpm2.0-tss: remove systemd from inherit commandLans Zhang2017-07-271-1/+1
| | | | | | | The resource manager provided by this package is not used any more. Thus its systemd-related settings should be removed. Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
* tss2.0-tss: don't create tss user accountLans Zhang2017-07-201-6/+0
| | | | | | | This user account is created by tpm2-abrmd which replaces the resourcemgr originally supplied by this recipe. Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
* tpm2-abrmd: update to the latest and code style fixupLans Zhang2017-07-202-326/+39
| | | | Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
* tpm2.0-tools: clean up .m4Lans Zhang2017-07-204-232/+2
| | | | Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
* tpm2.0-tss: update to the latest and code style fixupLans Zhang2017-07-207-642/+45
| | | | Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
* tpm2.0-tools: update to the latest and code style fixupLans Zhang2017-07-203-43/+31
| | | | Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
* meta-secure-core: initial commitLans Zhang2017-06-2217-0/+1506
Signed-off-by: Lans Zhang <jia.zhang@windriver.com>
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-07-20 00:52:26 +0000