tpm2-tss:4.0.x

Branch merges

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

0e2931a... by Andreas Fuchs <email address hidden> on 2024-04-26

Prepare 4.0.2

Signed-off-by: Andreas Fuchs <email address hidden>

e5ed381... by Juergen Repp <email address hidden> on 2023-10-31

FAPI: Fix check of magic number in verify quote.

After deserializing the quote info it was not checked whether
the magic number in the attest is equal TPM2_GENERATED_VALUE.
So an malicious attacker could generate arbitrary quote data
which was not detected by Fapi_VerifyQuote.
Now the number magic number is checket in verify quote and also
in the deserialization of TPM2_GENERATED.
The check is also added to the Unmarshal function for TPMS_ATTEST.

Fixes: CVE-2024-29040

Signed-off-by: Juergen Repp <email address hidden>
Signed-off-by: Andreas Fuchs <email address hidden>

4545196... by Andreas Fuchs <email address hidden> on 2024-04-24

Prepare 4.0.2-rc1

Signed-off-by: Andreas Fuchs <email address hidden>

5dc26dc... by Juergen Repp <email address hidden> on 2024-04-15

FAPI: Fix length check in auth callback. 4.0.x

The max size of the value returned by the auth value
callback sizeof(TPMU_HA) is now checked.

Signed-off-by: Juergen Repp <email address hidden>

bf142e9... by Andreas Fuchs <email address hidden> on 2024-03-26

Prepare Release 4.0.2-rc0

Signed-off-by: Andreas Fuchs <email address hidden>

4f3b45c... by Juergen Repp <email address hidden> on 2024-03-20

esys-test: skip test esys-pcr-auth-value.

Test is skipped if setting of an auth value is not allowed for a pcrNum.

Signed-off-by: Juergen Repp <email address hidden>

3e125d4... by Juergen Repp <email address hidden> on 2023-08-15

cirrus-ci update image-family to freebsd-13-2

13-1 caused errors during package installation.

Signed-off-by: Juergen Repp <email address hidden>

8150887... by Juergen Repp <email address hidden> on 2024-03-20

FAPI: Fix warnings unused variable.

* In ifapi_json_TPMS_POLICYAUTHORIZE_serialize it has to be checked
  whether the number of an optional condition is greater zero.
* A warning "unused variable" if LOG_LEVEL == 0 is fixed.

Signed-off-by: Juergen Repp <email address hidden>

16850a9... by Juergen Repp <email address hidden> on 2024-03-20

CI: Fix error GitHub actions get stuck in a AddressSanitizer.

To fix this error "run: sudo sysctl vm.mmap_rnd_bits=28" is temporally
added to ./github/workflow/main.yml

Signed-off-by: Juergen Repp <email address hidden>

a982993... by Juergen Repp <email address hidden> on 2024-03-21

ci: remove ubuntu 18.04

Ubuntu 18.04 will no longer be supported.

Signed-off-by: Juergen Repp <email address hidden>