0e2931a...
by
Andreas Fuchs <email address hidden>
on 2024-04-26
Prepare 4.0.2
Signed-off-by: Andreas Fuchs <email address hidden>
e5ed381...
by
Juergen Repp <email address hidden>
on 2023-10-31
FAPI: Fix check of magic number in verify quote.
After deserializing the quote info it was not checked whether
the magic number in the attest is equal TPM2_GENERATED_ VALUE.
So an malicious attacker could generate arbitrary quote data
which was not detected by Fapi_VerifyQuote.
Now the number magic number is checket in verify quote and also
in the deserialization of TPM2_GENERATED.
The check is also added to the Unmarshal function for TPMS_ATTEST.
Fixes: CVE-2024-29040
Signed-off-by: Juergen Repp <email address hidden>
Signed-off-by: Andreas Fuchs <email address hidden>
4545196...
by
Andreas Fuchs <email address hidden>
on 2024-04-24
Prepare 4.0.2-rc1
Signed-off-by: Andreas Fuchs <email address hidden>
5dc26dc...
by
Juergen Repp <email address hidden>
on 2024-04-15
FAPI: Fix length check in auth callback. 4.0.x
The max size of the value returned by the auth value
callback sizeof(TPMU_HA) is now checked.
Signed-off-by: Juergen Repp <email address hidden>
bf142e9...
by
Andreas Fuchs <email address hidden>
on 2024-03-26
Prepare Release 4.0.2-rc0
Signed-off-by: Andreas Fuchs <email address hidden>
4f3b45c...
by
Juergen Repp <email address hidden>
on 2024-03-20
esys-test: skip test esys-pcr- auth-value.
Test is skipped if setting of an auth value is not allowed for a pcrNum.
Signed-off-by: Juergen Repp <email address hidden>
3e125d4...
by
Juergen Repp <email address hidden>
on 2023-08-15
cirrus-ci update image-family to freebsd-13-2
13-1 caused errors during package installation.
Signed-off-by: Juergen Repp <email address hidden>
8150887...
by
Juergen Repp <email address hidden>
on 2024-03-20
FAPI: Fix warnings unused variable.
* In ifapi_json_ TPMS_POLICYAUTH ORIZE_serialize it has to be checked
whether the number of an optional condition is greater zero.
* A warning "unused variable" if LOG_LEVEL == 0 is fixed.
Signed-off-by: Juergen Repp <email address hidden>
16850a9...
by
Juergen Repp <email address hidden>
on 2024-03-20
CI: Fix error GitHub actions get stuck in a AddressSanitizer.
To fix this error "run: sudo sysctl vm.mmap_ rnd_bits= 28" is temporally
added to ./github/ workflow/ main.yml
Signed-off-by: Juergen Repp <email address hidden>
a982993...
by
Juergen Repp <email address hidden>
on 2024-03-21
ci: remove ubuntu 18.04
Ubuntu 18.04 will no longer be supported.
Signed-off-by: Juergen Repp <email address hidden>