3a8a223...
by
Tadeusz Struk <email address hidden>
travis.yml: Move COVERALLS_REPO_TOKEN declaration
Move the COVERALLS_REPO_TOKEN env declaration from travis.yml
to the travis-ci project settings.
Signed-off-by: Tadeusz Struk <email address hidden>
ed92b83...
by
Andreas Fuchs <email address hidden>
ESYS: Fix openssl building
If OpenSSL was compiled without -Bsymbolic (which some packages patched
out), then we had a symbolic naming conflict. Even though the functionality
seems to be 100% equivalent. Moved the function in question to internal
namespace and made it static.
Signed-off-by: Andreas Fuchs <email address hidden>
fce5861...
by
Tadeusz Struk <email address hidden>
build: Add missing files to tss2-sys.vcxproj
Add missing Tss2_Sys_GetEncryptParam.c and Tss2_Sys_SetEncryptParam.c
compile units to tss2-sys.vcxproj and the funct declarations
to tss2-sys.def.
Signed-off-by: Tadeusz Struk <email address hidden>
1860077...
by
Tadeusz Struk <email address hidden>
esys: adjust session enc/dec attribs based on command
When TPM command does not support parameter encryption or parameter
decryption the appropriate session attributes need to be set correctly
or the TPM will return TPM2_RC_ATTRIBUTES error. To free application
from adjusting the flags before every TPM command, this can be done
automitically by the TSS in ESYS layer. TSS knows which commands
support param encryption and decryption so the application just
sets these flags by default and they will be turned on and off
internally by TSS depending on what is valid for a given command.
Signed-off-by: Tadeusz Struk <email address hidden>
fbcdcfb...
by
Tadeusz Struk <email address hidden>
test: update tpmclient test Tss2_Sys_GetEncryptParam for bad sequence
Update tpmclient test Tss2_Sys_GetEncryptParam for bad sequence case
After the order of checks in Tss2_Sys_GetEncryptParam was changed.
Signed-off-by: Tadeusz Struk <email address hidden>
6a05b13...
by
Tadeusz Struk <email address hidden>
sys: change the order of sanity checks in Tss2_Sys_GetEncryptParam
The order needs to be changed for the ESYS to be able to
check if a given command supports param encryption i.e.
if the first sized param in a response can be encrypted.
This will be called by ESYS before sending the command to
adjust session flags, so it might be out of order, but the
logic here is to check if the error code is TSS2_SYS_RC_NO_ENCRYPT_PARAM
and if so clear the TPMA_SESSION_ENCRYPT session flag.
This check will be valid because the function will be called after
_Prepare call.
The spec does not enforce the order in which the checks need to
be performed, only what error codes can be returned.
Signed-off-by: Tadeusz Struk <email address hidden>
41bf788...
by
Tadeusz Struk <email address hidden>
travis: don't install openssl when gcrypt is used
Don't need to build and install openssl when gcrypt
crypto backend is used. Also switch to conditional
build to gcrypt to speed up the build in CI.
Signed-off-by: Tadeusz Struk <email address hidden>
81cdacd...
by
Tadeusz Struk <email address hidden>
test: esys: free tcti_inner
Don't leak tcti_innner pointer.
Signed-off-by: Tadeusz Struk <email address hidden>
58d1ebb...
by
Tadeusz Struk <email address hidden>
esys: free local point variables and BN_ctx
iesys_cryptossl_get_ecdh_point function was leaking two
local EC_POINT variables and BN_CTX.
Signed-off-by: Tadeusz Struk <email address hidden>
a0e3906...
by
Tadeusz Struk <email address hidden>
esys: use gcrypt release functions to free gcrypt objects
Gcrypt allocated objects need to be free using coresponding
gcrypt release functions, otherwise the interal parts of the
objects will leak.
Signed-off-by: Tadeusz Struk <email address hidden>