acrn-kernel/drivers/char/tpm
Jarkko Sakkinen 5beb0c435b keys, trusted: seal with a TPM2 authorization policy
TPM2 supports authorization policies, which are essentially
combinational logic statements repsenting the conditions where the data
can be unsealed based on the TPM state. This patch enables to use
authorization policies to seal trusted keys.

Two following new options have been added for trusted keys:

* 'policydigest=': provide an auth policy digest for sealing.
* 'policyhandle=': provide a policy session handle for unsealing.

If 'hash=' option is supplied after 'policydigest=' option, this
will result an error because the state of the option would become
mixed.

Signed-off-by: Jarkko Sakkinen <jarkko.sakkinen@linux.intel.com>
Tested-by: Colin Ian King <colin.king@canonical.com>
Reviewed-by: Mimi Zohar <zohar@linux.vnet.ibm.com>
Acked-by: Peter Huewe <peterhuewe@gmx.de>
2015-12-20 15:27:13 +02:00
..
st33zp24 Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security 2015-11-05 15:32:38 -08:00
Kconfig tpm: Update KConfig text to include TPM2.0 FIFO chips 2015-03-18 22:43:07 +01:00
Makefile
tpm-chip.c tpm: fix compat 'ppi' link handling in tpm_chip_register() 2015-11-09 17:52:56 +02:00
tpm-dev.c
tpm-interface.c tpm: rework tpm_get_timeouts() 2015-12-20 15:23:46 +02:00
tpm-sysfs.c
tpm.h keys, trusted: select hash algorithm for TPM2 chips 2015-12-20 15:27:12 +02:00
tpm2-cmd.c keys, trusted: seal with a TPM2 authorization policy 2015-12-20 15:27:13 +02:00
tpm_acpi.c
tpm_atmel.c
tpm_atmel.h
tpm_crb.c tpm: rework tpm_get_timeouts() 2015-12-20 15:23:46 +02:00
tpm_eventlog.c vTPM: support little endian guests 2015-10-19 01:09:30 +02:00
tpm_eventlog.h vTPM: support little endian guests 2015-10-19 01:09:30 +02:00
tpm_i2c_atmel.c char: Drop owner assignment from i2c_driver 2015-10-19 01:05:27 +02:00
tpm_i2c_infineon.c char: Drop owner assignment from i2c_driver 2015-10-19 01:05:27 +02:00
tpm_i2c_nuvoton.c char: Drop owner assignment from i2c_driver 2015-10-19 01:05:27 +02:00
tpm_ibmvtpm.c tpm_ibmvtpm: properly handle interrupted packet receptions 2015-12-20 15:27:12 +02:00
tpm_ibmvtpm.h tpm_ibmvtpm: properly handle interrupted packet receptions 2015-12-20 15:27:12 +02:00
tpm_infineon.c Merge branch 'next' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security 2015-04-15 11:08:27 -07:00
tpm_nsc.c
tpm_of.c TPM: Avoid reference to potentially freed memory 2015-11-09 17:52:55 +02:00
tpm_ppi.c tpm: move the PPI attributes to character device directory. 2015-10-19 01:01:20 +02:00
tpm_tis.c tpm_tis: Tighten IRQ auto-probing 2015-12-20 15:26:28 +02:00
xen-tpmfront.c xenbus_client: Extend interface to support multi-page ring 2015-04-15 10:56:47 +01:00