-
Notifications
You must be signed in to change notification settings - Fork 5
/
CHANGELOG
178 lines (127 loc) · 4.89 KB
/
CHANGELOG
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
TPM Change Log
Written by Ken Goldman
IBM Thomas J. Watson Research Center
$Id: CHANGELOG 4717 2013-12-26 14:51:00Z kgoldman $
(c) Copyright IBM Corporation 2010:
This documentation is provided with source code (Trusted Platform
Module (TPM) subject to the following license:
Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are
met:
Redistributions of source code must retain the above copyright notice,
this list of conditions and the following disclaimer.
Redistributions in binary form must reproduce the above copyright
notice, this list of conditions and the following disclaimer in the
documentation and/or other materials provided with the distribution.
Neither the names of the IBM Corporation nor the names of its
contributors may be used to endorse or promote products derived from
this software without specific prior written permission.
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Changes from 4720 to current
Major
____
Utilities:
- - - - -
tpmconv
add a utility to convert a raw public key file into an PEM formatted file
quote
updated to take in external data and writeout quote and signature to file
identity
some debug code added
encaik
added utility to perform privacy CA function for enrolling new AIKs.
code mostly copied from identity.c into its own function that can be
executed by itself without a TPM
deepquote
added utility to generate deepquotes from the Xen vTPM implementation
checkquote
added utility to check quotes
checkdeepquote
added utility to validate deepquotes
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Changes from 4665 to 4720
Major
____
TPM
- - -
Don't use physical presence flag if CMD enable is false
Utilities:
- - - - -
mv_writevalue
added write from file
added write with certificate prefix
nv_readvalue
added read to file
added read to strip certificate prefix
separated activateidentity and makeidentity
added option to activateidentity to read and decrypt AIK certificate with symmetric key
added quote option to validate against certificate
create revokable EK used wrong encryption algorithm
takeown, counter, delegation, migration accept ownerAuth from file
added tpm_proxy for Windows 7
Minor
-----
TPM:
- - -
Fixed debug print plus some style errors reported by Coverity
Utilities:
- - - - -
Skip exponent tests for HW TPM
When setting CMD physical presence, permit error setting CMD enable because
lifetime lock may be set
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Changes from 4078 to 4665
Major
____
TPM
- - -
Added support for NSS/FreeBL and gnump crypto libraries to support use
case where the OpenSSL licence is an issue.
Refactored crypto code, hoisted common functions.
Abstracted BIGNUM library and objects.
Added second low level crypto source to call NSS and gnump.
Added several makefile examples.
Added volatile state serialization functions to support VTPM migration
Added SHA-1 context load and store.
Added test option with store and reload after each command.
Utilities:
- - - - -
NV define space and take ownership utilities now support PCR
specification.
Can create keys with non-default size and exponent
Minor
-----
TPM:
- - -
Fixed several cases where AUTHFAIL and AUTH2FAIL were reversed.
Added checks for valid key size, legal public exponent, EK type
Added TPM_ProcessA(), easier to call directly than TPM_Process()
Constants have #ifndef so they can be specified in the makefile
Fixed TPM_DSAP error where session may remain after an error.
Separated TPM_ALLOC_MAX from TPM_BUFFER_MAX.
Optimized NV storage when no PCRs are selected.
Fixed some and added many trace statements
Updated getcapability property to specification 116
Fixed compiler error and removed errant tracing when TPM_DEBUG is not
defined.
Utilities:
- - - - -
More command line utilities have consistent arguments. Fixed
some usage print errors.
Fixed bug in utilities MGF1 for 64-bit platform
Create EK sets the (optional) EK type to support HW TPMs that do not
ignore it.
Added TPM proxy error checking and reporting
Recoded to remove gcc type punning and uninitialized variable false
warnings.