Basic trusted keys support, which means basic sealing with an authentication value by using SHA256. After we get the groundwork in place the functionality will be refined with algorithmic agility and policy based sealing.
Jarkko Sakkinen (4): tpm: introduce struct tpm_buf trusted: move struct trusted_key_options to trusted-type.h tpm: seal/unseal for TPM 2.0 keys, trusted: seal/unseal with TPM 2.0 chips drivers/char/tpm/tpm-interface.c | 75 ++++++ drivers/char/tpm/tpm.h | 78 ++++++ drivers/char/tpm/tpm2-cmd.c | 495 +++++++++++++++++++++++---------------- include/keys/trusted-type.h | 15 +- include/linux/tpm.h | 26 ++ include/linux/tpm_command.h | 1 - security/keys/trusted.c | 18 +- security/keys/trusted.h | 18 +- 8 files changed, 504 insertions(+), 222 deletions(-) -- 2.5.0 -- To unsubscribe from this list: send the line "unsubscribe linux-security-module" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
