Azure
/
Project-Cerberus
зеркало из https://github.com/Azure/Project-Cerberus.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
630 коммитов 3 Ветки 0 Теги 15 MiB
Граф коммитов

630 Коммитов

Автор SHA1 Сообщение Дата
Van Bui 619de400a2 Merged PR 1363: Extend SPI filter interface to support new control bits 
Support new SPI filter control bits regarding 4-byte address mode and write enable for address mode switches.

Related work items: #598
 2020-09-30 19:36:54 -07:00
Akram Hamdy ccc2a00ce5 Merged PR 1236: add session manager for channel encryption 
add session manager for channel encryption

Related work items: #344
 2020-09-30 19:36:54 -07:00
Akram Hamdy 2084abd252 Merged PR 1334: return no more cmd sets 
When being queried for VID command sets, response should indicate that the MSFT VID set is the only command set supported.

Related work items: #527, #576
 2020-09-30 19:36:54 -07:00
Christopher Weimer 7e83eb4882 Add utility functions to mock comparing flash contents. 2020-09-30 19:36:54 -07:00
Akram Hamdy 3b0c939854 Merged PR 1337: add support for utility eids 
add support for utility eids

Related work items: #582
 2020-09-30 19:36:54 -07:00
Christopher Weimer 9e00363a0d Note the use of the reserved command space for debug commands. 2020-09-30 19:36:54 -07:00
Christopher Weimer 86442ca401 Fix manifest platform ID measurements to include the NULL terminator. 2020-09-30 19:36:54 -07:00
Akram Hamdy f3bcdba348 Merged PR 1328: TCG log format tester 
This is a python test tool which ensures TCG logs generated by cerberus utility has correct format and event digests are computed correctly

Related work items: #577
 2020-09-30 19:36:54 -07:00
Christopher Weimer 3185fb13af Provide a platform function to calculate an elapsed time. 2020-10-01 00:29:44 +00:00
Long Wei 240a14df0e Merged PR 1504: Task 703: Implement/fix Host Cerberus (LPC54) Linux GCC build. 
Implemented assembly startup code, and developed CMakeLists.txt/cmake files and liker scripts to make a GCC build.

Related work items: #703
 2020-09-30 17:07:22 +00:00
Christopher Weimer 208e2a84bd Update power on handling to allow an alternative hash engine to be used. 2020-09-29 16:40:24 +00:00
Akram Hamdy b7beaeb89c Merged PR 1500: support session sync command 
support session sync command

Related work items: #670
 2020-09-28 23:09:11 +00:00
Van Bui 09bcaafde2 Merged PR 1492: Add new error code for app_context 
Related work items: #694
 2020-09-18 20:06:05 +00:00
Christopher Weimer c25da4d992 Log every detected instance of BMC recovery. 2020-09-18 18:15:47 +00:00
Christopher Weimer f96ff45fbb Fix build warnings in unit test build. 2020-09-17 18:40:43 +00:00
Van Bui 8eb8e85db7 Merged PR 1483: Fix unit test build 2020-09-15 22:25:54 +00:00
Akram Hamdy 8bd195ceb9 Merged PR 1472: Generate TCG log in FW 
To speed up TCG log generation, construct log in FW. The TCG log is added as another log type, though the log size command will not support the TCG log type.

A further possible optimization is to maintain a ready copy of the log, only updated as needed, so retrieval time is only the time it takes to perform the I2C transactions. This might not be worth the time and effort since the log retrieval time is probably dominated by the time it takes to read out the log over I2C. Speeding up the I2C bus is another possible avenue to explore.

Related work items: #695
 2020-09-15 19:54:43 +00:00
Van Bui be41f80a33 Merged PR 1477: Update protocol header to match spec 
Update protocol header old fields that are now reserved and validate reserved bits are zero during command processing.

Related work items: #680
 2020-09-14 23:29:15 +00:00
Van Bui 27e107fbc1 Merged PR 1457: Validate the recovery image key manifest on initialization 
Related work items: #651
 2020-09-14 16:53:06 +00:00
Long Wei 4014f47766 Merged PR 1479: Enable build warnings through cmake for Cerberus Core Linux unit tests. 
Enable build warnings through cmake for Cerberus Core Linux unit tests.
 2020-09-11 18:06:56 +00:00
Akram Hamdy a9ba3ae322 Merged PR 1465: rename tcg log to attestation log 
rename tcg log to attestation log
 2020-08-21 23:37:32 +00:00
Van Bui 89b2cccaea Merged PR 1459: Fix unit tests 2020-08-21 02:52:32 +00:00
Atul Shah 0cf065bcdf Merged PR 1431: Platform ID for manifest 
This PR adds support to retrieve Platform IDs for all manifests.

Related work items: #315
 2020-08-14 05:36:40 +00:00
Christopher Weimer b3801cccfb Fix error packet creation with dual command sets. 2020-08-04 21:13:18 +00:00
Christopher Weimer feed87c9fe Fix valgrind issues in unit tests. 2020-08-03 20:07:20 +00:00
Akram Hamdy 003f06d319 Merged PR 1424: Clear session pairing keys when resetting to default 
Related work items: #668
 2020-07-31 03:25:41 +00:00
Akram Hamdy 8ded58add1 Merged PR 1430: encrypt error messages 
encrypt error messages
 2020-07-31 03:17:48 +00:00
Atul Shah ca64504fb1 Merged PR 1415: Always report success for pcd/pfm/cfm ids 
This PR adds support to always report success when requested for PCD/CFM/PFM ids even when corresponding manifest manager doesn't exist on the platform.

Related work items: #306
 2020-07-30 21:46:27 +00:00
Akram Hamdy f61eaa85ad Merged PR 1408: Modify session establishment flow 
Related work items: #623
 2020-07-30 00:51:18 +00:00
Christopher Weimer 1b45f43680 Return the correct event data when there is no active manifest. 
The same applies if there is no host recovery image.
 2020-07-29 02:57:30 +00:00
Christopher Weimer 36c1893b0c Provide APIs to get the ECDH unsealing seed independent from the unseal flow. 2020-07-28 23:16:05 +00:00
Christopher Weimer 83c7ccbf30 Provide the ability to encrypt TPM storage. 
Create a generic manager for flash block storage that abstracts the details about how the data is actually stored on flash.  Current implementations provide the ability to store data in plain or cipher text.

Keystores in flash and TPM storage have been updated to use the flash block storage API for flash management.
 2020-07-28 22:34:33 +00:00
Van Bui 9557d29158 Merged PR 1418: Add versioned event data to PCR entries 
All PCR events will provide event data and some will provide versioned event data.

Related work items: #606, #638
 2020-07-25 19:30:46 +00:00
Van Bui 8232c86b7a Merged PR 1405: Include event ID and versioning to TCG event data 
Related work items: #622, #627
 2020-07-22 19:42:31 +00:00
chweimer 7aa89997f1
Merge pull request #2 from Atrate/master 
Typo in README.md
 2020-07-22 09:10:30 -07:00
Akram Hamdy 796a16f1b3 Merged PR 1385: reset session on get digest call 
Part of the updated session encryption flow, reset sessions when receiving an unencrypted Get Digest call with a key exchange algorithm specified.

Related work items: #623
 2020-07-06 19:39:25 +00:00
Akram Hamdy fbcdc8985d Merged PR 1382: fix attestation protocol version and always support both algos 
fix attestation protocol version and always support both algos

Related work items: #630, #631
 2020-07-06 18:45:45 +00:00
Van Bui 3afe7b95e6 Merged PR 1375: Fix TCG entries when no PFM is present 
Provide valid TCG measurements when no PFM is present.

Related work items: #607
 2020-06-30 19:22:59 +00:00
Akram Hamdy 2379173826 Merged PR 1360: Add session manager to command interfaces 
Related work items: #345
 2020-06-30 17:52:27 +00:00
Christopher Weimer 362faf1e6c Update host flash management to support additional types of devices. 
Add support for new types of flash devices:
- Fixed address modes
- Default to 4-byte address mode
- Require Write Enable commands to switch address mode
 2020-06-25 15:01:18 +00:00
Christopher Weimer a0ead8e4cb Provide thread-safe wrappers for crypto engines. 
Add crypto engine implementations that include synchronization to allow crypto engines to be shared across different threads.  This provides the opportunity to improve memory efficiency by reducing the number of crypto engines that need to be instantiated.
 2020-06-19 15:11:56 +00:00
Van Bui 9a713d00c5 Merged PR 1363: Extend SPI filter interface to support new control bits 
Support new SPI filter control bits regarding 4-byte address mode and write enable for address mode switches.

Related work items: #598
 2020-06-18 17:48:33 +00:00
Akram Hamdy c44fba16e1 Merged PR 1236: add session manager for channel encryption 
add session manager for channel encryption

Related work items: #344
 2020-06-09 02:40:20 +00:00
Akram Hamdy 88ba195b8e Merged PR 1334: return no more cmd sets 
When being queried for VID command sets, response should indicate that the MSFT VID set is the only command set supported.

Related work items: #527, #576
 2020-05-28 21:42:49 +00:00
Christopher Weimer d118455c00 Add utility functions to mock comparing flash contents. 2020-05-28 21:00:45 +00:00
Akram Hamdy 7fcaf42dd0 Merged PR 1337: add support for utility eids 
add support for utility eids

Related work items: #582
 2020-05-26 19:10:10 +00:00
Christopher Weimer 1307defb45 Note the use of the reserved command space for debug commands. 2020-05-26 15:27:09 +00:00
Christopher Weimer b45eab268f Fix manifest platform ID measurements to include the NULL terminator. 2020-05-22 20:12:41 +00:00
Akram Hamdy 8fa265384c Merged PR 1328: TCG log format tester 
This is a python test tool which ensures TCG logs generated by cerberus utility has correct format and event digests are computed correctly

Related work items: #577
 2020-05-22 19:44:53 +00:00
Chris Weimer f118dc54aa Synchronize microsoft fork with upstream. 2020-05-21 16:03:23 -07:00