Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FAPI: Add check whether auth values exist for hierarchies. #2824

Merged
merged 1 commit into from
May 8, 2024
Merged

FAPI: Add check whether auth values exist for hierarchies. #2824

merged 1 commit into from
May 8, 2024

Conversation

JuergenReppSIT
Copy link
Member

Currently FAPI provisioning tries to create the EK and SRK with the NULL auth value for the hierarchies.
Now first the corresponding flag in TPM2_CAP_TPM_PROPERTIES with the property TPM2_PT_PERMANENT is checked. If an auth value is used for the hierarchy the auth value callback will be called. The "retry" code in the BAD_AUTH case is removed.

@JuergenReppSIT
FAPI: Add check whether auth values exist for hierarchies.
5f5e42b 
Currently FAPI provisioning tries to create the EK and SRK with the
NULL auth value for the hierarchies.
Now first the corresponding flag in  TPM2_CAP_TPM_PROPERTIES with
the property TPM2_PT_PERMANENT is checked. If an auth value is used
for the hierarchy the auth value callback will be called.
The "retry" code in the BAD_AUTH case is removed.

Signed-off-by: Juergen Repp <juergen_repp@web.de>
@AndreasFuchsTPM AndreasFuchsTPM added this to the 4.2.0 milestone May 8, 2024
@AndreasFuchsTPM
Copy link
Member

Question: When you set an authValue and then you set the authValue back to NULL, does the authSet capability turn back to "false" ?

@JuergenReppSIT
Copy link
Member Author

Question: When you set an authValue and then you set the authValue back to NULL, does the authSet capability turn back to "false" ?
yes. "with_auth" in the keystore is set to "NO" and the authSet capability is set to false.

@AndreasFuchsTPM AndreasFuchsTPM merged commit f9a09e4 into tpm2-software:master May 8, 2024
25 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AndreasFuchsTPM AndreasFuchsTPM AndreasFuchsTPM approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
4.2.0
Development

Successfully merging this pull request may close these issues.
2 participants
@JuergenReppSIT @AndreasFuchsTPM