| a2ea1493759120ba0456825efe27806c491971b7 |
27-Mar-2017 |
Jay Civelli <jcivelli@google.com> |
tpm: Update libchrome APIS to r456626.
The new libchrome has been ported from Chromium and some APIs
have changed. Make necessary changes at call sites.
Notable changes from libchrome:
- FOR_EACH_OBSERVER macro removed (replaced
by use of C++ 11 range-base for loop)
- base::Values no more FundamentalValue
- stl_util moved to base namespace
- some scoped pointers removed in crypto/ in favor
of BoringSSL UniquePtr.
Test: Build.
Change-Id: I429e98e8ac2ba03113aa6df8cd521c7fe47cff65
ackground_command_transceiver_test.cc
enerator/generator.py
mac_authorization_delegate.cc
ession_manager_impl.cc
pm_generated.cc
pm_generated_test.cc
pm_utility_impl.cc
pm_utility_test.cc
runks_client_test.cc
|
| a437be8e979352f93df2148728ec799444a3d3e1 |
02-Dec-2017 |
Nan Zhang <nanzhang@google.com> |
convert Android.mk to Android.bp for trunks
Convert most modules to Soong except trunksd-seccomp.policy. Even if
we comment out trunksd-seccomp.policy module, build still can be passed
successfully.
Test: m clean && m -j checkbuild
Change-Id: I461f7e0aaa57187317d45f723a861083b0c57509
ndroid.bp
ndroid.mk
runks_binder_proxy.cc
runks_binder_service.cc
|
| 56b27e3b6eb5349f177cb9a5c621a01a44c8c65a |
26-Jul-2017 |
Luis Hector Chavez <lhchavez@google.com> |
Revert "tpm: Update libchrome APIS to r456626."
This reverts commit 3e1217d9b8b9d0bd549f202e5f1a528374872b40.
Reason for revert: Broke the mac_sdk
Exempt-From-Owner-Approval: Fixing mac_sdk
Change-Id: I5520c61bea97a6f5e0d8f69dd5a67be60f842b0c
ackground_command_transceiver_test.cc
enerator/generator.py
mac_authorization_delegate.cc
ession_manager_impl.cc
pm_generated.cc
pm_generated_test.cc
pm_utility_impl.cc
pm_utility_test.cc
runks_client_test.cc
|
| 3e1217d9b8b9d0bd549f202e5f1a528374872b40 |
27-Mar-2017 |
Jay Civelli <jcivelli@google.com> |
tpm: Update libchrome APIS to r456626.
The new libchrome has been ported from Chromium and some APIs
have changed. Make necessary changes at call sites.
Notable changes from libchrome:
- FOR_EACH_OBSERVER macro removed (replaced
by use of C++ 11 range-base for loop)
- base::Values no more FundamentalValue
- stl_util moved to base namespace
- some scoped pointers removed in crypto/ in favor
of BoringSSL UniquePtr.
Change-Id: Id1180f97d8b726abc056ff9f12d32ed23fd874df
ackground_command_transceiver_test.cc
enerator/generator.py
mac_authorization_delegate.cc
ession_manager_impl.cc
pm_generated.cc
pm_generated_test.cc
pm_utility_impl.cc
pm_utility_test.cc
runks_client_test.cc
|
| 47b371cec718e4b9cc8c2208473308c4f6deeaaa |
23-Feb-2017 |
Chih-Hung Hsieh <chh@google.com> |
Add apronin as an owner and new tpm_manager/OWNERS.
Bug: 33166666
Test: default build targets
Change-Id: I8194af19237987d201e227736dd02a98dc9444f1
WNERS
|
| 3d20181eae37567d49f67f60bd82ac94ae3c8874 |
23-Feb-2017 |
Chih-Hung Hsieh <chh@google.com> |
Use registered users in system/tpm OWNERS files.
AOSP project owners should be registered in Gerrit Code Review.
Bug: 33166666
Test: default build targets
Change-Id: Ibbba881e363d3abe085d84344592e797735e2b2a
WNERS
|
| 9c6f6b29325bb706ba3b2673a4b6d81d4daee378 |
28-Jul-2016 |
Chih-Hung Hsieh <chh@google.com> |
Fix clang-tidy performance warnings in system/tpm.
* Use const reference type for parameters to avoid unnecessary copy.
Bug: 30407689
Change-Id: I6e6fbcf806eb6ebd4b984afc1d962fc3c1d69b00
Test: build with WITH_TIDY=1
ackground_command_transceiver.cc
|
| 39e701593e712adf6edfa029710dfb7af376ad4c |
19-Jul-2016 |
Luis Hector Chavez <lhchavez@google.com> |
tpm_manager/trunks: Update libchrome APIs to r405848
The new libchrome has been ported from Chromium and some APIs have
changed. Make necessary changes at call sites.
Notable changes from libchrome:
- base::Bind() now explicitly disallows captures in lambdas (which was
never allowed in the style guide), so lambdas should now be written in
a way that take the captures as parameters.
- base::ListValue::iterator now exposes std::unique_ptr<base::Value>
instead of raw base::Value*.
- base::WaitableEvent now takes enumeration constants instead of
booleans.
Bug: 29104761
Test: All tests in tpm_manager_test pass on dragonboard-eng build
Change-Id: Ifdc236f59bb7ec7ae3b3d094e822d0efa8331dfa
ackground_command_transceiver.cc
pm_state_impl.cc
runks_client_test.cc
|
| 37d87ae585d633a7410d4c67214ea369e7f51cf4 |
12-Jul-2016 |
Chih-Hung Hsieh <chh@google.com> |
Fix google-explicit-constructor warnings in system/tpm.
* Declare explicit conversion constructors.
Bug: 28341362
Change-Id: If68be8b0d92fdaea99e54388fbe0104213926480
Test: build with clang-tidy
runks_binder_service.h
runks_client_test.cc
|
| ce32afbb304bbca521ec0333b41c82d736295ec7 |
06-Jun-2016 |
Darren Krahn <dkrahn@google.com> |
trunks: Refactored TpmState.
Also fixed seccomp rules and unit tests.
BUG=23525508
TEST=Run unit and manual tests on brillo emulator.
Change-Id: I2b8a0993d03e4b23f10b3d218ceb8d7d5e603952
ndroid.mk
rror_codes.h
ock_tpm_state.cc
ock_tpm_state.h
pm_state.h
pm_state_impl.cc
pm_state_impl.h
pm_state_test.cc
runks_factory_for_test.cc
runksd-seccomp-amd64.policy
runksd-seccomp-arm.policy
runksd-seccomp-arm64.policy
runksd-seccomp-mips.policy
runksd-seccomp-x86.policy
runksd-seccomp-x86_64.policy
|
| b180754b429c078cbc99175a6059a8b5d0491002 |
26-May-2016 |
Darren Krahn <dkrahn@google.com> |
trunks: Fixes and enhancements to support tpm_manager on brillo
- Enhanced NV utility methods
- Support PolicyRestart for policy sessions
- Support for read/extend PCR from trunks_client
- Cleanup scoped_ptr -> std::unique_ptr and other cleanup
- More robust factory semantics
- Support for setting dictionary attack parameters
BUG=b:25360511
TEST=builds on AOSP and chromiumos, unit tests, manual tests
Change-Id: I34fff802c0983b34e6d1ed082cb85ce57f08a54d
ndroid.mk
enerator/generator.py
ock_policy_session.h
ock_tpm_utility.h
olicy_session.h
olicy_session_impl.cc
olicy_session_impl.h
esource_manager.cc
ession_manager.h
pm_constants.h
pm_generated.h
pm_simulator_handle.cc
pm_utility.h
pm_utility_impl.cc
pm_utility_impl.h
pm_utility_test.cc
runks_client.cc
runks_client_test.cc
runks_client_test.h
runks_factory.h
runks_factory_for_test.cc
runks_factory_for_test.h
runks_factory_impl.cc
runks_factory_impl.h
runksd.cc
runksd.rc
|
| 30c921db09d27768acc1ea0d8b6a9c8e814f931a |
21-May-2016 |
Luis Hector Chavez <lhchavez@google.com> |
trunks: Update libchrome APIs to r395517
The new libchrome has been ported from Chromium and some APIs have
changed. Make necessary changes at call sites.
BUG: 28985443
TEST: All tests in trunks_test pass on dragonboard-eng build
Change-Id: Ic6613d2bda07c0ac892690de852dc4e08e028fc7
ackground_command_transceiver.cc
enerator/generator.py
mac_authorization_delegate.cc
mac_session_impl.h
olicy_session_impl.h
pm_generated.cc
pm_utility_impl.cc
pm_utility_impl.h
runks_client.cc
runks_client_test.cc
runks_client_test.h
runks_factory.h
runks_factory_for_test.cc
runks_factory_for_test.h
runks_factory_impl.cc
runks_factory_impl.h
|
| 4dc4629c415e7ca90ff146d7bb75b5646ecd8b17 |
26-May-2016 |
Darren Krahn <dkrahn@google.com> |
Run all C/C++ in this repo through clang-format.
Also create a .clang-format file.
Change-Id: I5ac5904ea1bfd10177c1a4b0b1fdead0b477fc95
ackground_command_transceiver.cc
ackground_command_transceiver.h
ackground_command_transceiver_test.cc
lob_parser.cc
ommand_transceiver.h
rror_codes.cc
tdi/mpsse.c
tdi/mpsse.h
tdi/support.c
tdi/support.h
enerator/generator.py
mac_authorization_delegate.cc
mac_authorization_delegate.h
mac_authorization_delegate_test.cc
mac_session.h
mac_session_impl.cc
mac_session_impl.h
mac_session_test.cc
ock_authorization_delegate.h
ock_blob_parser.h
ock_hmac_session.h
ock_policy_session.h
ock_session_manager.h
ock_tpm.cc
ock_tpm.h
ock_tpm_utility.h
assword_authorization_delegate_test.cc
olicy_session.h
olicy_session_impl.cc
olicy_session_impl.h
olicy_session_test.cc
esource_manager.cc
esource_manager_test.cc
coped_key_handle.cc
coped_key_handle_test.cc
ession_manager_impl.cc
ession_manager_impl.h
ession_manager_test.cc
pm_generated.cc
pm_generated.h
pm_generated_test.cc
pm_handle.h
pm_simulator_handle.cc
pm_simulator_handle.h
pm_state_impl.cc
pm_state_test.cc
pm_utility.h
pm_utility_impl.cc
pm_utility_impl.h
pm_utility_test.cc
runks_binder_proxy.cc
runks_binder_service.h
runks_client.cc
runks_client_test.cc
runks_dbus_proxy.cc
runks_dbus_proxy.h
runks_dbus_service.h
runks_factory_for_test.cc
runks_factory_for_test.h
runks_ftdi_spi.cc
runks_ftdi_spi.h
runks_testrunner.cc
runksd.cc
|
| d68cece5b0f94a3445869a025f0a331a60046b90 |
04-Mar-2016 |
Dan Albert <danalbert@google.com> |
Use libgtest_prod.
Bug: http://b/16574165
Change-Id: Ieddcc0d43982806df13f4a10ebe94f521b60be36
ndroid.mk
|
| dbcda1a2f60b5f1be10dff53c31ee72d6940e185 |
26-Apr-2016 |
Treehugger Robot <treehugger-gerrit@google.com> |
Merge "Fix google-explicit-constructor warnings."
|
| 02058d75855688910d3c56558ae7ede6aa45b2c6 |
25-Apr-2016 |
Chih-Hung Hsieh <chh@google.com> |
Fix google-explicit-constructor warnings.
Bug: 28341362
Change-Id: Idf82cc71a71a657392a93f9e4b8215834fd15a8a
runks_binder_proxy.cc
|
| dd09cb41edbf59a0e064298a388b749ab131adbc |
25-Apr-2016 |
Christopher Wiley <wiley@google.com> |
Include header for DISALLOW_COPY_AND_ASSIGN
This header is not guaranteed to be included as part of the
generated binder headers.
Bug: 27804373
Change-Id: I8379f310fd3e689ffb83293b4457ab4209689abc
runks_binder_proxy.h
|
| e3e7a3b4e6a4644464b26477169480ecec98d37c |
13-Apr-2016 |
Chris Dearman <chris.dearman@imgtec.com> |
Update MIPS policy
setpriority is used by libchrome
base/threading/platform_thread_posix.cc: PlatformThread::SetCurrentThreadPriority()
Change-Id: I47fae65a3c51729fcf2289ad0969a02b556d8563
runksd-seccomp-mips.policy
|
| 5b9043530a04124c6f9a21fe65f88f6f7348abc0 |
29-Mar-2016 |
Chris Dearman <chris.dearman@imgtec.com> |
trunks: Fix MIPS policy syscall names.
Bug: 27884462
Change-Id: I54e3e4667e7dc3c34fb54c49cc8375b5c5d20069
runksd-seccomp-mips.policy
|
| e534eac44919a85de1660115e29e18f5548b6869 |
04-Mar-2016 |
Dan Albert <danalbert@google.com> |
Revert "Stop hardcoding the gtest path."
This module uses gtest_prod.h, so does actually need to know about
these headers.
This reverts commit 78806e4c7fec6a9d5b0d399d2851dae5e584e084.
Bug: http://b/16574165
Change-Id: Ic610c4f4e1e38992c9190087ae3d9829e13d8f4f
ndroid.mk
|
| 4df4f820cab2220211575b58a772c0db4de0b039 |
03-Mar-2016 |
Dan Albert <danalbert@google.com> |
Merge "Stop hardcoding the gtest path."
|
| 78806e4c7fec6a9d5b0d399d2851dae5e584e084 |
03-Mar-2016 |
Dan Albert <danalbert@google.com> |
Stop hardcoding the gtest path.
Bug: http://b/16574165
Change-Id: I67058a43ba09fdbd34286273ee1fc0fd5689cd50
ndroid.mk
|
| 469ec33d58271390c7a5b77030b5e92f4e982a5e |
02-Mar-2016 |
Darren Krahn <dkrahn@google.com> |
trunks: Fixed the Chrome OS build.
Fixes include:
- gyp file refresh
- resolve openssl vs boringssl differences
- add back a seccomp policy for amd64
- add sanity check when encrypting salt
- fix unit tests
BUG=chromium:589890
TEST=build and run unit tests on both chromeos and brillo
Change-Id: I5e04b842e42ef440d6ccc5be75f98ec8fca1e620
rror_codes.cc
ession_manager_impl.cc
ession_manager_test.cc
runks.gyp
runksd-seccomp-amd64.policy
|
| 2bcb0ed0304ae529f4354a8d2ef004d9893abf72 |
29-Feb-2016 |
Jorge Lucangeli Obes <jorgelo@google.com> |
trunks: Add MIPS seccomp policy.
Bug: 27411463
Change-Id: Ie4c06a777937038656110d3e7c783297235e8470
runksd-seccomp-mips.policy
|
| 256c12528d3d74c5fb65fea270b45d982ea010ad |
26-Feb-2016 |
Jorge Lucangeli Obes <jorgelo@google.com> |
trunks: Run 'trunksd' as user 'trunks'.
Bug: 27299198
Change-Id: Id71d80af164bc9985af0634f66ee385821b73491
runksd-simulator.rc
runksd.cc
runksd.rc
|
| 655d35e67b7cf5c0ea273de8a9bb2606476e53f8 |
09-Feb-2016 |
Casey Dahlin <sadmac@google.com> |
Update binder interfaces for AIDL change in byte[] type
byte[] is now uint8_t in AIDL. We need to accomodate this.
Change-Id: I15ed5948c99bba0783802ca607a2420b5b05aa57
Test: Build succeeds against new AIDL
Bug: 27078230
runks_binder_proxy.cc
runks_binder_service.cc
runks_binder_service.h
|
| d82f0e408edfb70e99cdecc7b409a4571e843505 |
05-Feb-2016 |
Darren Krahn <dkrahn@google.com> |
trunks: Use 'LOCAL_MODULE_TAGS: eng' for tests.
BUG=None
Change-Id: Ia4fa49f6087b74c83f62851f4ef5c035719f10ea
ndroid.mk
|
| 9caf492818a4cc51ba471534d3fcaa84c9ce0278 |
12-Jan-2016 |
Darren Krahn <dkrahn@google.com> |
trunks: Create an Android.mk file for trunks and enable binder.
This includes a trunksd.rc file which starts the service as root,
seccomp policies, and a few other changes to get trunks working on
brillo.
BUG=25360556
TEST=unit tests on target
TEST=manual test on all brilloemulator*-eng boards
Change-Id: I9bca71480b7b2c79e0c24c9dc346f225d1d69ef9
ndroid.mk
idl/android/trunks/ITrunks.aidl
idl/android/trunks/ITrunksClient.aidl
ackground_command_transceiver.cc
inder_interface.h
bus_interface.h
bus_interface.proto
tdi/mpsse.c
tdi/mpsse.h
mac_authorization_delegate_test.cc
nterface.proto
olicy_session_test.cc
esource_manager.cc
esource_manager_test.cc
coped_key_handle_test.cc
ession_manager_impl.cc
ession_manager_test.cc
pm_generated_test.cc
pm_simulator_handle.cc
pm_state_test.cc
pm_utility_impl.cc
pm_utility_test.cc
runks_binder_proxy.cc
runks_binder_proxy.h
runks_binder_service.cc
runks_binder_service.h
runks_client.cc
runks_client_test.cc
runks_dbus_proxy.cc
runks_dbus_proxy.h
runks_dbus_service.cc
runks_dbus_service.h
runks_factory.h
runks_factory_impl.cc
runks_factory_impl.h
runks_proxy.cc
runks_proxy.h
runks_service.cc
runks_service.h
runksd-seccomp-amd64.policy
runksd-seccomp-arm.policy
runksd-seccomp-arm64.policy
runksd-seccomp-x86.policy
runksd-seccomp-x86_64.policy
runksd-simulator.rc
runksd.cc
runksd.rc
|
| df1a065bda6422a3f2c013c3a63bb0e0f39150a8 |
22-Jan-2016 |
Darren Krahn <dkrahn@google.com> |
trunks: Fix generator to match manual changes.
The generated code has had a few changes that were not direct generator
output. This fixes the generator so it now outputs the existing code
exactly.
Change-Id: I72f591d6d591dc704d96df2ff2a1d55c04b2b0d9
enerator/generator.py
|
| 7e763a9434e12c7980529980de5f8eced22b310a |
20-Jan-2016 |
Alex Vakulenko <avakulenko@google.com> |
tpm: Update libchrome APIs to r369476
The new libchrome has been ported from Chromium and some APIs have
changed. Make necessary changes at call sites.
Change-Id: I7c256cc2c41c2c14d3872765d62012517e8432ba
ackground_command_transceiver.cc
ackground_command_transceiver_test.cc
ock_authorization_delegate.h
ock_command_transceiver.h
pm_generated.cc
pm_generated.h
runks_client_test.cc
runksd.cc
|
| bd0dc3c259a6da35a17d5fa6962b25b6a52a1a3d |
18-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
Merge "trunks: Convert the simulator handle to in-process."
|
| 01f9f5ee5a279a763b32c5fe10780ae2f4579f7f |
18-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
Merge "trunks: Port to boringssl."
|
| 87b642d428ca28ff81b97ab0617f2c04d8605683 |
17-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
trunks: Check for existing handles without errors.
The previous logic caused log spam when checking for key existence.
BUG=26192141
Change-Id: I232dea4ed9bbb400ff3944195cc1cd713147adac
pm_utility_impl.cc
pm_utility_impl.h
|
| 0a8fdd2cdbb6e81a89c44a7327a704a59173af2f |
18-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
Merge "trunks: Configure D-Bus for Brillo."
|
| bf8d6235ca6a0f2afa2e10b2484aa93023c56398 |
17-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
trunks: Convert the simulator handle to in-process.
Now when the simulator is enabled it will load an instance in-process,
initialize that instance, and redirect all commands to it.
BUG=26191784
Change-Id: Iee312d26fce55dc7b5c3bed462f4921d3bf0aae9
pm_simulator_handle.cc
pm_simulator_handle.h
|
| ee93b5e81e62fdc0053c74ad565957354e540a99 |
17-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
trunks: Port to boringssl.
Use the EVP interface instead of RSA functions directly when encrypting
salt.
BUG=26191810
Change-Id: I45f0497b60941452ca4407732fee0a297b9780ca
rror_codes.h
ession_manager_impl.cc
runks_client_test.cc
|
| db30790da11248905f8dca02a933ebbdcf9e3ff9 |
17-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
trunks: Fix PCR allocation.
Query existing allocations and explicitly remove any banks other than
SHA-256.
BUG=26192652
Change-Id: I7b0952aef2fd78b7d489ad1f804de7c0fb3aadeb
pm_utility_impl.cc
|
| 9d49114d0a581869ab32e1d04b03807a6152db4b |
16-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
trunks: Configure D-Bus for Brillo.
Trunks is expected to move to binder on Brillo but until that work
completes it will use D-Bus.
BUG=25360556
Change-Id: Ie8a078d53fb71b43cec7ac5be2784ae6202a9b57
om.android.Trunks.conf
bus_interface.h
|
| 18477d0ea05e3646417850e071225a52416b8eb8 |
12-Dec-2015 |
Utkarsh Sanghi <usanghi@google.com> |
trunks: Move BackgroundCommandTransceiver into libtrunks
This CL moves the BackgroundCommandTransceiver class into libtrunks
so that clients of trunks can make use of it. Also fixes a small bug
in SendCommand.
BUG=None
TEST=FEATURES=test emerge-link trunks
Change-Id: Ib8167e8f01e09a8a78843751f87881203fe8a062
ackground_command_transceiver.h
runks.gyp
runks_proxy.cc
|
| 2da8ff25e7c88c78e8a9db8de9686c92817f0992 |
02-Dec-2015 |
Darren Krahn <dkrahn@google.com> |
Fix build in new aosp/system/tpm repo.
BUG=25820760
TEST=emerge on chromiumos, run unit tests
Change-Id: I63bc47ce0d05fdef25c31d2084012df6903b761f
pm_utility_test.cc
runks.gyp
|
| d1423101f0dced3e428ff365bcf2e87aac1b575e |
24-Nov-2015 |
Utkarsh Sanghi <usanghi@google.com> |
trunks: Do not re-initialize DBus bus.
Before this CL, trunks_proxy reinitializes the DBus bus on every new
thread it is called. This can lead to memory leaks, and since trunks
hold tpm communication state, it results in errors when called in
multiple threads. This CL enfores the requriment that trunks_proxy must
be intialized and called on the same thread.
BUG=None
TEST=call trunks calls in two threads and observe errors.
Change-Id: I52b714f5c3563bebf6632718a1ef29ef3f7fc0bc
runks_proxy.cc
runks_proxy.h
|
| 89a5173601e7e2f68dbbd064a228ea6e4c7f2abf |
21-Nov-2015 |
Bill Yi <byi@google.com> |
Add 'trunks/' from commit '01f41a46e8a9e0b8d4518aaf7aa757e83f4f938f'
git-subtree-dir: trunks
git-subtree-mainline: 9cbe78de6c99f9e31643eb32b6ad4fbe75fd30ba
git-subtree-split: 01f41a46e8a9e0b8d4518aaf7aa757e83f4f938f
|