git.kernel.dk Git - linux-2.6-block.git/commit

tpm: Add HMAC session start and end functions

Add session  based HMAC  authentication plus parameter  decryption and
response encryption  using AES. The  basic design is to  segregate all
the nasty crypto, hash and hmac code into tpm2-sessions.c and export a
usable API.  The API first of all starts off by gaining a session with
tpm2_start_auth_session() which  initiates a session with  the TPM and
allocates  an  opaque  tpm2_auth   structure  to  handle  the  session
parameters.  The  design is that  session use will be  single threaded
from start to finish under the ops lock, so the tpm2_auth structure is
stored in struct tpm2_chip to simpify the externally visible API.

The session can be ended with tpm2_end_auth_session() which is
designed only to be used in error legs.  Ordinarily the further
session API (future patches) will end or continue the session
appropriately without having to call this.

Signed-off-by: James Bottomley <James.Bottomley@HansenPartnership.com>
Reviewed-by: Ard Biesheuvel <ard.biesheuvel@linaro.org> # crypto API parts
Reviewed-by: Jarkko Sakkinen <jarkko@kernel.org>
Tested-by: Jarkko Sakkinen <jarkko@kernel.org>
Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>

author	James Bottomley <James.Bottomley@HansenPartnership.com>
	Mon, 29 Apr 2024 20:28:03 +0000 (16:28 -0400)
committer	Jarkko Sakkinen <jarkko@kernel.org>
	Thu, 9 May 2024 19:30:51 +0000 (22:30 +0300)
commit	699e3efd6c645c741ea4d6d58282c56b6d108cf7
tree	d18c0bf357bbef9fc5adfc6bfd51cc3a4a4aa769	tree \| snapshot
parent	033ee84e5f01c86997cde29947805e9781ddf233	commit \| diff

drivers/char/tpm/Kconfig		diff \| blob \| blame \| history
drivers/char/tpm/tpm-buf.c		diff \| blob \| blame \| history
drivers/char/tpm/tpm-chip.c		diff \| blob \| blame \| history
drivers/char/tpm/tpm2-sessions.c		diff \| blob \| blame \| history
include/linux/tpm.h		diff \| blob \| blame \| history