mirrors/meta-secure-core
1
0
Fork 0
mirror of https://github.com/jiazhang0/meta-secure-core.git synced 2026-04-20 18:08:17 +00:00
Code Issues Projects Releases Wiki Activity
Files
0198c6f4822aa8cdd04ca912c51527c0e6d65d51
meta-secure-core/meta-tpm2
History
Mingli Yu f0b4bfd65d meta-tpm2: check the tpm2 DISTRO_FEATURES 
Fix the below yocto compliance issue:
  INFO: test_signatures (common.CommonCheckLayer)
  INFO:  ... FAIL

  Stdout:
  Loading cache...done.
  Loaded 1645 entries from dependency cache.
  INFO: Traceback (most recent call last):
   File "/build/layers/oe-core/scripts/lib/checklayer/cases/common.py", line 81, in test_signatures
    self.fail('Adding layer %s changed signatures.\n%s' % (self.tc.layer['name'], msg))
AssertionError: Adding layer meta-tpm2 changed signatures.
107 signatures changed, initial differences (first hash before, second after):
   linux-yocto:do_fetch: c57d21fe3def6c9959bbfd487420c6845d4c720d7e72aa5cf1e11af324ba5d45 -> 3b1f37d37a491287fa36bc0f1e3d65d6ff2af899d173f684600a8fbff643b695
      bitbake-diffsigs --task linux-yocto do_fetch --signature c57d21fe3def6c9959bbfd487420c6845d4c720d7e72aa5cf1e11af324ba5d45 3b1f37d37a491287fa36bc0f1e3d65d6ff2af899d173f684600a8fbff643b695
      NOTE: Starting bitbake server...
      basehash changed from 847e3bff305906a9ad386dc76de2fc2dfdaf7bc2b7dfb15bb2cd17dd9ba1f8bd to a522d659617359c730eac2f149a171ddd030959af67d1d3c3606cc9adba7db08
      Variable SRC_URI value changed:
      @@ -1 +1,2 @@
      -git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH};            git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.15;destsuffix=${KMETA}
      +git://git.yoctoproject.org/linux-yocto.git;name=machine;branch=${KBRANCH};            git://git.yoctoproject.org/yocto-kernel-cache;type=kmeta;name=meta;branch=yocto-5.15;destsuffix=${KMETA}     ${@bb.utils.contains('DISTRO_FEATURES', 'tpm2',                          'file://tpm2.scc file://tpm2.cfg', '', d)}
      +DISTRO_FEATURES{tpm2} = Unset

Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
2022-12-06 09:16:14 +08:00
..
conf
layer.conf: add langdale to LAYERSERIES_COMPAT
2022-11-03 09:47:47 +08:00
recipes-base/packagegroups
meta-secure-core: Convert to new override syntax
2021-08-09 18:51:13 +08:00
recipes-kernel/linux
meta-tpm2: check the tpm2 DISTRO_FEATURES
2022-12-06 09:16:14 +08:00
recipes-tpm
recipes: update SRC_URI branch and protocols
2021-11-15 09:56:02 +08:00
COPYING.MIT
Add the missing COPYING.MIT files
2017-07-13 15:31:14 +08:00
README.md
meta-secure-core: update the README
2022-12-06 09:16:14 +08:00

README.md

TPM 2.0

This feature enables Trusted Platform Module (TPM 2.0) support, including kernel option changes to enable tpm drivers, and picking up TPM 2.0 packages.

Trusted Platform Module (TPM 2.0) is a microcontroller that stores keys, passwords, and digital certificates. A TPM 2.0 offers the capabilities as part of the overall platform security requirements.

Clear TPM

For TPM 2.0, the following typical steps can be performed to get the TPM ready for use:

  • Clear and enable TPM from the BIOS or set the security jumper on the board.
  • Take TPM ownership, setting Owner/Endorsement/Lockout passwords if necessary. These passwords are used for the authorization to certain TPM 2.0 commands.
  # tpm2_takeownership -o <ownerPasswd> -e <endorsePasswd> -l <lockPasswd>

Then, you can use the TPM for a specific need, such as key generation, sealing encrypted data, etc.

Patches

Please submit any patches against the meta-tpm2 layer to the maintainer:

Maintainer: Jia Zhang zhang.jia@linux.alibaba.com

Reference in New Issue View Git Blame Copy Permalink