Google Git
Sign in
kernel / pub / scm / linux / kernel / git / jarkko / tpm2-protocol / 2c5c9d2aad871aae78a20218ced74b3bbbf5955a
commit2c5c9d2aad871aae78a20218ced74b3bbbf5955a[log] [tgz]
authorJarkko Sakkinen <jarkko@kernel.org>Tue Sep 09 00:33:56 2025 +0300
committerJarkko Sakkinen <jarkko@kernel.org>Tue Sep 09 00:37:55 2025 +0300
treef510c5d9fc49655810a386cfb85d017ed7c491b5
parentd9a2883e891d0c00232e1b9f0d5315b48db898c6 [diff]
fix: refactor out WITH_SESSIONS and NO_SESSIONS

Thanks to latest bug fixes, WITH_SESSIONS and NO_SESSIONS can b
finally dropped. The robustness weights here more than extra
static checks.

Similarly as with auth areas it makes more sense for caller to
fill the right amount of them than do a "spec check" here, it
makes sense for caller to take the call here.

Signed-off-by: Jarkko Sakkinen <jarkko@kernel.org>
30 files changed
tree: f510c5d9fc49655810a386cfb85d017ed7c491b5
  1. scripts/
  2. src/
  3. tests/
  4. .gitattributes
  5. .gitignore
  6. Cargo.lock
  7. Cargo.toml
  8. LICENSE-Apache-2.0
  9. LICENSE-MIT
  10. Makefile
  11. README.md
README.md

TPM 2.0 marshaller/unmarshaller

A unipolar no_std TPM 2.0 implementation that does not require heap allocator and has zero dependencies.

Development

Mailing List

The list can be subscribed by sending an empty message to tpm-protocol+subscribe@lists.linux.dev, Unsubscribing follows the same exact pattern except that the subaddress is +unsubscribe. With that all out of the way it is good to remark that the process is relaxed in the sense that opening a thread in the list, or submitting a patch does not require a subscription.

As already denoted in the previous section, patches and other messages can be posted to tpm-protocol@lists.linux.dev. The mailing list archive is available at https://lore.kernel.org/tpm-protocol/.

NOTE: emails must be in text/plain. format. Emails in any other format, e.g. text/html, will be automatically discarded by the list server, and they won't appear in the mailing list.

Build System

The project provides a Makefile with make test target. The unit test is by design compiling with GNU make and rustc, and it outputs kselftest compatible exit codes. This ensures that is code that can be imported to Linux kernel.

Architecture

tpm2_protocol is a low-level and policy-free library for TPM 2.0 command and response building and parsing.

The primary design goal is to be correct against TCG specifications, and to be usable in constrained environments.

The correctness is validated to the point that no rules will be introduced that could be considered as policy. In particular the number of sessions is limited against MAX_SESSIONS but not against number of allowed sessions specified for a particular command.

Licensing

The tpm2-protocol library is licensed under the permissive MIT OR Apache-2.0 license to allow for wide adoption.