[v4,0/4] TPM 2.0 fixes in IMA tests

Message ID	20200930160214.29358-1-pvorel@suse.cz (mailing list archive)
Headers	show Return-Path: <SRS0=v9j2=DH=vger.kernel.org=linux-integrity-owner@kernel.org> From: Petr Vorel <pvorel@suse.cz> To: ltp@lists.linux.it Cc: Petr Vorel <pvorel@suse.cz>, Mimi Zohar <zohar@linux.vnet.ibm.com>, Lakshmi Ramasubramanian <nramas@linux.microsoft.com>, linux-integrity@vger.kernel.org Subject: [PATCH v4 0/4] TPM 2.0 fixes in IMA tests Date: Wed, 30 Sep 2020 18:02:10 +0200 Message-Id: <20200930160214.29358-1-pvorel@suse.cz> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	TPM 2.0 fixes in IMA tests \| expand [v4,0/4] TPM 2.0 fixes in IMA tests [v4,1/4] IMA: Move get_algorithm_digest(), set_digest_index() to ima_setup.sh [v4,2/4] IMA: Rewrite ima_boot_aggregate.c to new API [v4,3/4] ima_tpm.sh: Fix calculating boot aggregate [v4,4/4] ima_tpm.sh: Fix calculating PCR aggregate

Message ID

20200930160214.29358-1-pvorel@suse.cz (mailing list archive)

Headers

From: Petr Vorel <pvorel@suse.cz>
To: ltp@lists.linux.it
Cc: Petr Vorel <pvorel@suse.cz>, Mimi Zohar <zohar@linux.vnet.ibm.com>,
        Lakshmi Ramasubramanian <nramas@linux.microsoft.com>,
        linux-integrity@vger.kernel.org
Subject: [PATCH v4 0/4] TPM 2.0 fixes in IMA tests
Date: Wed, 30 Sep 2020 18:02:10 +0200
Message-Id: <20200930160214.29358-1-pvorel@suse.cz>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

TPM 2.0 fixes in IMA tests | expand

Message

Petr Vorel Sept. 30, 2020, 4:02 p.m. UTC

Hi Mimi, Lakshmi,

changes v3->v4:

test1:
* require 1.3.1 instead of 1.3 (simplification)

test2
* use --ignore-violations if evmctl >= 1.3.1 available
* check error only for 1.3.1, for others check only the result
* check for ima_policy=tcb (or ima_tcb) and require 1.3.1 if used
(to get --ignore-violations)

Kind regards,
Petr

Petr Vorel (4):
  IMA: Move get_algorithm_digest(), set_digest_index() to ima_setup.sh
  IMA: Rewrite ima_boot_aggregate.c to new API
  ima_tpm.sh: Fix calculating boot aggregate
  ima_tpm.sh: Fix calculating PCR aggregate

 .../integrity/ima/src/ima_boot_aggregate.c    | 113 ++++---
 .../integrity/ima/tests/ima_measurements.sh   |  62 +---
 .../security/integrity/ima/tests/ima_setup.sh |  84 +++++-
 .../security/integrity/ima/tests/ima_tpm.sh   | 284 ++++++++++++++----
 4 files changed, 371 insertions(+), 172 deletions(-)