The trusted computing team of IAIK hereby announces the immediate
availability of the Infineon TPM 1.2 DUAL Patch for TrouSerS 0.2.8.
This patch is intended to make the TrouSerS TSS (which currently only
supports v 1.1b TPMs) run on Infineon 1.2 TPMs (SLB 9635 TT 1.2). TPM
Spec. 1.2 deprecates numerous commands which therefore are no longer
implemented in Infineon 1.2 TPMs.
This patch is a forward-port of the original patch for TrouSerS 0.2.6.
Additionally, it includes the following new features:
- The patch now contains TPM version detection. Therefore, a patched
TrouSerS works on both - 1.1b and Infineon 1.2 TPMs.
The TPM version detection is performed on a 'per context' basis which
means that different context objects can be connected to different TPMs
(i.e. different core services running on different TPMs).
- Workaround for TPM Emulator: TPM Emulator from ETH Zuerich claims to
be a 1.2 TPM but does not fully implement LoadKey2. The patched TrouSerS
contains a workaround to function properly when running on TPM Emulator.
- Data sealing now works: Infineon 1.2 TPMs seem to expect an instance
of TPM_PCR_INFO_LONG instead of TPM_PCR_INFO as pcrInfo parameter in the
TPM_Seal command (at least if all 24 PCRs should be used).
- Tspi_Context_LoadKeyByBlob now works on 1.2 TPMs (removed keyslot from
auth data of LoadKey2 command)
This patch is EXPERIMENTAL software! It is provided "as is" and WITHOUT
ANY WARRANTY.
Documentation and source code are available at the Sourceforge website
at: http://trustedjava.sourceforge.net
Comments, questions and feature requests are always welcome.
Regards,
Thomas Winkler
IAIK, TU Graz
|
