3.0.0

3.0.0 - 2022-12-05

Fixed

• A bug in special command processing in TPM2_GetCapability when an
  audit session is in use cuased tpm2-abrmd to abort.

Added

• New SELinux interfaces for communication with keylime

Changed

• DBUS permissions in tpm2-abrmd.conf to match the in-kernel RM, ie
  /dev/tpmrm0, permissions. Now users MUST be in the tss group to
  send to tpm2-abrmd over DBUS.

3.0.0-rc0

3.0.0-rc0 - 2022-11-28

Fixed

• A bug in special command processing in TPM2_GetCapability when an
  audit session is in use cuased tpm2-abrmd to abort.

Added

• New SELinux interfaces for communication with keylime

Changed

• DBUS permissions in tpm2-abrmd.conf to match the in-kernel RM, ie
  /dev/tpmrm0, permissions. Now users MUST be in the tss group to
  send to tpm2-abrmd over DBUS.

2.4.1

2.4.1 - 2022-03-04

Added

• Contributor Covenant Code of Conduct.

Fixed

• superflous warning messages about tcti status.
  • WARNING **: 11:00:56.205: tcti_conf before: "(null)"
  • WARNING **: 11:00:56.205: tcti_conf after: "mssim"
• GCC 11 build error: error: argument 2 of __atomic_load’ discards ‘volatile’ qualifier
• Initialize gerror pointer variable to NULL to fix use of unitialized memory and segfault.
• Updated missing defaults in manpage.
• Port CI to composite actions in tpm2-software/ci.

Removed

• Dependency on 'which' utility in configure.ac.
• ubuntu-16.04 from CI.

2.4.0

2.4.0 - 2021-02-08

Added

• configure option --enable-asan which will cause the build to produce
  ASAN enabled binaries.
• CI runs with clang enable asan for tests.
• Service start depends on systemd device unit: dev-tpm0.device.
• Testing support with swtpm.

Fixed

• Numerous memory leaks.
• udev settle service deprecation warnings.
• StandardOutput=syslog deprecation warnings.

Changed

• StandardOutput=syslog removed from systemd service file as syslog is
  deprecated since systemd version 246.
• Requires tpm2-tss version 2.4.0 or greater for udev TAG=systemd rules.

Removed

• valgrind configure options.
• usage of udev settle service.

2.4.0-rc0

2.4.0-rc0 - 2021-01-31

Added

• configure option --enable-asan which will cause the build to produce
  ASAN enabled binaries.
• CI runs with clang enable asan for tests.
• Service start depends on systemd device unit: dev-tpm0.device.
• Testing support with swtpm.

Fixed

• Numerous memory leaks.
• udev settle service deprecation warnings.
• StandardOutput=syslog deprecation warnings.

Changed

• StandardOutput=syslog removed from systemd service file as syslog is
  deprecated since systemd version 246.
• Requires tpm2-tss version 2.4.0 or greater for udev TAG=systemd rules.

2.3.3

Fixed:

• Fixed handle resource leak exhausting TPM resources.

2.3.3-rc0

Fixed:

• Fixed handle resource leak exhausting TPM resources.

2.3.2

Added

• Added cirrus CI specific config files to enable FreeBSD builds.

Changed

• Changed test scripts to be more portable.
• Changed include header paths specific to FreeBSD.

2.3.2-rc0

Added

• Added cirrus CI specific config files to enable FreeBSD builds.

Changed

• Changed test scripts to be more portable.
• Changed include header paths specific to FreeBSD.

2.3.1

Fixed

• Provide meaningful exit codes on initialization failures.
• Prevent systemd from starting the daemon before udev changes ownership
  of the TPM device node.
• Prevent systemd from starting the daemon if there is no TPM device
  node.
• Prevent systemd from restarting the daemon if it fails.
• Add SELinux policy to allow daemon to resolve names.
• Add SELinux policy boolean (disabled by default) to allow daemon to
  connect to all unreserved ports.