//
// This function does a hash on an array of data strings.
//
UINT32 TpmHashSequence( TPMI_ALG_HASH hashAlg, UINT8 numBuffers, TPM2B_DIGEST *bufferList, TPM2B_DIGEST *result )
{
UINT32 rval;
TSS2_SYS_CONTEXT *sysContext;
TPM2B_AUTH nullAuth;
TPMI_DH_OBJECT sequenceHandle;
int i;
TPM2B emptyBuffer;
TPMT_TK_HASHCHECK validation;
TPMS_AUTH_COMMAND cmdAuth;
TPMS_AUTH_COMMAND *cmdSessionArray[1] = { &cmdAuth };
TSS2_SYS_CMD_AUTHS cmdAuthArray = { 1, &cmdSessionArray[0] };
nullAuth.t.size = 0;
emptyBuffer.size = 0;
// Set result size to 0, in case any errors occur
result->b.size = 0;
// Init input sessions struct
cmdAuth.sessionHandle = TPM_RS_PW;
cmdAuth.nonce.t.size = 0;
*( (UINT8 *)((void *)&cmdAuth.sessionAttributes ) ) = 0;
cmdAuth.hmac.t.size = 0;
sysContext = InitSysContext( 3000, resMgrTctiContext, &abiVersion );
if( sysContext == 0 )
return TSS2_APP_RC_INIT_SYS_CONTEXT_FAILED;
rval = Tss2_Sys_HashSequenceStart( sysContext, 0, &nullAuth, hashAlg, &sequenceHandle, 0 );
if( rval != TPM_RC_SUCCESS )
return( rval );
for( i = 0; i < numBuffers; i++ )
{
rval = Tss2_Sys_SequenceUpdate ( sysContext, sequenceHandle, &cmdAuthArray, (TPM2B_MAX_BUFFER *)&bufferList[i], 0 );
if( rval != TPM_RC_SUCCESS )
return( rval );
}
INIT_SIMPLE_TPM2B_SIZE( *result );
rval = Tss2_Sys_SequenceComplete ( sysContext, sequenceHandle, &cmdAuthArray, ( TPM2B_MAX_BUFFER *)&emptyBuffer,
TPM_RH_PLATFORM, result, &validation, 0 );
if( rval != TPM_RC_SUCCESS )
return( rval );
TeardownSysContext( &sysContext );
return rval;
}
//
// This function does an HMAC on a null-terminated list of input buffers.
//
UINT32 TpmHmac( TPMI_ALG_HASH hashAlg, TPM2B *key, TPM2B **bufferList, TPM2B_DIGEST *result )
{
TPM2B_AUTH nullAuth;
TPMI_DH_OBJECT sequenceHandle;
int i;
TPM2B emptyBuffer;
TPMT_TK_HASHCHECK validation;
TPMS_AUTH_COMMAND *sessionDataArray[1];
TPMS_AUTH_COMMAND sessionData;
TSS2_SYS_CMD_AUTHS sessionsData;
TPM2B_AUTH hmac;
TPM2B_NONCE nonce;
TPMS_AUTH_RESPONSE *sessionDataOutArray[1];
TPMS_AUTH_RESPONSE sessionDataOut;
TSS2_SYS_RSP_AUTHS sessionsDataOut;
UINT32 rval;
TPM_HANDLE keyHandle;
TPM2B_NAME keyName;
TPM2B keyAuth;
TSS2_SYS_CONTEXT *sysContext;
sessionDataArray[0] = &sessionData;
sessionDataOutArray[0] = &sessionDataOut;
// Set result size to 0, in case any errors occur
result->b.size = 0;
keyAuth.size = 0;
nullAuth.t.size = 0;
rval = LoadExternalHMACKey( hashAlg, key, &keyHandle, &keyName );
if( rval != TPM_RC_SUCCESS )
{
return( rval );
}
// Init input sessions struct
sessionData.sessionHandle = TPM_RS_PW;
nonce.t.size = 0;
sessionData.nonce = nonce;
CopySizedByteBuffer( &(hmac.b), &keyAuth );
sessionData.hmac = hmac;
*( (UINT8 *)((void *)&( sessionData.sessionAttributes ) ) ) = 0;
sessionsData.cmdAuthsCount = 1;
sessionsData.cmdAuths = &sessionDataArray[0];
// Init sessions out struct
sessionsDataOut.rspAuthsCount = 1;
sessionsDataOut.rspAuths = &sessionDataOutArray[0];
emptyBuffer.size = 0;
sysContext = InitSysContext( 3000, resMgrTctiContext, &abiVersion );
if( sysContext == 0 )
return TSS2_APP_ERROR_LEVEL + TPM_RC_FAILURE;
rval = Tss2_Sys_HMAC_Start( sysContext, keyHandle, &sessionsData, &nullAuth, hashAlg, &sequenceHandle, 0 );
if( rval != TPM_RC_SUCCESS )
return( rval );
hmac.t.size = 0;
sessionData.hmac = hmac;
for( i = 0; bufferList[i] != 0; i++ )
{
rval = Tss2_Sys_SequenceUpdate ( sysContext, sequenceHandle, &sessionsData, (TPM2B_MAX_BUFFER *)( bufferList[i] ), &sessionsDataOut );
if( rval != TPM_RC_SUCCESS )
return( rval );
}
result->t.size = sizeof( TPM2B_DIGEST ) - 2;
rval = Tss2_Sys_SequenceComplete ( sysContext, sequenceHandle, &sessionsData, ( TPM2B_MAX_BUFFER *)&emptyBuffer,
TPM_RH_PLATFORM, result, &validation, &sessionsDataOut );
if( rval != TPM_RC_SUCCESS )
return( rval );
rval = Tss2_Sys_FlushContext( sysContext, keyHandle );
TeardownSysContext( &sysContext );
return rval;
}
