void tpm_owner_clear()
{
int i;
/* unload all keys */
for (i = 0; i < TPM_MAX_KEYS; i++) {
if (tpmData.permanent.data.keys[i].payload)
TPM_FlushSpecific(INDEX_TO_KEY_HANDLE(i), TPM_RT_KEY);
}
/* invalidate stany and stclear data */
memset(&tpmData.stany.data, 0 , sizeof(tpmData.stany.data));
memset(&tpmData.stclear.data, 0 , sizeof(tpmData.stclear.data));
/* release SRK */
tpm_rsa_release_private_key(&tpmData.permanent.data.srk.key);
/* invalidate permanent data */
memset(&tpmData.permanent.data.ownerAuth, 0,
sizeof(tpmData.permanent.data.ownerAuth));
memset(&tpmData.permanent.data.srk, 0,
sizeof(tpmData.permanent.data.srk));
memset(&tpmData.permanent.data.tpmProof, 0,
sizeof(tpmData.permanent.data.tpmProof));
memset(&tpmData.permanent.data.operatorAuth, 0,
sizeof(tpmData.permanent.data.operatorAuth));
/* invalidate delegate, context, and DAA key */
memset(&tpmData.permanent.data.contextKey, 0,
sizeof(tpmData.permanent.data.contextKey));
memset(&tpmData.permanent.data.delegateKey, 0,
sizeof(tpmData.permanent.data.delegateKey));
/* set permanent data */
tpmData.permanent.data.noOwnerNVWrite = 0;
tpmData.permanent.data.restrictDelegate = 0;
memset (tpmData.permanent.data.ordinalAuditStatus, 0,
sizeof(tpmData.permanent.data.ordinalAuditStatus));
/* set permanent flags */
tpmData.permanent.flags.owned = FALSE;
tpmData.permanent.flags.operator = FALSE;
tpmData.permanent.flags.disableOwnerClear = FALSE;
tpmData.permanent.flags.ownership = TRUE;
tpmData.permanent.flags.disable = FALSE;
tpmData.permanent.flags.deactivated = FALSE;
tpmData.permanent.flags.maintenanceDone = FALSE;
tpmData.permanent.flags.allowMaintenance = TRUE;
tpmData.permanent.flags.disableFullDALogicInfo = FALSE;
tpmData.permanent.flags.readPubek = TRUE;
/* release all counters */
for (i = 0; i < TPM_MAX_COUNTERS; i++)
memset(&tpmData.permanent.data.counters[i], 0, sizeof(TPM_COUNTER_VALUE));
/* invalidate family and delegates table */
for (i = 0; i < TPM_NUM_FAMILY_TABLE_ENTRY; i++) {
memset(&tpmData.permanent.data.familyTable.famRow[i], 0,
sizeof(TPM_FAMILY_TABLE_ENTRY));
}
for (i = 0; i < TPM_NUM_DELEGATE_TABLE_ENTRY; i++) {
memset(&tpmData.permanent.data.delegateTable.delRow[i], 0,
sizeof(TPM_DELEGATE_TABLE_ROW));
}
/* release NV storage */
for (i = 0; i < TPM_MAX_NVS; i++) {
if (tpmData.permanent.data.nvStorage[i].valid
&& (tpmData.permanent.data.nvStorage[i].pubInfo.permission.attributes
& (TPM_NV_PER_OWNERWRITE | TPM_NV_PER_OWNERREAD))) {
tpm_nv_remove_data(&tpmData.permanent.data.nvStorage[i]);
}
}
}
static TPM_RESULT cap_handle(UINT32 subCapSize, BYTE *subCap,
UINT32 *respSize, BYTE **resp)
{
UINT32 i, len, type;
BYTE *ptr;
/* maximum of { TPM_MAX_KEYS, TPM_MAX_SESSIONS } */
UINT32 list_size =
(TPM_MAX_KEYS > TPM_MAX_SESSIONS) ? TPM_MAX_KEYS : TPM_MAX_SESSIONS;
UINT32 handles[list_size];
TPM_KEY_HANDLE_LIST list = { 0, handles };
if (tpm_unmarshal_UINT32(&subCap, &subCapSize, &type))
return TPM_BAD_MODE;
switch (type) {
case TPM_RT_KEY:
debug("[TPM_RT_KEY]");
for (i = 0; i < TPM_MAX_KEYS; i++)
if (tpmData.permanent.data.keys[i].valid) {
list.loaded++;
list.handle[i] = INDEX_TO_KEY_HANDLE(i);
}
break;
case TPM_RT_AUTH:
debug("[TPM_RT_AUTH]");
for (i = 0; i < TPM_MAX_SESSIONS; i++)
if (tpmData.stany.data.sessions[i].type == TPM_ST_OIAP
|| tpmData.stany.data.sessions[i].type == TPM_ST_OSAP) {
list.loaded++;
list.handle[i] = INDEX_TO_AUTH_HANDLE(i);
}
break;
case TPM_RT_TRANS:
debug("[TPM_RT_TRANS]");
for (i = 0; i < TPM_MAX_SESSIONS; i++)
if (tpmData.stany.data.sessions[i].type == TPM_ST_TRANSPORT) {
list.loaded++;
list.handle[i] = INDEX_TO_TRANS_HANDLE(i);
}
break;
/* removed since v1.2 rev 94
case TPM_RT_DELEGATE:
debug("[TPM_RT_DELEGATE]");
break;
*/
case TPM_RT_COUNTER:
debug("[TPM_RT_COUNTER]");
for (i = 0; i < TPM_MAX_COUNTERS; i++)
if (tpmData.permanent.data.counters[i].valid) {
list.loaded++;
list.handle[i] = INDEX_TO_COUNTER_HANDLE(i);
}
break;
case TPM_RT_CONTEXT:
/* TODO: implement TPM_CAP_HANDLE for TPM_RT_CONTEXT */
default:
return TPM_BAD_MODE;
}
/* marshal handle list */
len = *respSize = 2 + list.loaded * 4;
ptr = *resp = tpm_malloc(len);
if (ptr == NULL || tpm_marshal_TPM_KEY_HANDLE_LIST(&ptr, &len, &list)) {
tpm_free(*resp);
return TPM_FAIL;
}
return TPM_SUCCESS;
}
