/****************************************************************************
*
* Open an OSAP session
* Object Specific Authorization Protocol, returned handle must manipulate
* a single object given as a parameter (can introduce AuthData).
* *
****************************************************************************/
uint32_t TSS_OSAPopen(struct tss_osapsess *sess, const uint8_t *key, uint16_t etype,
uint32_t evalue)
{
struct s_tpm_osap_open_cmd cmd;
uint8_t response[TPM_LARGE_ENOUGH_COMMAND_SIZE];
uint32_t nonceSize;
uint32_t result;
debug("TPM: TSS_OSAPopen\n");
/* check input arguments */
if (key == NULL || sess == NULL) {
return TPM_E_NULL_ARG;
}
TlclGetRandom(sess->ononceOSAP, TPM_NONCE_SIZE, &nonceSize);
memcpy(&cmd, &tpm_osap_open_cmd, sizeof(cmd));
ToTpmUint16(cmd.buffer + tpm_osap_open_cmd.type, etype);
ToTpmUint32(cmd.buffer + tpm_osap_open_cmd.value, evalue);
memcpy(cmd.buffer + tpm_osap_open_cmd.nonce, sess->ononceOSAP, TPM_NONCE_SIZE);
result = TlclSendReceive(cmd.buffer, response, sizeof(response));
if (result == TPM_SUCCESS) {
FromTpmUint32(response + kTpmResponseHeaderLength, &(sess->handle));
memcpy(sess->enonce, response + kTpmResponseHeaderLength + sizeof(uint32_t), TPM_NONCE_SIZE);
memcpy(sess->enonceOSAP, response + kTpmResponseHeaderLength + sizeof(uint32_t) + TPM_NONCE_SIZE, TPM_NONCE_SIZE);
debug("TPM: TSS_OSAPopen success, calculating HMAC\n");
/*DATA_DEBUG("key", key, TPM_HASH_SIZE);
DATA_DEBUG("enonceOSAP", sess->enonceOSAP, TPM_NONCE_SIZE);
DATA_DEBUG("ononceOSAP", sess->ononceOSAP, TPM_NONCE_SIZE);*/
/* not implemented */
SHA1_CTX hmac;
hmac_starts(&hmac, key, TPM_HASH_SIZE);
hmac_update(&hmac, sess->enonceOSAP, TPM_NONCE_SIZE);
hmac_update(&hmac, sess->ononceOSAP, TPM_NONCE_SIZE);
hmac_finish(&hmac, key, TPM_HASH_SIZE, sess->ssecret);
}
return result;
}
VbError_t VbExTpmSendReceive(const uint8_t *request, uint32_t request_length,
uint8_t *response, uint32_t *response_length)
{
struct srcall *c = calls + ncalls++;
c->req = request;
c->req_size = request_length;
/* Parse out the command code */
FromTpmUint32(request + 6, &c->req_cmd);
// KLUDGE - remove
printf("TSR [%d] 0x%x\n", ncalls-1, c->req_cmd);
memset(response, 0, *response_length);
if (c->rsp_size)
memcpy(response, c->rsp, c->rsp_size);
*response_length = c->rsp_size;
return c->retval;
}
/****************************************************************************
*
* Open an OIAP session
* Object Independent Authorization Protocol, will not work on commands
* that introduce new AuthData to the TPM
*
****************************************************************************/
uint32_t TSS_OIAPopen(uint32_t *handle, uint8_t *enonce)
{
struct s_tpm_oiap_open_cmd cmd;
uint8_t response[TPM_LARGE_ENOUGH_COMMAND_SIZE];
uint32_t result;
debug("TPM: TSS_OIAPopen\n");
/* check input arguments */
if (handle == NULL || enonce == NULL) {
return TPM_E_NULL_ARG;
}
memcpy(&cmd, &tpm_oiap_open_cmd, sizeof(cmd));
result = TlclSendReceive(cmd.buffer, response, sizeof(response));
if (result == TPM_SUCCESS) {
FromTpmUint32(response + kTpmResponseHeaderLength, handle);
memcpy(enonce, response + kTpmResponseHeaderLength + sizeof(uint32_t), TPM_NONCE_SIZE);
}
return result;
}
/* Gets the code field of a TPM command. */
static inline int TpmCommandCode(const u8 * buffer)
{
u32 code;
FromTpmUint32(buffer + sizeof(u16) + sizeof(u32), &code);
return code;
}
static inline int TpmCommandSize(const u8 * buffer)
{
u32 size;
FromTpmUint32(buffer + sizeof(u16), &size);
return (int)size;
}
static inline int TpmResponseSize(const uint8_t* buffer)
{
uint32_t size;
FromTpmUint32(buffer + sizeof(uint16_t), &size);
return (int) size;
}
