3
* Licensed Materials - Property of IBM
5
* trousers - An open source TCG Software Stack
7
* (C) Copyright International Business Machines Corp. 2007
16
#include "trousers/tss.h"
17
#include "trousers_types.h"
18
#include "tcs_utils.h"
23
TCSP_Delegate_Manage_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
24
TPM_FAMILY_ID familyID, /* in */
25
TPM_FAMILY_OPERATION opFlag, /* in */
26
UINT32 opDataSize, /* in */
27
BYTE *opData, /* in */
28
TPM_AUTH *ownerAuth, /* in/out */
29
UINT32 *retDataSize, /* out */
30
BYTE **retData) /* out */
35
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
39
if ((result = ctx_verify_context(hContext)))
43
if ((result = auth_mgr_check(hContext, &ownerAuth->AuthHandle)))
47
if ((result = tpm_rqu_build(TPM_ORD_Delegate_Manage, &offset, txBlob, familyID, opFlag,
48
opDataSize, opData, ownerAuth)))
51
if ((result = req_mgr_submit_req(txBlob)))
54
result = UnloadBlob_Header(txBlob, ¶mSize);
56
result = tpm_rsp_parse(TPM_ORD_Delegate_Manage, txBlob, paramSize, retDataSize,
57
retData, ownerAuth, NULL);
60
LogResult("Delegate_Manage", result);
63
auth_mgr_release_auth(ownerAuth, NULL, hContext);
69
TCSP_Delegate_CreateKeyDelegation_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
70
TCS_KEY_HANDLE hKey, /* in */
71
UINT32 publicInfoSize, /* in */
72
BYTE *publicInfo, /* in */
73
TPM_ENCAUTH *encDelAuth, /* in */
74
TPM_AUTH *keyAuth, /* in, out */
75
UINT32 *blobSize, /* out */
76
BYTE **blob) /* out */
79
TCPA_KEY_HANDLE keySlot;
82
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
86
if ((result = ctx_verify_context(hContext)))
90
if ((result = auth_mgr_check(hContext, &keyAuth->AuthHandle)))
94
if ((result = ensureKeyIsLoaded(hContext, hKey, &keySlot)))
97
if ((result = tpm_rqu_build(TPM_ORD_Delegate_CreateKeyDelegation, &offset, txBlob, keySlot,
98
publicInfoSize, publicInfo, encDelAuth, keyAuth)))
101
if ((result = req_mgr_submit_req(txBlob)))
104
result = UnloadBlob_Header(txBlob, ¶mSize);
106
result = tpm_rsp_parse(TPM_ORD_Delegate_CreateKeyDelegation, txBlob, paramSize,
107
blobSize, blob, keyAuth, NULL);
110
LogResult("Delegate_CreateKeyDelegation", result);
113
auth_mgr_release_auth(keyAuth, NULL, hContext);
119
TCSP_Delegate_CreateOwnerDelegation_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
120
TSS_BOOL increment, /* in */
121
UINT32 publicInfoSize, /* in */
122
BYTE *publicInfo, /* in */
123
TPM_ENCAUTH *encDelAuth, /* in */
124
TPM_AUTH *ownerAuth, /* in, out */
125
UINT32 *blobSize, /* out */
126
BYTE **blob) /* out */
131
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
135
if ((result = ctx_verify_context(hContext)))
139
if ((result = auth_mgr_check(hContext, &ownerAuth->AuthHandle)))
143
if ((result = tpm_rqu_build(TPM_ORD_Delegate_CreateOwnerDelegation, &offset, txBlob,
144
increment, publicInfoSize, publicInfo, encDelAuth, ownerAuth)))
147
if ((result = req_mgr_submit_req(txBlob)))
150
result = UnloadBlob_Header(txBlob, ¶mSize);
152
result = tpm_rsp_parse(TPM_ORD_Delegate_CreateOwnerDelegation, txBlob, paramSize,
153
blobSize, blob, ownerAuth, NULL);
156
LogResult("Delegate_CreateOwnerDelegation", result);
159
auth_mgr_release_auth(ownerAuth, NULL, hContext);
165
TCSP_Delegate_LoadOwnerDelegation_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
166
TPM_DELEGATE_INDEX index, /* in */
167
UINT32 blobSize, /* in */
169
TPM_AUTH *ownerAuth) /* in, out */
174
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
178
if ((result = ctx_verify_context(hContext)))
182
if ((result = auth_mgr_check(hContext, &ownerAuth->AuthHandle)))
186
if ((result = tpm_rqu_build(TPM_ORD_Delegate_LoadOwnerDelegation, &offset, txBlob, index,
187
blobSize, blob, ownerAuth)))
190
if ((result = req_mgr_submit_req(txBlob)))
193
result = UnloadBlob_Header(txBlob, ¶mSize);
195
result = tpm_rsp_parse(TPM_ORD_Delegate_LoadOwnerDelegation, txBlob, paramSize,
199
LogResult("Delegate_LoadOwnerDelegation", result);
202
auth_mgr_release_auth(ownerAuth, NULL, hContext);
208
TCSP_Delegate_ReadTable_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
209
UINT32 *familyTableSize, /* out */
210
BYTE **familyTable, /* out */
211
UINT32 *delegateTableSize, /* out */
212
BYTE **delegateTable) /* out */
217
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
221
if ((result = ctx_verify_context(hContext)))
224
if ((result = tpm_rqu_build(TPM_ORD_Delegate_ReadTable, &offset, txBlob, NULL)))
227
if ((result = req_mgr_submit_req(txBlob)))
230
result = UnloadBlob_Header(txBlob, ¶mSize);
232
result = tpm_rsp_parse(TPM_ORD_Delegate_ReadTable, txBlob, paramSize,
233
familyTableSize, familyTable, delegateTableSize,
234
delegateTable, NULL, NULL);
237
LogResult("Delegate_ReadTable", result);
243
TCSP_Delegate_UpdateVerificationCount_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
244
UINT32 inputSize, /* in */
245
BYTE *input, /* in */
246
TPM_AUTH *ownerAuth, /* in, out */
247
UINT32 *outputSize, /* out */
248
BYTE **output) /* out */
253
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
257
if ((result = ctx_verify_context(hContext)))
261
if ((result = auth_mgr_check(hContext, &ownerAuth->AuthHandle)))
265
if ((result = tpm_rqu_build(TPM_ORD_Delegate_UpdateVerification, &offset, txBlob, inputSize,
266
inputSize, input, ownerAuth, NULL)))
269
if ((result = req_mgr_submit_req(txBlob)))
272
result = UnloadBlob_Header(txBlob, ¶mSize);
274
result = tpm_rsp_parse(TPM_ORD_Delegate_UpdateVerification, txBlob, paramSize,
275
outputSize, output, ownerAuth, NULL);
278
LogResult("Delegate_UpdateVerificationCount", result);
281
auth_mgr_release_auth(ownerAuth, NULL, hContext);
287
TCSP_Delegate_VerifyDelegation_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
288
UINT32 delegateSize, /* in */
289
BYTE *delegate) /* in */
294
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
298
if ((result = ctx_verify_context(hContext)))
301
if ((result = tpm_rqu_build(TPM_ORD_Delegate_VerifyDelegation, &offset, txBlob,
302
delegateSize, delegateSize, delegate, NULL, NULL)))
305
if ((result = req_mgr_submit_req(txBlob)))
308
result = UnloadBlob_Header(txBlob, ¶mSize);
310
LogResult("Delegate_VerifyDelegation", result);
316
TCSP_DSAP_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
317
TPM_ENTITY_TYPE entityType, /* in */
318
TCS_KEY_HANDLE keyHandle, /* in */
319
TPM_NONCE *nonceOddDSAP, /* in */
320
UINT32 entityValueSize, /* in */
321
BYTE *entityValue, /* in */
322
TCS_AUTHHANDLE *authHandle, /* out */
323
TPM_NONCE *nonceEven, /* out */
324
TPM_NONCE *nonceEvenDSAP) /* out */
329
TPM_KEY_HANDLE tpmKeyHandle;
330
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
334
if ((result = ctx_verify_context(hContext)))
337
if (ensureKeyIsLoaded(hContext, keyHandle, &tpmKeyHandle))
338
return TCSERR(TSS_E_KEY_NOT_LOADED);
340
/* are the maximum number of auth sessions open? */
341
if (auth_mgr_req_new(hContext) == FALSE) {
342
if ((result = auth_mgr_swap_out(hContext)))
346
if ((result = tpm_rqu_build(TPM_ORD_DSAP, &offset, txBlob, entityType, tpmKeyHandle,
347
nonceOddDSAP, entityValueSize, entityValue)))
350
if ((result = req_mgr_submit_req(txBlob)))
353
result = UnloadBlob_Header(txBlob, ¶mSize);
355
if ((result = tpm_rsp_parse(TPM_ORD_DSAP, txBlob, paramSize, authHandle,
356
nonceEven->nonce, nonceEvenDSAP->nonce)))
359
/* success, add an entry to the table */
360
result = auth_mgr_add(hContext, *authHandle);
363
LogResult("DSAP", result);