3
* Licensed Materials - Property of IBM
5
* trousers - An open source TCG Software Stack
7
* (C) Copyright International Business Machines Corp. 2004
17
#include "trousers/tss.h"
18
#include "trousers_types.h"
21
#include "tcs_utils.h"
22
#include "tcs_int_literals.h"
23
#include "capabilities.h"
26
#include "tcsd_wrap.h"
30
TCSP_Seal_Internal(UINT32 sealOrdinal, /* in */
31
TCS_CONTEXT_HANDLE hContext, /* in */
32
TCS_KEY_HANDLE keyHandle, /* in */
33
TCPA_ENCAUTH encAuth, /* in */
34
UINT32 pcrInfoSize, /* in */
35
BYTE * PcrInfo, /* in */
36
UINT32 inDataSize, /* in */
37
BYTE * inData, /* in */
38
TPM_AUTH * pubAuth, /* in, out */
39
UINT32 * SealedDataSize, /* out */
40
BYTE ** SealedData) /* out */
45
TCPA_KEY_HANDLE keySlot;
46
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
48
LogDebug("Entering Seal");
50
return TCSERR(TSS_E_BAD_PARAMETER);
52
if ((result = ctx_verify_context(hContext)))
55
if ((result = auth_mgr_check(hContext, &pubAuth->AuthHandle)))
58
if ((result = ensureKeyIsLoaded(hContext, keyHandle, &keySlot)))
61
/* XXX What's this check for? */
63
result = TCSERR(TSS_E_FAIL);
67
if ((result = tpm_rqu_build(sealOrdinal, &offset, txBlob, keySlot, encAuth.authdata,
68
pcrInfoSize, PcrInfo, inDataSize, inData, pubAuth)))
71
if ((result = req_mgr_submit_req(txBlob)))
75
result = UnloadBlob_Header(txBlob, ¶mSize);
78
result = tpm_rsp_parse(sealOrdinal, txBlob, paramSize, SealedDataSize,
81
LogResult("Seal", result);
83
auth_mgr_release_auth(pubAuth, NULL, hContext);
88
TCSP_Unseal_Internal(TCS_CONTEXT_HANDLE hContext, /* in */
89
TCS_KEY_HANDLE parentHandle, /* in */
90
UINT32 SealedDataSize, /* in */
91
BYTE * SealedData, /* in */
92
TPM_AUTH * parentAuth, /* in, out */
93
TPM_AUTH * dataAuth, /* in, out */
94
UINT32 * DataSize, /* out */
95
BYTE ** Data) /* out */
100
TCPA_KEY_HANDLE keySlot;
101
BYTE txBlob[TSS_TPM_TXBLOB_SIZE];
103
LogDebug("Entering Unseal");
105
if (dataAuth == NULL)
106
return TCSERR(TSS_E_BAD_PARAMETER);
108
if ((result = ctx_verify_context(hContext)))
111
if (parentAuth != NULL) {
112
LogDebug("Auth used");
113
if ((result = auth_mgr_check(hContext, &parentAuth->AuthHandle)))
119
if ((result = auth_mgr_check(hContext, &dataAuth->AuthHandle)))
122
if ((result = ensureKeyIsLoaded(hContext, parentHandle, &keySlot)))
125
/* XXX What's this check for? */
127
result = TCSERR(TSS_E_FAIL);
131
if ((result = tpm_rqu_build(TPM_ORD_Unseal, &offset, txBlob, keySlot, SealedDataSize,
132
SealedData, parentAuth, dataAuth)))
135
if ((result = req_mgr_submit_req(txBlob)))
139
result = UnloadBlob_Header(txBlob, ¶mSize);
142
result = tpm_rsp_parse(TPM_ORD_Unseal, txBlob, paramSize, DataSize, Data,
143
parentAuth, dataAuth);
145
LogResult("Unseal", result);
147
auth_mgr_release_auth(parentAuth, dataAuth, hContext);