1 // SPDX-License-Identifier: GPL-2.0+
3 * Copyright (c) 2013 The Chromium OS Authors.
4 * Coypright (c) 2013 Guntermann & Drunck GmbH
7 #define LOG_CATEGORY UCLASS_TPM
11 #include <asm/unaligned.h>
12 #include <u-boot/sha1.h>
13 #include <tpm-common.h>
15 #include "tpm-utils.h"
17 #ifdef CONFIG_TPM_AUTH_SESSIONS
20 #error "TPM_AUTH_SESSIONS require SHA1 to be configured, too"
21 #endif /* !CONFIG_SHA1 */
26 u8 nonce_even[DIGEST_LENGTH];
27 u8 nonce_odd[DIGEST_LENGTH];
30 static struct session_data oiap_session = {0, };
32 #endif /* CONFIG_TPM_AUTH_SESSIONS */
34 u32 tpm_startup(enum tpm_startup_type mode)
36 const u8 command[12] = {
37 0x0, 0xc1, 0x0, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x99, 0x0, 0x0,
39 const size_t mode_offset = 10;
40 u8 buf[COMMAND_BUFFER_SIZE];
42 if (pack_byte_string(buf, sizeof(buf), "sw",
43 0, command, sizeof(command),
47 return tpm_sendrecv_command(buf, NULL, NULL);
52 return tpm_startup(TPM_ST_STATE);
55 u32 tpm_self_test_full(void)
57 const u8 command[10] = {
58 0x0, 0xc1, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x50,
60 return tpm_sendrecv_command(command, NULL, NULL);
63 u32 tpm_continue_self_test(void)
65 const u8 command[10] = {
66 0x0, 0xc1, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x53,
68 return tpm_sendrecv_command(command, NULL, NULL);
71 u32 tpm_clear_and_reenable(void)
75 log_info("TPM: Clear and re-enable\n");
76 ret = tpm_force_clear();
77 if (ret != TPM_SUCCESS) {
78 log_err("Can't initiate a force clear\n");
82 #if IS_ENABLED(CONFIG_TPM_V1)
83 ret = tpm_physical_enable();
84 if (ret != TPM_SUCCESS) {
85 log_err("TPM: Can't set enabled state\n");
89 ret = tpm_physical_set_deactivated(0);
90 if (ret != TPM_SUCCESS) {
91 log_err("TPM: Can't set deactivated state\n");
99 u32 tpm_nv_define_space(u32 index, u32 perm, u32 size)
101 const u8 command[101] = {
102 0x0, 0xc1, /* TPM_TAG */
103 0x0, 0x0, 0x0, 0x65, /* parameter size */
104 0x0, 0x0, 0x0, 0xcc, /* TPM_COMMAND_CODE */
105 /* TPM_NV_DATA_PUBLIC->... */
106 0x0, 0x18, /* ...->TPM_STRUCTURE_TAG */
107 0, 0, 0, 0, /* ...->TPM_NV_INDEX */
108 /* TPM_NV_DATA_PUBLIC->TPM_PCR_INFO_SHORT */
112 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
113 /* TPM_NV_DATA_PUBLIC->TPM_PCR_INFO_SHORT */
117 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
118 /* TPM_NV_ATTRIBUTES->... */
119 0x0, 0x17, /* ...->TPM_STRUCTURE_TAG */
120 0, 0, 0, 0, /* ...->attributes */
121 /* End of TPM_NV_ATTRIBUTES */
122 0, /* bReadSTClear */
123 0, /* bWriteSTClear */
124 0, /* bWriteDefine */
125 0, 0, 0, 0, /* size */
127 const size_t index_offset = 12;
128 const size_t perm_offset = 70;
129 const size_t size_offset = 77;
130 u8 buf[COMMAND_BUFFER_SIZE];
132 if (pack_byte_string(buf, sizeof(buf), "sddd",
133 0, command, sizeof(command),
137 return TPM_LIB_ERROR;
139 return tpm_sendrecv_command(buf, NULL, NULL);
142 u32 tpm_nv_set_locked(void)
144 return tpm_nv_define_space(TPM_NV_INDEX_LOCK, 0, 0);
147 u32 tpm_nv_read_value(u32 index, void *data, u32 count)
149 const u8 command[22] = {
150 0x0, 0xc1, 0x0, 0x0, 0x0, 0x16, 0x0, 0x0, 0x0, 0xcf,
152 const size_t index_offset = 10;
153 const size_t length_offset = 18;
154 const size_t data_size_offset = 10;
155 const size_t data_offset = 14;
156 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
157 size_t response_length = sizeof(response);
161 if (pack_byte_string(buf, sizeof(buf), "sdd",
162 0, command, sizeof(command),
164 length_offset, count))
165 return TPM_LIB_ERROR;
166 err = tpm_sendrecv_command(buf, response, &response_length);
169 if (unpack_byte_string(response, response_length, "d",
170 data_size_offset, &data_size))
171 return TPM_LIB_ERROR;
172 if (data_size > count)
173 return TPM_LIB_ERROR;
174 if (unpack_byte_string(response, response_length, "s",
175 data_offset, data, data_size))
176 return TPM_LIB_ERROR;
181 u32 tpm_nv_write_value(u32 index, const void *data, u32 length)
183 const u8 command[256] = {
184 0x0, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcd,
186 const size_t command_size_offset = 2;
187 const size_t index_offset = 10;
188 const size_t length_offset = 18;
189 const size_t data_offset = 22;
190 const size_t write_info_size = 12;
191 const u32 total_length =
192 TPM_REQUEST_HEADER_LENGTH + write_info_size + length;
193 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
194 size_t response_length = sizeof(response);
197 if (pack_byte_string(buf, sizeof(buf), "sddds",
198 0, command, sizeof(command),
199 command_size_offset, total_length,
201 length_offset, length,
202 data_offset, data, length))
203 return TPM_LIB_ERROR;
204 err = tpm_sendrecv_command(buf, response, &response_length);
211 uint32_t tpm_set_global_lock(void)
215 return tpm_nv_write_value(TPM_NV_INDEX_0, (uint8_t *)&x, 0);
218 u32 tpm_extend(u32 index, const void *in_digest, void *out_digest)
220 const u8 command[34] = {
221 0x0, 0xc1, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x0, 0x14,
223 const size_t index_offset = 10;
224 const size_t in_digest_offset = 14;
225 const size_t out_digest_offset = 10;
226 u8 buf[COMMAND_BUFFER_SIZE];
227 u8 response[TPM_RESPONSE_HEADER_LENGTH + PCR_DIGEST_LENGTH];
228 size_t response_length = sizeof(response);
231 if (pack_byte_string(buf, sizeof(buf), "sds",
232 0, command, sizeof(command),
234 in_digest_offset, in_digest,
236 return TPM_LIB_ERROR;
237 err = tpm_sendrecv_command(buf, response, &response_length);
241 if (unpack_byte_string(response, response_length, "s",
242 out_digest_offset, out_digest,
244 return TPM_LIB_ERROR;
249 u32 tpm_pcr_read(u32 index, void *data, size_t count)
251 const u8 command[14] = {
252 0x0, 0xc1, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x15,
254 const size_t index_offset = 10;
255 const size_t out_digest_offset = 10;
256 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
257 size_t response_length = sizeof(response);
260 if (count < PCR_DIGEST_LENGTH)
261 return TPM_LIB_ERROR;
263 if (pack_byte_string(buf, sizeof(buf), "sd",
264 0, command, sizeof(command),
265 index_offset, index))
266 return TPM_LIB_ERROR;
267 err = tpm_sendrecv_command(buf, response, &response_length);
270 if (unpack_byte_string(response, response_length, "s",
271 out_digest_offset, data, PCR_DIGEST_LENGTH))
272 return TPM_LIB_ERROR;
277 u32 tpm_tsc_physical_presence(u16 presence)
279 const u8 command[12] = {
280 0x0, 0xc1, 0x0, 0x0, 0x0, 0xc, 0x40, 0x0, 0x0, 0xa, 0x0, 0x0,
282 const size_t presence_offset = 10;
283 u8 buf[COMMAND_BUFFER_SIZE];
285 if (pack_byte_string(buf, sizeof(buf), "sw",
286 0, command, sizeof(command),
287 presence_offset, presence))
288 return TPM_LIB_ERROR;
290 return tpm_sendrecv_command(buf, NULL, NULL);
293 u32 tpm_finalise_physical_presence(void)
295 const u8 command[12] = {
296 0x0, 0xc1, 0x0, 0x0, 0x0, 0xc, 0x40, 0x0, 0x0, 0xa, 0x2, 0xa0,
299 return tpm_sendrecv_command(command, NULL, NULL);
302 u32 tpm_read_pubek(void *data, size_t count)
304 const u8 command[30] = {
305 0x0, 0xc1, 0x0, 0x0, 0x0, 0x1e, 0x0, 0x0, 0x0, 0x7c,
307 const size_t response_size_offset = 2;
308 const size_t data_offset = 10;
309 const size_t header_and_checksum_size = TPM_RESPONSE_HEADER_LENGTH + 20;
310 u8 response[COMMAND_BUFFER_SIZE + TPM_PUBEK_SIZE];
311 size_t response_length = sizeof(response);
315 err = tpm_sendrecv_command(command, response, &response_length);
318 if (unpack_byte_string(response, response_length, "d",
319 response_size_offset, &data_size))
320 return TPM_LIB_ERROR;
321 if (data_size < header_and_checksum_size)
322 return TPM_LIB_ERROR;
323 data_size -= header_and_checksum_size;
324 if (data_size > count)
325 return TPM_LIB_ERROR;
326 if (unpack_byte_string(response, response_length, "s",
327 data_offset, data, data_size))
328 return TPM_LIB_ERROR;
333 u32 tpm_force_clear(void)
335 const u8 command[10] = {
336 0x0, 0xc1, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x5d,
339 return tpm_sendrecv_command(command, NULL, NULL);
342 u32 tpm_physical_enable(void)
344 const u8 command[10] = {
345 0x0, 0xc1, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x6f,
348 return tpm_sendrecv_command(command, NULL, NULL);
351 u32 tpm_physical_disable(void)
353 const u8 command[10] = {
354 0x0, 0xc1, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x70,
357 return tpm_sendrecv_command(command, NULL, NULL);
360 u32 tpm_physical_set_deactivated(u8 state)
362 const u8 command[11] = {
363 0x0, 0xc1, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x72,
365 const size_t state_offset = 10;
366 u8 buf[COMMAND_BUFFER_SIZE];
368 if (pack_byte_string(buf, sizeof(buf), "sb",
369 0, command, sizeof(command),
370 state_offset, state))
371 return TPM_LIB_ERROR;
373 return tpm_sendrecv_command(buf, NULL, NULL);
376 u32 tpm_get_capability(u32 cap_area, u32 sub_cap, void *cap, size_t count)
378 const u8 command[22] = {
379 0x0, 0xc1, /* TPM_TAG */
380 0x0, 0x0, 0x0, 0x16, /* parameter size */
381 0x0, 0x0, 0x0, 0x65, /* TPM_COMMAND_CODE */
382 0x0, 0x0, 0x0, 0x0, /* TPM_CAPABILITY_AREA */
383 0x0, 0x0, 0x0, 0x4, /* subcap size */
384 0x0, 0x0, 0x0, 0x0, /* subcap value */
386 const size_t cap_area_offset = 10;
387 const size_t sub_cap_offset = 18;
388 const size_t cap_offset = 14;
389 const size_t cap_size_offset = 10;
390 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
391 size_t response_length = sizeof(response);
395 if (pack_byte_string(buf, sizeof(buf), "sdd",
396 0, command, sizeof(command),
397 cap_area_offset, cap_area,
398 sub_cap_offset, sub_cap))
399 return TPM_LIB_ERROR;
400 err = tpm_sendrecv_command(buf, response, &response_length);
403 if (unpack_byte_string(response, response_length, "d",
404 cap_size_offset, &cap_size))
405 return TPM_LIB_ERROR;
406 if (cap_size > response_length || cap_size > count)
407 return TPM_LIB_ERROR;
408 if (unpack_byte_string(response, response_length, "s",
409 cap_offset, cap, cap_size))
410 return TPM_LIB_ERROR;
415 u32 tpm_get_permanent_flags(struct tpm_permanent_flags *pflags)
417 const u8 command[22] = {
418 0x0, 0xc1, /* TPM_TAG */
419 0x0, 0x0, 0x0, 0x16, /* parameter size */
420 0x0, 0x0, 0x0, 0x65, /* TPM_COMMAND_CODE */
421 0x0, 0x0, 0x0, 0x4, /* TPM_CAP_FLAG_PERM */
422 0x0, 0x0, 0x0, 0x4, /* subcap size */
423 0x0, 0x0, 0x1, 0x8, /* subcap value */
425 const size_t data_size_offset = TPM_HEADER_SIZE;
426 const size_t data_offset = TPM_HEADER_SIZE + sizeof(u32);
427 u8 response[COMMAND_BUFFER_SIZE];
428 size_t response_length = sizeof(response);
432 err = tpm_sendrecv_command(command, response, &response_length);
435 if (unpack_byte_string(response, response_length, "d",
436 data_size_offset, &data_size)) {
437 log_err("Cannot unpack data size\n");
438 return TPM_LIB_ERROR;
440 if (data_size < sizeof(*pflags)) {
441 log_err("Data size too small\n");
442 return TPM_LIB_ERROR;
444 if (unpack_byte_string(response, response_length, "s",
445 data_offset, pflags, sizeof(*pflags))) {
446 log_err("Cannot unpack pflags\n");
447 return TPM_LIB_ERROR;
453 u32 tpm_get_permissions(u32 index, u32 *perm)
455 const u8 command[22] = {
456 0x0, 0xc1, /* TPM_TAG */
457 0x0, 0x0, 0x0, 0x16, /* parameter size */
458 0x0, 0x0, 0x0, 0x65, /* TPM_COMMAND_CODE */
462 const size_t index_offset = 18;
463 const size_t perm_offset = 60;
464 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
465 size_t response_length = sizeof(response);
468 if (pack_byte_string(buf, sizeof(buf), "d", 0, command, sizeof(command),
469 index_offset, index))
470 return TPM_LIB_ERROR;
471 err = tpm_sendrecv_command(buf, response, &response_length);
474 if (unpack_byte_string(response, response_length, "d",
476 return TPM_LIB_ERROR;
481 #ifdef CONFIG_TPM_FLUSH_RESOURCES
482 u32 tpm_flush_specific(u32 key_handle, u32 resource_type)
484 const u8 command[18] = {
485 0x00, 0xc1, /* TPM_TAG */
486 0x00, 0x00, 0x00, 0x12, /* parameter size */
487 0x00, 0x00, 0x00, 0xba, /* TPM_COMMAND_CODE */
488 0x00, 0x00, 0x00, 0x00, /* key handle */
489 0x00, 0x00, 0x00, 0x00, /* resource type */
491 const size_t key_handle_offset = 10;
492 const size_t resource_type_offset = 14;
493 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
494 size_t response_length = sizeof(response);
497 if (pack_byte_string(buf, sizeof(buf), "sdd",
498 0, command, sizeof(command),
499 key_handle_offset, key_handle,
500 resource_type_offset, resource_type))
501 return TPM_LIB_ERROR;
503 err = tpm_sendrecv_command(buf, response, &response_length);
508 #endif /* CONFIG_TPM_FLUSH_RESOURCES */
510 #ifdef CONFIG_TPM_AUTH_SESSIONS
513 * Fill an authentication block in a request.
514 * This func can create the first as well as the second auth block (for
515 * double authorized commands).
517 * @param request pointer to the request (w/ uninitialised auth data)
518 * @param request_len0 length of the request without auth data
519 * @param handles_len length of the handles area in request
520 * @param auth_session pointer to the (valid) auth session to be used
521 * @param request_auth pointer to the auth block of the request to be filled
522 * @param auth authentication data (HMAC key)
524 static u32 create_request_auth(const void *request, size_t request_len0,
526 struct session_data *auth_session,
527 void *request_auth, const void *auth)
529 u8 hmac_data[DIGEST_LENGTH * 3 + 1];
530 sha1_context hash_ctx;
531 const size_t command_code_offset = 6;
532 const size_t auth_nonce_odd_offset = 4;
533 const size_t auth_continue_offset = 24;
534 const size_t auth_auth_offset = 25;
536 if (!auth_session || !auth_session->valid)
537 return TPM_LIB_ERROR;
539 sha1_starts(&hash_ctx);
540 sha1_update(&hash_ctx, request + command_code_offset, 4);
541 if (request_len0 > TPM_REQUEST_HEADER_LENGTH + handles_len)
542 sha1_update(&hash_ctx,
543 request + TPM_REQUEST_HEADER_LENGTH + handles_len,
544 request_len0 - TPM_REQUEST_HEADER_LENGTH
546 sha1_finish(&hash_ctx, hmac_data);
548 sha1_starts(&hash_ctx);
549 sha1_update(&hash_ctx, auth_session->nonce_odd, DIGEST_LENGTH);
550 sha1_update(&hash_ctx, hmac_data, sizeof(hmac_data));
551 sha1_finish(&hash_ctx, auth_session->nonce_odd);
553 if (pack_byte_string(request_auth, TPM_REQUEST_AUTH_LENGTH, "dsb",
554 0, auth_session->handle,
555 auth_nonce_odd_offset, auth_session->nonce_odd,
557 auth_continue_offset, 1))
558 return TPM_LIB_ERROR;
559 if (pack_byte_string(hmac_data, sizeof(hmac_data), "ss",
561 auth_session->nonce_even,
564 request_auth + auth_nonce_odd_offset,
566 return TPM_LIB_ERROR;
567 sha1_hmac(auth, DIGEST_LENGTH, hmac_data, sizeof(hmac_data),
568 request_auth + auth_auth_offset);
574 * Verify an authentication block in a response.
575 * Since this func updates the nonce_even in the session data it has to be
576 * called when receiving a succesfull AUTH response.
577 * This func can verify the first as well as the second auth block (for
578 * double authorized commands).
580 * @param command_code command code of the request
581 * @param response pointer to the request (w/ uninitialised auth data)
582 * @param handles_len length of the handles area in response
583 * @param auth_session pointer to the (valid) auth session to be used
584 * @param response_auth pointer to the auth block of the response to be verified
585 * @param auth authentication data (HMAC key)
587 static u32 verify_response_auth(u32 command_code, const void *response,
588 size_t response_len0, size_t handles_len,
589 struct session_data *auth_session,
590 const void *response_auth, const void *auth)
592 u8 hmac_data[DIGEST_LENGTH * 3 + 1];
593 u8 computed_auth[DIGEST_LENGTH];
594 sha1_context hash_ctx;
595 const size_t return_code_offset = 6;
596 const size_t auth_continue_offset = 20;
597 const size_t auth_auth_offset = 21;
600 if (!auth_session || !auth_session->valid)
602 if (pack_byte_string(hmac_data, sizeof(hmac_data), "d",
604 return TPM_LIB_ERROR;
605 if (response_len0 < TPM_RESPONSE_HEADER_LENGTH)
606 return TPM_LIB_ERROR;
608 sha1_starts(&hash_ctx);
609 sha1_update(&hash_ctx, response + return_code_offset, 4);
610 sha1_update(&hash_ctx, hmac_data, 4);
611 if (response_len0 > TPM_RESPONSE_HEADER_LENGTH + handles_len)
612 sha1_update(&hash_ctx,
613 response + TPM_RESPONSE_HEADER_LENGTH + handles_len,
614 response_len0 - TPM_RESPONSE_HEADER_LENGTH
616 sha1_finish(&hash_ctx, hmac_data);
618 memcpy(auth_session->nonce_even, response_auth, DIGEST_LENGTH);
619 auth_continue = ((u8 *)response_auth)[auth_continue_offset];
620 if (pack_byte_string(hmac_data, sizeof(hmac_data), "ssb",
625 auth_session->nonce_odd,
629 return TPM_LIB_ERROR;
631 sha1_hmac(auth, DIGEST_LENGTH, hmac_data, sizeof(hmac_data),
634 if (memcmp(computed_auth, response_auth + auth_auth_offset,
641 u32 tpm_terminate_auth_session(u32 auth_handle)
643 const u8 command[18] = {
644 0x00, 0xc1, /* TPM_TAG */
645 0x00, 0x00, 0x00, 0x00, /* parameter size */
646 0x00, 0x00, 0x00, 0xba, /* TPM_COMMAND_CODE */
647 0x00, 0x00, 0x00, 0x00, /* TPM_HANDLE */
648 0x00, 0x00, 0x00, 0x02, /* TPM_RESOURCE_TYPE */
650 const size_t req_handle_offset = TPM_REQUEST_HEADER_LENGTH;
651 u8 request[COMMAND_BUFFER_SIZE];
653 if (pack_byte_string(request, sizeof(request), "sd",
654 0, command, sizeof(command),
655 req_handle_offset, auth_handle))
656 return TPM_LIB_ERROR;
657 if (oiap_session.valid && oiap_session.handle == auth_handle)
658 oiap_session.valid = 0;
660 return tpm_sendrecv_command(request, NULL, NULL);
663 u32 tpm_end_oiap(void)
665 u32 err = TPM_SUCCESS;
667 if (oiap_session.valid)
668 err = tpm_terminate_auth_session(oiap_session.handle);
672 u32 tpm_oiap(u32 *auth_handle)
674 const u8 command[10] = {
675 0x00, 0xc1, /* TPM_TAG */
676 0x00, 0x00, 0x00, 0x0a, /* parameter size */
677 0x00, 0x00, 0x00, 0x0a, /* TPM_COMMAND_CODE */
679 const size_t res_auth_handle_offset = TPM_RESPONSE_HEADER_LENGTH;
680 const size_t res_nonce_even_offset = TPM_RESPONSE_HEADER_LENGTH + 4;
681 u8 response[COMMAND_BUFFER_SIZE];
682 size_t response_length = sizeof(response);
685 if (oiap_session.valid)
686 tpm_terminate_auth_session(oiap_session.handle);
688 err = tpm_sendrecv_command(command, response, &response_length);
691 if (unpack_byte_string(response, response_length, "ds",
692 res_auth_handle_offset, &oiap_session.handle,
693 res_nonce_even_offset, &oiap_session.nonce_even,
695 return TPM_LIB_ERROR;
696 oiap_session.valid = 1;
698 *auth_handle = oiap_session.handle;
702 u32 tpm_load_key2_oiap(u32 parent_handle, const void *key, size_t key_length,
703 const void *parent_key_usage_auth, u32 *key_handle)
705 const u8 command[14] = {
706 0x00, 0xc2, /* TPM_TAG */
707 0x00, 0x00, 0x00, 0x00, /* parameter size */
708 0x00, 0x00, 0x00, 0x41, /* TPM_COMMAND_CODE */
709 0x00, 0x00, 0x00, 0x00, /* parent handle */
711 const size_t req_size_offset = 2;
712 const size_t req_parent_handle_offset = TPM_REQUEST_HEADER_LENGTH;
713 const size_t req_key_offset = TPM_REQUEST_HEADER_LENGTH + 4;
714 const size_t res_handle_offset = TPM_RESPONSE_HEADER_LENGTH;
715 u8 request[sizeof(command) + TPM_KEY12_MAX_LENGTH +
716 TPM_REQUEST_AUTH_LENGTH];
717 u8 response[COMMAND_BUFFER_SIZE];
718 size_t response_length = sizeof(response);
721 if (!oiap_session.valid) {
722 err = tpm_oiap(NULL);
726 if (pack_byte_string(request, sizeof(request), "sdds",
727 0, command, sizeof(command),
729 sizeof(command) + key_length
730 + TPM_REQUEST_AUTH_LENGTH,
731 req_parent_handle_offset, parent_handle,
732 req_key_offset, key, key_length
734 return TPM_LIB_ERROR;
736 err = create_request_auth(request, sizeof(command) + key_length, 4,
738 request + sizeof(command) + key_length,
739 parent_key_usage_auth);
742 err = tpm_sendrecv_command(request, response, &response_length);
744 if (err == TPM_AUTHFAIL)
745 oiap_session.valid = 0;
749 err = verify_response_auth(0x00000041, response,
750 response_length - TPM_RESPONSE_AUTH_LENGTH,
752 response + response_length -
753 TPM_RESPONSE_AUTH_LENGTH,
754 parent_key_usage_auth);
759 if (unpack_byte_string(response, response_length, "d",
760 res_handle_offset, key_handle))
761 return TPM_LIB_ERROR;
767 u32 tpm_get_pub_key_oiap(u32 key_handle, const void *usage_auth, void *pubkey,
770 const u8 command[14] = {
771 0x00, 0xc2, /* TPM_TAG */
772 0x00, 0x00, 0x00, 0x00, /* parameter size */
773 0x00, 0x00, 0x00, 0x21, /* TPM_COMMAND_CODE */
774 0x00, 0x00, 0x00, 0x00, /* key handle */
776 const size_t req_size_offset = 2;
777 const size_t req_key_handle_offset = TPM_REQUEST_HEADER_LENGTH;
778 const size_t res_pubkey_offset = TPM_RESPONSE_HEADER_LENGTH;
779 u8 request[sizeof(command) + TPM_REQUEST_AUTH_LENGTH];
780 u8 response[TPM_RESPONSE_HEADER_LENGTH + TPM_PUBKEY_MAX_LENGTH +
781 TPM_RESPONSE_AUTH_LENGTH];
782 size_t response_length = sizeof(response);
785 if (!oiap_session.valid) {
786 err = tpm_oiap(NULL);
790 if (pack_byte_string(request, sizeof(request), "sdd",
791 0, command, sizeof(command),
793 (u32)(sizeof(command)
794 + TPM_REQUEST_AUTH_LENGTH),
795 req_key_handle_offset, key_handle
797 return TPM_LIB_ERROR;
798 err = create_request_auth(request, sizeof(command), 4, &oiap_session,
799 request + sizeof(command), usage_auth);
802 err = tpm_sendrecv_command(request, response, &response_length);
804 if (err == TPM_AUTHFAIL)
805 oiap_session.valid = 0;
808 err = verify_response_auth(0x00000021, response,
809 response_length - TPM_RESPONSE_AUTH_LENGTH,
811 response + response_length -
812 TPM_RESPONSE_AUTH_LENGTH,
818 if ((response_length - TPM_RESPONSE_HEADER_LENGTH
819 - TPM_RESPONSE_AUTH_LENGTH) > *pubkey_len)
820 return TPM_LIB_ERROR;
821 *pubkey_len = response_length - TPM_RESPONSE_HEADER_LENGTH
822 - TPM_RESPONSE_AUTH_LENGTH;
823 memcpy(pubkey, response + res_pubkey_offset,
824 response_length - TPM_RESPONSE_HEADER_LENGTH
825 - TPM_RESPONSE_AUTH_LENGTH);
831 #ifdef CONFIG_TPM_LOAD_KEY_BY_SHA1
832 u32 tpm_find_key_sha1(const u8 auth[20], const u8 pubkey_digest[20],
844 /* fetch list of already loaded keys in the TPM */
845 err = tpm_get_capability(TPM_CAP_HANDLE, TPM_RT_KEY, buf, sizeof(buf));
848 key_count = get_unaligned_be16(buf);
850 for (i = 0; i < key_count; ++i, ptr += 4)
851 key_handles[i] = get_unaligned_be32(ptr);
853 /* now search a(/ the) key which we can access with the given auth */
854 for (i = 0; i < key_count; ++i) {
855 buf_len = sizeof(buf);
856 err = tpm_get_pub_key_oiap(key_handles[i], auth, buf, &buf_len);
857 if (err && err != TPM_AUTHFAIL)
861 sha1_csum(buf, buf_len, digest);
862 if (!memcmp(digest, pubkey_digest, 20)) {
863 *handle = key_handles[i];
869 #endif /* CONFIG_TPM_LOAD_KEY_BY_SHA1 */
871 #endif /* CONFIG_TPM_AUTH_SESSIONS */
873 u32 tpm_get_random(void *data, u32 count)
875 const u8 command[14] = {
876 0x0, 0xc1, /* TPM_TAG */
877 0x0, 0x0, 0x0, 0xe, /* parameter size */
878 0x0, 0x0, 0x0, 0x46, /* TPM_COMMAND_CODE */
880 const size_t length_offset = 10;
881 const size_t data_size_offset = 10;
882 const size_t data_offset = 14;
883 u8 buf[COMMAND_BUFFER_SIZE], response[COMMAND_BUFFER_SIZE];
884 size_t response_length = sizeof(response);
889 u32 this_bytes = min((size_t)count,
890 sizeof(response) - data_offset);
893 if (pack_byte_string(buf, sizeof(buf), "sd",
894 0, command, sizeof(command),
895 length_offset, this_bytes))
896 return TPM_LIB_ERROR;
897 err = tpm_sendrecv_command(buf, response, &response_length);
900 if (unpack_byte_string(response, response_length, "d",
901 data_size_offset, &data_size))
902 return TPM_LIB_ERROR;
903 if (data_size > count)
904 return TPM_LIB_ERROR;
905 if (unpack_byte_string(response, response_length, "s",
906 data_offset, out, data_size))
907 return TPM_LIB_ERROR;
projects / platform / kernel / u-boot.git / blob