[swtpm.git] / tests / _test_tpm2_locality

#!/bin/bash

# For the license, see the LICENSE file in the root directory.
#set -x

ROOT=${abs_top_builddir:-$(pwd)/..}
TESTDIR=${abs_top_testdir:-$(dirname "$0")}

VTPM_NAME="vtpm-test-tpm2-locality"
SWTPM_DEV_NAME="/dev/${VTPM_NAME}"
export TPM_PATH="$(mktemp -d)" || exit 1
STATE_FILE=$TPM_PATH/tpm2-00.permall
VOLATILE_STATE_FILE=$TPM_PATH/tpm2-00.volatilestate
SWTPM_INTERFACE=${SWTPM_INTERFACE:-cuse}
SWTPM_CMD_UNIX_PATH=${TPM_PATH}/unix-cmd.sock
SWTPM_CTRL_UNIX_PATH=${TPM_PATH}/unix-ctrl.sock

function cleanup()
{
	pid=${SWTPM_PID}
	if [ -n "$pid" ]; then
		kill_quiet -9 $pid
	fi
	rm -rf $TPM_PATH
}

trap "cleanup" EXIT

[ "${SWTPM_INTERFACE}" == "cuse" ] && source ${TESTDIR}/test_cuse
source ${TESTDIR}/common

rm -f $STATE_FILE $VOLATILE_STATE_FILE 2>/dev/null

run_swtpm ${SWTPM_INTERFACE} --tpm2

display_processes_by_name "$SWTPM"

kill_quiet -0 ${SWTPM_PID}
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not start."
	exit 1
fi

# Init the TPM
run_swtpm_ioctl ${SWTPM_INTERFACE} -i
if [ $? -ne 0 ]; then
	echo "Error: Could not initialize the ${SWTPM_INTERFACE} TPM."
	exit 1
fi

kill_quiet -0 ${SWTPM_PID} 2>/dev/null
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM not running anymore after INIT."
	exit 1
fi

# Set locality 4 on the TPM
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 4
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 4."
	exit 1
fi

# Set illegal locality 5 on the TPM
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 5
if [ $? -eq 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM accepted locality 5."
	exit 1
fi

# Set locality 0 on the TPM
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 0
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 0."
	exit 1
fi

# In locality 2 we can reset PCR 20
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 2
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 2."
	exit 1
fi

# Need to set locality 0 or 3 for TPM2_Startup to work...
# TPM_Startup for TPM 1.2 worked in all localities
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 3
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 3."
	exit 1
fi

# Startup the TPM
RES=$(swtpm_cmd_tx ${SWTPM_INTERFACE} '\x80\x01\x00\x00\x00\x0c\x00\x00\x01\x44\x00\x00')
exp=' 80 01 00 00 00 0a 00 00 00 00'
if [ "$RES" != "$exp" ]; then
	echo "Error: Did not get expected result from TPM2_Startup(SU_Clear)"
	echo "expected: $exp"
	echo "received: $RES"
	exit 1
fi

# In locality 2 we can reset PCR 20
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 2
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 2."
	exit 1
fi

# Reset PCR 20
RES=$(swtpm_cmd_tx ${SWTPM_INTERFACE} '\x80\x02\x00\x00\x00\x1b\x00\x00\x01\x3d\x00\x00\x00\x14\x00\x00\x00\x09\x40\x00\x00\x09\x00\x00\x00\x00\x00')
exp=' 80 02 00 00 00 13 00 00 00 00 00 00 00 00 00 00 01 00 00'
if [ "$RES" != "$exp" ]; then
	echo "Error: Could not reset PCR 20 in locality 2"
	echo "expected: $exp"
	echo "received: $RES"
	exit 1
fi

# In locality 1 we can NOT reset PCR 20
run_swtpm_ioctl ${SWTPM_INTERFACE} -l 1
if [ $? -ne 0 ]; then
	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 1."
	exit 1
fi

# Reset PCR 20
RES=$(swtpm_cmd_tx ${SWTPM_INTERFACE} '\x80\x02\x00\x00\x00\x1b\x00\x00\x01\x3d\x00\x00\x00\x14\x00\x00\x00\x09\x40\x00\x00\x09\x00\x00\x00\x00\x00')
exp=' 80 01 00 00 00 0a 00 00 09 07'
if [ "$RES" != "$exp" ]; then
	echo "Error: Could reset PCR 20 in locality 1"
	echo "expected: $exp"
	echo "received: $RES"
	exit 1
fi

# Shut down TPM
run_swtpm_ioctl ${SWTPM_INTERFACE} -s
if [ $? -ne 0 ]; then
	echo "Error: Could not shut down the ${SWTPM_INTERFACE} TPM."
	exit 1
fi

if wait_process_gone ${SWTPM_PID} 4; then
	echo "Error: ${SWTPM_INTERFACE} TPM should not be running anymore."
	exit 1
fi

if [ ! -e $STATE_FILE ]; then
	echo "Error: TPM state file $STATE_FILE does not exist."
	exit 1
fi

echo "OK"

exit 0
Commit	Line	Data
3008874c SB	1	#!/bin/bash
	2
	3	# For the license, see the LICENSE file in the root directory.
	4	#set -x
	5
313cf75c SB	6	ROOT=${abs_top_builddir:-$(pwd)/..}
	7	TESTDIR=${abs_top_testdir:-$(dirname "$0")}
	8
3008874c SB	9	VTPM_NAME="vtpm-test-tpm2-locality"
3008874c SB	10	SWTPM_DEV_NAME="/dev/${VTPM_NAME}"
cce7503c	11	export TPM_PATH="$(mktemp -d)" \|\| exit 1
3008874c SB	12	STATE_FILE=$TPM_PATH/tpm2-00.permall
	13	VOLATILE_STATE_FILE=$TPM_PATH/tpm2-00.volatilestate
	14	SWTPM_INTERFACE=${SWTPM_INTERFACE:-cuse}
	15	SWTPM_CMD_UNIX_PATH=${TPM_PATH}/unix-cmd.sock
	16	SWTPM_CTRL_UNIX_PATH=${TPM_PATH}/unix-ctrl.sock
	17
	18	function cleanup()
	19	{
	20	pid=${SWTPM_PID}
	21	if [ -n "$pid" ]; then
47c7ea77	22	kill_quiet -9 $pid
3008874c SB	23	fi
	24	rm -rf $TPM_PATH
	25	}
	26
	27	trap "cleanup" EXIT
	28
313cf75c SB	29	[ "${SWTPM_INTERFACE}" == "cuse" ] && source ${TESTDIR}/test_cuse
313cf75c SB	30	source ${TESTDIR}/common
3008874c SB	31
	32	rm -f $STATE_FILE $VOLATILE_STATE_FILE 2>/dev/null
	33
	34	run_swtpm ${SWTPM_INTERFACE} --tpm2
	35
100317d5	36	display_processes_by_name "$SWTPM"
3008874c	37
47c7ea77	38	kill_quiet -0 ${SWTPM_PID}
3008874c SB	39	if [ $? -ne 0 ]; then
	40	echo "Error: ${SWTPM_INTERFACE} TPM did not start."
	41	exit 1
	42	fi
	43
	44	# Init the TPM
	45	run_swtpm_ioctl ${SWTPM_INTERFACE} -i
	46	if [ $? -ne 0 ]; then
	47	echo "Error: Could not initialize the ${SWTPM_INTERFACE} TPM."
	48	exit 1
	49	fi
	50
47c7ea77	51	kill_quiet -0 ${SWTPM_PID} 2>/dev/null
3008874c SB	52	if [ $? -ne 0 ]; then
	53	echo "Error: ${SWTPM_INTERFACE} TPM not running anymore after INIT."
	54	exit 1
	55	fi
	56
	57	# Set locality 4 on the TPM
	58	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 4
	59	if [ $? -ne 0 ]; then
	60	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 4."
	61	exit 1
	62	fi
	63
	64	# Set illegal locality 5 on the TPM
	65	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 5
	66	if [ $? -eq 0 ]; then
	67	echo "Error: ${SWTPM_INTERFACE} TPM accepted locality 5."
	68	exit 1
	69	fi
	70
	71	# Set locality 0 on the TPM
	72	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 0
	73	if [ $? -ne 0 ]; then
	74	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 0."
	75	exit 1
	76	fi
	77
	78	# In locality 2 we can reset PCR 20
	79	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 2
	80	if [ $? -ne 0 ]; then
	81	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 2."
	82	exit 1
	83	fi
	84
	85	# Need to set locality 0 or 3 for TPM2_Startup to work...
	86	# TPM_Startup for TPM 1.2 worked in all localities
	87	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 3
	88	if [ $? -ne 0 ]; then
	89	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 3."
	90	exit 1
	91	fi
	92
	93	# Startup the TPM
3008874c SB	94	RES=$(swtpm_cmd_tx ${SWTPM_INTERFACE} '\x80\x01\x00\x00\x00\x0c\x00\x00\x01\x44\x00\x00')
	95	exp=' 80 01 00 00 00 0a 00 00 00 00'
	96	if [ "$RES" != "$exp" ]; then
	97	echo "Error: Did not get expected result from TPM2_Startup(SU_Clear)"
	98	echo "expected: $exp"
	99	echo "received: $RES"
	100	exit 1
	101	fi
	102
	103	# In locality 2 we can reset PCR 20
	104	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 2
	105	if [ $? -ne 0 ]; then
	106	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 2."
	107	exit 1
	108	fi
	109
	110	# Reset PCR 20
3008874c SB	111	RES=$(swtpm_cmd_tx ${SWTPM_INTERFACE} '\x80\x02\x00\x00\x00\x1b\x00\x00\x01\x3d\x00\x00\x00\x14\x00\x00\x00\x09\x40\x00\x00\x09\x00\x00\x00\x00\x00')
	112	exp=' 80 02 00 00 00 13 00 00 00 00 00 00 00 00 00 00 01 00 00'
	113	if [ "$RES" != "$exp" ]; then
	114	echo "Error: Could not reset PCR 20 in locality 2"
	115	echo "expected: $exp"
	116	echo "received: $RES"
	117	exit 1
	118	fi
	119
	120	# In locality 1 we can NOT reset PCR 20
	121	run_swtpm_ioctl ${SWTPM_INTERFACE} -l 1
	122	if [ $? -ne 0 ]; then
	123	echo "Error: ${SWTPM_INTERFACE} TPM did not accept locality 1."
	124	exit 1
	125	fi
	126
	127	# Reset PCR 20
3008874c SB	128	RES=$(swtpm_cmd_tx ${SWTPM_INTERFACE} '\x80\x02\x00\x00\x00\x1b\x00\x00\x01\x3d\x00\x00\x00\x14\x00\x00\x00\x09\x40\x00\x00\x09\x00\x00\x00\x00\x00')
	129	exp=' 80 01 00 00 00 0a 00 00 09 07'
	130	if [ "$RES" != "$exp" ]; then
	131	echo "Error: Could reset PCR 20 in locality 1"
	132	echo "expected: $exp"
	133	echo "received: $RES"
	134	exit 1
	135	fi
	136
	137	# Shut down TPM
	138	run_swtpm_ioctl ${SWTPM_INTERFACE} -s
	139	if [ $? -ne 0 ]; then
	140	echo "Error: Could not shut down the ${SWTPM_INTERFACE} TPM."
	141	exit 1
	142	fi
	143
45d2d092	144	if wait_process_gone ${SWTPM_PID} 4; then
3008874c SB	145	echo "Error: ${SWTPM_INTERFACE} TPM should not be running anymore."
	146	exit 1
	147	fi
	148
	149	if [ ! -e $STATE_FILE ]; then
	150	echo "Error: TPM state file $STATE_FILE does not exist."
	151	exit 1
	152	fi
	153
	154	echo "OK"
	155
	156	exit 0