]> git.proxmox.com Git - mirror_edk2.git/blob - SecurityPkg/Library/TcgStorageCoreLib/TcgStorageUtil.c
projects / mirror_edk2.git / blob
? search:


30808cd835559e7d662afc29443d9201de1d618c
[mirror_edk2.git] / SecurityPkg / Library / TcgStorageCoreLib / TcgStorageUtil.c
1 /** @file
2 Provide functions to provide tcg storage core spec related functions.
3
4 Copyright (c) 2016, Intel Corporation. All rights reserved.<BR>
5 This program and the accompanying materials
6 are licensed and made available under the terms and conditions of the BSD License
7 which accompanies this distribution. The full text of the license may be found at
8 http://opensource.org/licenses/bsd-license.php
9
10 THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,
11 WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.
12
13 **/
14
15 #include <Library/TcgStorageCoreLib.h>
16
17 #include <Library/BaseLib.h>
18 #include <Library/BaseMemoryLib.h>
19 #include <Library/DebugLib.h>
20
21 typedef struct {
22 UINT16 FeatureCode;
23 TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER *Feature;
24 UINTN FeatureSize;
25 } TCG_FIND_FEATURE_CTX;
26
27 /**
28 Returns a human-readable string representing a method status return code.
29
30 @param[in] MethodStatus Method status to translate to a string
31
32
33 @retval return the string info.
34 **/
35 CHAR8*
36 EFIAPI
37 TcgMethodStatusString(
38 UINT8 MethodStatus
39 )
40 {
41 switch (MethodStatus) {
42 #define C(status) case TCG_METHOD_STATUS_CODE_ ## status: return #status
43 C(SUCCESS);
44 C(NOT_AUTHORIZED);
45 C(OBSOLETE);
46 C(SP_BUSY);
47 C(SP_FAILED);
48 C(SP_DISABLED);
49 C(SP_FROZEN);
50 C(NO_SESSIONS_AVAILABLE);
51 C(UNIQUENESS_CONFLICT);
52 C(INSUFFICIENT_SPACE);
53 C(INSUFFICIENT_ROWS);
54 C(INVALID_PARAMETER);
55 C(OBSOLETE2);
56 C(OBSOLETE3);
57 C(TPER_MALFUNCTION);
58 C(TRANSACTION_FAILURE);
59 C(RESPONSE_OVERFLOW);
60 C(AUTHORITY_LOCKED_OUT);
61 C(FAIL);
62 #undef C
63 }
64 return "unknown";
65 }
66
67
68 /**
69 adds call token and method Header (invoking id, and method id).
70
71 @param CreateStruct The input create structure.
72 @param InvokingId Invoking id.
73 @param MethodId Method id.
74
75 **/
76 TCG_RESULT
77 EFIAPI
78 TcgStartMethodCall(
79 TCG_CREATE_STRUCT *CreateStruct,
80 TCG_UID InvokingId,
81 TCG_UID MethodId
82 )
83 {
84 NULL_CHECK(CreateStruct);
85
86 if (CreateStruct->ComPacket == NULL ||
87 CreateStruct->CurPacket == NULL ||
88 CreateStruct->CurSubPacket == NULL
89 ) {
90 DEBUG ((DEBUG_INFO, "unexpected state: ComPacket=%p CurPacket=%p CurSubPacket=%p\n", CreateStruct->ComPacket, CreateStruct->CurPacket, CreateStruct->CurSubPacket));
91 return (TcgResultFailureInvalidAction);
92 }
93
94 ERROR_CHECK(TcgAddCall(CreateStruct));
95 ERROR_CHECK(TcgAddTcgUid(CreateStruct, InvokingId));
96 ERROR_CHECK(TcgAddTcgUid(CreateStruct, MethodId));
97
98 return TcgResultSuccess;
99 }
100
101 /**
102 Adds START LIST token.
103
104 @param CreateStruct The input create structure.
105
106 **/
107 TCG_RESULT
108 EFIAPI
109 TcgStartParameters(
110 TCG_CREATE_STRUCT *CreateStruct
111 )
112 {
113 NULL_CHECK(CreateStruct);
114
115 if (CreateStruct->ComPacket == NULL ||
116 CreateStruct->CurPacket == NULL ||
117 CreateStruct->CurSubPacket == NULL
118 ) {
119 DEBUG ((DEBUG_INFO, "unexpected state: ComPacket=%p CurPacket=%p CurSubPacket=%p\n", CreateStruct->ComPacket, CreateStruct->CurPacket, CreateStruct->CurSubPacket));
120 return (TcgResultFailureInvalidAction);
121 }
122
123 return TcgAddStartList(CreateStruct);
124 }
125
126 /**
127 Adds END LIST token.
128
129 @param CreateStruct The input create structure.
130
131 **/
132 TCG_RESULT
133 EFIAPI
134 TcgEndParameters(
135 TCG_CREATE_STRUCT *CreateStruct
136 )
137 {
138 NULL_CHECK(CreateStruct);
139
140 if (CreateStruct->ComPacket == NULL ||
141 CreateStruct->CurPacket == NULL ||
142 CreateStruct->CurSubPacket == NULL
143 ) {
144 DEBUG ((DEBUG_INFO, "unexpected state: ComPacket=%p CurPacket=%p CurSubPacket=%p\n", CreateStruct->ComPacket, CreateStruct->CurPacket, CreateStruct->CurSubPacket));
145 return (TcgResultFailureInvalidAction);
146 }
147
148 return TcgAddEndList(CreateStruct);
149 }
150
151 /**
152 Adds END Data token and method list.
153
154 @param CreateStruct The input create structure.
155
156 **/
157 TCG_RESULT
158 EFIAPI
159 TcgEndMethodCall(
160 TCG_CREATE_STRUCT *CreateStruct
161 )
162 {
163 NULL_CHECK(CreateStruct);
164
165 if (CreateStruct->ComPacket == NULL ||
166 CreateStruct->CurPacket == NULL ||
167 CreateStruct->CurSubPacket == NULL
168 ) {
169 DEBUG ((DEBUG_INFO, "unexpected state: ComPacket=%p CurPacket=%p CurSubPacket=%p\n", CreateStruct->ComPacket, CreateStruct->CurPacket, CreateStruct->CurSubPacket));
170 return (TcgResultFailureInvalidAction);
171 }
172
173 ERROR_CHECK(TcgAddEndOfData(CreateStruct));
174
175 ERROR_CHECK(TcgAddStartList(CreateStruct));
176 ERROR_CHECK(TcgAddUINT8(CreateStruct, 0x00)); // expected to complete properly
177 ERROR_CHECK(TcgAddUINT8(CreateStruct, 0x00)); // reserved
178 ERROR_CHECK(TcgAddUINT8(CreateStruct, 0x00)); // reserved
179 ERROR_CHECK(TcgAddEndList(CreateStruct));
180
181 return TcgResultSuccess;
182 }
183
184 /**
185 Retrieves the comID and Extended comID of the ComPacket in the Tcg response.
186 It is intended to be used to confirm the received Tcg response is intended for user that received it.
187
188 @param [in] ParseStruct Structure used to parse received TCG response.
189 @param [in/out] ComId comID retrieved from received ComPacket.
190 @param [in/out] ComIdExtension Extended comID retrieved from received ComPacket
191
192 **/
193 TCG_RESULT
194 EFIAPI
195 TcgGetComIds(
196 const TCG_PARSE_STRUCT *ParseStruct,
197 UINT16 *ComId,
198 UINT16 *ComIdExtension
199 )
200 {
201 NULL_CHECK(ParseStruct);
202 NULL_CHECK(ComId);
203 NULL_CHECK(ComIdExtension);
204
205 if (ParseStruct->ComPacket == NULL) {
206 DEBUG ((DEBUG_INFO, "unexpected state: ComPacket=%p\n", ParseStruct->ComPacket));
207 return TcgResultFailureInvalidAction;
208 }
209
210 *ComId = SwapBytes16(ParseStruct->ComPacket->ComIDBE);
211 *ComIdExtension = SwapBytes16(ParseStruct->ComPacket->ComIDExtensionBE);
212
213 return TcgResultSuccess;
214 }
215
216 /**
217 Checks if the ComIDs of the response match the expected values.
218
219 @param[in] ParseStruct Structure used to parse received TCG response
220 @param[in] ExpectedComId Expected comID
221 @param[in] ExpectedComIdExtension Expected extended comID
222
223 **/
224 TCG_RESULT
225 EFIAPI
226 TcgCheckComIds(
227 const TCG_PARSE_STRUCT *ParseStruct,
228 UINT16 ExpectedComId,
229 UINT16 ExpectedComIdExtension
230 )
231 {
232 UINT16 ParseComId;
233 UINT16 ParseComIdExtension;
234
235 ERROR_CHECK(TcgGetComIds(ParseStruct, &ParseComId, &ParseComIdExtension));
236 if (ParseComId != ExpectedComId || ParseComIdExtension != ExpectedComIdExtension) {
237 DEBUG ((DEBUG_INFO, "Com ID: Actual 0x%02X Expected 0x%02X\n", ParseComId, ExpectedComId));
238 DEBUG ((DEBUG_INFO, "Extended Com ID: 0x%02X Expected 0x%02X\n", ParseComIdExtension, ExpectedComIdExtension));
239 return TcgResultFailure;
240 }
241 return TcgResultSuccess;
242 }
243
244 /**
245 Returns the method status of the current subpacket. Does not affect the current position
246 in the ComPacket. In other words, it can be called whenever you have a valid SubPacket.
247
248 @param [in/out] ParseStruct Structure used to parse received TCG response
249 @param [in/out] MethodStatus Method status retrieved of the current SubPacket
250
251 **/
252 TCG_RESULT
253 EFIAPI
254 TcgGetMethodStatus(
255 const TCG_PARSE_STRUCT *ParseStruct,
256 UINT8 *MethodStatus
257 )
258 {
259 TCG_PARSE_STRUCT TmpParseStruct;
260 TCG_TOKEN TcgToken;
261 UINT8 Reserved1, Reserved2;
262
263 NULL_CHECK(ParseStruct);
264 NULL_CHECK(MethodStatus);
265
266 if (ParseStruct->ComPacket == NULL ||
267 ParseStruct->CurPacket == NULL ||
268 ParseStruct->CurSubPacket == NULL
269 ) {
270 DEBUG ((DEBUG_INFO, "unexpected state: ComPacket=%p CurPacket=%p CurSubPacket=%p\n", ParseStruct->ComPacket, ParseStruct->CurPacket, ParseStruct->CurSubPacket));
271 return TcgResultFailureInvalidAction;
272 }
273
274 // duplicate ParseStruct, then don't need to "reset" location cur ptr
275 CopyMem (&TmpParseStruct, ParseStruct, sizeof(TCG_PARSE_STRUCT));
276
277 // method status list exists after the end method call in the subpacket
278 // skip tokens until ENDDATA is found
279 do {
280 ERROR_CHECK(TcgGetNextToken(&TmpParseStruct, &TcgToken));
281 } while (TcgToken.Type != TcgTokenTypeEndOfData);
282
283 // only reach here if enddata is found
284 // at this point, the curptr is pointing at method status list beginning
285 ERROR_CHECK(TcgGetNextStartList(&TmpParseStruct));
286 ERROR_CHECK(TcgGetNextUINT8(&TmpParseStruct, MethodStatus));
287 ERROR_CHECK(TcgGetNextUINT8(&TmpParseStruct, &Reserved1));
288 ERROR_CHECK(TcgGetNextUINT8(&TmpParseStruct, &Reserved2));
289 ERROR_CHECK(TcgGetNextEndList(&TmpParseStruct));
290
291 if (Reserved1 != 0) {
292 DEBUG ((DEBUG_INFO, "Method status reserved1 = 0x%02X (expected 0)\n", Reserved1));
293 return TcgResultFailure;
294 }
295
296 if (Reserved2 != 0) {
297 DEBUG ((DEBUG_INFO, "Method status reserved2 = 0x%02X (expected 0)\n", Reserved1));
298 return TcgResultFailure;
299 }
300
301 return TcgResultSuccess;
302 }
303
304 /**
305 Return the toke type string info.
306
307 @param Type Input the type info.
308
309 @retval Return the string for this type.
310
311 **/
312 CHAR8*
313 EFIAPI
314 TcgTokenTypeString(
315 TCG_TOKEN_TYPE Type
316 )
317 {
318 switch (Type) {
319 case TcgTokenTypeReserved: return "Reserved";
320 case TcgTokenTypeTinyAtom: return "Tiny Atom";
321 case TcgTokenTypeShortAtom: return "Short Atom";
322 case TcgTokenTypeMediumAtom: return "Medium Atom";
323 case TcgTokenTypeLongAtom: return "Long Atom";
324 case TcgTokenTypeStartList: return "Start List";
325 case TcgTokenTypeEndList: return "End List";
326 case TcgTokenTypeStartName: return "Start Name";
327 case TcgTokenTypeEndName: return "End Name";
328 case TcgTokenTypeCall: return "Call";
329 case TcgTokenTypeEndOfData: return "End of Data";
330 case TcgTokenTypeEndOfSession: return "End of Session";
331 case TcgTokenTypeStartTransaction: return "Start Transaction";
332 case TcgTokenTypeEndTransaction: return "End Transaction";
333 case TcgTokenTypeEmptyAtom: return "Empty atom";
334 }
335 return "Unknown";
336 }
337
338
339 /**
340
341 Adds Start Session call to the data structure. This creates the entire ComPacket structure and
342 returns the size of the entire compacket in the size parameter.
343
344 @param [in/out] CreateStruct Structure used to add the start session call
345 @param [in/out] Size Describes the size of the entire ComPacket (header and payload). Filled out by function.
346 @param [in] ComId ComID for the ComPacket
347 @param [in] ComIdExtension Extended ComID for the ComPacket
348 @param [in] HostSessionId Host Session ID
349 @param [in] SpId Security Provider to start session with
350 @param [in] Write Write option for start session. TRUE = start session requests write access
351 @param [in] HostChallengeLength Length of the host challenge. Length should be 0 if hostChallenge is NULL
352 @param [in] HostChallenge Host challenge for Host Signing Authority. If NULL, then no Host Challenge shall be sent.
353 @param [in] HostSigningAuthority Host Signing Authority used for start session. If NULL, then no Host Signing Authority shall be sent.
354
355 **/
356 TCG_RESULT
357 EFIAPI
358 TcgCreateStartSession(
359 TCG_CREATE_STRUCT *CreateStruct,
360 UINT32 *Size,
361 UINT16 ComId,
362 UINT16 ComIdExtension,
363 UINT32 HostSessionId,
364 TCG_UID SpId,
365 BOOLEAN Write,
366 UINT32 HostChallengeLength,
367 const VOID *HostChallenge,
368 TCG_UID HostSigningAuthority
369 )
370 {
371 ERROR_CHECK(TcgStartComPacket(CreateStruct, ComId, ComIdExtension));
372 ERROR_CHECK(TcgStartPacket(CreateStruct, 0x0, 0x0, 0x0, 0x0, 0x0)) ;
373 ERROR_CHECK(TcgStartSubPacket(CreateStruct, 0x0));
374 ERROR_CHECK(TcgStartMethodCall(CreateStruct, TCG_UID_SMUID, TCG_UID_SM_START_SESSION));
375 ERROR_CHECK(TcgStartParameters(CreateStruct));
376 ERROR_CHECK(TcgAddUINT32(CreateStruct, HostSessionId));
377 ERROR_CHECK(TcgAddTcgUid(CreateStruct, SpId));
378 ERROR_CHECK(TcgAddBOOLEAN(CreateStruct, Write));
379
380 // optional parameters
381 if (HostChallenge != NULL && HostChallengeLength != 0) {
382 ERROR_CHECK(TcgAddStartName(CreateStruct));
383 ERROR_CHECK(TcgAddUINT8(CreateStruct, 0x00)); //TODO Create Enum for Method Optional Parameters?
384 ERROR_CHECK(TcgAddByteSequence(CreateStruct, HostChallenge, HostChallengeLength, FALSE));
385 ERROR_CHECK(TcgAddEndName(CreateStruct));
386 }
387 // optional parameters
388 if (HostSigningAuthority != 0) {
389 ERROR_CHECK(TcgAddStartName(CreateStruct));
390 ERROR_CHECK(TcgAddUINT8(CreateStruct, 0x03)); //TODO Create Enum for Method Optional Parameters?
391 ERROR_CHECK(TcgAddTcgUid(CreateStruct, HostSigningAuthority));
392 ERROR_CHECK(TcgAddEndName(CreateStruct));
393 }
394
395 ERROR_CHECK(TcgEndParameters(CreateStruct));
396 ERROR_CHECK(TcgEndMethodCall(CreateStruct));
397 ERROR_CHECK(TcgEndSubPacket(CreateStruct));
398 ERROR_CHECK(TcgEndPacket(CreateStruct));
399 ERROR_CHECK(TcgEndComPacket(CreateStruct, Size));
400
401 return TcgResultSuccess;
402 }
403
404 /**
405 Parses the Sync Session response contained in the parseStruct to retrieve Tper session ID. If the Sync Session response
406 parameters do not match the comID, extended ComID and host session ID then a failure is returned.
407
408 @param[in/out] ParseStruct Structure used to parse received TCG response, contains Sync Session response.
409 @param[in] ComId Expected ComID that is compared to actual ComID of response
410 @param[in] ComIdExtension Expected Extended ComID that is compared to actual Extended ComID of response
411 @param[in] HostSessionId Expected Host Session ID that is compared to actual Host Session ID of response
412 @param[in/out] TperSessionId Tper Session ID retrieved from the Sync Session response.
413
414 **/
415 TCG_RESULT
416 EFIAPI
417 TcgParseSyncSession(
418 const TCG_PARSE_STRUCT *ParseStruct,
419 UINT16 ComId,
420 UINT16 ComIdExtension,
421 UINT32 HostSessionId,
422 UINT32 *TperSessionId
423 )
424 {
425 UINT8 MethodStatus;
426 TCG_PARSE_STRUCT TmpParseStruct;
427 UINT16 ParseComId;
428 UINT16 ParseExtComId;
429 TCG_UID InvokingUID;
430 TCG_UID MethodUID;
431 UINT32 RecvHostSessionId;
432
433 NULL_CHECK(ParseStruct);
434 NULL_CHECK(TperSessionId);
435
436 CopyMem (&TmpParseStruct, ParseStruct, sizeof(TCG_PARSE_STRUCT));
437
438 // verify method status is good
439 ERROR_CHECK(TcgGetMethodStatus(&TmpParseStruct, &MethodStatus));
440 METHOD_STATUS_ERROR_CHECK (MethodStatus, TcgResultFailure);
441
442 // verify comids
443 ERROR_CHECK(TcgGetComIds(&TmpParseStruct, &ParseComId, &ParseExtComId));
444
445 if ((ComId != ParseComId) || (ComIdExtension != ParseExtComId)) {
446 DEBUG ((DEBUG_INFO, "unmatched comid (exp: 0x%X recv: 0x%X) or comid extension (exp: 0x%X recv: 0x%X)\n", ComId, ParseComId, ComIdExtension, ParseExtComId));
447 return TcgResultFailure;
448 }
449 ERROR_CHECK(TcgGetNextCall(&TmpParseStruct));
450 ERROR_CHECK(TcgGetNextTcgUid(&TmpParseStruct, &InvokingUID));
451 ERROR_CHECK(TcgGetNextTcgUid(&TmpParseStruct, &MethodUID));
452 ERROR_CHECK(TcgGetNextStartList(&TmpParseStruct));
453 ERROR_CHECK(TcgGetNextUINT32(&TmpParseStruct, &RecvHostSessionId));
454 ERROR_CHECK(TcgGetNextUINT32(&TmpParseStruct, TperSessionId));
455 ERROR_CHECK(TcgGetNextEndList(&TmpParseStruct));
456 ERROR_CHECK(TcgGetNextEndOfData(&TmpParseStruct));
457
458 if (InvokingUID != TCG_UID_SMUID) {
459 DEBUG ((DEBUG_INFO, "Invoking UID did not match UID_SMUID\n"));
460 return TcgResultFailure;
461 }
462
463 if (MethodUID != TCG_UID_SM_SYNC_SESSION) {
464 DEBUG ((DEBUG_INFO, "Method UID did not match UID_SM_SYNC_SESSION\n"));
465 return TcgResultFailure;
466 }
467
468 if (HostSessionId != RecvHostSessionId) {
469 DEBUG ((DEBUG_INFO, "unmatched HostSessionId (exp: 0x%X recv: 0x%X)\n", HostSessionId, RecvHostSessionId));
470 return TcgResultFailure;
471 }
472
473 return TcgResultSuccess;
474 }
475
476 /**
477
478 Creates ComPacket with EndSession.
479 This assumes a start session has already been opened.
480
481 @param [in/out] CreateStruct Structure used to add Endsession
482 @param [in/out] Size Describes the size of the entire ComPacket (header and payload). Filled out by function.
483 @param [in] ComId ComID for the ComPacket
484 @param [in] ComIdExtension Extended ComID for the ComPacket
485 @param [in] HostSessionId Host Session ID for the Packet
486 @param [in] TpSessionId Tper Session ID for the Packet
487
488 **/
489 TCG_RESULT
490 EFIAPI
491 TcgCreateEndSession(
492 TCG_CREATE_STRUCT *CreateStruct,
493 UINT32 *Size,
494 UINT16 ComId,
495 UINT16 ComIdExtension,
496 UINT32 HostSessionId,
497 UINT32 TpSessionId
498 )
499 {
500 ERROR_CHECK(TcgStartComPacket(CreateStruct, ComId, ComIdExtension));
501 ERROR_CHECK(TcgStartPacket(CreateStruct, TpSessionId, HostSessionId, 0x0, 0x0, 0x0));
502 ERROR_CHECK(TcgStartSubPacket(CreateStruct, 0x0));
503 ERROR_CHECK(TcgAddEndOfSession(CreateStruct));
504 ERROR_CHECK(TcgEndSubPacket(CreateStruct));
505 ERROR_CHECK(TcgEndPacket(CreateStruct));
506 ERROR_CHECK(TcgEndComPacket(CreateStruct, Size));
507
508 return TcgResultSuccess;
509 }
510
511 /**
512 Set start method.
513
514 @param CreateStruct Input create structure.
515 @param Row Input the row info.
516 @param ColumnNumber the column info.
517
518 **/
519 TCG_RESULT
520 EFIAPI
521 TcgStartMethodSet(
522 TCG_CREATE_STRUCT *CreateStruct,
523 TCG_UID Row,
524 UINT32 ColumnNumber
525 )
526 {
527 ERROR_CHECK(TcgStartMethodCall(CreateStruct, Row, TCG_UID_METHOD_SET));
528 ERROR_CHECK(TcgStartParameters(CreateStruct));
529 ERROR_CHECK(TcgAddStartName(CreateStruct));
530 ERROR_CHECK(TcgAddUINT8(CreateStruct, 0x01)); // "Values"
531 ERROR_CHECK(TcgAddStartList(CreateStruct));
532 ERROR_CHECK(TcgAddStartName(CreateStruct));
533 ERROR_CHECK(TcgAddUINT32(CreateStruct, ColumnNumber));
534 return TcgResultSuccess;
535 }
536
537 /**
538 Set end method.
539
540 @param CreateStruct Input create structure.
541
542 **/
543 TCG_RESULT
544 EFIAPI
545 TcgEndMethodSet(
546 TCG_CREATE_STRUCT *CreateStruct
547 )
548 {
549 ERROR_CHECK(TcgAddEndName(CreateStruct));
550 ERROR_CHECK(TcgAddEndList(CreateStruct));
551 ERROR_CHECK(TcgAddEndName(CreateStruct));
552 ERROR_CHECK(TcgEndParameters(CreateStruct));
553 ERROR_CHECK(TcgEndMethodCall(CreateStruct));
554 return TcgResultSuccess;
555 }
556
557 /**
558 Creates ComPacket with a Method call that sets the PIN column for the row specified.
559 This assumes a start session has already been opened with the desired SP.
560
561 @param [in/out] CreateStruct Structure used to add method call.
562 @param [in/out] Size Describes the size of the entire ComPacket (header and payload). Filled out by function.
563 @param [in] ComId ComID for the ComPacket
564 @param [in] ComIdExtension Extended ComID for the ComPacket
565 @param [in] TperSession Tper Session ID for the Packet
566 @param [in] HostSession Host Session ID for the Packet
567 @param [in] SidRow UID of row of current SP to set PIN column
568 @param [in] Password value of PIN to set
569 @param [in] PasswordSize Size of PIN
570
571 **/
572 TCG_RESULT
573 EFIAPI
574 TcgCreateSetCPin(
575 TCG_CREATE_STRUCT *CreateStruct,
576 UINT32 *Size,
577 UINT16 ComId,
578 UINT16 ComIdExtension,
579 UINT32 TperSession,
580 UINT32 HostSession,
581 TCG_UID SidRow,
582 const VOID *Password,
583 UINT32 PasswordSize
584 )
585 {
586 // set new SID Password
587 ERROR_CHECK(TcgStartComPacket(CreateStruct, ComId, ComIdExtension));
588 ERROR_CHECK(TcgStartPacket(CreateStruct, TperSession, HostSession, 0x0, 0x0, 0x0));
589 ERROR_CHECK(TcgStartSubPacket(CreateStruct, 0x0));
590 ERROR_CHECK(TcgStartMethodSet(CreateStruct, SidRow, 0x03)); // "PIN"
591 ERROR_CHECK(TcgAddByteSequence(CreateStruct, Password, PasswordSize, FALSE));
592 ERROR_CHECK(TcgEndMethodSet(CreateStruct));
593 ERROR_CHECK(TcgEndSubPacket(CreateStruct));
594 ERROR_CHECK(TcgEndPacket(CreateStruct));
595 ERROR_CHECK(TcgEndComPacket(CreateStruct, Size));
596 return TcgResultSuccess;
597 }
598
599 /**
600 Creates ComPacket with a Method call that sets the "Enabled" column for the row specified using the value specified.
601 This assumes a start session has already been opened with the desired SP.
602
603 @param [in/out] CreateStruct Structure used to add method call
604 @param [in/out] Size Describes the size of the entire ComPacket (header and payload). Filled out by function.
605 @param [in] ComId ComID for the ComPacket
606 @param [in] ComIdExtension Extended ComID for the ComPacket
607 @param [in] TperSession Tper Session ID for the Packet
608 @param [in] HostSession Host Session ID for the Packet
609 @param [in] AuthorityUid Authority UID to modify the "Enabled" column for
610 @param [in] Enabled Value to set the "Enabled" column to
611
612 **/
613 TCG_RESULT
614 EFIAPI
615 TcgSetAuthorityEnabled(
616 TCG_CREATE_STRUCT *CreateStruct,
617 UINT32 *Size,
618 UINT16 ComId,
619 UINT16 ComIdExtension,
620 UINT32 TperSession,
621 UINT32 HostSession,
622 TCG_UID AuthorityUid,
623 BOOLEAN Enabled
624 )
625 {
626 ERROR_CHECK(TcgStartComPacket(CreateStruct, ComId, ComIdExtension));
627 ERROR_CHECK(TcgStartPacket(CreateStruct, TperSession, HostSession, 0x0, 0x0, 0x0));
628 ERROR_CHECK(TcgStartSubPacket(CreateStruct, 0x0));
629 ERROR_CHECK(TcgStartMethodSet(CreateStruct, AuthorityUid, 0x05)); // "Enabled"
630 ERROR_CHECK(TcgAddBOOLEAN(CreateStruct, Enabled));
631 ERROR_CHECK(TcgEndMethodSet(CreateStruct));
632 ERROR_CHECK(TcgEndSubPacket(CreateStruct));
633 ERROR_CHECK(TcgEndPacket(CreateStruct));
634 ERROR_CHECK(TcgEndComPacket(CreateStruct, Size));
635 return TcgResultSuccess;
636 }
637
638 /**
639 Create set ace.
640
641 @param CreateStruct Input create structure.
642 @param Size size info.
643 @param ComId ComId info.
644 @param ComIdExtension ComId extension info.
645 @param TperSession Tper session data.
646 @param HostSession Host session data.
647 @param AceRow Ace row info.
648 @param Authority1 Authority 1 info.
649 @param LogicalOperator Logiccal operator info.
650 @param Authority2 Authority 2 info.
651
652 @retval Return the action result.
653
654 **/
655 TCG_RESULT
656 EFIAPI
657 TcgCreateSetAce(
658 TCG_CREATE_STRUCT *CreateStruct,
659 UINT32 *Size,
660 UINT16 ComId,
661 UINT16 ComIdExtension,
662 UINT32 TperSession,
663 UINT32 HostSession,
664 TCG_UID AceRow,
665 TCG_UID Authority1,
666 BOOLEAN LogicalOperator,
667 TCG_UID Authority2
668 )
669 {
670 UINT8 HalfUidAuthorityObjectRef[4];
671 UINT8 HalfUidBooleanAce[4];
672
673 HalfUidAuthorityObjectRef[0] = 0x0;
674 HalfUidAuthorityObjectRef[1] = 0x0;
675 HalfUidAuthorityObjectRef[2] = 0xC;
676 HalfUidAuthorityObjectRef[3] = 0x5;
677
678 HalfUidBooleanAce[0] = 0x0;
679 HalfUidBooleanAce[1] = 0x0;
680 HalfUidBooleanAce[2] = 0x4;
681 HalfUidBooleanAce[3] = 0xE;
682
683 ERROR_CHECK(TcgStartComPacket(CreateStruct, ComId, ComIdExtension));
684 ERROR_CHECK(TcgStartPacket(CreateStruct, TperSession, HostSession, 0x0, 0x0, 0x0));
685 ERROR_CHECK(TcgStartSubPacket(CreateStruct, 0x0));
686 ERROR_CHECK(TcgStartMethodSet(CreateStruct, AceRow, 0x03)); // "BooleanExpr"
687 ERROR_CHECK(TcgAddStartList(CreateStruct));
688 ERROR_CHECK(TcgAddStartName(CreateStruct));
689 ERROR_CHECK(TcgAddByteSequence(CreateStruct, HalfUidAuthorityObjectRef, sizeof(HalfUidAuthorityObjectRef), FALSE));
690 ERROR_CHECK(TcgAddTcgUid(CreateStruct, Authority1));
691 ERROR_CHECK(TcgAddEndName(CreateStruct));
692 ERROR_CHECK(TcgAddStartName(CreateStruct));
693 ERROR_CHECK(TcgAddByteSequence(CreateStruct, HalfUidAuthorityObjectRef, sizeof(HalfUidAuthorityObjectRef), FALSE));
694 ERROR_CHECK(TcgAddTcgUid(CreateStruct, Authority2));
695 ERROR_CHECK(TcgAddEndName(CreateStruct));
696
697 ERROR_CHECK(TcgAddStartName(CreateStruct));
698 ERROR_CHECK(TcgAddByteSequence(CreateStruct, HalfUidBooleanAce, sizeof(HalfUidBooleanAce), FALSE));
699 ERROR_CHECK(TcgAddBOOLEAN(CreateStruct, LogicalOperator));
700 ERROR_CHECK(TcgAddEndName(CreateStruct));
701 ERROR_CHECK(TcgAddEndList(CreateStruct));
702 ERROR_CHECK(TcgEndMethodSet(CreateStruct));
703 ERROR_CHECK(TcgEndSubPacket(CreateStruct));
704 ERROR_CHECK(TcgEndPacket(CreateStruct));
705 ERROR_CHECK(TcgEndComPacket(CreateStruct, Size));
706 return TcgResultSuccess;
707 }
708
709 /**
710 Enum level 0 discovery.
711
712 @param DiscoveryHeader Discovery header.
713 @param Callback Callback function.
714 @param Context The context for the function.
715
716 @retval return true if the callback return TRUE, else return FALSE.
717
718 **/
719 BOOLEAN
720 EFIAPI
721 TcgEnumLevel0Discovery(
722 const TCG_LEVEL0_DISCOVERY_HEADER *DiscoveryHeader,
723 TCG_LEVEL0_ENUM_CALLBACK Callback,
724 VOID *Context
725 )
726 {
727 UINT32 BytesLeft;
728 const UINT8 *DiscoveryBufferPtr;
729 UINT32 FeatLength;
730 TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER *Feat;
731
732 //
733 // Total bytes including descriptors but not including the Length field
734 //
735 BytesLeft = SwapBytes32(DiscoveryHeader->LengthBE);
736
737 //
738 // If discovery Header is not valid, exit
739 //
740 if (BytesLeft == 0) {
741 return FALSE;
742 }
743
744 //
745 // Subtract the Length of the Header, except the Length field, which is not included
746 //
747 BytesLeft -= (sizeof(TCG_LEVEL0_DISCOVERY_HEADER) - sizeof(DiscoveryHeader->LengthBE));
748
749 //
750 // Move ptr to first descriptor
751 //
752 DiscoveryBufferPtr = (const UINT8*)DiscoveryHeader + sizeof(TCG_LEVEL0_DISCOVERY_HEADER);
753
754 while (BytesLeft > sizeof(TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER)) {
755 //
756 // Pointer to beginning of descriptor (including common Header)
757 //
758 Feat = (TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER*)DiscoveryBufferPtr;
759
760 FeatLength = Feat->Length + sizeof(TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER);
761
762 //
763 // Not enough bytes left for Feature descriptor
764 //
765 if (BytesLeft < FeatLength) {
766 break;
767 }
768
769 //
770 // Report the Feature to the callback
771 //
772 if (Callback(DiscoveryHeader, Feat, FeatLength, Context)) {
773 return TRUE;
774 }
775
776 //
777 // Descriptor Length only describes Data after common Header
778 //
779 BytesLeft -= FeatLength;
780 DiscoveryBufferPtr += FeatLength;
781 }
782
783 return FALSE;
784 }
785
786 /**
787 The callback function for Get Feature function.
788
789 @param DiscoveryHeader Input discovery header.
790 @param Feature Input Feature.
791 @param FeatureSize Input Feature size.
792 @param Context The context.
793
794 **/
795 BOOLEAN
796 EFIAPI
797 TcgFindFeatureCallback(
798 const TCG_LEVEL0_DISCOVERY_HEADER *DiscoveryHeader,
799 TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER *Feature,
800 UINTN FeatureSize,
801 VOID *Context
802 )
803 {
804 TCG_FIND_FEATURE_CTX* FindCtx;
805
806 FindCtx = (TCG_FIND_FEATURE_CTX*)Context;
807 if ( SwapBytes16( Feature->FeatureCode_BE ) == FindCtx->FeatureCode ) {
808 FindCtx->Feature = Feature;
809 FindCtx->FeatureSize = FeatureSize;
810 return TRUE; // done enumerating features
811 }
812 return FALSE; // continue enumerating
813 }
814
815 /**
816 Get Feature code from the header.
817
818 @param DiscoveryHeader The discovery header.
819 @param FeatureCode reutrn the Feature code.
820 @param FeatureSize return the Feature size.
821
822 @retval return the Feature code data.
823 **/
824 TCG_LEVEL0_FEATURE_DESCRIPTOR_HEADER*
825 EFIAPI
826 TcgGetFeature(
827 const TCG_LEVEL0_DISCOVERY_HEADER *DiscoveryHeader,
828 UINT16 FeatureCode,
829 UINTN *FeatureSize
830 )
831 {
832 TCG_FIND_FEATURE_CTX FindCtx;
833
834 FindCtx.FeatureCode = FeatureCode;
835 FindCtx.Feature = NULL;
836 FindCtx.FeatureSize = 0;
837
838 TcgEnumLevel0Discovery(DiscoveryHeader, TcgFindFeatureCallback, &FindCtx);
839 if (FeatureSize != NULL) {
840 *FeatureSize = FindCtx.FeatureSize;
841 }
842 return FindCtx.Feature;
843 }
844
845 /**
846 Determines if the protocol provided is part of the provided supported protocol list.
847
848 @param[in] ProtocolList Supported protocol list to investigate
849 @param[in] Protocol Protocol value to determine if supported
850
851 @return TRUE = protocol is supported, FALSE = protocol is not supported
852 **/
853 BOOLEAN
854 EFIAPI
855 TcgIsProtocolSupported(
856 const TCG_SUPPORTED_SECURITY_PROTOCOLS *ProtocolList,
857 UINT16 Protocol
858 )
859 {
860 UINT16 Index;
861 UINT16 ListLength;
862
863 ListLength = SwapBytes16(ProtocolList->ListLength_BE);
864
865 if (ListLength > sizeof(ProtocolList->List)) {
866 DEBUG ((DEBUG_INFO, "WARNING: list Length is larger than max allowed Value; truncating\n"));
867 ListLength = sizeof(ProtocolList->List);
868 }
869
870 for (Index = 0; Index < ListLength; Index++) {
871 if (ProtocolList->List[Index] == Protocol) {
872 return TRUE;
873 }
874 }
875
876 return FALSE;
877 }
878
879 /**
880 Check whether lock or not.
881
882 @param Discovery
883
884 @retval TURE if lock, FALSE if not lock.
885 **/
886 BOOLEAN
887 EFIAPI
888 TcgIsLocked(
889 const TCG_LEVEL0_DISCOVERY_HEADER *Discovery
890 )
891 {
892 UINTN Size;
893 TCG_LOCKING_FEATURE_DESCRIPTOR *LockDescriptor;
894
895 Size = 0;
896 LockDescriptor =(TCG_LOCKING_FEATURE_DESCRIPTOR*) TcgGetFeature (Discovery, TCG_FEATURE_LOCKING, &Size);
897
898 if (LockDescriptor != NULL && Size >= sizeof(*LockDescriptor)) {
899 DEBUG ((DEBUG_INFO, "locked: %d\n", LockDescriptor->Locked));
900 return LockDescriptor->Locked;
901 }
902
903 //
904 // Descriptor was not found
905 //
906 return FALSE;
907 }
EFI Development Kit II mirror for PVE