Google Git
Sign in
fuchsia / third_party / github.com / tpm2-software / tpm2-tss / refs/heads/upstream/3.0.x / . / src / tss2-sys / api / Tss2_Sys_StartAuthSession.c
blob: ac43f512e48cf017dc455fa83ed4f86a6b7615c4 [file] [log] [blame]
/* SPDX-License-Identifier: BSD-2-Clause */
/***********************************************************************;
* Copyright (c) 2015 - 2017, Intel Corporation
* All rights reserved.
***********************************************************************/
#ifdef HAVE_CONFIG_H
#include <config.h>
#endif
#include "tss2_tpm2_types.h"
#include "tss2_mu.h"
#include "sysapi_util.h"
TSS2_RC Tss2_Sys_StartAuthSession_Prepare(
TSS2_SYS_CONTEXT *sysContext,
TPMI_DH_OBJECT tpmKey,
TPMI_DH_ENTITY bind,
const TPM2B_NONCE *nonceCaller,
const TPM2B_ENCRYPTED_SECRET *encryptedSalt,
TPM2_SE sessionType,
const TPMT_SYM_DEF *symmetric,
TPMI_ALG_HASH authHash)
{
_TSS2_SYS_CONTEXT_BLOB *ctx = syscontext_cast(sysContext);
TSS2_RC rval;
if (!ctx || !symmetric)
return TSS2_SYS_RC_BAD_REFERENCE;
if (IsAlgorithmWeak(authHash, 0))
return TSS2_SYS_RC_BAD_VALUE;
rval = CommonPreparePrologue(ctx, TPM2_CC_StartAuthSession);
if (rval)
return rval;
rval = Tss2_MU_UINT32_Marshal(tpmKey, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
if (rval)
return rval;
rval = Tss2_MU_UINT32_Marshal(bind, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
if (rval)
return rval;
if (!nonceCaller) {
ctx->decryptNull = 1;
rval = Tss2_MU_UINT16_Marshal(0, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
} else {
rval = Tss2_MU_TPM2B_NONCE_Marshal(nonceCaller, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
}
if (rval)
return rval;
if (!encryptedSalt) {
rval = Tss2_MU_UINT16_Marshal(0, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
} else {
rval = Tss2_MU_TPM2B_ENCRYPTED_SECRET_Marshal(encryptedSalt,
ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
}
if (rval)
return rval;
rval = Tss2_MU_UINT8_Marshal(sessionType, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
if (rval)
return rval;
rval = Tss2_MU_TPMT_SYM_DEF_Marshal(symmetric, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
if (rval)
return rval;
rval = Tss2_MU_UINT16_Marshal(authHash, ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData);
if (rval)
return rval;
ctx->decryptAllowed = 1;
ctx->encryptAllowed = 1;
ctx->authAllowed = 1;
return CommonPrepareEpilogue(ctx);
}
TSS2_RC Tss2_Sys_StartAuthSession_Complete(
TSS2_SYS_CONTEXT *sysContext,
TPMI_SH_AUTH_SESSION *sessionHandle,
TPM2B_NONCE *nonceTPM)
{
_TSS2_SYS_CONTEXT_BLOB *ctx = syscontext_cast(sysContext);
TSS2_RC rval;
if (!ctx)
return TSS2_SYS_RC_BAD_REFERENCE;
rval = Tss2_MU_UINT32_Unmarshal(ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData,
sessionHandle);
if (rval)
return rval;
rval = CommonComplete(ctx);
if (rval)
return rval;
return Tss2_MU_TPM2B_NONCE_Unmarshal(ctx->cmdBuffer,
ctx->maxCmdSize,
&ctx->nextData, nonceTPM);
}
TSS2_RC Tss2_Sys_StartAuthSession(
TSS2_SYS_CONTEXT *sysContext,
TPMI_DH_OBJECT tpmKey,
TPMI_DH_ENTITY bind,
TSS2L_SYS_AUTH_COMMAND const *cmdAuthsArray,
const TPM2B_NONCE *nonceCaller,
const TPM2B_ENCRYPTED_SECRET *encryptedSalt,
TPM2_SE sessionType,
const TPMT_SYM_DEF *symmetric,
TPMI_ALG_HASH authHash,
TPMI_SH_AUTH_SESSION *sessionHandle,
TPM2B_NONCE *nonceTPM,
TSS2L_SYS_AUTH_RESPONSE *rspAuthsArray)
{
_TSS2_SYS_CONTEXT_BLOB *ctx = syscontext_cast(sysContext);
TSS2_RC rval;
if (!symmetric)
return TSS2_SYS_RC_BAD_REFERENCE;
rval = Tss2_Sys_StartAuthSession_Prepare(sysContext, tpmKey, bind, nonceCaller, encryptedSalt, sessionType, symmetric, authHash);
if (rval)
return rval;
rval = CommonOneCall(ctx, cmdAuthsArray, rspAuthsArray);
if (rval)
return rval;
return Tss2_Sys_StartAuthSession_Complete(sysContext, sessionHandle, nonceTPM);
}