docs/master/_tpm2_session_8c_source.html

#include <IndustryStandard/UefiTcgPlatform.h>

#include <Library/Tpm2CommandLib.h>

#include <Library/Tpm2DeviceLib.h>

#include <Library/BaseMemoryLib.h>

#include <Library/BaseLib.h>

#include <Library/DebugLib.h>


#pragma pack(1)


typedef struct {

  TPM2_COMMAND_HEADER       Header;

  TPMI_DH_OBJECT            TpmKey;

  TPMI_DH_ENTITY            Bind;

  TPM2B_NONCE               NonceCaller;

  TPM2B_ENCRYPTED_SECRET    Salt;

  TPM_SE                    SessionType;

  TPMT_SYM_DEF              Symmetric;

  TPMI_ALG_HASH             AuthHash;

} TPM2_START_AUTH_SESSION_COMMAND;


typedef struct {

  TPM2_RESPONSE_HEADER    Header;

  TPMI_SH_AUTH_SESSION    SessionHandle;

  TPM2B_NONCE             NonceTPM;

} TPM2_START_AUTH_SESSION_RESPONSE;


#pragma pack()


EFI_STATUS

EFIAPI

Tpm2StartAuthSession (

  IN      TPMI_DH_OBJECT          TpmKey,

  IN      TPMI_DH_ENTITY          Bind,

  IN      TPM2B_NONCE             *NonceCaller,

  IN      TPM2B_ENCRYPTED_SECRET  *Salt,

  IN      TPM_SE                  SessionType,

  IN      TPMT_SYM_DEF            *Symmetric,

  IN      TPMI_ALG_HASH           AuthHash,

  OUT  TPMI_SH_AUTH_SESSION       *SessionHandle,

  OUT  TPM2B_NONCE                *NonceTPM

  )

{

  EFI_STATUS                        Status;

  TPM2_START_AUTH_SESSION_COMMAND   SendBuffer;

  TPM2_START_AUTH_SESSION_RESPONSE  RecvBuffer;

  UINT32                            SendBufferSize;

  UINT32                            RecvBufferSize;

  UINT8                             *Buffer;


  //

  // Construct command

  //

  SendBuffer.Header.tag         = SwapBytes16 (TPM_ST_NO_SESSIONS);

  SendBuffer.Header.commandCode = SwapBytes32 (TPM_CC_StartAuthSession);


  SendBuffer.TpmKey = SwapBytes32 (TpmKey);

  SendBuffer.Bind   = SwapBytes32 (Bind);

  Buffer            = (UINT8 *)&SendBuffer.NonceCaller;


  WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (NonceCaller->size));

  Buffer += sizeof (UINT16);

  CopyMem (Buffer, NonceCaller->buffer, NonceCaller->size);

  Buffer += NonceCaller->size;


  WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Salt->size));

  Buffer += sizeof (UINT16);

  CopyMem (Buffer, Salt->secret, Salt->size);

  Buffer += Salt->size;


  *(TPM_SE *)Buffer = SessionType;

  Buffer++;


  WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->algorithm));

  Buffer += sizeof (UINT16);

  switch (Symmetric->algorithm) {

    case TPM_ALG_NULL:

      break;

    case TPM_ALG_AES:

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->keyBits.aes));

      Buffer += sizeof (UINT16);

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->mode.aes));

      Buffer += sizeof (UINT16);

      break;

    case TPM_ALG_SM4:

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->keyBits.SM4));

      Buffer += sizeof (UINT16);

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->mode.SM4));

      Buffer += sizeof (UINT16);

      break;

    case TPM_ALG_SYMCIPHER:

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->keyBits.sym));

      Buffer += sizeof (UINT16);

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->mode.sym));

      Buffer += sizeof (UINT16);

      break;

    case TPM_ALG_XOR:

      WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (Symmetric->keyBits.xor));

      Buffer += sizeof (UINT16);

      break;

    default:

      ASSERT (FALSE);

      DEBUG ((DEBUG_ERROR, "Tpm2StartAuthSession - Symmetric->algorithm - %x\n", Symmetric->algorithm));

      return EFI_UNSUPPORTED;

  }


  WriteUnaligned16 ((UINT16 *)Buffer, SwapBytes16 (AuthHash));

  Buffer += sizeof (UINT16);


  SendBufferSize              = (UINT32)((UINTN)Buffer - (UINTN)&SendBuffer);

  SendBuffer.Header.paramSize = SwapBytes32 (SendBufferSize);


  //

  // send Tpm command

  //

  RecvBufferSize = sizeof (RecvBuffer);

  Status         = Tpm2SubmitCommand (SendBufferSize, (UINT8 *)&SendBuffer, &RecvBufferSize, (UINT8 *)&RecvBuffer);

  if (EFI_ERROR (Status)) {

    return Status;

  }


  if (RecvBufferSize < sizeof (TPM2_RESPONSE_HEADER)) {

    DEBUG ((DEBUG_ERROR, "Tpm2StartAuthSession - RecvBufferSize Error - %x\n", RecvBufferSize));

    return EFI_DEVICE_ERROR;

  }


  if (SwapBytes32 (RecvBuffer.Header.responseCode) != TPM_RC_SUCCESS) {

    DEBUG ((DEBUG_ERROR, "Tpm2StartAuthSession - responseCode - %x\n", SwapBytes32 (RecvBuffer.Header.responseCode)));

    return EFI_DEVICE_ERROR;

  }


  //

  // Return the response

  //

  *SessionHandle = SwapBytes32 (RecvBuffer.SessionHandle);

  NonceTPM->size = SwapBytes16 (RecvBuffer.NonceTPM.size);

  if (NonceTPM->size > sizeof (TPMU_HA)) {

    DEBUG ((DEBUG_ERROR, "Tpm2StartAuthSession - NonceTPM->size error %x\n", NonceTPM->size));

    return EFI_DEVICE_ERROR;

  }


  CopyMem (NonceTPM->buffer, &RecvBuffer.NonceTPM.buffer, NonceTPM->size);


  return EFI_SUCCESS;

}

UINTN
UINT64 UINTN
Definition: ProcessorBind.h:112

BaseLib.h

SwapBytes16
UINT16 EFIAPI SwapBytes16(IN UINT16 Value)
Definition: SwapBytes16.c:25

SwapBytes32
UINT32 EFIAPI SwapBytes32(IN UINT32 Value)
Definition: SwapBytes32.c:25

WriteUnaligned16
UINT16 EFIAPI WriteUnaligned16(OUT UINT16 *Buffer, IN UINT16 Value)
Definition: Unaligned.c:61

BaseMemoryLib.h

CopyMem
VOID *EFIAPI CopyMem(OUT VOID *DestinationBuffer, IN CONST VOID *SourceBuffer, IN UINTN Length)
Definition: CopyMemWrapper.c:41

FALSE
#define FALSE
Definition: Base.h:307

IN
#define IN
Definition: Base.h:279

OUT
#define OUT
Definition: Base.h:284

DebugLib.h

DEBUG
#define DEBUG(Expression)
Definition: DebugLib.h:434

TPM_ALG_XOR
#define TPM_ALG_XOR
XOR using the rolling nonces.
Definition: Tpm12.h:371

Tpm2CommandLib.h

Tpm2DeviceLib.h

Tpm2SubmitCommand
EFI_STATUS EFIAPI Tpm2SubmitCommand(IN UINT32 InputParameterBlockSize, IN UINT8 *InputParameterBlock, IN OUT UINT32 *OutputParameterBlockSize, IN UINT8 *OutputParameterBlock)
Definition: Tpm2DeviceLibDTpm.c:66

Tpm2StartAuthSession
EFI_STATUS EFIAPI Tpm2StartAuthSession(IN TPMI_DH_OBJECT TpmKey, IN TPMI_DH_ENTITY Bind, IN TPM2B_NONCE *NonceCaller, IN TPM2B_ENCRYPTED_SECRET *Salt, IN TPM_SE SessionType, IN TPMT_SYM_DEF *Symmetric, IN TPMI_ALG_HASH AuthHash, OUT TPMI_SH_AUTH_SESSION *SessionHandle, OUT TPM2B_NONCE *NonceTPM)
Definition: Tpm2Session.c:56

EFI_STATUS
RETURN_STATUS EFI_STATUS
Definition: UefiBaseType.h:29

EFI_SUCCESS
#define EFI_SUCCESS
Definition: UefiBaseType.h:112

UefiTcgPlatform.h

TPM2_COMMAND_HEADER
Definition: Tpm20.h:1790

TPM2_RESPONSE_HEADER
Definition: Tpm20.h:1796

TPM2_START_AUTH_SESSION_COMMAND
Definition: Tpm2Session.c:18

TPM2_START_AUTH_SESSION_RESPONSE
Definition: Tpm2Session.c:29

TPM2B_DIGEST
Definition: Tpm20.h:920

TPM2B_ENCRYPTED_SECRET
Definition: Tpm20.h:1553

TPMT_SYM_DEF
Definition: Tpm20.h:1262

TPMU_HA
Definition: Tpm20.h:905