Página Principal Explorar Ajuda
Iniciar Sessão
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Ficheiros Problemas 0 Pull Requests 0 Wiki
Árvore: 52bd49a6d4
Ramos Etiquetas
csu3_am335x
/
EVSE
/
GPL
/
tpm2-tss-3.2.0
/
test
/
integration
/
esys-lock.int.c

esys-lock.int.c 2.5 KB
Histórico Em bruto

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788 
  1. /* SPDX-License-Identifier: BSD-2-Clause */
    2. 

  2. /*******************************************************************************
    3. 

  3.  * Copyright 2017-2018, Fraunhofer SIT sponsored by Infineon Technologies AG
    4. 

  4.  * All rights reserved.
    5. 

  5.  *******************************************************************************/
    6. 

  6. 

  7. #ifdef HAVE_CONFIG_H
    8. 

  8. #include <config.h>
    9. 

  9. #endif
    10. 

  10. 

  11. #include <stdlib.h>
    12. 

  12. 

  13. #include "tss2_esys.h"
    14. 

  14. 

  15. #include "esys_iutil.h"
    16. 

  16. #include "test-esys.h"
    17. 

  17. #define LOGMODULE test
    18. 

  18. #include "util/log.h"
    19. 

  19. #include "util/aux_util.h"
    20. 

  20. 

  21. /** Test the ESYS functions related to TPM locks.
    22. 

  22.  *
    23. 

  23.  *\b Note: platform authorization needed.
    24. 

  24.  *
    25. 

  25.  * Tested ESYS commands:
    26. 

  26.  *  - Esys_DictionaryAttackLockReset() (M)
    27. 

  27.  *  - Esys_DictionaryAttackParameters() (M)
    28. 

  28.  *  - Esys_NV_GlobalWriteLock() (O)
    29. 

  29.  *
    30. 

  30.  * @param[in,out] esys_context The ESYS_CONTEXT.
    31. 

  31.  * @retval EXIT_FAILURE
    32. 

  32.  * @retval EXIT_SKIP
    33. 

  33.  * @retval EXIT_SUCCESS
    34. 

  34.  */
    35. 

  35. 

  36. int
    37. 

  37. test_esys_lock(ESYS_CONTEXT * esys_context)
    38. 

  38. {
    39. 

  39.     TSS2_RC r;
    40. 

  40.     int failure_return = EXIT_FAILURE;
    41. 

  41. 

  42.     r = Esys_DictionaryAttackLockReset(
    43. 

  43.         esys_context,
    44. 

  44.         ESYS_TR_RH_LOCKOUT,
    45. 

  45.         ESYS_TR_PASSWORD,
    46. 

  46.         ESYS_TR_NONE,
    47. 

  47.         ESYS_TR_NONE);
    48. 

  48.     goto_if_error(r, "Error: DictionaryAttackLockReset", error);
    49. 

  49. 

  50.     UINT32 newMaxTries = 3;
    51. 

  51.     UINT32 newRecoveryTime = 3600;
    52. 

  52.     UINT32 lockoutRecovery = 1000;
    53. 

  53. 

  54.     r = Esys_DictionaryAttackParameters(esys_context, ESYS_TR_RH_LOCKOUT,
    55. 

  55.                                         ESYS_TR_PASSWORD, ESYS_TR_NONE,
    56. 

  56.                                         ESYS_TR_NONE,
    57. 

  57.                                         newMaxTries, newRecoveryTime,
    58. 

  58.                                         lockoutRecovery);
    59. 

  59.     goto_if_error(r, "Error: DictionaryAttackParameters", error);
    60. 

  60. 

  61.     r = Esys_NV_GlobalWriteLock(esys_context, ESYS_TR_RH_PLATFORM,
    62. 

  62.                                 ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE);
    63. 

  63. 

  64.     if ((r == TPM2_RC_COMMAND_CODE) ||
    65. 

  65.         (r == (TPM2_RC_COMMAND_CODE | TSS2_RESMGR_RC_LAYER)) ||
    66. 

  66.         (r == (TPM2_RC_COMMAND_CODE | TSS2_RESMGR_TPM_RC_LAYER))) {
    67. 

  67.         LOG_WARNING("Command TPM2_NV_GlobalWriteLock not supported by TPM.");
    68. 

  68.         failure_return = EXIT_SKIP;
    69. 

  69.         goto error;
    70. 

  70.     }
    71. 

  71. 

  72.     if (number_rc(r) == TPM2_RC_BAD_AUTH) {
    73. 

  73.         /* Platform authorization not possible test will be skipped */
    74. 

  74.         LOG_WARNING("Platform authorization not possible.");
    75. 

  75.         return EXIT_SKIP;
    76. 

  76.     }
    77. 

  77.     goto_if_error(r, "Error: NV_GlobalWriteLock", error);
    78. 

  78. 

  79.     return EXIT_SUCCESS;
    80. 

  80. 

  81.   error:
    82. 

  82.     return failure_return;
    83. 

  83. }
    84. 

  84. 

  85. int
    86. 

  86. test_invoke_esys(ESYS_CONTEXT * esys_context) {
    87. 

  87.     return test_esys_lock(esys_context);
    88. 

  88. }
    89.