Home Explore Help
Sign In
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
csu3_am335x
/
EVSE
/
GPL
/
tpm2-tools-5.1
/
lib
/
tpm2_convert.h

tpm2_convert.h 4.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146 
  1. /* SPDX-License-Identifier: BSD-3-Clause */
    2. 

  2. 

  3. #ifndef CONVERSION_H
    4. 

  4. #define CONVERSION_H
    5. 

  5. 

  6. #include <stdbool.h>
    7. 

  7. 

  8. #include <openssl/evp.h>
    9. 

  9. 

  10. #include <tss2/tss2_sys.h>
    11. 

  11. 

  12. typedef enum tpm2_convert_pubkey_fmt tpm2_convert_pubkey_fmt;
    13. 

  13. enum tpm2_convert_pubkey_fmt {
    14. 

  14.     pubkey_format_tss,
    15. 

  15.     pubkey_format_pem,
    16. 

  16.     pubkey_format_der,
    17. 

  17.     pubkey_format_tpmt,
    18. 

  18.     pubkey_format_err
    19. 

  19. };
    20. 

  20. 

  21. typedef enum tpm2_convert_sig_fmt tpm2_convert_sig_fmt;
    22. 

  22. enum tpm2_convert_sig_fmt {
    23. 

  23.     signature_format_tss,
    24. 

  24.     signature_format_plain,
    25. 

  25.     signature_format_err
    26. 

  26. };
    27. 

  27. 

  28. /**
    29. 

  29.  * Parses the given command line public key format option string and returns
    30. 

  30.  * the corresponding pubkey_format enum value.
    31. 

  31.  *
    32. 

  32.  * LOG_ERR is used to communicate errors.
    33. 

  33.  *
    34. 

  34.  * @return
    35. 

  35.  *   On error pubkey_format_err is returned.
    36. 

  36.  */
    37. 

  37. tpm2_convert_pubkey_fmt tpm2_convert_pubkey_fmt_from_optarg(const char *label);
    38. 

  38. 

  39. /**
    40. 

  40.  * Converts the given public key structure into the requested target format
    41. 

  41.  * and writes the result to the given file system path.
    42. 

  42.  *
    43. 

  43.  * LOG_ERR is used to communicate errors.
    44. 

  44.  */
    45. 

  45. bool tpm2_convert_pubkey_save(TPM2B_PUBLIC *public,
    46. 

  46.         tpm2_convert_pubkey_fmt format, const char *path);
    47. 

  47. 

  48. /**
    49. 

  49.  * Parses the given command line signature format option string and returns
    50. 

  50.  * the corresponding signature_format enum value.
    51. 

  51.  *
    52. 

  52.  * LOG_ERR is used to communicate errors.
    53. 

  53.  *
    54. 

  54.  * @return
    55. 

  55.  *   On error signature_format_err is returned.
    56. 

  56.  */
    57. 

  57. tpm2_convert_sig_fmt tpm2_convert_sig_fmt_from_optarg(const char *label);
    58. 

  58. 

  59. /**
    60. 

  60.  * Converts the given signature data into the requested target format and
    61. 

  61.  * writes the result to the given file system path.
    62. 

  62.  *
    63. 

  63.  * LOG_ERR is used to communicate errors.
    64. 

  64.  */
    65. 

  65. bool tpm2_convert_sig_save(TPMT_SIGNATURE *signature,
    66. 

  66.         tpm2_convert_sig_fmt format, const char *path);
    67. 

  67. 

  68. /**
    69. 

  69.  * Like tpm2_convert_save with the "plain" signature option.
    70. 

  70.  *
    71. 

  71.  * @param size
    72. 

  72.  *  The size of the signature buffer.
    73. 

  73.  * @param signature
    74. 

  74.  *  The signature to convert.
    75. 

  75.  * @return
    76. 

  76.  *  NULL on error or a buffer of size bytes to be freed by the caller
    77. 

  77.  *  via free(2).
    78. 

  78.  */
    79. 

  79. UINT8 *tpm2_convert_sig(UINT16 *size, TPMT_SIGNATURE *signature);
    80. 

  80. 

  81. /**
    82. 

  82.  * Load a signature from path and convert the format
    83. 

  83.  * @param path
    84. 

  84.  *  The path to load the signature from.
    85. 

  85.  * @param format
    86. 

  86.  *  The tss signature format
    87. 

  87.  * @param sig_alg
    88. 

  88.  *  The algorithm used for the signature. Only RSASSA (RSA PKCS1.5) signatures accepted.
    89. 

  89.  * @param halg
    90. 

  90.  *  The hashing algorithm used.
    91. 

  91.  * @param signature
    92. 

  92.  *  The signature structure to output too.
    93. 

  93.  * @return
    94. 

  94.  *  true on success, false on error.
    95. 

  95.  */
    96. 

  96. bool tpm2_convert_sig_load(const char *path, tpm2_convert_sig_fmt format,
    97. 

  97.         TPMI_ALG_SIG_SCHEME sig_alg, TPMI_ALG_HASH halg,
    98. 

  98.         TPMT_SIGNATURE *signature);
    99. 

  99. 

  100. /**
    101. 

  101.  * Given a file, loads up the plain format of the signature. Probing to determine
    102. 

  102.  * if its a TSS buffer (using libmu errors as the detector) or a plain OSSL style
    103. 

  103.  * signature.
    104. 

  104.  * into a buffer.
    105. 

  105.  * @param path
    106. 

  106.  *  The file path containing the signature.
    107. 

  107.  * @param signature
    108. 

  108.  *  The plain signature bytes.
    109. 

  109.  * @param halg:
    110. 

  110.  *  If the signature scheme is *tss* also provide the hash algorithm, else
    111. 

  111.  *  set it to TPM2_ALG_NULL.
    112. 

  112.  * @return
    113. 

  113.  *  true on success, false on error.
    114. 

  114.  */
    115. 

  115. bool tpm2_convert_sig_load_plain(const char *path,
    116. 

  116.         TPM2B_MAX_BUFFER *signature, TPMI_ALG_HASH *halg);
    117. 

  117. 

  118. bool tpm2_public_load_pkey(const char *path, EVP_PKEY **pkey);
    119. 

  119. 

  120. /**
    121. 

  121.  * Encode a binary buffer to a Base64-encoded String.
    122. 

  122.  * @param buffer
    123. 

  123.  *  The binary buffer.
    124. 

  124.  * @param buffer_length:
    125. 

  125.  *  The length of the binary buffer.
    126. 

  126.  * @param base64
    127. 

  127.  *  The resulting Base64-encoded String.
    128. 

  128.  * @return
    129. 

  129.  *  true on success, false on error.
    130. 

  130.  */
    131. 

  131. bool tpm2_base64_encode(BYTE *buffer, size_t buffer_length, char *base64);
    132. 

  132. 

  133. /**
    134. 

  134.  * Decode a Base64-encoded String to a binary buffer.
    135. 

  135.  * @param base64
    136. 

  136.  *  The Base64-encoded String.
    137. 

  137.  * @param buffer
    138. 

  138.  *  The resulting binary buffer, valid on success.
    139. 

  139.  * @param buffer_length:
    140. 

  140.  *  The length of the resulting binary buffer, valid on success.
    141. 

  141.  * @return
    142. 

  142.  *  true on success, false on error.
    143. 

  143.  */
    144. 

  144. bool tpm2_base64_decode(char *base64, BYTE *buffer, size_t *buffer_length);
    145. 

  145. 

  146. #endif /* CONVERSION_H */
    147.