Home Explore Help
Sign In
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
csu3_am335x
/
EVSE
/
GPL
/
tpm2-tools-5.1
/
lib
/
tpm2_kdfa.c

tpm2_kdfa.c 2.9 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. /* SPDX-License-Identifier: BSD-3-Clause */
    2. 

  2. 

  3. #include <string.h>
    4. 

  4. 

  5. #include "log.h"
    6. 

  6. #include "tpm2_kdfa.h"
    7. 

  7. #include "tpm2_openssl.h"
    8. 

  8. 

  9. TSS2_RC tpm2_kdfa(TPMI_ALG_HASH hash_alg, TPM2B *key, char *label,
    10. 

  10.         TPM2B *context_u, TPM2B *context_v, UINT16 bits,
    11. 

  11.         TPM2B_MAX_BUFFER *result_key) {
    12. 

  12.     TPM2B_DIGEST tpm2b_label, tpm2b_bits, tpm2b_i_2;
    13. 

  13.     TPM2B_DIGEST *buffer_list[8];
    14. 

  14.     TSS2_RC rval = TPM2_RC_SUCCESS;
    15. 

  15.     int i, j;
    16. 

  16.     UINT16 bytes = bits / 8;
    17. 

  17. 

  18.     result_key->size = 0;
    19. 

  19. 

  20.     tpm2b_i_2.size = 4;
    21. 

  21. 

  22.     tpm2b_bits.size = 4;
    23. 

  23.     UINT32 bits_be = tpm2_util_hton_32(bits);
    24. 

  24.     memcpy(&tpm2b_bits.buffer[0], &bits_be, sizeof(bits_be));
    25. 

  25. 

  26.     for(i = 0; label[i] != 0 ;i++ );
    27. 

  27. 

  28.     tpm2b_label.size = i + 1;
    29. 

  29.     for (i = 0; i < tpm2b_label.size; i++) {
    30. 

  30.         tpm2b_label.buffer[i] = label[i];
    31. 

  31.     }
    32. 

  32. 

  33.     result_key->size = 0;
    34. 

  34. 

  35.     i = 1;
    36. 

  36. 

  37.     const EVP_MD *md = tpm2_openssl_halg_from_tpmhalg(hash_alg);
    38. 

  38.     if (!md) {
    39. 

  39.         LOG_ERR("Algorithm not supported for hmac: %x", hash_alg);
    40. 

  40.         return TPM2_RC_HASH;
    41. 

  41.     }
    42. 

  42. 

  43.     HMAC_CTX *ctx = tpm2_openssl_hmac_new();
    44. 

  44.     if (!ctx) {
    45. 

  45.         LOG_ERR("HMAC context allocation failed");
    46. 

  46.         return TPM2_RC_MEMORY;
    47. 

  47.     }
    48. 

  48. 

  49.     int rc = HMAC_Init_ex(ctx, key->buffer, key->size, md, NULL);
    50. 

  50.     if (!rc) {
    51. 

  51.         LOG_ERR("HMAC Init failed: %s", ERR_error_string(rc, NULL));
    52. 

  52.         rval = TPM2_RC_MEMORY;
    53. 

  53.         goto err;
    54. 

  54.     }
    55. 

  55. 

  56.     // TODO Why is this a loop? It appears to only execute once.
    57. 

  57.     while (result_key->size < bytes) {
    58. 

  58.         TPM2B_DIGEST tmpResult;
    59. 

  59.         // Inner loop
    60. 

  60.         bits_be = tpm2_util_hton_32(i);
    61. 

  61.         memcpy(&tpm2b_i_2.buffer[0], &bits_be, sizeof(bits_be));
    62. 

  62. 

  63.         j = 0;
    64. 

  64.         buffer_list[j++] = (TPM2B_DIGEST *) &(tpm2b_i_2);
    65. 

  65.         buffer_list[j++] = (TPM2B_DIGEST *) &(tpm2b_label);
    66. 

  66.         buffer_list[j++] = (TPM2B_DIGEST *) context_u;
    67. 

  67.         buffer_list[j++] = (TPM2B_DIGEST *) context_v;
    68. 

  68.         buffer_list[j++] = (TPM2B_DIGEST *) &(tpm2b_bits);
    69. 

  69.         buffer_list[j] = (TPM2B_DIGEST *) 0;
    70. 

  70. 

  71.         int c;
    72. 

  72.         for (c = 0; c < j; c++) {
    73. 

  73.             TPM2B_DIGEST *digest = buffer_list[c];
    74. 

  74.             int rc = HMAC_Update(ctx, digest->buffer, digest->size);
    75. 

  75.             if (!rc) {
    76. 

  76.                 LOG_ERR("HMAC Update failed: %s", ERR_error_string(rc, NULL));
    77. 

  77.                 rval = TPM2_RC_MEMORY;
    78. 

  78.                 goto err;
    79. 

  79.             }
    80. 

  80.         }
    81. 

  81. 

  82.         unsigned size = sizeof(tmpResult.buffer);
    83. 

  83.         int rc = HMAC_Final(ctx, tmpResult.buffer, &size);
    84. 

  84.         if (!rc) {
    85. 

  85.             LOG_ERR("HMAC Final failed: %s", ERR_error_string(rc, NULL));
    86. 

  86.             rval = TPM2_RC_MEMORY;
    87. 

  87.             goto err;
    88. 

  88.         }
    89. 

  89. 

  90.         tmpResult.size = size;
    91. 

  91. 

  92.         bool res = tpm2_util_concat_buffer(result_key, (TPM2B *) &tmpResult);
    93. 

  93.         if (!res) {
    94. 

  94.             rval = TSS2_SYS_RC_BAD_VALUE;
    95. 

  95.             goto err;
    96. 

  96.         }
    97. 

  97.     }
    98. 

  98. 

  99.     // Truncate the result to the desired size.
    100. 

  100.     result_key->size = bytes;
    101. 

  101. 

  102. err:
    103. 

  103.     tpm2_openssl_hmac_free(ctx);
    104. 

  104. 

  105.     return rval;
    106. 

  106. }
    107.