Accueil Explorer Aide
Connexion
SoftwareDesign
/
csu3_am335x
8
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: master
Branches Tags
csu3_am335x
/
EVSE
/
GPL
/
tpm2-tools-5.1
/
tools
/
fapi
/
tss2_verifyquote.c

tss2_verifyquote.c 4.1 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147 
  1. /* SPDX-License-Identifier: BSD-3-Clause */
    2. 

  2. 

  3. #include <stdio.h>
    4. 

  4. #include <stdlib.h>
    5. 

  5. #include <string.h>
    6. 

  6. #include "tools/fapi/tss2_template.h"
    7. 

  7. 

  8. /* Context struct used to store passed command line parameters */
    9. 

  9. static struct cxt {
    10. 

  10.     char *publicKeyPath;
    11. 

  11.     char const *qualifyingData;
    12. 

  12.     char const *quoteInfo;
    13. 

  13.     char const *signature;
    14. 

  14.     char const *pcrLog;
    15. 

  15. } ctx;
    16. 

  16. 

  17. /* Parse command line parameters */
    18. 

  18. static bool on_option(char key, char *value) {
    19. 

  19.     switch (key) {
    20. 

  20.     case 'Q':
    21. 

  21.         ctx.qualifyingData = value;
    22. 

  22.         break;
    23. 

  23.     case 'l':
    24. 

  24.         ctx.pcrLog = value;
    25. 

  25.         break;
    26. 

  26.     case 'q':
    27. 

  27.         ctx.quoteInfo = value;
    28. 

  28.         break;
    29. 

  29.     case 'k':
    30. 

  30.         ctx.publicKeyPath = value;
    31. 

  31.         break;
    32. 

  32.     case 'i':
    33. 

  33.         ctx.signature = value;
    34. 

  34.         break;
    35. 

  35.     }
    36. 

  36.     return true;
    37. 

  37. }
    38. 

  38. 

  39. /* Define possible command line parameters */
    40. 

  40. static bool tss2_tool_onstart(tpm2_options **opts) {
    41. 

  41.     struct option topts[] = {
    42. 

  42.         {"publicKeyPath",   required_argument, NULL, 'k'},
    43. 

  43.         {"qualifyingData",  required_argument, NULL, 'Q'},
    44. 

  44.         {"quoteInfo",       required_argument, NULL, 'q'},
    45. 

  45.         {"signature",       required_argument, NULL, 'i'},
    46. 

  46.         {"pcrLog",          required_argument, NULL, 'l'}
    47. 

  47.     };
    48. 

  48.     return (*opts = tpm2_options_new ("k:Q:q:i:l:", ARRAY_LEN(topts), topts,
    49. 

  49.                                       on_option, NULL, 0)) != NULL;
    50. 

  50. }
    51. 

  51. 

  52. /* Execute specific tool */
    53. 

  53. static int tss2_tool_onrun (FAPI_CONTEXT *fctx) {
    54. 

  54.     /* Check availability of required parameters */
    55. 

  55.     if (!ctx.quoteInfo) {
    56. 

  56.         fprintf (stderr, "quote info parameter not provided, use "\
    57. 

  57.             "--quoteInfo\n");
    58. 

  58.         return -1;
    59. 

  59.     }
    60. 

  60.     if (!ctx.publicKeyPath) {
    61. 

  61.         fprintf (stderr, "publicKeyPath parameter not provided, use "\
    62. 

  62.             "--publicKeyPath\n");
    63. 

  63.         return -1;
    64. 

  64.     }
    65. 

  65.     if (!ctx.signature) {
    66. 

  66.         fprintf (stderr, "signature parameter not provided, use"\
    67. 

  67.             " --signature\n");
    68. 

  68.         return -1;
    69. 

  69.     }
    70. 

  70. 

  71.     /* Check exclusive access to stdin */
    72. 

  72.     int count_in = 0;
    73. 

  73.     if (ctx.qualifyingData && !strcmp (ctx.qualifyingData, "-")) count_in +=1;
    74. 

  74.     if (ctx.signature && !strcmp (ctx.signature, "-")) count_in +=1;
    75. 

  75.     if (ctx.quoteInfo && !strcmp (ctx.quoteInfo, "-")) count_in +=1;
    76. 

  76.     if (ctx.pcrLog && !strcmp (ctx.pcrLog, "-")) count_in +=1;
    77. 

  77.     if (count_in > 1) {
    78. 

  78.         fprintf (stderr, "Only one of --qualifyingData, --signature, "\
    79. 

  79.         " --quoteInfo and --pcrLog can read from - (standard input)\n");
    80. 

  80.         return -1;
    81. 

  81.     }
    82. 

  82. 

  83.     /* Read qualifyingData, signature, quoteInfo and pcrLog from file */
    84. 

  84.     TSS2_RC r;
    85. 

  85.     uint8_t *qualifyingData = NULL;
    86. 

  86.     size_t qualifyingDataSize = 0;
    87. 

  87.     if (ctx.qualifyingData) {
    88. 

  88.         r = open_read_and_close (ctx.qualifyingData,
    89. 

  89.             (void**)&qualifyingData, &qualifyingDataSize);
    90. 

  90.         if (r) {
    91. 

  91.             return -1;
    92. 

  92.         }
    93. 

  93.     }
    94. 

  94. 

  95.     uint8_t *signature = NULL;
    96. 

  96.     size_t signatureSize = 0;
    97. 

  97.     if (ctx.signature) {
    98. 

  98.         r = open_read_and_close (ctx.signature, (void**)&signature, &signatureSize);
    99. 

  99.         if (r) {
    100. 

  100.             free (qualifyingData);
    101. 

  101.             return -1;
    102. 

  102.         }
    103. 

  103.     }
    104. 

  104. 

  105.     char *quoteInfo = NULL;
    106. 

  106.     if (ctx.quoteInfo) {
    107. 

  107.         r = open_read_and_close (ctx.quoteInfo, (void**)&quoteInfo, NULL);
    108. 

  108.         if (r) {
    109. 

  109.             free (qualifyingData);
    110. 

  110.             free (signature);
    111. 

  111.             return -1;
    112. 

  112.         }
    113. 

  113.     }
    114. 

  114. 

  115.     char *pcrLog = NULL;
    116. 

  116.     if (ctx.pcrLog) {
    117. 

  117.         r = open_read_and_close (ctx.pcrLog, (void**)&pcrLog, NULL);
    118. 

  118.         if (r) {
    119. 

  119.             free (qualifyingData);
    120. 

  120.             free (signature);
    121. 

  121.             free (quoteInfo);
    122. 

  122.             return -1;
    123. 

  123.         }
    124. 

  124.     }
    125. 

  125. 

  126.     /* Execute FAPI command with passed arguments */
    127. 

  127.     r = Fapi_VerifyQuote (fctx, ctx.publicKeyPath, qualifyingData,
    128. 

  128.         qualifyingDataSize, quoteInfo, signature, signatureSize,
    129. 

  129.         pcrLog);
    130. 

  130.     if (r != TSS2_RC_SUCCESS){
    131. 

  131.         free (qualifyingData);
    132. 

  132.         free (signature);
    133. 

  133.         free (quoteInfo);
    134. 

  134.         free (pcrLog);
    135. 

  135.         LOG_PERR ("Fapi_VerifyQuote", r);
    136. 

  136.         return 1;
    137. 

  137.     }
    138. 

  138. 

  139.     free (qualifyingData);
    140. 

  140.     free (signature);
    141. 

  141.     free (quoteInfo);
    142. 

  142.     free (pcrLog);
    143. 

  143. 

  144.     return 0;
    145. 

  145. }
    146. 

  146. 

  147. TSS2_TOOL_REGISTER("verifyquote", tss2_tool_onstart, tss2_tool_onrun, NULL)
    148.