ifapi_policy_types.h

/* SPDX-License-Identifier: BSD-2-Clause */
/*******************************************************************************
 * Copyright 2018-2019, Fraunhofer SIT sponsored by Infineon Technologies AG
 * All rights reserved.
 ******************************************************************************/
#ifndef IFAPI_POLICY_TYPES_H
#define IFAPI_POLICY_TYPES_H
 
#include <stdint.h> // for uint8_t
 
#include "fapi_types.h"      // for UINT8_ARY
#include "tss2_common.h"     // for UINT32, INT32, UINT16
#include "tss2_tpm2_types.h" // for TPM2B_DIGEST, TPM2B_NAME, TPM2B_NONCE
 
struct TPML_POLICYELEMENTS;
 
typedef UINT32 TPMI_POLICYTYPE;
#define POLICYELEMENTS          0
#define POLICYOR                1  
#define POLICYSIGNED            2  
#define POLICYSECRET            3  
#define POLICYPCR               4  
#define POLICYLOCALITY          5  
#define POLICYNV                6  
#define POLICYCOUNTERTIMER      7  
#define POLICYCOMMANDCODE       8  
#define POLICYPHYSICALPRESENCE  9  
#define POLICYCPHASH            10 
#define POLICYNAMEHASH          11 
#define POLICYDUPLICATIONSELECT 12 
#define POLICYAUTHORIZE         13 
#define POLICYAUTHVALUE         14 
#define POLICYPASSWORD          15 
#define POLICYNVWRITTEN         16 
#define POLICYTEMPLATE          17 
#define POLICYAUTHORIZENV       18 
#define POLICYACTION            19 
typedef struct {
    TPM2B_NONCE     nonceTPM;   
    TPM2B_DIGEST    cpHashA;    
    TPM2B_NONCE     policyRef;  
    INT32           expiration; 
    TPMT_SIGNATURE  auth;       
    TPM2B_NAME      publicKey;  
    char           *publicKeyHint; 
    char           *keyPath;       
    TPMT_PUBLIC     keyPublic;     
    char           *keyPEM; 
    TPMI_ALG_HASH   keyPEMhashAlg; 
    TPMT_RSA_SCHEME rsaScheme;     
    TPMT_SIGNATURE  signature_tpm;
} TPMS_POLICYSIGNED;
 
typedef struct {
    TPM2B_NONCE  nonceTPM;   
    TPM2B_DIGEST cpHashA;    
    TPM2B_NONCE  policyRef;  
    INT32        expiration; 
    char        *objectPath; 
    TPM2B_NAME   objectName; 
} TPMS_POLICYSECRET;
 
typedef struct {
    TPMA_LOCALITY locality; 
} TPMS_POLICYLOCALITY;
 
typedef struct {
    char            *nvPath;     
    TPMI_RH_NV_INDEX nvIndex;    
    TPMS_NV_PUBLIC   nvPublic;   
    TPMI_RH_NV_AUTH  authHandle; 
    TPM2B_OPERAND    operandB;   
    UINT16           offset;     
    TPM2_EO          operation;  
} TPMS_POLICYNV;
 
typedef struct {
    TPM2B_OPERAND operandB;  
    UINT16        offset;    
    TPM2_EO       operation; 
} TPMS_POLICYCOUNTERTIMER;
 
typedef struct {
    TPM2_CC code; 
} TPMS_POLICYCOMMANDCODE;
 
typedef struct {
} TPMS_POLICYPHYSICALPRESENCE;
 
typedef struct {
    TPM2B_DIGEST cpHash; 
} TPMS_POLICYCPHASH;
 
typedef struct {
    UINT32       count;          
    UINT32       i;              
    TPM2B_NAME   objectNames[3]; 
    char        *namePaths[3];   
    TPM2B_DIGEST nameHash;       
} TPMS_POLICYNAMEHASH;
 
typedef struct {
    TPM2B_NAME  objectName;      
    TPM2B_NAME  newParentName;   
    TPMI_YES_NO includeObject;   
    char       *newParentPath;   
    TPMT_PUBLIC newParentPublic; 
} TPMS_POLICYDUPLICATIONSELECT;
 
typedef struct {
    char           *type;      
    TPMT_PUBLIC     key;       
    TPM2B_NONCE     policyRef; 
    TPMT_SIGNATURE  signature; 
    TPMI_ALG_HASH   hashAlg;
    UINT8_ARY       pemSignature;
    char           *keyPEM;
    TPMT_RSA_SCHEME rsaScheme;
} TPMS_POLICYAUTHORIZATION;
 
typedef struct policy_object_node POLICY_OBJECT;
 
typedef struct {
    TPM2B_DIGEST     approvedPolicy; 
    TPM2B_NONCE      policyRef;      
    TPM2B_NAME       keyName; 
    TPMT_TK_VERIFIED checkTicket; 
    char            *keyPath;     
    TPMT_PUBLIC      keyPublic;   
    char            *keyPEM; 
    TPMI_ALG_HASH    keyPEMhashAlg; 
    TPMT_RSA_SCHEME  rsaScheme;     
    TPMT_SIGNATURE   signature;
} TPMS_POLICYAUTHORIZE;
 
typedef struct {
} TPMS_POLICYAUTHVALUE;
 
typedef struct {
} TPMS_POLICYPASSWORD;
 
typedef struct {
    TPMI_YES_NO writtenSet; 
} TPMS_POLICYNVWRITTEN;
 
typedef struct {
    TPM2B_DIGEST templateHash;   
    TPM2B_PUBLIC templatePublic; 
} TPMS_POLICYTEMPLATE;
 
typedef struct {
    char          *nvPath;    
    TPMS_NV_PUBLIC nvPublic;  
    TPM2B_DIGEST   policy;    
    TPMT_HA        nv_policy; 
    uint8_t       *policy_buffer;
} TPMS_POLICYAUTHORIZENV;
 
typedef struct {
    char *action; 
} TPMS_POLICYACTION;
 
typedef struct {
    struct TPML_PCRVALUES *pcrs;               
    TPMS_PCR_SELECT        currentPCRs;        
    TPML_PCR_SELECTION     currentPCRandBanks; 
} TPMS_POLICYPCR;
 
typedef struct TPML_POLICYAUTHORIZATIONS {
    UINT32                   count;            
    TPMS_POLICYAUTHORIZATION authorizations[]; 
} TPML_POLICYAUTHORIZATIONS;
 
typedef struct TPML_POLICYELEMENTS TPML_POLICYELEMENTS;
 
typedef struct {
    char                       *name;        
    char                       *description; 
    TPML_DIGEST_VALUES          policyDigests;
    struct TPML_POLICYELEMENTS *policy; 
} TPMS_POLICYBRANCH;
 
typedef struct TPML_POLICYBRANCHES {
    UINT32            count;            
    TPMS_POLICYBRANCH authorizations[]; 
} TPML_POLICYBRANCHES;
 
typedef struct {
    struct TPML_POLICYBRANCHES
        *branches; 
} TPMS_POLICYOR;
 
typedef union {
    TPMS_POLICYOR                PolicyOr;                
    TPMS_POLICYSIGNED            PolicySigned;            
    TPMS_POLICYSECRET            PolicySecret;            
    TPMS_POLICYPCR               PolicyPCR;               
    TPMS_POLICYLOCALITY          PolicyLocality;          
    TPMS_POLICYNV                PolicyNV;                
    TPMS_POLICYCOUNTERTIMER      PolicyCounterTimer;      
    TPMS_POLICYCOMMANDCODE       PolicyCommandCode;       
    TPMS_POLICYPHYSICALPRESENCE  PolicyPhysicalPresence;  
    TPMS_POLICYCPHASH            PolicyCpHash;            
    TPMS_POLICYNAMEHASH          PolicyNameHash;          
    TPMS_POLICYDUPLICATIONSELECT PolicyDuplicationSelect; 
    TPMS_POLICYAUTHORIZE         PolicyAuthorize;         
    TPMS_POLICYAUTHVALUE         PolicyAuthValue;         
    TPMS_POLICYPASSWORD          PolicyPassword;          
    TPMS_POLICYNVWRITTEN         PolicyNvWritten;         
    TPMS_POLICYTEMPLATE          PolicyTemplate;          
    TPMS_POLICYAUTHORIZENV       PolicyAuthorizeNv;       
    TPMS_POLICYACTION            PolicyAction;            
} TPMU_POLICYELEMENT;
 
typedef struct {
    TPMI_POLICYTYPE    type;          
    TPML_DIGEST_VALUES policyDigests; 
    TPMU_POLICYELEMENT element;       
} TPMT_POLICYELEMENT;
 
struct TPML_POLICYELEMENTS {
    UINT32             count;      
    TPMT_POLICYELEMENT elements[]; 
};
 
typedef struct TPMS_POLICY {
    char                             *description;          
    TPML_DIGEST_VALUES                policyDigests;        
    struct TPML_POLICYAUTHORIZATIONS *policyAuthorizations; 
    struct TPML_POLICYELEMENTS       *policy;               
} TPMS_POLICY;
 
#endif /* IFAPI_POLICY_TYPES_H */