tpm2-tss  master
TPM Software stack 2.0 TCG spec compliant implementation
ifapi_policy_types.h
1 /* SPDX-License-Identifier: BSD-2-Clause */
2 /*******************************************************************************
3  * Copyright 2018-2019, Fraunhofer SIT sponsored by Infineon Technologies AG
4  * All rights reserved.
5  ******************************************************************************/
6 #ifndef IFAPI_POLICY_TYPES_H
7 #define IFAPI_POLICY_TYPES_H
8 
9 #include "tss2_tpm2_types.h"
10 #include "fapi_types.h"
11 
12 typedef UINT32 TPMI_POLICYTYPE;
13 #define POLICYELEMENTS 0
14 #define POLICYOR 1
15 #define POLICYSIGNED 2
16 #define POLICYSECRET 3
17 #define POLICYPCR 4
18 #define POLICYLOCALITY 5
19 #define POLICYNV 6
20 #define POLICYCOUNTERTIMER 7
21 #define POLICYCOMMANDCODE 8
22 #define POLICYPHYSICALPRESENCE 9
23 #define POLICYCPHASH 10
24 #define POLICYNAMEHASH 11
25 #define POLICYDUPLICATIONSELECT 12
26 #define POLICYAUTHORIZE 13
27 #define POLICYAUTHVALUE 14
28 #define POLICYPASSWORD 15
29 #define POLICYNVWRITTEN 16
30 #define POLICYTEMPLATE 17
31 #define POLICYAUTHORIZENV 18
32 #define POLICYACTION 19
36 typedef struct {
37  TPM2B_NONCE nonceTPM;
38  TPM2B_DIGEST cpHashA;
39  TPM2B_NONCE policyRef;
40  INT32 expiration;
41  TPMT_SIGNATURE auth;
42  TPM2B_NAME publicKey;
43  char *publicKeyHint;
44  char *keyPath;
45  TPMT_PUBLIC keyPublic;
46  char *keyPEM;
47  TPMI_ALG_HASH keyPEMhashAlg;
48  TPMT_RSA_SCHEME rsaScheme;
49  TPMT_SIGNATURE signature_tpm;
50 } TPMS_POLICYSIGNED;
51 
54 typedef struct {
55  TPM2B_NONCE nonceTPM;
56  TPM2B_DIGEST cpHashA;
57  TPM2B_NONCE policyRef;
58  INT32 expiration;
59  char *objectPath;
60  TPM2B_NAME objectName;
61 } TPMS_POLICYSECRET;
62 
65 typedef struct {
66  TPMA_LOCALITY locality;
67 } TPMS_POLICYLOCALITY;
68 
71 typedef struct {
72  char *nvPath;
73  TPMI_RH_NV_INDEX nvIndex;
74  TPMS_NV_PUBLIC nvPublic;
75  TPMI_RH_NV_AUTH authHandle;
76  TPM2B_OPERAND operandB;
77  UINT16 offset;
78  TPM2_EO operation;
79 } TPMS_POLICYNV;
80 
83 typedef struct {
84  TPM2B_OPERAND operandB;
85  UINT16 offset;
86  TPM2_EO operation;
87 } TPMS_POLICYCOUNTERTIMER;
88 
91 typedef struct {
92  TPM2_CC code;
93 } TPMS_POLICYCOMMANDCODE;
94 
97 typedef struct {
98 } TPMS_POLICYPHYSICALPRESENCE;
99 
102 typedef struct {
103  TPM2B_DIGEST cpHash;
104 } TPMS_POLICYCPHASH;
105 
108 typedef struct {
109  UINT32 count;
110  UINT32 i;
111  TPM2B_NAME objectNames[3];
112  char *namePaths[3];
113  TPM2B_DIGEST nameHash;
114 } TPMS_POLICYNAMEHASH;
115 
118 typedef struct {
119  TPM2B_NAME objectName;
120  TPM2B_NAME newParentName;
121  TPMI_YES_NO includeObject;
122  char *newParentPath;
123  TPMT_PUBLIC newParentPublic;
124 } TPMS_POLICYDUPLICATIONSELECT;
125 
128 typedef struct {
129  char *type;
130  TPMT_PUBLIC key;
131  TPM2B_NONCE policyRef;
132  TPMT_SIGNATURE signature;
133  TPMI_ALG_HASH hashAlg;
134  UINT8_ARY pemSignature;
135  char *keyPEM;
136  TPMT_RSA_SCHEME rsaScheme;
137 } TPMS_POLICYAUTHORIZATION;
138 
139 typedef struct policy_object_node POLICY_OBJECT;
140 
143 typedef struct {
144  TPM2B_DIGEST approvedPolicy;
145  TPM2B_NONCE policyRef;
146  TPM2B_NAME keyName;
147  TPMT_TK_VERIFIED checkTicket;
148  char *keyPath;
149  TPMT_PUBLIC keyPublic;
150  char *keyPEM;
151  TPMI_ALG_HASH keyPEMhashAlg;
152  TPMT_RSA_SCHEME rsaScheme;
153  TPMT_SIGNATURE signature;
154 } TPMS_POLICYAUTHORIZE;
155 
158 typedef struct {
159 } TPMS_POLICYAUTHVALUE;
160 
163 typedef struct {
164 } TPMS_POLICYPASSWORD;
165 
168 typedef struct {
169  TPMI_YES_NO writtenSet;
170 } TPMS_POLICYNVWRITTEN;
171 
174 typedef struct {
175  TPM2B_DIGEST templateHash;
176  TPM2B_PUBLIC templatePublic;
177 } TPMS_POLICYTEMPLATE;
178 
181 typedef struct {
182  char *nvPath;
183  TPMS_NV_PUBLIC nvPublic;
184  TPM2B_DIGEST policy;
185  TPMT_HA nv_policy;
186  uint8_t *policy_buffer;
187 } TPMS_POLICYAUTHORIZENV;
188 
191 typedef struct {
192  char *action;
193 } TPMS_POLICYACTION;
194 
197 typedef struct {
198  struct TPML_PCRVALUES *pcrs;
199  TPMS_PCR_SELECT currentPCRs;
200  TPML_PCR_SELECTION currentPCRandBanks;
201 } TPMS_POLICYPCR;
202 
205 typedef struct TPML_POLICYAUTHORIZATIONS {
206  UINT32 count;
207  TPMS_POLICYAUTHORIZATION authorizations[];
208 } TPML_POLICYAUTHORIZATIONS;
209 
210 typedef struct TPML_POLICYELEMENTS TPML_POLICYELEMENTS;
211 
214 typedef struct {
215  char *name;
216  char *description;
217  TPML_DIGEST_VALUES policyDigests;
218  struct TPML_POLICYELEMENTS *policy;
219 } TPMS_POLICYBRANCH;
220 
223 typedef struct TPML_POLICYBRANCHES {
224  UINT32 count;
225  TPMS_POLICYBRANCH authorizations[];
226 } TPML_POLICYBRANCHES;
227 
230 typedef struct {
231  struct TPML_POLICYBRANCHES *branches;
232 } TPMS_POLICYOR;
233 
236 typedef union {
237  TPMS_POLICYOR PolicyOr;
238  TPMS_POLICYSIGNED PolicySigned;
239  TPMS_POLICYSECRET PolicySecret;
240  TPMS_POLICYPCR PolicyPCR;
241  TPMS_POLICYLOCALITY PolicyLocality;
242  TPMS_POLICYNV PolicyNV;
243  TPMS_POLICYCOUNTERTIMER PolicyCounterTimer;
244  TPMS_POLICYCOMMANDCODE PolicyCommandCode;
245  TPMS_POLICYPHYSICALPRESENCE PolicyPhysicalPresence;
246  TPMS_POLICYCPHASH PolicyCpHash;
247  TPMS_POLICYNAMEHASH PolicyNameHash;
248  TPMS_POLICYDUPLICATIONSELECT PolicyDuplicationSelect;
249  TPMS_POLICYAUTHORIZE PolicyAuthorize;
250  TPMS_POLICYAUTHVALUE PolicyAuthValue;
251  TPMS_POLICYPASSWORD PolicyPassword;
252  TPMS_POLICYNVWRITTEN PolicyNvWritten;
253  TPMS_POLICYTEMPLATE PolicyTemplate;
254  TPMS_POLICYAUTHORIZENV PolicyAuthorizeNv;
255  TPMS_POLICYACTION PolicyAction;
256 } TPMU_POLICYELEMENT;
257 
260 typedef struct {
261  TPMI_POLICYTYPE type;
262  TPML_DIGEST_VALUES policyDigests;
263  TPMU_POLICYELEMENT element;
264 } TPMT_POLICYELEMENT;
265 
268 struct TPML_POLICYELEMENTS {
269  UINT32 count;
270  TPMT_POLICYELEMENT elements[];
271 };
272 
275 typedef struct TPMS_POLICY {
276  char *description;
277  TPML_DIGEST_VALUES policyDigests;
278  struct TPML_POLICYAUTHORIZATIONS *policyAuthorizations;
279  struct TPML_POLICYELEMENTS *policy;
280 } TPMS_POLICY;
281 
282 #endif /* IFAPI_POLICY_TYPES_H */
TPML_POLICYAUTHORIZATIONS
Definition: ifapi_policy_types.h:205
TPML_POLICYAUTHORIZATIONS::count
UINT32 count
Definition: ifapi_policy_types.h:206
TPML_POLICYAUTHORIZATIONS::authorizations
TPMS_POLICYAUTHORIZATION authorizations[]
Definition: ifapi_policy_types.h:207
TPML_POLICYBRANCHES
Definition: ifapi_policy_types.h:223
TPML_POLICYBRANCHES::authorizations
TPMS_POLICYBRANCH authorizations[]
Definition: ifapi_policy_types.h:225
TPML_POLICYBRANCHES::count
UINT32 count
Definition: ifapi_policy_types.h:224
TPML_POLICYELEMENTS
Definition: ifapi_policy_types.h:268
TPML_POLICYELEMENTS::count
UINT32 count
Definition: ifapi_policy_types.h:269
TPML_POLICYELEMENTS::elements
TPMT_POLICYELEMENT elements[]
Definition: ifapi_policy_types.h:270
TPMS_POLICYACTION
Definition: ifapi_policy_types.h:191
TPMS_POLICYACTION::action
char * action
Definition: ifapi_policy_types.h:192
TPMS_POLICYAUTHORIZATION
Definition: ifapi_policy_types.h:128
TPMS_POLICYAUTHORIZATION::type
char * type
Definition: ifapi_policy_types.h:129
TPMS_POLICYAUTHORIZATION::key
TPMT_PUBLIC key
Definition: ifapi_policy_types.h:130
TPMS_POLICYAUTHORIZATION::policyRef
TPM2B_NONCE policyRef
Definition: ifapi_policy_types.h:131
TPMS_POLICYAUTHORIZATION::signature
TPMT_SIGNATURE signature
Definition: ifapi_policy_types.h:132
TPMS_POLICYAUTHORIZE
Definition: ifapi_policy_types.h:143
TPMS_POLICYAUTHORIZE::rsaScheme
TPMT_RSA_SCHEME rsaScheme
Definition: ifapi_policy_types.h:152
TPMS_POLICYAUTHORIZE::checkTicket
TPMT_TK_VERIFIED checkTicket
Definition: ifapi_policy_types.h:147
TPMS_POLICYAUTHORIZE::policyRef
TPM2B_NONCE policyRef
Definition: ifapi_policy_types.h:145
TPMS_POLICYAUTHORIZE::keyPublic
TPMT_PUBLIC keyPublic
Definition: ifapi_policy_types.h:149
TPMS_POLICYAUTHORIZE::keyPath
char * keyPath
Definition: ifapi_policy_types.h:148
TPMS_POLICYAUTHORIZE::keyName
TPM2B_NAME keyName
Definition: ifapi_policy_types.h:146
TPMS_POLICYAUTHORIZE::approvedPolicy
TPM2B_DIGEST approvedPolicy
Definition: ifapi_policy_types.h:144
TPMS_POLICYAUTHORIZE::keyPEM
char * keyPEM
Definition: ifapi_policy_types.h:150
TPMS_POLICYAUTHORIZE::keyPEMhashAlg
TPMI_ALG_HASH keyPEMhashAlg
Definition: ifapi_policy_types.h:151
TPMS_POLICYAUTHORIZENV
Definition: ifapi_policy_types.h:181
TPMS_POLICYAUTHORIZENV::policy
TPM2B_DIGEST policy
Definition: ifapi_policy_types.h:184
TPMS_POLICYAUTHORIZENV::nvPath
char * nvPath
Definition: ifapi_policy_types.h:182
TPMS_POLICYAUTHORIZENV::nv_policy
TPMT_HA nv_policy
Definition: ifapi_policy_types.h:185
TPMS_POLICYAUTHORIZENV::nvPublic
TPMS_NV_PUBLIC nvPublic
Definition: ifapi_policy_types.h:183
TPMS_POLICYAUTHVALUE
Definition: ifapi_policy_types.h:158
TPMS_POLICYBRANCH
Definition: ifapi_policy_types.h:214
TPMS_POLICYBRANCH::policy
struct TPML_POLICYELEMENTS * policy
Definition: ifapi_policy_types.h:218
TPMS_POLICYBRANCH::name
char * name
Definition: ifapi_policy_types.h:215
TPMS_POLICYBRANCH::description
char * description
Definition: ifapi_policy_types.h:216
TPMS_POLICYCOMMANDCODE
Definition: ifapi_policy_types.h:91
TPMS_POLICYCOMMANDCODE::code
TPM2_CC code
Definition: ifapi_policy_types.h:92
TPMS_POLICYCOUNTERTIMER
Definition: ifapi_policy_types.h:83
TPMS_POLICYCOUNTERTIMER::operandB
TPM2B_OPERAND operandB
Definition: ifapi_policy_types.h:84
TPMS_POLICYCOUNTERTIMER::operation
TPM2_EO operation
Definition: ifapi_policy_types.h:86
TPMS_POLICYCOUNTERTIMER::offset
UINT16 offset
Definition: ifapi_policy_types.h:85
TPMS_POLICYCPHASH
Definition: ifapi_policy_types.h:102
TPMS_POLICYCPHASH::cpHash
TPM2B_DIGEST cpHash
Definition: ifapi_policy_types.h:103
TPMS_POLICYDUPLICATIONSELECT
Definition: ifapi_policy_types.h:118
TPMS_POLICYDUPLICATIONSELECT::newParentPath
char * newParentPath
Definition: ifapi_policy_types.h:122
TPMS_POLICYDUPLICATIONSELECT::newParentName
TPM2B_NAME newParentName
Definition: ifapi_policy_types.h:120
TPMS_POLICYDUPLICATIONSELECT::newParentPublic
TPMT_PUBLIC newParentPublic
Definition: ifapi_policy_types.h:123
TPMS_POLICYDUPLICATIONSELECT::includeObject
TPMI_YES_NO includeObject
Definition: ifapi_policy_types.h:121
TPMS_POLICYDUPLICATIONSELECT::objectName
TPM2B_NAME objectName
Definition: ifapi_policy_types.h:119
TPMS_POLICY
Definition: ifapi_policy_types.h:275
TPMS_POLICY::policy
struct TPML_POLICYELEMENTS * policy
Definition: ifapi_policy_types.h:279
TPMS_POLICY::policyAuthorizations
struct TPML_POLICYAUTHORIZATIONS * policyAuthorizations
Definition: ifapi_policy_types.h:278
TPMS_POLICY::description
char * description
Definition: ifapi_policy_types.h:276
TPMS_POLICY::policyDigests
TPML_DIGEST_VALUES policyDigests
Definition: ifapi_policy_types.h:277
TPMS_POLICYLOCALITY
Definition: ifapi_policy_types.h:65
TPMS_POLICYLOCALITY::locality
TPMA_LOCALITY locality
Definition: ifapi_policy_types.h:66
TPMS_POLICYNAMEHASH
Definition: ifapi_policy_types.h:108
TPMS_POLICYNAMEHASH::i
UINT32 i
Definition: ifapi_policy_types.h:110
TPMS_POLICYNAMEHASH::count
UINT32 count
Definition: ifapi_policy_types.h:109
TPMS_POLICYNAMEHASH::nameHash
TPM2B_DIGEST nameHash
Definition: ifapi_policy_types.h:113
TPMS_POLICYNV
Definition: ifapi_policy_types.h:71
TPMS_POLICYNV::operandB
TPM2B_OPERAND operandB
Definition: ifapi_policy_types.h:76
TPMS_POLICYNV::authHandle
TPMI_RH_NV_AUTH authHandle
Definition: ifapi_policy_types.h:75
TPMS_POLICYNV::nvPath
char * nvPath
Definition: ifapi_policy_types.h:72
TPMS_POLICYNV::operation
TPM2_EO operation
Definition: ifapi_policy_types.h:78
TPMS_POLICYNV::nvPublic
TPMS_NV_PUBLIC nvPublic
Definition: ifapi_policy_types.h:74
TPMS_POLICYNV::nvIndex
TPMI_RH_NV_INDEX nvIndex
Definition: ifapi_policy_types.h:73
TPMS_POLICYNV::offset
UINT16 offset
Definition: ifapi_policy_types.h:77
TPMS_POLICYNVWRITTEN
Definition: ifapi_policy_types.h:168
TPMS_POLICYNVWRITTEN::writtenSet
TPMI_YES_NO writtenSet
Definition: ifapi_policy_types.h:169
TPMS_POLICYOR
Definition: ifapi_policy_types.h:230
TPMS_POLICYOR::branches
struct TPML_POLICYBRANCHES * branches
Definition: ifapi_policy_types.h:231
TPMS_POLICYPASSWORD
Definition: ifapi_policy_types.h:163
TPMS_POLICYPCR
Definition: ifapi_policy_types.h:197
TPMS_POLICYPCR::currentPCRandBanks
TPML_PCR_SELECTION currentPCRandBanks
Definition: ifapi_policy_types.h:200
TPMS_POLICYPCR::currentPCRs
TPMS_PCR_SELECT currentPCRs
Definition: ifapi_policy_types.h:199
TPMS_POLICYPCR::pcrs
struct TPML_PCRVALUES * pcrs
Definition: ifapi_policy_types.h:198
TPMS_POLICYPHYSICALPRESENCE
Definition: ifapi_policy_types.h:97
TPMS_POLICYSECRET
Definition: ifapi_policy_types.h:54
TPMS_POLICYSECRET::cpHashA
TPM2B_DIGEST cpHashA
Definition: ifapi_policy_types.h:56
TPMS_POLICYSECRET::policyRef
TPM2B_NONCE policyRef
Definition: ifapi_policy_types.h:57
TPMS_POLICYSECRET::objectPath
char * objectPath
Definition: ifapi_policy_types.h:59
TPMS_POLICYSECRET::nonceTPM
TPM2B_NONCE nonceTPM
Definition: ifapi_policy_types.h:55
TPMS_POLICYSECRET::objectName
TPM2B_NAME objectName
Definition: ifapi_policy_types.h:60
TPMS_POLICYSECRET::expiration
INT32 expiration
Definition: ifapi_policy_types.h:58
TPMS_POLICYSIGNED
Definition: ifapi_policy_types.h:36
TPMS_POLICYSIGNED::rsaScheme
TPMT_RSA_SCHEME rsaScheme
Definition: ifapi_policy_types.h:48
TPMS_POLICYSIGNED::cpHashA
TPM2B_DIGEST cpHashA
Definition: ifapi_policy_types.h:38
TPMS_POLICYSIGNED::policyRef
TPM2B_NONCE policyRef
Definition: ifapi_policy_types.h:39
TPMS_POLICYSIGNED::keyPublic
TPMT_PUBLIC keyPublic
Definition: ifapi_policy_types.h:45
TPMS_POLICYSIGNED::keyPath
char * keyPath
Definition: ifapi_policy_types.h:44
TPMS_POLICYSIGNED::nonceTPM
TPM2B_NONCE nonceTPM
Definition: ifapi_policy_types.h:37
TPMS_POLICYSIGNED::publicKey
TPM2B_NAME publicKey
Definition: ifapi_policy_types.h:42
TPMS_POLICYSIGNED::auth
TPMT_SIGNATURE auth
Definition: ifapi_policy_types.h:41
TPMS_POLICYSIGNED::keyPEM
char * keyPEM
Definition: ifapi_policy_types.h:46
TPMS_POLICYSIGNED::keyPEMhashAlg
TPMI_ALG_HASH keyPEMhashAlg
Definition: ifapi_policy_types.h:47
TPMS_POLICYSIGNED::publicKeyHint
char * publicKeyHint
Definition: ifapi_policy_types.h:43
TPMS_POLICYSIGNED::expiration
INT32 expiration
Definition: ifapi_policy_types.h:40
TPMS_POLICYTEMPLATE
Definition: ifapi_policy_types.h:174
TPMS_POLICYTEMPLATE::templatePublic
TPM2B_PUBLIC templatePublic
Definition: ifapi_policy_types.h:176
TPMS_POLICYTEMPLATE::templateHash
TPM2B_DIGEST templateHash
Definition: ifapi_policy_types.h:175
TPMT_POLICYELEMENT
Definition: ifapi_policy_types.h:260
TPMT_POLICYELEMENT::element
TPMU_POLICYELEMENT element
Definition: ifapi_policy_types.h:263
TPMT_POLICYELEMENT::type
TPMI_POLICYTYPE type
Definition: ifapi_policy_types.h:261
TPMT_POLICYELEMENT::policyDigests
TPML_DIGEST_VALUES policyDigests
Definition: ifapi_policy_types.h:262
UINT8_ARY
Definition: fapi_types.h:15
policy_object_node
Definition: ifapi_policy_execute.h:44
TPMU_POLICYELEMENT
Definition: ifapi_policy_types.h:236
TPMU_POLICYELEMENT::PolicyCommandCode
TPMS_POLICYCOMMANDCODE PolicyCommandCode
Definition: ifapi_policy_types.h:244
TPMU_POLICYELEMENT::PolicyPCR
TPMS_POLICYPCR PolicyPCR
Definition: ifapi_policy_types.h:240
TPMU_POLICYELEMENT::PolicyNV
TPMS_POLICYNV PolicyNV
Definition: ifapi_policy_types.h:242
TPMU_POLICYELEMENT::PolicyAuthValue
TPMS_POLICYAUTHVALUE PolicyAuthValue
Definition: ifapi_policy_types.h:250
TPMU_POLICYELEMENT::PolicySigned
TPMS_POLICYSIGNED PolicySigned
Definition: ifapi_policy_types.h:238
TPMU_POLICYELEMENT::PolicyAuthorize
TPMS_POLICYAUTHORIZE PolicyAuthorize
Definition: ifapi_policy_types.h:249
TPMU_POLICYELEMENT::PolicyLocality
TPMS_POLICYLOCALITY PolicyLocality
Definition: ifapi_policy_types.h:241
TPMU_POLICYELEMENT::PolicyCounterTimer
TPMS_POLICYCOUNTERTIMER PolicyCounterTimer
Definition: ifapi_policy_types.h:243
TPMU_POLICYELEMENT::PolicyOr
TPMS_POLICYOR PolicyOr
Definition: ifapi_policy_types.h:237
TPMU_POLICYELEMENT::PolicyCpHash
TPMS_POLICYCPHASH PolicyCpHash
Definition: ifapi_policy_types.h:246
TPMU_POLICYELEMENT::PolicySecret
TPMS_POLICYSECRET PolicySecret
Definition: ifapi_policy_types.h:239
TPMU_POLICYELEMENT::PolicyDuplicationSelect
TPMS_POLICYDUPLICATIONSELECT PolicyDuplicationSelect
Definition: ifapi_policy_types.h:248
TPMU_POLICYELEMENT::PolicyAuthorizeNv
TPMS_POLICYAUTHORIZENV PolicyAuthorizeNv
Definition: ifapi_policy_types.h:254
TPMU_POLICYELEMENT::PolicyPassword
TPMS_POLICYPASSWORD PolicyPassword
Definition: ifapi_policy_types.h:251
TPMU_POLICYELEMENT::PolicyPhysicalPresence
TPMS_POLICYPHYSICALPRESENCE PolicyPhysicalPresence
Definition: ifapi_policy_types.h:245
TPMU_POLICYELEMENT::PolicyAction
TPMS_POLICYACTION PolicyAction
Definition: ifapi_policy_types.h:255
TPMU_POLICYELEMENT::PolicyNvWritten
TPMS_POLICYNVWRITTEN PolicyNvWritten
Definition: ifapi_policy_types.h:252
TPMU_POLICYELEMENT::PolicyTemplate
TPMS_POLICYTEMPLATE PolicyTemplate
Definition: ifapi_policy_types.h:253
TPMU_POLICYELEMENT::PolicyNameHash
TPMS_POLICYNAMEHASH PolicyNameHash
Definition: ifapi_policy_types.h:247