src/libimcv/tcg/tcg_pts_attr_aik.c

   1 /*
   2  * Copyright (C) 2011 Sansar Choinyambuu
   3  * HSR Hochschule fuer Technik Rapperswil
   4  *
   5  * This program is free software; you can redistribute it and/or modify it
   6  * under the terms of the GNU General Public License as published by the
   7  * Free Software Foundation; either version 2 of the License, or (at your
   8  * option) any later version.  See <http://www.fsf.org/copyleft/gpl.txt>.
   9  *
  10  * This program is distributed in the hope that it will be useful, but
  11  * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
  12  * or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
  13  * for more details.
  14  */
  15
  16 #include "tcg_pts_attr_aik.h"
  17
  18 #include <pa_tnc/pa_tnc_msg.h>
  19 #include <bio/bio_writer.h>
  20 #include <bio/bio_reader.h>
  21 #include <debug.h>
  22
  23 typedef struct private_tcg_pts_attr_aik_t private_tcg_pts_attr_aik_t;
  24
  25 /**
  26  * Attestation Identity Key
  27  * see section 3.13 of PTS Protocol: Binding to TNC IF-M Specification
  28  *
  29  *                       1                   2                   3
  30  *   0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
  31  *  +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
  32  *  |     Flags     |    Attestation Identity Key (Variable Length) ~
  33  *  +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
  34  *  |          Attestation Identity Key (Variable Length)           ~
  35  *  +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
  36  */
  37
  38 #define PTS_AIK_SIZE                    4
  39
  40 /**
  41  * Private data of an tcg_pts_attr_aik_t object.
  42  */
  43 struct private_tcg_pts_attr_aik_t {
  44
  45         /**
  46          * Public members of tcg_pts_attr_aik_t
  47          */
  48         tcg_pts_attr_aik_t public;
  49
  50         /**
  51          * Attribute vendor ID
  52          */
  53         pen_t vendor_id;
  54
  55         /**
  56          * Attribute type
  57          */
  58         u_int32_t type;
  59
  60         /**
  61          * Attribute value
  62          */
  63         chunk_t value;
  64
  65         /**
  66          * Noskip flag
  67          */
  68         bool noskip_flag;
  69
  70         /**
  71          * Naked Public Key flag
  72          */
  73         bool naked_pub_aik;
  74
  75         /**
  76          * Attestation Identity Key
  77          */
  78         chunk_t aik;
  79 };
  80
  81 METHOD(pa_tnc_attr_t, get_vendor_id, pen_t,
  82         private_tcg_pts_attr_aik_t *this)
  83 {
  84         return this->vendor_id;
  85 }
  86
  87 METHOD(pa_tnc_attr_t, get_type, u_int32_t,
  88         private_tcg_pts_attr_aik_t *this)
  89 {
  90         return this->type;
  91 }
  92
  93 METHOD(pa_tnc_attr_t, get_value, chunk_t,
  94         private_tcg_pts_attr_aik_t *this)
  95 {
  96         return this->value;
  97 }
  98
  99 METHOD(pa_tnc_attr_t, get_noskip_flag, bool,
 100         private_tcg_pts_attr_aik_t *this)
 101 {
 102         return this->noskip_flag;
 103 }
 104
 105 METHOD(pa_tnc_attr_t, set_noskip_flag,void,
 106         private_tcg_pts_attr_aik_t *this, bool noskip)
 107 {
 108         this->noskip_flag = noskip;
 109 }
 110
 111 METHOD(pa_tnc_attr_t, build, void,
 112         private_tcg_pts_attr_aik_t *this)
 113 {
 114         bio_writer_t *writer;
 115         u_int8_t flags = 0;
 116
 117         writer = bio_writer_create(PTS_AIK_SIZE);
 118
 119         if(this->naked_pub_aik) flags += 128;
 120         writer->write_uint8 (writer, flags);
 121         writer->write_data(writer, this->aik);
 122
 123         this->value = chunk_clone(writer->get_buf(writer));
 124         writer->destroy(writer);
 125 }
 126
 127 METHOD(pa_tnc_attr_t, process, status_t,
 128         private_tcg_pts_attr_aik_t *this, u_int32_t *offset)
 129 {
 130         bio_reader_t *reader;
 131         u_int8_t flags;
 132
 133         if (this->value.len < PTS_AIK_SIZE)
 134         {
 135                 DBG1(DBG_TNC, "insufficient data for Attestation Identity Key");
 136                 *offset = 0;
 137                 return FAILED;
 138         }
 139         reader = bio_reader_create(this->value);
 140
 141         reader->read_uint8(reader, &flags);
 142         if((flags >> 7 ) & 1) this->naked_pub_aik = true;
 143
 144         reader->read_data  (reader, this->value.len - 1, &this->aik);
 145         this->aik = chunk_clone(this->aik);
 146         reader->destroy(reader);
 147
 148         return SUCCESS;
 149 }
 150
 151 METHOD(pa_tnc_attr_t, destroy, void,
 152         private_tcg_pts_attr_aik_t *this)
 153 {
 154         free(this->value.ptr);
 155         free(this->aik.ptr);
 156         free(this);
 157 }
 158
 159 METHOD(tcg_pts_attr_aik_t, get_naked_flag, bool,
 160         private_tcg_pts_attr_aik_t *this)
 161 {
 162         return this->naked_pub_aik;
 163 }
 164
 165 METHOD(tcg_pts_attr_aik_t, set_naked_flag, void,
 166         private_tcg_pts_attr_aik_t *this, bool naked_pub_aik)
 167 {
 168         this->naked_pub_aik = naked_pub_aik;
 169 }
 170
 171 METHOD(tcg_pts_attr_aik_t, get_aik, chunk_t,
 172         private_tcg_pts_attr_aik_t *this)
 173 {
 174         return this->aik;
 175 }
 176
 177 METHOD(tcg_pts_attr_aik_t, set_aik, void,
 178                 private_tcg_pts_attr_aik_t *this,
 179                 chunk_t aik)
 180 {
 181         this->aik = aik;
 182 }
 183
 184 /**
 185  * Described in header.
 186  */
 187 pa_tnc_attr_t *tcg_pts_attr_aik_create(bool naked_pub_aik, chunk_t aik)
 188 {
 189         private_tcg_pts_attr_aik_t *this;
 190
 191         INIT(this,
 192                 .public = {
 193                         .pa_tnc_attribute = {
 194                                 .get_vendor_id = _get_vendor_id,
 195                                 .get_type = _get_type,
 196                                 .get_value = _get_value,
 197                                 .get_noskip_flag = _get_noskip_flag,
 198                                 .set_noskip_flag = _set_noskip_flag,
 199                                 .build = _build,
 200                                 .process = _process,
 201                                 .destroy = _destroy,
 202                         },
 203                         .get_naked_flag = _get_naked_flag,
 204                         .set_naked_flag = _set_naked_flag,
 205                         .get_aik = _get_aik,
 206                         .set_aik = _set_aik,
 207                 },
 208                 .vendor_id = PEN_TCG,
 209                 .type = TCG_PTS_AIK,
 210                 .naked_pub_aik = naked_pub_aik,
 211                 .aik = aik,
 212         );
 213
 214         return &this->public.pa_tnc_attribute;
 215 }
 216
 217
 218 /**
 219  * Described in header.
 220  */
 221 pa_tnc_attr_t *tcg_pts_attr_aik_create_from_data(chunk_t data)
 222 {
 223         private_tcg_pts_attr_aik_t *this;
 224
 225         INIT(this,
 226                 .public = {
 227                         .pa_tnc_attribute = {
 228                                 .get_vendor_id = _get_vendor_id,
 229                                 .get_type = _get_type,
 230                                 .get_value = _get_value,
 231                                 .get_noskip_flag = _get_noskip_flag,
 232                                 .set_noskip_flag = _set_noskip_flag,
 233                                 .build = _build,
 234                                 .process = _process,
 235                                 .destroy = _destroy,
 236                         },
 237                         .get_naked_flag = _get_naked_flag,
 238                         .set_naked_flag = _set_naked_flag,
 239                         .get_aik = _get_aik,
 240                         .set_aik = _set_aik,
 241                 },
 242                 .vendor_id = PEN_TCG,
 243                 .type = TCG_PTS_AIK,
 244                 .value = chunk_clone(data),
 245         );
 246
 247         return &this->public.pa_tnc_attribute;
 248 }