1 // SPDX-License-Identifier: GPL-2.0
2 #define pr_fmt(fmt) "ASYM-TPM: "fmt
3 #include <linux/slab.h>
4 #include <linux/module.h>
5 #include <linux/export.h>
6 #include <linux/kernel.h>
7 #include <linux/seq_file.h>
8 #include <linux/scatterlist.h>
10 #include <linux/tpm_command.h>
11 #include <crypto/akcipher.h>
12 #include <crypto/hash.h>
13 #include <crypto/sha.h>
14 #include <asm/unaligned.h>
15 #include <keys/asymmetric-subtype.h>
16 #include <keys/trusted_tpm.h>
17 #include <crypto/asym_tpm_subtype.h>
18 #include <crypto/public_key.h>
20 #define TPM_ORD_FLUSHSPECIFIC 186
21 #define TPM_ORD_LOADKEY2 65
22 #define TPM_ORD_UNBIND 30
23 #define TPM_ORD_SIGN 60
25 #define TPM_RT_KEY 0x00000001
28 * Load a TPM key from the blob provided by userspace
30 static int tpm_loadkey2(struct tpm_buf *tb,
31 uint32_t keyhandle, unsigned char *keyauth,
32 const unsigned char *keyblob, int keybloblen,
35 unsigned char nonceodd[TPM_NONCE_SIZE];
36 unsigned char enonce[TPM_NONCE_SIZE];
37 unsigned char authdata[SHA1_DIGEST_SIZE];
38 uint32_t authhandle = 0;
39 unsigned char cont = 0;
43 ordinal = htonl(TPM_ORD_LOADKEY2);
45 /* session for loading the key */
46 ret = oiap(tb, &authhandle, enonce);
48 pr_info("oiap failed (%d)\n", ret);
52 /* generate odd nonce */
53 ret = tpm_get_random(NULL, nonceodd, TPM_NONCE_SIZE);
55 pr_info("tpm_get_random failed (%d)\n", ret);
59 /* calculate authorization HMAC value */
60 ret = TSS_authhmac(authdata, keyauth, SHA1_DIGEST_SIZE, enonce,
61 nonceodd, cont, sizeof(uint32_t), &ordinal,
62 keybloblen, keyblob, 0, 0);
66 /* build the request buffer */
67 tpm_buf_reset(tb, TPM_TAG_RQU_AUTH1_COMMAND, TPM_ORD_LOADKEY2);
68 tpm_buf_append_u32(tb, keyhandle);
69 tpm_buf_append(tb, keyblob, keybloblen);
70 tpm_buf_append_u32(tb, authhandle);
71 tpm_buf_append(tb, nonceodd, TPM_NONCE_SIZE);
72 tpm_buf_append_u8(tb, cont);
73 tpm_buf_append(tb, authdata, SHA1_DIGEST_SIZE);
75 ret = trusted_tpm_send(tb->data, MAX_BUF_SIZE);
77 pr_info("authhmac failed (%d)\n", ret);
81 ret = TSS_checkhmac1(tb->data, ordinal, nonceodd, keyauth,
82 SHA1_DIGEST_SIZE, 0, 0);
84 pr_info("TSS_checkhmac1 failed (%d)\n", ret);
88 *newhandle = LOAD32(tb->data, TPM_DATA_OFFSET);
93 * Execute the FlushSpecific TPM command
95 static int tpm_flushspecific(struct tpm_buf *tb, uint32_t handle)
97 tpm_buf_reset(tb, TPM_TAG_RQU_COMMAND, TPM_ORD_FLUSHSPECIFIC);
98 tpm_buf_append_u32(tb, handle);
99 tpm_buf_append_u32(tb, TPM_RT_KEY);
101 return trusted_tpm_send(tb->data, MAX_BUF_SIZE);
105 * Decrypt a blob provided by userspace using a specific key handle.
106 * The handle is a well known handle or previously loaded by e.g. LoadKey2
108 static int tpm_unbind(struct tpm_buf *tb,
109 uint32_t keyhandle, unsigned char *keyauth,
110 const unsigned char *blob, uint32_t bloblen,
111 void *out, uint32_t outlen)
113 unsigned char nonceodd[TPM_NONCE_SIZE];
114 unsigned char enonce[TPM_NONCE_SIZE];
115 unsigned char authdata[SHA1_DIGEST_SIZE];
116 uint32_t authhandle = 0;
117 unsigned char cont = 0;
122 ordinal = htonl(TPM_ORD_UNBIND);
123 datalen = htonl(bloblen);
125 /* session for loading the key */
126 ret = oiap(tb, &authhandle, enonce);
128 pr_info("oiap failed (%d)\n", ret);
132 /* generate odd nonce */
133 ret = tpm_get_random(NULL, nonceodd, TPM_NONCE_SIZE);
135 pr_info("tpm_get_random failed (%d)\n", ret);
139 /* calculate authorization HMAC value */
140 ret = TSS_authhmac(authdata, keyauth, SHA1_DIGEST_SIZE, enonce,
141 nonceodd, cont, sizeof(uint32_t), &ordinal,
142 sizeof(uint32_t), &datalen,
143 bloblen, blob, 0, 0);
147 /* build the request buffer */
148 tpm_buf_reset(tb, TPM_TAG_RQU_AUTH1_COMMAND, TPM_ORD_UNBIND);
149 tpm_buf_append_u32(tb, keyhandle);
150 tpm_buf_append_u32(tb, bloblen);
151 tpm_buf_append(tb, blob, bloblen);
152 tpm_buf_append_u32(tb, authhandle);
153 tpm_buf_append(tb, nonceodd, TPM_NONCE_SIZE);
154 tpm_buf_append_u8(tb, cont);
155 tpm_buf_append(tb, authdata, SHA1_DIGEST_SIZE);
157 ret = trusted_tpm_send(tb->data, MAX_BUF_SIZE);
159 pr_info("authhmac failed (%d)\n", ret);
163 datalen = LOAD32(tb->data, TPM_DATA_OFFSET);
165 ret = TSS_checkhmac1(tb->data, ordinal, nonceodd,
166 keyauth, SHA1_DIGEST_SIZE,
167 sizeof(uint32_t), TPM_DATA_OFFSET,
168 datalen, TPM_DATA_OFFSET + sizeof(uint32_t),
171 pr_info("TSS_checkhmac1 failed (%d)\n", ret);
175 memcpy(out, tb->data + TPM_DATA_OFFSET + sizeof(uint32_t),
176 min(outlen, datalen));
182 * Sign a blob provided by userspace (that has had the hash function applied)
183 * using a specific key handle. The handle is assumed to have been previously
184 * loaded by e.g. LoadKey2.
186 * Note that the key signature scheme of the used key should be set to
187 * TPM_SS_RSASSAPKCS1v15_DER. This allows the hashed input to be of any size
188 * up to key_length_in_bytes - 11 and not be limited to size 20 like the
189 * TPM_SS_RSASSAPKCS1v15_SHA1 signature scheme.
191 static int tpm_sign(struct tpm_buf *tb,
192 uint32_t keyhandle, unsigned char *keyauth,
193 const unsigned char *blob, uint32_t bloblen,
194 void *out, uint32_t outlen)
196 unsigned char nonceodd[TPM_NONCE_SIZE];
197 unsigned char enonce[TPM_NONCE_SIZE];
198 unsigned char authdata[SHA1_DIGEST_SIZE];
199 uint32_t authhandle = 0;
200 unsigned char cont = 0;
205 ordinal = htonl(TPM_ORD_SIGN);
206 datalen = htonl(bloblen);
208 /* session for loading the key */
209 ret = oiap(tb, &authhandle, enonce);
211 pr_info("oiap failed (%d)\n", ret);
215 /* generate odd nonce */
216 ret = tpm_get_random(NULL, nonceodd, TPM_NONCE_SIZE);
218 pr_info("tpm_get_random failed (%d)\n", ret);
222 /* calculate authorization HMAC value */
223 ret = TSS_authhmac(authdata, keyauth, SHA1_DIGEST_SIZE, enonce,
224 nonceodd, cont, sizeof(uint32_t), &ordinal,
225 sizeof(uint32_t), &datalen,
226 bloblen, blob, 0, 0);
230 /* build the request buffer */
231 tpm_buf_reset(tb, TPM_TAG_RQU_AUTH1_COMMAND, TPM_ORD_SIGN);
232 tpm_buf_append_u32(tb, keyhandle);
233 tpm_buf_append_u32(tb, bloblen);
234 tpm_buf_append(tb, blob, bloblen);
235 tpm_buf_append_u32(tb, authhandle);
236 tpm_buf_append(tb, nonceodd, TPM_NONCE_SIZE);
237 tpm_buf_append_u8(tb, cont);
238 tpm_buf_append(tb, authdata, SHA1_DIGEST_SIZE);
240 ret = trusted_tpm_send(tb->data, MAX_BUF_SIZE);
242 pr_info("authhmac failed (%d)\n", ret);
246 datalen = LOAD32(tb->data, TPM_DATA_OFFSET);
248 ret = TSS_checkhmac1(tb->data, ordinal, nonceodd,
249 keyauth, SHA1_DIGEST_SIZE,
250 sizeof(uint32_t), TPM_DATA_OFFSET,
251 datalen, TPM_DATA_OFFSET + sizeof(uint32_t),
254 pr_info("TSS_checkhmac1 failed (%d)\n", ret);
258 memcpy(out, tb->data + TPM_DATA_OFFSET + sizeof(uint32_t),
259 min(datalen, outlen));
264 /* Room to fit two u32 zeros for algo id and parameters length. */
265 #define SETKEY_PARAMS_SIZE (sizeof(u32) * 2)
268 * Maximum buffer size for the BER/DER encoded public key. The public key
269 * is of the form SEQUENCE { INTEGER n, INTEGER e } where n is a maximum 2048
270 * bit key and e is usually 65537
271 * The encoding overhead is:
272 * - max 4 bytes for SEQUENCE
273 * - max 4 bytes for INTEGER n type/length
275 * - max 2 bytes for INTEGER e type/length
277 * - 4+4 of zeros for set_pub_key parameters (SETKEY_PARAMS_SIZE)
279 #define PUB_KEY_BUF_SIZE (4 + 4 + 257 + 2 + 3 + SETKEY_PARAMS_SIZE)
282 * Provide a part of a description of the key for /proc/keys.
284 static void asym_tpm_describe(const struct key *asymmetric_key,
287 struct tpm_key *tk = asymmetric_key->payload.data[asym_crypto];
292 seq_printf(m, "TPM1.2/Blob");
295 static void asym_tpm_destroy(void *payload0, void *payload3)
297 struct tpm_key *tk = payload0;
308 /* How many bytes will it take to encode the length */
309 static inline uint32_t definite_length(uint32_t len)
318 static inline uint8_t *encode_tag_length(uint8_t *buf, uint8_t tag,
335 put_unaligned_be16(len, buf + 1);
339 static uint32_t derive_pub_key(const void *pub_key, uint32_t len, uint8_t *buf)
342 uint32_t n_len = definite_length(len) + 1 + len + 1;
343 uint32_t e_len = definite_length(3) + 1 + 3;
344 uint8_t e[3] = { 0x01, 0x00, 0x01 };
347 cur = encode_tag_length(cur, 0x30, n_len + e_len);
349 cur = encode_tag_length(cur, 0x02, len + 1);
351 memcpy(cur + 1, pub_key, len);
353 cur = encode_tag_length(cur, 0x02, sizeof(e));
354 memcpy(cur, e, sizeof(e));
356 /* Zero parameters to satisfy set_pub_key ABI. */
357 memset(cur, 0, SETKEY_PARAMS_SIZE);
363 * Determine the crypto algorithm name.
365 static int determine_akcipher(const char *encoding, const char *hash_algo,
366 char alg_name[CRYPTO_MAX_ALG_NAME])
368 if (strcmp(encoding, "pkcs1") == 0) {
370 strcpy(alg_name, "pkcs1pad(rsa)");
374 if (snprintf(alg_name, CRYPTO_MAX_ALG_NAME, "pkcs1pad(rsa,%s)",
375 hash_algo) >= CRYPTO_MAX_ALG_NAME)
381 if (strcmp(encoding, "raw") == 0) {
382 strcpy(alg_name, "rsa");
390 * Query information about a key.
392 static int tpm_key_query(const struct kernel_pkey_params *params,
393 struct kernel_pkey_query *info)
395 struct tpm_key *tk = params->key->payload.data[asym_crypto];
397 char alg_name[CRYPTO_MAX_ALG_NAME];
398 struct crypto_akcipher *tfm;
399 uint8_t der_pub_key[PUB_KEY_BUF_SIZE];
400 uint32_t der_pub_key_len;
403 /* TPM only works on private keys, public keys still done in software */
404 ret = determine_akcipher(params->encoding, params->hash_algo, alg_name);
408 tfm = crypto_alloc_akcipher(alg_name, 0, 0);
412 der_pub_key_len = derive_pub_key(tk->pub_key, tk->pub_key_len,
415 ret = crypto_akcipher_set_pub_key(tfm, der_pub_key, der_pub_key_len);
419 len = crypto_akcipher_maxsize(tfm);
421 info->key_size = tk->key_len;
422 info->max_data_size = tk->key_len / 8;
423 info->max_sig_size = len;
424 info->max_enc_size = len;
425 info->max_dec_size = tk->key_len / 8;
427 info->supported_ops = KEYCTL_SUPPORTS_ENCRYPT |
428 KEYCTL_SUPPORTS_DECRYPT |
429 KEYCTL_SUPPORTS_VERIFY |
430 KEYCTL_SUPPORTS_SIGN;
434 crypto_free_akcipher(tfm);
435 pr_devel("<==%s() = %d\n", __func__, ret);
440 * Encryption operation is performed with the public key. Hence it is done
443 static int tpm_key_encrypt(struct tpm_key *tk,
444 struct kernel_pkey_params *params,
445 const void *in, void *out)
447 char alg_name[CRYPTO_MAX_ALG_NAME];
448 struct crypto_akcipher *tfm;
449 struct akcipher_request *req;
450 struct crypto_wait cwait;
451 struct scatterlist in_sg, out_sg;
452 uint8_t der_pub_key[PUB_KEY_BUF_SIZE];
453 uint32_t der_pub_key_len;
456 pr_devel("==>%s()\n", __func__);
458 ret = determine_akcipher(params->encoding, params->hash_algo, alg_name);
462 tfm = crypto_alloc_akcipher(alg_name, 0, 0);
466 der_pub_key_len = derive_pub_key(tk->pub_key, tk->pub_key_len,
469 ret = crypto_akcipher_set_pub_key(tfm, der_pub_key, der_pub_key_len);
473 req = akcipher_request_alloc(tfm, GFP_KERNEL);
477 sg_init_one(&in_sg, in, params->in_len);
478 sg_init_one(&out_sg, out, params->out_len);
479 akcipher_request_set_crypt(req, &in_sg, &out_sg, params->in_len,
481 crypto_init_wait(&cwait);
482 akcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG |
483 CRYPTO_TFM_REQ_MAY_SLEEP,
484 crypto_req_done, &cwait);
486 ret = crypto_akcipher_encrypt(req);
487 ret = crypto_wait_req(ret, &cwait);
492 akcipher_request_free(req);
494 crypto_free_akcipher(tfm);
495 pr_devel("<==%s() = %d\n", __func__, ret);
500 * Decryption operation is performed with the private key in the TPM.
502 static int tpm_key_decrypt(struct tpm_key *tk,
503 struct kernel_pkey_params *params,
504 const void *in, void *out)
508 uint8_t srkauth[SHA1_DIGEST_SIZE];
509 uint8_t keyauth[SHA1_DIGEST_SIZE];
512 pr_devel("==>%s()\n", __func__);
514 if (params->hash_algo)
517 if (strcmp(params->encoding, "pkcs1"))
520 r = tpm_buf_init(&tb, 0, 0);
524 /* TODO: Handle a non-all zero SRK authorization */
525 memset(srkauth, 0, sizeof(srkauth));
527 r = tpm_loadkey2(&tb, SRKHANDLE, srkauth,
528 tk->blob, tk->blob_len, &keyhandle);
530 pr_devel("loadkey2 failed (%d)\n", r);
534 /* TODO: Handle a non-all zero key authorization */
535 memset(keyauth, 0, sizeof(keyauth));
537 r = tpm_unbind(&tb, keyhandle, keyauth,
538 in, params->in_len, out, params->out_len);
540 pr_devel("tpm_unbind failed (%d)\n", r);
542 if (tpm_flushspecific(&tb, keyhandle) < 0)
543 pr_devel("flushspecific failed (%d)\n", r);
546 tpm_buf_destroy(&tb);
547 pr_devel("<==%s() = %d\n", __func__, r);
552 * Hash algorithm OIDs plus ASN.1 DER wrappings [RFC4880 sec 5.2.2].
554 static const u8 digest_info_md5[] = {
555 0x30, 0x20, 0x30, 0x0c, 0x06, 0x08,
556 0x2a, 0x86, 0x48, 0x86, 0xf7, 0x0d, 0x02, 0x05, /* OID */
557 0x05, 0x00, 0x04, 0x10
560 static const u8 digest_info_sha1[] = {
561 0x30, 0x21, 0x30, 0x09, 0x06, 0x05,
562 0x2b, 0x0e, 0x03, 0x02, 0x1a,
563 0x05, 0x00, 0x04, 0x14
566 static const u8 digest_info_rmd160[] = {
567 0x30, 0x21, 0x30, 0x09, 0x06, 0x05,
568 0x2b, 0x24, 0x03, 0x02, 0x01,
569 0x05, 0x00, 0x04, 0x14
572 static const u8 digest_info_sha224[] = {
573 0x30, 0x2d, 0x30, 0x0d, 0x06, 0x09,
574 0x60, 0x86, 0x48, 0x01, 0x65, 0x03, 0x04, 0x02, 0x04,
575 0x05, 0x00, 0x04, 0x1c
578 static const u8 digest_info_sha256[] = {
579 0x30, 0x31, 0x30, 0x0d, 0x06, 0x09,
580 0x60, 0x86, 0x48, 0x01, 0x65, 0x03, 0x04, 0x02, 0x01,
581 0x05, 0x00, 0x04, 0x20
584 static const u8 digest_info_sha384[] = {
585 0x30, 0x41, 0x30, 0x0d, 0x06, 0x09,
586 0x60, 0x86, 0x48, 0x01, 0x65, 0x03, 0x04, 0x02, 0x02,
587 0x05, 0x00, 0x04, 0x30
590 static const u8 digest_info_sha512[] = {
591 0x30, 0x51, 0x30, 0x0d, 0x06, 0x09,
592 0x60, 0x86, 0x48, 0x01, 0x65, 0x03, 0x04, 0x02, 0x03,
593 0x05, 0x00, 0x04, 0x40
596 static const struct asn1_template {
600 } asn1_templates[] = {
601 #define _(X) { #X, digest_info_##X, sizeof(digest_info_##X) }
613 static const struct asn1_template *lookup_asn1(const char *name)
615 const struct asn1_template *p;
617 for (p = asn1_templates; p->name; p++)
618 if (strcmp(name, p->name) == 0)
624 * Sign operation is performed with the private key in the TPM.
626 static int tpm_key_sign(struct tpm_key *tk,
627 struct kernel_pkey_params *params,
628 const void *in, void *out)
632 uint8_t srkauth[SHA1_DIGEST_SIZE];
633 uint8_t keyauth[SHA1_DIGEST_SIZE];
634 void *asn1_wrapped = NULL;
635 uint32_t in_len = params->in_len;
638 pr_devel("==>%s()\n", __func__);
640 if (strcmp(params->encoding, "pkcs1"))
643 if (params->hash_algo) {
644 const struct asn1_template *asn1 =
645 lookup_asn1(params->hash_algo);
650 /* request enough space for the ASN.1 template + input hash */
651 asn1_wrapped = kzalloc(in_len + asn1->size, GFP_KERNEL);
655 /* Copy ASN.1 template, then the input */
656 memcpy(asn1_wrapped, asn1->data, asn1->size);
657 memcpy(asn1_wrapped + asn1->size, in, in_len);
660 in_len += asn1->size;
663 if (in_len > tk->key_len / 8 - 11) {
665 goto error_free_asn1_wrapped;
668 r = tpm_buf_init(&tb, 0, 0);
670 goto error_free_asn1_wrapped;
672 /* TODO: Handle a non-all zero SRK authorization */
673 memset(srkauth, 0, sizeof(srkauth));
675 r = tpm_loadkey2(&tb, SRKHANDLE, srkauth,
676 tk->blob, tk->blob_len, &keyhandle);
678 pr_devel("loadkey2 failed (%d)\n", r);
682 /* TODO: Handle a non-all zero key authorization */
683 memset(keyauth, 0, sizeof(keyauth));
685 r = tpm_sign(&tb, keyhandle, keyauth, in, in_len, out, params->out_len);
687 pr_devel("tpm_sign failed (%d)\n", r);
689 if (tpm_flushspecific(&tb, keyhandle) < 0)
690 pr_devel("flushspecific failed (%d)\n", r);
693 tpm_buf_destroy(&tb);
694 error_free_asn1_wrapped:
696 pr_devel("<==%s() = %d\n", __func__, r);
701 * Do encryption, decryption and signing ops.
703 static int tpm_key_eds_op(struct kernel_pkey_params *params,
704 const void *in, void *out)
706 struct tpm_key *tk = params->key->payload.data[asym_crypto];
707 int ret = -EOPNOTSUPP;
709 /* Perform the encryption calculation. */
710 switch (params->op) {
711 case kernel_pkey_encrypt:
712 ret = tpm_key_encrypt(tk, params, in, out);
714 case kernel_pkey_decrypt:
715 ret = tpm_key_decrypt(tk, params, in, out);
717 case kernel_pkey_sign:
718 ret = tpm_key_sign(tk, params, in, out);
728 * Verify a signature using a public key.
730 static int tpm_key_verify_signature(const struct key *key,
731 const struct public_key_signature *sig)
733 const struct tpm_key *tk = key->payload.data[asym_crypto];
734 struct crypto_wait cwait;
735 struct crypto_akcipher *tfm;
736 struct akcipher_request *req;
737 struct scatterlist src_sg[2];
738 char alg_name[CRYPTO_MAX_ALG_NAME];
739 uint8_t der_pub_key[PUB_KEY_BUF_SIZE];
740 uint32_t der_pub_key_len;
743 pr_devel("==>%s()\n", __func__);
752 ret = determine_akcipher(sig->encoding, sig->hash_algo, alg_name);
756 tfm = crypto_alloc_akcipher(alg_name, 0, 0);
760 der_pub_key_len = derive_pub_key(tk->pub_key, tk->pub_key_len,
763 ret = crypto_akcipher_set_pub_key(tfm, der_pub_key, der_pub_key_len);
768 req = akcipher_request_alloc(tfm, GFP_KERNEL);
772 sg_init_table(src_sg, 2);
773 sg_set_buf(&src_sg[0], sig->s, sig->s_size);
774 sg_set_buf(&src_sg[1], sig->digest, sig->digest_size);
775 akcipher_request_set_crypt(req, src_sg, NULL, sig->s_size,
777 crypto_init_wait(&cwait);
778 akcipher_request_set_callback(req, CRYPTO_TFM_REQ_MAY_BACKLOG |
779 CRYPTO_TFM_REQ_MAY_SLEEP,
780 crypto_req_done, &cwait);
781 ret = crypto_wait_req(crypto_akcipher_verify(req), &cwait);
783 akcipher_request_free(req);
785 crypto_free_akcipher(tfm);
786 pr_devel("<==%s() = %d\n", __func__, ret);
787 if (WARN_ON_ONCE(ret > 0))
793 * Parse enough information out of TPM_KEY structure:
794 * TPM_STRUCT_VER -> 4 bytes
795 * TPM_KEY_USAGE -> 2 bytes
796 * TPM_KEY_FLAGS -> 4 bytes
797 * TPM_AUTH_DATA_USAGE -> 1 byte
798 * TPM_KEY_PARMS -> variable
799 * UINT32 PCRInfoSize -> 4 bytes
800 * BYTE* -> PCRInfoSize bytes
802 * UINT32 encDataSize;
803 * BYTE* -> encDataSize;
806 * TPM_ALGORITHM_ID -> 4 bytes
807 * TPM_ENC_SCHEME -> 2 bytes
808 * TPM_SIG_SCHEME -> 2 bytes
809 * UINT32 parmSize -> 4 bytes
812 static int extract_key_parameters(struct tpm_key *tk)
814 const void *cur = tk->blob;
815 uint32_t len = tk->blob_len;
823 /* Ensure this is a legacy key */
824 if (get_unaligned_be16(cur + 4) != 0x0015)
827 /* Skip to TPM_KEY_PARMS */
834 /* Make sure this is an RSA key */
835 if (get_unaligned_be32(cur) != 0x00000001)
838 /* Make sure this is TPM_ES_RSAESPKCSv15 encoding scheme */
839 if (get_unaligned_be16(cur + 4) != 0x0002)
842 /* Make sure this is TPM_SS_RSASSAPKCS1v15_DER signature scheme */
843 if (get_unaligned_be16(cur + 6) != 0x0003)
846 sz = get_unaligned_be32(cur + 8);
850 /* Move to TPM_RSA_KEY_PARMS */
854 /* Grab the RSA key length */
855 key_len = get_unaligned_be32(cur);
867 /* Move just past TPM_KEY_PARMS */
874 sz = get_unaligned_be32(cur);
878 /* Move to TPM_STORE_PUBKEY */
882 /* Grab the size of the public key, it should jive with the key size */
883 sz = get_unaligned_be32(cur);
889 tk->key_len = key_len;
890 tk->pub_key = pub_key;
891 tk->pub_key_len = sz;
896 /* Given the blob, parse it and load it into the TPM */
897 struct tpm_key *tpm_key_create(const void *blob, uint32_t blob_len)
902 r = tpm_is_tpm2(NULL);
906 /* We don't support TPM2 yet */
913 tk = kzalloc(sizeof(struct tpm_key), GFP_KERNEL);
917 tk->blob = kmemdup(blob, blob_len, GFP_KERNEL);
921 tk->blob_len = blob_len;
923 r = extract_key_parameters(tk);
937 EXPORT_SYMBOL_GPL(tpm_key_create);
940 * TPM-based asymmetric key subtype
942 struct asymmetric_key_subtype asym_tpm_subtype = {
943 .owner = THIS_MODULE,
945 .name_len = sizeof("asym_tpm") - 1,
946 .describe = asym_tpm_describe,
947 .destroy = asym_tpm_destroy,
948 .query = tpm_key_query,
949 .eds_op = tpm_key_eds_op,
950 .verify_signature = tpm_key_verify_signature,
952 EXPORT_SYMBOL_GPL(asym_tpm_subtype);
954 MODULE_DESCRIPTION("TPM based asymmetric key subtype");
955 MODULE_AUTHOR("Intel Corporation");
956 MODULE_LICENSE("GPL v2");
projects / linux.git / blob