testutil

package
v1.0.2 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Sep 29, 2023 License: LGPL-3.0 Imports: 27 Imported by: 2

Documentation

Overview

Package testutil implements utilities for writing unit tests using go-tpm2.

Index

Constants

This section is empty.

Variables

View Source
var (
	// TPMBackend defines the type of TPM connection that should be used for tests.
	TPMBackend TPMBackendType = TPMBackendNone

	// PermittedTPMFeatures defines the permitted feature set for tests that use a TPMContext
	// and where TPMBackend is not TPMBackendMssim. Tests that require features that aren't
	// permitted should be skipped. This is to facilitate testing on real TPM devices where it
	// might not be desirable to perform certain actions.
	PermittedTPMFeatures TPMFeatureFlags

	// TPMDevicePath defines the path of the TPM character device where TPMBackend is TPMBackendDevice.
	TPMDevicePath string = "/dev/tpm0"

	// MssimPort defines the port number of the TPM simulator command port where TPMBackend is TPMBackendMssim.
	MssimPort uint = 2321
)
View Source
var TPMValueDeepEquals Checker = &tpmValueDeepEqualsChecker{
	&CheckerInfo{Name: "TPMValueDeepEquals", Params: []string{"obtained", "expected"}}}

TPMValueDeepEquals checks that the obtained TPM value is deeply equal to the expected TPM value. This works by first checking that both values have the same type, and then serializing them both to the TPM wire format and checking that they are bit-for-bit identical. Both values need to be valid TPM types for this to work, and they need to be representable by the TPM wire format.

For example:

 expected := &tpm2.NVPublic{
	Index: 0x0180000,
	NameAlg: tpm2.HashAlgorithmSHA256,
	Attrs: tpm2.NVTypeOrdinary.WithAttrs(tpm2.AttrNVAuthWrite|tpm2.AttrNVAuthRead|tpm2.AttrNVWritten),
	Size: 8}
 c.Check(public, TPMValueDeepEquals, expected)

Functions

func AddCommandLineFlags

func AddCommandLineFlags()

AddCommandLineFlags adds various command line flags to the current executable, which can be used for setting test parameters. This should be called from inside of the init function for a package.

func ClearTPMUsingPlatformHierarchyT

func ClearTPMUsingPlatformHierarchyT(t *testing.T, tpm *tpm2.TPMContext)

ClearTPMUsingPlatformHierarchyT enables the TPM2_Clear command and then clears the TPM using the platform hierarchy.

func LaunchTPMSimulator

func LaunchTPMSimulator(opts *TPMSimulatorOptions) (stop func(), err error)

LaunchTPMSimulator launches a TPM simulator. If opts.SourcePath is empty, or it points to a non-existant file and opts.SavePersistent is false, the simulator will run with ephemeral storage if this is supported, else a temporary directory will be created to store the persistent NV storage for the simulator. If opts.SourcePath is not empty, the target file is copied to the temporary directory and used as the persistent NV storage. The temporary directory will be cleanup up on exit. If opts.SavePersistent is true, the persistant NV storage is copied back to opts.SourcePath on exit. This is useful for generating test data that needs to be checked into a repository.

On success, it returns a function that can be used to stop the simulator and clean up its temporary directory.

func NewECCKeyTemplate

func NewECCKeyTemplate(usage templates.KeyUsage, scheme *tpm2.ECCScheme) *tpm2.Public

NewECCKeyTemplate is a wrapper around templates.NewECCKey that defines the noDA attribute, SHA256 for the name algorithm and NIST-P256 as the curve.

func NewECCStorageKeyTemplate

func NewECCStorageKeyTemplate() *tpm2.Public

NewECCStorageKeyTemplate is a wrapper around templates.NewECCStorageKeyWithDefaults that defines the noDA attribute.

func NewExternalHMACKey

func NewExternalHMACKey(authValue tpm2.Auth, key []byte) (*tpm2.Public, *tpm2.Sensitive)

NewExternalHMACKey is a wrapper around util.NewExternalHMACKey that sets the noDA attribute.

func NewExternalRSAStoragePublicKey

func NewExternalRSAStoragePublicKey(key *rsa.PublicKey) *tpm2.Public

NewExternalRSAStoragePublicKey creates the public area for a RSA storage key from the supplied key.

func NewExternalSealedObject

func NewExternalSealedObject(authValue tpm2.Auth, data []byte) (*tpm2.Public, *tpm2.Sensitive)

NewExternalSealedObject is a wrapper around util.NewExternalSealedObject that sets the noDA attribute.

func NewRSAKeyTemplate

func NewRSAKeyTemplate(usage templates.KeyUsage, scheme *tpm2.RSAScheme) *tpm2.Public

NewRSAKeyTemplate is a wrapper around templates.NewRSAKey that defines the noDA attribute, SHA256 for the name algorithm and 2048 bits for the key size.

func NewRSAStorageKeyTemplate

func NewRSAStorageKeyTemplate() *tpm2.Public

NewRSAStorageKeyTemplate is a wrapper around templates.NewRSAStorageKeyWithDefaults that defines the noDA attribute.

func NewRestrictedECCSigningKeyTemplate

func NewRestrictedECCSigningKeyTemplate(scheme *tpm2.ECCScheme) *tpm2.Public

NewRestrictedECCSigningKeyTemplate is a wrapper around templates.NewRestrictedECCSigningKey that defines the noDA attribute, SHA256 for the name algorithm and NIST-P256 as the curve.

func NewRestrictedRSASigningKeyTemplate

func NewRestrictedRSASigningKeyTemplate(scheme *tpm2.RSAScheme) *tpm2.Public

NewRestrictedRSASigningKeyTemplate is a wrapper around templates.NewRestrictedRSASigningKey that defines the noDA attribute, SHA256 for the name algorithm and 2048 bits for the key size.

func NewSealedObjectTemplate

func NewSealedObjectTemplate() *tpm2.Public

NewSealedObject is a wrapper around templates.NewSealedObject that defines the noDA attribute.

func PrivateToSensitive added in v1.0.0

func PrivateToSensitive(private tpm2.Private, name tpm2.Name, hashAlg tpm2.HashAlgorithmId, symmetricAlg *tpm2.SymDefObject, seed []byte) (sensitive *tpm2.Sensitive, err error)

PrivateToSensitive unwraps a TPM private area into its corresponding sensitive structure. The supplied name is the name of the object associated with sensitive.

The removes the outer wrapper from the private area using the specified digest algorithm, symmetric algorithm and seed. These values are associated with the parent storage key that that is used to load the object into the TPM. The seed is part of the parent storage key's sensitive area and will only be known for objects created outside of the TPM and then imported, or objects created inside of the TPM that can be duplicated and unwrapped outside of the TPM.

func ProduceOuterWrap added in v1.0.0

func ProduceOuterWrap(hashAlg tpm2.HashAlgorithmId, symmetricAlg *tpm2.SymDefObject, name tpm2.Name, seed []byte, useIV bool, data []byte) ([]byte, error)

ProduceOuterWrap adds an outer wrapper to the supplied data. The supplied name is associated with the data.

It encrypts the data using the specified symmetric algorithm and a key derived from the supplied seed and name.

It then prepends an integrity HMAC of the encrypted data and the supplied name using the specified digest algorithm and a key derived from the supplied seed.

func ResetTPMSimulatorT

func ResetTPMSimulatorT(t *testing.T, tpm *tpm2.TPMContext, tcti *TCTI)

ResetTPMSimulatorT issues a Shutdown -> Reset -> Startup cycle of the TPM simulator.

func SensitiveToPrivate added in v1.0.0

func SensitiveToPrivate(sensitive *tpm2.Sensitive, name tpm2.Name, hashAlg tpm2.HashAlgorithmId, symmetricAlg *tpm2.SymDefObject, seed []byte) (tpm2.Private, error)

SensitiveToPrivate creates a TPM private area from the supplied sensitive structure. The supplied name is the name of the object associated with sensitive.

This applies an outer wrapper to the sensitive structure using the specified digest algorithm, symmetric algorithm and seed. These values are associated with the parent storage key that that will be used to load the object into the TPM. The seed is part of the parent storage key's sensitive area and will only be known for objects created outside of the TPM and then imported, or objects created inside of the TPM that can be duplicated and unwrapped outside of the TPM.

func UnwrapOuter added in v1.0.0

func UnwrapOuter(hashAlg tpm2.HashAlgorithmId, symmetricAlg *tpm2.SymDefObject, name tpm2.Name, seed []byte, useIV bool, data []byte) ([]byte, error)

UnwrapOuter removes an outer wrapper from the supplied sensitive data blob. The supplied name is associated with the data.

It checks the integrity HMAC is valid using the specified digest algorithm and a key derived from the supplied seed and returns an error if the check fails.

It then decrypts the data blob using the specified symmetric algorithm and a key derived from the supplied seed and name.

Types

type BaseTest

type BaseTest struct {
	// contains filtered or unexported fields
}

BaseTest is a base test suite for all tests. It has the ability to run callbacks to perform cleanup actions at the end of each test.

func (*BaseTest) AddCleanup

func (b *BaseTest) AddCleanup(fn func())

AddCleanup queues a function to be called at the end of the test.

func (*BaseTest) AddFixtureCleanup

func (b *BaseTest) AddFixtureCleanup(fn func(c *C))

AddFixtureCleanup queues a function to be called at the end of the test, and is intended to be called during SetUpTest. The function is called with the TearDownTest *check.C which allows failures to result in a fixture panic, as failures recorded to the originating *check.C are ignored at this stage.

func (*BaseTest) InitCleanup

func (b *BaseTest) InitCleanup(c *C)

InitCleanup should be called before any call to AddCleanup or AddFixtureCleanup. It is called by SetUpTest, but can be called prior to this, If InitCleanup is called for the first time in a test after a cleanup handler has already been registered, it will assert. This is to detect a missing call to TearDownTest, which might happen because the fixture decides a test should be skipped after registering a cleanup handler.

InitCleanup can be called multiple times in the same test.

func (*BaseTest) SetUpTest

func (b *BaseTest) SetUpTest(c *C)

func (*BaseTest) TearDownTest

func (b *BaseTest) TearDownTest(c *C)

type CommandRecord

type CommandRecord struct {
	// contains filtered or unexported fields
}

CommandRecord provides information about a command executed via the TCTI interface.

func (*CommandRecord) GetCommandCode

func (r *CommandRecord) GetCommandCode() (tpm2.CommandCode, error)

GetCommandCode returns the command code associated with this record.

func (*CommandRecord) UnmarshalCommand

func (r *CommandRecord) UnmarshalCommand() (handles tpm2.HandleList, authArea []tpm2.AuthCommand, parameters []byte, err error)

UnmarshalCommand unmarshals the command packet associated with this record, returning the handles, auth area and parameters. The parameters will still be in the TPM wire format.

func (*CommandRecord) UnmarshalResponse

func (r *CommandRecord) UnmarshalResponse() (rc tpm2.ResponseCode, handle tpm2.Handle, parameters []byte, authArea []tpm2.AuthResponse, err error)

UnmarshalResponse unmarshals the response packet associated with this record, returning the response code, handle, parameters and auth area. The parameters will still be in the TPM wire format. For commands that don't respond with a handle, the returned handle will be tpm2.HandleUnassigned.

type CommandRecordC

type CommandRecordC struct {
	*CommandRecord
}

CommandRecordC is a helper for CommandRecord that integrates with *check.C.

func (*CommandRecordC) GetCommandCode

func (r *CommandRecordC) GetCommandCode(c *C) tpm2.CommandCode

func (*CommandRecordC) UnmarshalCommand

func (r *CommandRecordC) UnmarshalCommand(c *C) (handles tpm2.HandleList, authArea []tpm2.AuthCommand, parameters []byte)

func (*CommandRecordC) UnmarshalResponse

func (r *CommandRecordC) UnmarshalResponse(c *C) (rc tpm2.ResponseCode, handle tpm2.Handle, parameters []byte, authArea []tpm2.AuthResponse)

type TCTI

type TCTI struct {

	// CommandLog keeps a record of all of the commands executed via
	// this interface
	CommandLog []*CommandRecord
	// contains filtered or unexported fields
}

TCTI is a special proxy inteface used for testing, which wraps a real interface. It tracks changes to the TPM state and restores it when the connection is closed, and also performs some permission checks to ensure that a test does not access functionality that it has not declared as permitted.

func NewSimulatorTCTI

func NewSimulatorTCTI(c *C) *TCTI

NewSimulatorTCTI returns a new TCTI for testing that corresponds to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is not TPMBackendMssim then the test will be skipped.

The returned TCTI must be closed when it is no longer required.

func NewSimulatorTCTIT

func NewSimulatorTCTIT(t *testing.T) *TCTI

NewSimulatorTCTIT returns a new TCTI for testing that corresponds to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is not TPMBackendMssim then the test will be skipped.

The returned TCTI must be closed when it is no longer required.

func NewTCTI

func NewTCTI(c *C, features TPMFeatureFlags) *TCTI

NewTCTI returns a new TCTI for testing, for integration with test suites that might have a custom way to create a TPMContext. If TPMBackend is TPMBackendNone then the current test will be skipped. If TPMBackend is TPMBackendMssim, the returned TCTI will wrap a *mssim.Tcti and will correspond to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is TPMBackendDevice, the returned TCTI will wrap a *tpm2.TctiDeviceLinux if the requested features are permitted, as defined by the PermittedTPMFeatures variable. In this case, the TCTI will correspond to a connection to the Linux character device at the path specified by the TPMDevicePath variable. If the test requires features that are not permitted, the test will be skipped.

The returned TCTI must be closed when it is no longer required.

func NewTCTIT

func NewTCTIT(t *testing.T, features TPMFeatureFlags) *TCTI

NewTCTIT returns a new TCTI for testing, for integration with test suites that might have a custom way to create a TPMContext. If TPMBackend is TPMBackendNone then the current test will be skipped. If TPMBackend is TPMBackendMssim, the returned TCTI will wrap a *mssim.Tcti and will correspond to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is TPMBackendDevice, the returned TCTI will wrap a *tpm2.TctiDeviceLinux if the requested features are permitted, as defined by the PermittedTPMFeatures variable. In this case, the TCTI will correspond to a connection to the Linux character device at the path specified by the TPMDevicePath variable. If the test requires features that are not permitted, the test will be skipped.

The returned TCTI must be closed when it is no longer required.

func NewTPMContext

func NewTPMContext(c *C, features TPMFeatureFlags) (*tpm2.TPMContext, *TCTI)

NewTPMContext returns a new TPMContext for testing. If TPMBackend is TPMBackendNone then the current test will be skipped. If TPMBackend is TPMBackendMssim, the returned context will correspond to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is TPMBackendDevice, a TPMContext will be returned if the requested features are permitted, as defined by the PermittedTPMFeatures variable. In this case, the TPMContext will correspond to a connection to the Linux character device at the path specified by the TPMDevicePath variable. If the test requires features that are not permitted, the test will be skipped.

The returned TPMContext must be closed when it is no longer required.

func NewTPMContextT

func NewTPMContextT(t *testing.T, features TPMFeatureFlags) (tpm *tpm2.TPMContext, tcti *TCTI, close func())

NewTPMContextT returns a new TPMContext for testing. If TPMBackend is TPMBackendNone then the current test will be skipped. If TPMBackend is TPMBackendMssim, the returned context will correspond to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is TPMBackendDevice, a TPMContext will be returned if the requested features are permitted, as defined by the PermittedTPMFeatures variable. In this case, the TPMContext will correspond to a connection to the Linux character device at the path specified by the TPMDevicePath variable. If the test requires features that are not permitted, the test will be skipped.

The returned TPMContext must be closed when it is no longer required. This can be done with the returned close callback, which will cause the test to fail if closing doesn't succeed.

func NewTPMSimulatorContext

func NewTPMSimulatorContext(c *C) (*tpm2.TPMContext, *TCTI)

NewTPMSimulatorContext returns a new TPMContext for testing that corresponds to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is not TPMBackendMssim then the test will be skipped.

The returned TPMContext must be closed when it is no longer required.

func NewTPMSimulatorContextT

func NewTPMSimulatorContextT(t *testing.T) (tpm *tpm2.TPMContext, tcti *TCTI, close func())

NewTPMSimulatorContextT returns a new TPMContext for testing that corresponds to a connection to the TPM simulator on the port specified by the MssimPort variable. If TPMBackend is not TPMBackendMssim then the test will be skipped.

The returned TPMContext must be closed when it is no longer required. This can be done with the returned close callback, which will cause the test to fail if closing doesn't succeed.

func WrapTCTI

func WrapTCTI(tcti tpm2.TCTI, permittedFeatures TPMFeatureFlags) (*TCTI, error)

WrapTCTI wraps the supplied TCTI and authorizes it to use the specified features. If the supplied TCTI corresponds to a real TPM device, the caller should verify that the specified features are permitted by the current test environment by checking the value of the PermittedTPMFeatures variable before calling this, and should skip the current test if it needs to use features that are not permitted.

func (*TCTI) Close

func (t *TCTI) Close() error

Close will attempt to restore the state of the TPM and then close the connection.

If any hierarchies were disabled by a test, they will be re-enabled if TPMFeaturePlatformHierarchy is permitted and the platform hierarchy hasn't been disabled. If TPMFeaturePlatformHierarchy isn't permitted or the platform hierarchy has been disabled, then disabled hierarchies cannot be re-enabled. Note that TPMFeatureStClearChange must be permitted in order to disable hierarchies without being able to reenable them again.

If any hierarchy authorization values are set by a test, they will be cleared. If the authorization value for the owner or endorsement hierarchy cannot be cleared because the test disabled the hierarchy and it cannot be re-enabled, an error will be returned. If an authorization value cannot be cleared because it was set by a command using command parameter encryption, an error will be returned. The test must clear the authorization value itself in this case.

If the TPM2_ClearControl command was used to disable the TPM2_Clear command, it will be re-enabled if TPMFeaturePlatformHierarchy is permitted. If TPMFeaturePlatformHierarchy isn't permitted, then the TPM2_Clear command won't be re-enabled. The TPMFeatureClearControl must be permitted in order to use the TPM2_ClearControl command in this case. If TPMFeaturePlatformHierarchy is permitted and TPMFeatureClearControl is not permitted, but the TPM2_Clear command cannot be re-enabled (eg, because the platform hierarchy was disabled), then an error will be returned.

If TPMFeatureLockoutHierarchy is permitted, the DA counter will be reset. If TPMFeatureLockoutHierarchy is not permitted then the DA counter will not be reset. In this case, TPMFeatureDAProtectedCapability must be permitted in order to use any DA protected resource which might cause the DA counter to be incremented.

Changes made by the TPM2_DictionaryAttackParameters command will be reverted.

Any transient objects or sessions loaded into the TPM will be flushed.

Any persistent resources created by the test will be evicted or undefined. If a persistent resource cannot be evicted or undefined (eg, because the corresponding hierarchy has been disabled and cannot be re-enabled), an error will be returned. If a NV index is defined with the TPMA_NV_POLICY_DELETE attribute set, an error will be returned. The test must undefine the index itself in this case. It is not possible for resources created by a test to remain in the TPM after calling this function without returning an error.

If the TPM2_SetCommandCodeAuditStatus command was used and TPMFeatureEndorsementHierarchy is permitted, changes made by that command will be undone. If TPMFeatureEndorsementHierarchy is not permitted, then TPMFeatureSetCommandCodeAuditStatus must be permitted in order to use that command and in this case, changes made by it won't be undone. If changes can't be undone because, eg, the endorsement hierarchy was disabled and cannot be reenabled, and TPMFeatureSetCommandCodeAuditStatus is not permitted, then an error will be returned.

func (*TCTI) MakeSticky

func (t *TCTI) MakeSticky(handle tpm2.Handle, sticky bool) error

func (*TCTI) Read

func (t *TCTI) Read(data []byte) (int, error)

func (*TCTI) SetLocality

func (t *TCTI) SetLocality(locality uint8) error

func (*TCTI) Unwrap

func (t *TCTI) Unwrap() tpm2.TCTI

Unwrap returns the real interface that this one wraps.

func (*TCTI) Write

func (t *TCTI) Write(data []byte) (int, error)

type TCTIWrapper

type TCTIWrapper interface {
	tpm2.TCTI
	Unwrap() tpm2.TCTI
}

type TPMBackendType

type TPMBackendType int
const (
	TPMBackendNone TPMBackendType = iota
	TPMBackendDevice
	TPMBackendMssim
)

type TPMFeatureFlags

type TPMFeatureFlags uint32

TPMFeatureFlags indicates the TPM features required by a test. It allows the test runner to restrict the features available to tests to make the tests more friendly with real TPM devices.

const (
	// TPMFeatureOwnerHierarchy indicates that the test requires the use of the storage hierarchy. The
	// authorization value should be empty at the start of the test.
	TPMFeatureOwnerHierarchy TPMFeatureFlags = (1 << iota)

	// TPMFeatureEndorsementHierarchy indicates that the test requires the use of the endorsement hierarchy.
	// The authorization value should be empty at the start of the test.
	TPMFeatureEndorsementHierarchy

	// TPMFeatureLockoutHierarchy indicates that the test requires the use of the lockout hierarchy. The
	// authorization value should be empty at the start of the test.
	TPMFeatureLockoutHierarchy

	// TPMFeaturePlatformHierarchy indicates that the test requires the use of the platform hierarchy. The
	// authorization value should be empty at the start of the test.
	TPMFeaturePlatformHierarchy

	// TPMFeaturePCR indicates that the test requires the use of a PCR. This is only required for
	// commands that require authorization - ie, it is not required for TPM2_PCR_Read.
	TPMFeaturePCR

	// TPMFeatureStClearChange indicates that the test needs to make changes that can't be undone without a
	// TPM2_Startup(CLEAR). On a physical TPM device, these changes can only be undone with a platform
	// reset or restart. This is not required for TPM2_HierarchyControl if TPMFeaturePlatformHierarchy is
	// set because the test fixture can undo changes made by this command, as long as the test doesn't
	// disable use of the platform hierarchy.
	TPMFeatureStClearChange

	// TPMFeatureSetCommandCodeAuditStatus indicates that the test uses the TPM2_SetCommandCodeAuditStatus
	// command. This isn't required if TPMFeatureEndorsementHierarchy is set, as changes made by this
	// command can be undone. This implies TPMFeatureNV for the TPM2_SetCommandCodeAuditStatus command.
	TPMFeatureSetCommandCodeAuditStatus

	// TPMFeatureClear indicates that the test uses the TPM2_Clear command. This also requires either
	// TPMFeatureLockoutHierarchy or TPMFeaturePlatformHierarchy. This implies TPMFeatureNV for the
	// TPM2_Clear command.
	TPMFeatureClear

	// TPMFeatureClearControl indicates that the test uses the TPM2_ClearControl command. Changes made by
	// the test can only be undone with the use of the platform hierarchy, which on a proper implementation
	// requires assistance from the platform firmware. This is not needed if TPMFeaturePlatformHierarchy
	// is set, as the test harness will restore the value of disableClear automatically. This implies
	// TPMFeatureNV for the TPM2_ClearControl command.
	TPMFeatureClearControl

	// TPMFeatureShutdown indicates that the test uses the TPM2_Shutdown command. This implies
	// TPMFeatureNV for the TPM2_Shutdown command.
	TPMFeatureShutdown

	// TPMFeatureNVGlobalWriteLock indicates that the test uses the TPM2_NV_GlobalWriteLock command. This
	// may make NV indices that weren't created by the test permanently read only if they define the
	// TPMA_NV_GLOBALLOCK attribute. This implies TPMFeatureNV for the TPM2_NV_GlobalWriteLock command.
	TPMFeatureNVGlobalWriteLock

	// TPMFeatureDAProtectedCapability indicates that the test makes use of a DA protected resource. The
	// test may cause the DA counter to be incremented either intentionally or in the event of a test
	// failure, which may eventually cause the TPM to enter DA lockout mode. This is not needed if
	// TPMFeatureLockoutHierarchy is provided, as this will cause the test harness to automatically
	// reset the DA counter.
	TPMFeatureDAProtectedCapability

	// TPMFeatureNV indicates that the test makes use of a command that may write to NV. Physical
	// TPMs may employ rate limiting on these commands.
	TPMFeatureNV

	// TPMFeaturePersistent indicates that the test may make changes to persistent resources that
	// were not created by the test, such as writing to or undefining NV indices or evicting
	// persistent objects.
	TPMFeaturePersistent
)

func (*TPMFeatureFlags) Set

func (f *TPMFeatureFlags) Set(value string) error

func (TPMFeatureFlags) String

func (f TPMFeatureFlags) String() string

type TPMSimulatorOptions

type TPMSimulatorOptions struct {
	SourcePath     string // Path for the source persistent data file
	Manufacture    bool   // Indicates that the simulator should be executed in re-manufacture mode
	SavePersistent bool   // Saves the persistent data file back to SourcePath on exit
}

TPMSimulatorOptions provide the options to LaunchTPMSimulator

type TPMSimulatorTest

type TPMSimulatorTest struct {
	TPMTest
}

TPMSimulatorTest is a base test suite for all tests that require a TPM simulator. This test suite requires the use of the transmission interface from this package, which takes care of restoring the TPM state when it is closed.

func (*TPMSimulatorTest) Mssim

func (b *TPMSimulatorTest) Mssim(c *C) *mssim.Tcti

Mssim returns the underlying simulator connection.

func (*TPMSimulatorTest) ResetAndClearTPMSimulatorUsingPlatformHierarchy

func (b *TPMSimulatorTest) ResetAndClearTPMSimulatorUsingPlatformHierarchy(c *C)

ResetAndClearTPMSimulatorUsingPlatformHierarchy issues a Shutdown -> Reset -> Startup cycle of the TPM simulator which ensures that the platform hierarchy is enabled, and then enables the TPM2_Clear command and clears the TPM using the platform hierarchy.

func (*TPMSimulatorTest) ResetTPMSimulator

func (b *TPMSimulatorTest) ResetTPMSimulator(c *C)

ResetTPMSimulator issues a Shutdown -> Reset -> Startup cycle of the TPM simulator and causes the test to fail if it is not successful.

func (*TPMSimulatorTest) SetUpTest

func (b *TPMSimulatorTest) SetUpTest(c *C)

SetUpTest is called to set up the test fixture before each test. If the TCTI member has not been set before this is called, a connection to the TPM simulator and a TPMContext will be created automatically. If TPMBackend is not TPMBackendMssim, then the test will be skipped.

If the TCTI member is set prior to calling SetUpTest, then a TPMContext is created using this connection if necessary.

If the TCTI and TPM members are both set prior to calling SetUpTest, then these will be used by the test.

When TearDownTest is called, the TPM simulator will be reset and cleared and the TPMContext will be closed, unless the test clears the TPM member first.

type TPMTest

type TPMTest struct {
	BaseTest

	TPM         *tpm2.TPMContext // The TPM context for the test
	TCTI        *TCTI            // The TPM transmission interface for the test
	TPMFeatures TPMFeatureFlags  // TPM features required by tests in this suite
}

TPMTest is a base test suite for all tests that require a TPM and are able to execute on a real TPM or a simulator. This test suite requires the use of the transmission interface from this package, which takes care of restoring the TPM state when it is closed.

func (*TPMTest) ClearTPMUsingPlatformHierarchy

func (b *TPMTest) ClearTPMUsingPlatformHierarchy(c *C)

ClearTPMUsingPlatformHierarchy enables the TPM2_Clear command and then clears the TPM using the platform hierarchy. It causes the test to fail if it isn't successful.

func (*TPMTest) CommandLog

func (b *TPMTest) CommandLog() (log []*CommandRecordC)

CommandLog returns a log of TPM commands that have been executed since the start of the test, or since the last call to ForgetCommands.

func (*TPMTest) CreatePrimary

func (b *TPMTest) CreatePrimary(c *C, hierarchy tpm2.Handle, template *tpm2.Public) tpm2.ResourceContext

CreatePrimary calls the tpm2.TPMContext.CreatePrimary function and asserts if it is not succesful.

func (*TPMTest) CreateStoragePrimaryKeyRSA

func (b *TPMTest) CreateStoragePrimaryKeyRSA(c *C) tpm2.ResourceContext

CreateStoragePrimaryKeyRSA creates a primary storage key in the storage hierarchy, with the template returned from StorageKeyRSATemplate. On success, it returns the context for the newly created object. It asserts if it is not successful.

func (*TPMTest) EvictControl

func (b *TPMTest) EvictControl(c *C, auth tpm2.Handle, object tpm2.ResourceContext, persistentHandle tpm2.Handle) tpm2.ResourceContext

EvictControl calls the tpm2.TPMContext.EvictControl function and asserts if it is not successful.

func (*TPMTest) ForgetCommands

func (b *TPMTest) ForgetCommands()

ForgetCommands forgets the log of TPM commands that have been executed since the start of the test or since the last call to ForgetCommands.

func (*TPMTest) HierarchyChangeAuth

func (b *TPMTest) HierarchyChangeAuth(c *C, hierarchy tpm2.Handle, auth tpm2.Auth)

HierarchyChangeAuth calls the tpm2.TPMContext.HierarchyChangeAuth function and causes the test to fail if it is not successful.

func (*TPMTest) LastCommand

func (b *TPMTest) LastCommand(c *C) *CommandRecordC

LastCommand returns a record of the last TPM command that was executed. It asserts if no command has been executed.

func (*TPMTest) NVDefineSpace

func (b *TPMTest) NVDefineSpace(c *C, authHandle tpm2.Handle, auth tpm2.Auth, publicInfo *tpm2.NVPublic) tpm2.ResourceContext

NVDefineSpace calls the tpm2.TPMContext.NVDefineSpace function and asserts if it is not successful.

func (*TPMTest) NextAvailableHandle

func (b *TPMTest) NextAvailableHandle(c *C, handle tpm2.Handle) tpm2.Handle

NextAvailableHandle returns the next unused handle starting from the supplied handle. This upper 17-bits of the returned handle will match the upper 17-bits of the supplied handle - ie, if the supplied handle is in a reserved group as defined by the "Registry of reserved TPM 2.0 handles and localities" specification, the returned handle will be in the same reserved group.

It asserts if no handle is available.

func (*TPMTest) RequireAlgorithm

func (b *TPMTest) RequireAlgorithm(c *C, alg tpm2.AlgorithmId)

RequireAlgorithm checks if the required algorithm is known to the TPM and skips the test if it isn't.

func (*TPMTest) RequireCommand

func (b *TPMTest) RequireCommand(c *C, code tpm2.CommandCode)

RequireCommand checks if the required command is supported by the TPM and skips the test if it isn't.

func (*TPMTest) RequireECCCurve

func (b *TPMTest) RequireECCCurve(c *C, curve tpm2.ECCCurve)

RequireECCCurve checks if the specified elliptic curve is known to the TPM and skips the test if it isn't.

func (*TPMTest) RequireRSAKeySize

func (b *TPMTest) RequireRSAKeySize(c *C, keyBits uint16)

RequireRSAKeySize checks if a RSA object can be created with the specified key size and skips the test if it can't.

func (*TPMTest) RequireSymmetricAlgorithm

func (b *TPMTest) RequireSymmetricAlgorithm(c *C, algorithm tpm2.SymObjectAlgorithmId, keyBits uint16)

RequireSymmetricAlgorithm checks if an object with the specified symmetric algorithm can be created and skips the test if it can't.

func (*TPMTest) SetUpTest

func (b *TPMTest) SetUpTest(c *C)

SetUpTest is called to set up the test fixture before each test. If the TPM and TCTI members have not been set before this is called, a TPM connection and TPMContext will be created automatically. In this case, the TPMFeatures member should be set prior to calling SetUpTest in order to declare the features that the test will require. If the test requires any features that are not included in PermittedTPMFeatures, the test will be skipped. If TPMBackend is TPMBackendNone, then the test will be skipped.

If the TCTI member is set prior to calling SetUpTest, a TPMContext is created using this connection if necessary.

If both TPM and TCTI are set prior to calling SetUpTest, then these will be used by the test.

The TPMContext is closed automatically when TearDownTest is called, unless the test clears the TPM member first.

func (*TPMTest) StartAuthSession

func (b *TPMTest) StartAuthSession(c *C, tpmKey, bind tpm2.ResourceContext, sessionType tpm2.SessionType, symmetric *tpm2.SymDef, authHash tpm2.HashAlgorithmId) tpm2.SessionContext

StartAuthSession calls the tpm2.TPMContext.StartAuthSession function and asserts if it is not successful.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL