ESYS: Support of Cp and RpHashes from Esys Layer

The ESYS API is extended with the functions:
Esys_GetCpHash, Esys_GetRpHash, and Esys_Abort.
The cp hash can computed after the async call of a function.
The rp hash after the finish call. If only the async call is
executed to to compute the cp hash Esys_Abort has to be called
to enable the execution of further ESYS commands.
Addresses: tpm2-software#2930.

Signed-off-by: Juergen Repp <juergen_repp@web.de>

Makefile-test.am

@@ -238,6 +238,7 @@ ESYS_TESTS_INTEGRATION_MANDATORY = \
     test/integration/esys-clockset.int \
     test/integration/esys-clockset-audit.int \
     test/integration/esys-commit.int \
+    test/integration/esys-cp-hash.int \
     test/integration/esys-create-fail.int \
     test/integration/esys-create-password-auth.int \
     test/integration/esys-create-policy-auth.int \
@@ -1136,7 +1137,7 @@ if POLICY
 TESTS_UNIT += test/unit/tss2_policy
 
 test_unit_tss2_policy_CFLAGS  = $(CMOCKA_CFLAGS) $(TESTS_CFLAGS)
-test_unit_tss2_policy_LDADD   = $(CMOCKA_LIBS) $(libtss2_policy) $(libtss2_esys)
+test_unit_tss2_policy_LDADD   = $(CMOCKA_LIBS) $(libtss2_policy) $(libtss2_esys) $(libtss2_sys)
 test_unit_tss2_policy_SOURCES = test/unit/tss2_policy.c src/util/log.c \
     test/data/test-fapi-policies.h test/helper/cmocka_all.h
 endif # POLICY
@@ -1593,6 +1594,13 @@ test_integration_esys_get_random_int_SOURCES = \
     test/integration/esys-get-random.int.c \
     test/integration/main-esys.c test/integration/test-esys.h
 
+test_integration_esys_cp_hash_int_CFLAGS  = $(TESTS_CFLAGS)
+test_integration_esys_cp_hash_int_LDADD   = $(TESTS_LDADD)
+test_integration_esys_cp_hash_int_LDFLAGS = $(TESTS_LDFLAGS)
+test_integration_esys_cp_hash_int_SOURCES = \
+    test/integration/esys-cp-hash.int.c \
+    test/integration/main-esys.c test/integration/test-esys.h
+
 test_integration_esys_get_time_int_CFLAGS  = $(TESTS_CFLAGS) $(TSS2_ESYS_CFLAGS_CRYPTO)
 test_integration_esys_get_time_int_LDADD   = $(TESTS_LDADD)
 test_integration_esys_get_time_int_LDFLAGS = $(TESTS_LDFLAGS) $(TSS2_ESYS_LDFLAGS_CRYPTO)

include/tss2/tss2_esys.h

@@ -3808,6 +3808,24 @@ Esys_SetCryptoCallbacks(
     ESYS_CONTEXT *esysContext,
     ESYS_CRYPTO_CALLBACKS *callbacks);
 
+TSS2_RC
+Esys_GetCpHash(
+    ESYS_CONTEXT* esysContext,
+    TPMI_ALG_HASH hashAlg,
+    uint8_t **cpHash,
+    size_t *cpHash_size);
+
+TSS2_RC
+Esys_GetRpHash(
+    ESYS_CONTEXT* esysContext,
+    TPMI_ALG_HASH hashAlg,
+    uint8_t **cpHash,
+    size_t *cpHash_size);
+
+TSS2_RC
+Esys_Abort(
+    ESYS_CONTEXT* esysContext);
+
 #ifdef __cplusplus
 }
 #endif

lib/tss2-esys.def

@@ -1,5 +1,6 @@
 LIBRARY tss2-esys
 EXPORTS
+    Esys_Abort
     Esys_AC_GetCapability
     Esys_AC_GetCapability_Async
     Esys_AC_GetCapability_Finish
@@ -110,10 +111,12 @@ EXPORTS
     Esys_GetCommandAuditDigest
     Esys_GetCommandAuditDigest_Async
     Esys_GetCommandAuditDigest_Finish
+    Esys_GetCpHash
     Esys_GetPollHandles
     Esys_GetRandom
     Esys_GetRandom_Async
     Esys_GetRandom_Finish
+    Esys_GetRpHash
     Esys_GetSessionAuditDigest
     Esys_GetSessionAuditDigest_Async
     Esys_GetSessionAuditDigest_Finish

lib/tss2-esys.map

@@ -1,5 +1,6 @@
 {
     global:
+        Esys_Abort;
         Esys_AC_GetCapability;
         Esys_AC_GetCapability_Async;
         Esys_AC_GetCapability_Finish;
@@ -109,9 +110,11 @@
         Esys_GetCommandAuditDigest;
         Esys_GetCommandAuditDigest_Async;
         Esys_GetCommandAuditDigest_Finish;
+        Esys_GetCpHash;
         Esys_GetRandom;
         Esys_GetRandom_Async;
         Esys_GetRandom_Finish;
+        Esys_GetRpHash;
         Esys_GetSessionAuditDigest;
         Esys_GetSessionAuditDigest_Async;
         Esys_GetSessionAuditDigest_Finish;

src/tss2-esys/esys_cp_rp_hash.c

@@ -0,0 +1,112 @@
+/* SPDX-License-Identifier: BSD-2-Clause */
+/*******************************************************************************
+ * Copyright 2025, Juergen Repp
+ * All rights reserved.
+ ******************************************************************************/
+
+#ifdef HAVE_CONFIG_H
+#include "config.h" // IWYU pragma: keep
+#endif
+
+#include <inttypes.h>         // for PRIx32, uint8_t, SIZE_MAX, int32_t
+#include <stdbool.h>          // for bool, false, true
+#include <stdlib.h>           // for NULL, malloc, size_t, calloc
+#include <string.h>           // for memcmp
+
+#include "esys_int.h"         // for RSRC_NODE_T, ESYS_CONTEXT, _ESYS_ASSERT...
+#include "esys_mu.h"          // for iesys_MU_IESYS_RESOURCE_Marshal, iesys_...
+#include "esys_types.h"       // for IESYS_RESOURCE, IESYS_RSRC_UNION, IESYS...
+#include "esys_iutil.h"       // for iesys_compute_cp_hash ...
+#include "tss2_common.h"      // for TSS2_RC, TSS2_RC_SUCCESS, TSS2_ESYS_RC_...
+#include "tss2_esys.h"        // for ESYS_CONTEXT, ESYS_TR, ESYS_TR_NONE
+#include "tss2_tpm2_types.h"  // for TPM2B_NAME, TPM2_HANDLE, TPM2_HR_SHIFT
+
+#define LOGMODULE esys
+#include "util/log.h"         // for return_if_error, SAFE_FREE, goto_if_error
+
+/** Get the cpHash buffer computed by an ESYS async call.
+ *
+ * The buffer will be returned if the buffer is found for the passed hashAlg.
+ * @param esys_ctxt [in,out] The ESYS_CONTEXT.
+ * @param hashAlg [in] The hash alg used to compute the cp hash.
+ * @param cpHash [out] The buffer containing the cp hash.
+ *        (caller-callocated)
+ * @param cpHash_size [out] The size of the cpHash buffer.
+ * @retval TSS2_RC_SUCCESS on Success.
+ * @retval TSS2_ESYS_RC_BAD_SEQUENCE: if no cpHash has been computed.
+ * @retval TSS2_ESYS_RC_BAD_VALUE if hashAlg is not found.
+ * @retval TSS2_ESYS_RC_BAD_REFERENCE if esys_ctx is NULL.
+ * @retval TSS2_ESYS_RC_MEMORY if the buffer for the cpHash can't
+ *         be allocated.
+ */
+TSS2_RC Esys_GetCpHash(ESYS_CONTEXT* esys_ctx,
+                       TPMI_ALG_HASH hashAlg, uint8_t **cpHash, size_t *cpHash_size) {
+
+    uint8_t cp_hash[sizeof(TPMU_HA)];
+    TSS2_RC r;
+
+    return_if_null(esys_ctx, "ESYS context is NULL",
+                   TSS2_ESYS_RC_BAD_REFERENCE);
+    r = iesys_compute_cp_hash(esys_ctx, hashAlg, &cp_hash[0], cpHash_size);
+    return_if_error(r, "Compute cp hash");
+    *cpHash = malloc(*cpHash_size);
+    return_if_null(*cpHash, "Buffer could not be allocated",
+                   TSS2_ESYS_RC_MEMORY);
+    memcpy(*cpHash, &cp_hash[0], *cpHash_size);
+    return TSS2_RC_SUCCESS;}
+
+/** Get the rpHash buffer computed by an ESYS finalize call.
+ *
+ * The buffer will be returned if the buffer is found for the passed hashAlg.
+ * @param esys_ctx [in,out] The ESYS_CONTEXT.
+ * @param hashAlg [in] The hash alg used to compute the rp hash.
+ * @param cpHash [out] The buffer containing the rp hash.
+ *        (caller-callocated)
+ * @param cpHash_size [out] The size of the cpHash buffer.
+ * @retval TSS2_RC_SUCCESS on Success.
+ * @retval TSS2_ESYS_RC_BAD_SEQUENCE: if no cpHash has been computed.
+ * @retval TSS2_ESYS_RC_BAD_VALUE if hashAlg is not found.
+ * @retval TSS2_ESYS_RC_BAD_REFERENCE if esys_ctx is NULL.
+ * @retval TSS2_ESYS_RC_MEMORY if the buffer for the cpHash can't
+ *         be allocated.
+ */
+TSS2_RC Esys_GetRpHash(ESYS_CONTEXT* esys_ctx,
+                       TPMI_ALG_HASH hashAlg, uint8_t **rpHash, size_t *rpHash_size) {
+    uint8_t rp_hash[sizeof(TPMU_HA)];
+    TSS2_RC r;
+
+    return_if_null(esys_ctx, "ESYS context is NULL",
+                   TSS2_ESYS_RC_BAD_REFERENCE);
+
+    r = iesys_compute_rp_hash(esys_ctx, hashAlg, &rp_hash[0], rpHash_size);
+    return_if_error(r, "Compute rp hash");
+    *rpHash = malloc(*rpHash_size);
+
+    return_if_null(*rpHash, "Buffer could not be allocated",
+                   TSS2_ESYS_RC_MEMORY);
+    memcpy(*rpHash, &rp_hash[0], *rpHash_size);
+    return TSS2_RC_SUCCESS;
+}
+
+/** Reset the ESYS state.
+ *
+ * If only the cp hash will be computed and there will no finish call
+ * after the async call the ESYS sate has to be reset to allow further ESYS calls.
+ * @param esys_ctx [in,out] The ESYS_CONTEXT.
+ * @param cpHash_size [out] The size of the cpHash buffer.
+ * @retval TSS2_RC_SUCCESS on Success.
+ * @retval TSS2_ESYS_RC_BAD_REFERENCE if esys_ctx is NULL.
+ */
+TSS2_RC Esys_Abort(ESYS_CONTEXT* esys_ctx) {
+    TSS2_SYS_CONTEXT *sys_ctx;
+    TSS2_RC r;
+
+    return_if_null(esys_ctx, "ESYS context is NULL",
+                   TSS2_ESYS_RC_BAD_REFERENCE);
+    esys_ctx->state = ESYS_STATE_INIT;
+
+    r = Esys_GetSysContext(esys_ctx, &sys_ctx);
+    return_if_error(r, "Could not get Sys context");
+
+    return Tss2_Sys_Abort(sys_ctx);
+}

src/tss2-esys/esys_int.h

@@ -34,6 +34,13 @@ typedef struct RSRC_NODE_T {
     struct RSRC_NODE_T * next;  /**< The next object in the linked list. */
 } RSRC_NODE_T;
 
+/** An entry in a cpHash or rpHash table. */
+typedef struct {
+    TPM2_ALG_ID alg;                 /**< The hash algorithm. */
+    size_t size;                     /**< The digest size. */
+    uint8_t digest[sizeof(TPMU_HA)]; /**< The digest. */
+} HASH_TAB_ITEM;
+
 typedef struct {
     ESYS_TR tpmKey;
     ESYS_TR bind;
@@ -177,6 +184,7 @@ struct ESYS_CONTEXT {
                                       current command execution. */
     RSRC_NODE_T *session_tab[3]; /**< The list of TPM session meta data in the
                                       current command execution. */
+    RSRC_NODE_T *auth_objects[3];/**< The list of objects to be authenticated */
     int encryptNonceIdx;         /**< The index of the encrypt session. */
     TPM2B_NONCE *encryptNonce;   /**< The nonce of the encrypt session, or NULL
                                       if no encrypt session exists. */
@@ -204,6 +212,7 @@ struct ESYS_CONTEXT {
 
     ESYS_CRYPTO_CALLBACKS crypto_backend; /**< The backend function pointers to use
                                               for crypto operations */
+    HASH_TAB_ITEM hash_tab[3];   /**< Buffer for cp/rp hash values */
 };
 
 /** The number of authomatic resubmissions.