Rebase fixes

Author: dgarske

tests/unit_tests.c

@@ -762,15 +762,12 @@ static void test_TPM2_ParamEnc_XOR_Vector(void)
 {
 #ifndef WOLFTPM2_NO_WOLFCRYPT
     int rc;
-    TPM2_AUTH_SESSION session;
+    TPMI_ALG_HASH authHash = TPM_ALG_SHA256;
     TPM2B_AUTH sessKey;
     TPM2B_NONCE nonceCaller, nonceTPM;
     const byte original[] = "XOR parameter encryption round-trip test";
     byte data[sizeof(original)];
 
-    XMEMSET(&session, 0, sizeof(session));
-    session.authHash = TPM_ALG_SHA256;
-
     sessKey.size = TPM_SHA256_DIGEST_SIZE;
     XMEMSET(sessKey.buffer, 0xCC, sessKey.size);
 
@@ -782,15 +779,19 @@ static void test_TPM2_ParamEnc_XOR_Vector(void)
     XMEMCPY(data, original, sizeof(original));
 
     /* Encrypt */
-    rc = TPM2_ParamEnc_XOR(&session, &sessKey, NULL, &nonceCaller, &nonceTPM,
+    rc = TPM2_ParamEnc_XOR(authHash, sessKey.buffer, sessKey.size,
+        nonceCaller.buffer, nonceCaller.size,
+        nonceTPM.buffer, nonceTPM.size,
         data, sizeof(data));
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
     /* Data must differ from original */
     AssertIntNE(0, XMEMCMP(data, original, sizeof(original)));
 
     /* Encrypt again with same args — XOR is self-inverse */
-    rc = TPM2_ParamEnc_XOR(&session, &sessKey, NULL, &nonceCaller, &nonceTPM,
+    rc = TPM2_ParamEnc_XOR(authHash, sessKey.buffer, sessKey.size,
+        nonceCaller.buffer, nonceCaller.size,
+        nonceTPM.buffer, nonceTPM.size,
         data, sizeof(data));
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
@@ -805,16 +806,13 @@ static void test_TPM2_ParamEnc_AESCFB_Vector(void)
 {
 #if !defined(WOLFTPM2_NO_WOLFCRYPT) && defined(WOLFSSL_AES_CFB)
     int rc;
-    TPM2_AUTH_SESSION session;
+    TPMI_ALG_HASH authHash = TPM_ALG_SHA256;
+    UINT16 keyBits = MAX_AES_KEY_BITS;
     TPM2B_AUTH sessKey;
     TPM2B_NONCE nonceCaller, nonceTPM;
     const byte original[] = "AES-CFB parameter encryption round-trip test";
     byte data[sizeof(original)];
 
-    XMEMSET(&session, 0, sizeof(session));
-    session.authHash = TPM_ALG_SHA256;
-    session.symmetric.keyBits.aes = MAX_AES_KEY_BITS;
-
     sessKey.size = TPM_SHA256_DIGEST_SIZE;
     XMEMSET(sessKey.buffer, 0xDD, sessKey.size);
 
@@ -826,16 +824,22 @@ static void test_TPM2_ParamEnc_AESCFB_Vector(void)
     XMEMCPY(data, original, sizeof(original));
 
     /* Encrypt with (nonceCaller, nonceTPM) */
-    rc = TPM2_ParamEnc_AESCFB(&session, &sessKey, NULL, &nonceCaller,
-        &nonceTPM, data, sizeof(data));
+    rc = TPM2_ParamEnc_AESCFB(authHash, keyBits,
+        sessKey.buffer, sessKey.size,
+        nonceCaller.buffer, nonceCaller.size,
+        nonceTPM.buffer, nonceTPM.size,
+        data, sizeof(data), 1);
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
     /* Data must differ from original */
     AssertIntNE(0, XMEMCMP(data, original, sizeof(original)));
 
-    /* Decrypt: swap nonce args so KDFa produces same key */
-    rc = TPM2_ParamDec_AESCFB(&session, &sessKey, NULL, &nonceTPM,
-        &nonceCaller, data, sizeof(data));
+    /* Decrypt: same nonce order, doEncrypt=0 */
+    rc = TPM2_ParamEnc_AESCFB(authHash, keyBits,
+        sessKey.buffer, sessKey.size,
+        nonceCaller.buffer, nonceCaller.size,
+        nonceTPM.buffer, nonceTPM.size,
+        data, sizeof(data), 0);
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
     /* Must match original */
@@ -849,15 +853,12 @@ static void test_TPM2_ParamDec_XOR_Roundtrip(void)
 {
 #ifndef WOLFTPM2_NO_WOLFCRYPT
     int rc;
-    TPM2_AUTH_SESSION session;
+    TPMI_ALG_HASH authHash = TPM_ALG_SHA256;
     TPM2B_AUTH sessKey;
     TPM2B_NONCE nonceCaller, nonceTPM;
     const byte original[] = "XOR parameter decryption round-trip test";
     byte data[sizeof(original)];
 
-    XMEMSET(&session, 0, sizeof(session));
-    session.authHash = TPM_ALG_SHA256;
-
     sessKey.size = TPM_SHA256_DIGEST_SIZE;
     XMEMSET(sessKey.buffer, 0xEE, sessKey.size);
 
@@ -868,16 +869,21 @@ static void test_TPM2_ParamDec_XOR_Roundtrip(void)
 
     XMEMCPY(data, original, sizeof(original));
 
-    /* Decrypt direction: XOR with (nonceCaller, nonceTPM) mask */
-    rc = TPM2_ParamDec_XOR(&session, &sessKey, NULL, &nonceCaller, &nonceTPM,
+    /* Decrypt direction uses (nonceTPM, nonceCaller) order. XOR is symmetric
+     * so the same TPM2_ParamEnc_XOR call performs decryption. */
+    rc = TPM2_ParamEnc_XOR(authHash, sessKey.buffer, sessKey.size,
+        nonceTPM.buffer, nonceTPM.size,
+        nonceCaller.buffer, nonceCaller.size,
         data, sizeof(data));
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
     /* Data must differ from original */
     AssertIntNE(0, XMEMCMP(data, original, sizeof(original)));
 
     /* Apply same XOR again — self-inverse recovers original */
-    rc = TPM2_ParamDec_XOR(&session, &sessKey, NULL, &nonceCaller, &nonceTPM,
+    rc = TPM2_ParamEnc_XOR(authHash, sessKey.buffer, sessKey.size,
+        nonceTPM.buffer, nonceTPM.size,
+        nonceCaller.buffer, nonceCaller.size,
         data, sizeof(data));
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
@@ -892,16 +898,13 @@ static void test_TPM2_ParamDec_AESCFB_Roundtrip(void)
 {
 #if !defined(WOLFTPM2_NO_WOLFCRYPT) && defined(WOLFSSL_AES_CFB)
     int rc;
-    TPM2_AUTH_SESSION session;
+    TPMI_ALG_HASH authHash = TPM_ALG_SHA256;
+    UINT16 keyBits = MAX_AES_KEY_BITS;
     TPM2B_AUTH sessKey;
     TPM2B_NONCE nonceCaller, nonceTPM;
     const byte original[] = "AES-CFB parameter decryption round-trip test";
     byte data[sizeof(original)];
 
-    XMEMSET(&session, 0, sizeof(session));
-    session.authHash = TPM_ALG_SHA256;
-    session.symmetric.keyBits.aes = MAX_AES_KEY_BITS;
-
     sessKey.size = TPM_SHA256_DIGEST_SIZE;
     XMEMSET(sessKey.buffer, 0xFF, sessKey.size);
 
@@ -912,18 +915,23 @@ static void test_TPM2_ParamDec_AESCFB_Roundtrip(void)
 
     XMEMCPY(data, original, sizeof(original));
 
-    /* Encrypt with ParamEnc_AESCFB (command direction) */
-    rc = TPM2_ParamEnc_AESCFB(&session, &sessKey, NULL, &nonceCaller,
-        &nonceTPM, data, sizeof(data));
+    /* Encrypt: command direction uses (nonceCaller, nonceTPM), doEncrypt=1 */
+    rc = TPM2_ParamEnc_AESCFB(authHash, keyBits,
+        sessKey.buffer, sessKey.size,
+        nonceCaller.buffer, nonceCaller.size,
+        nonceTPM.buffer, nonceTPM.size,
+        data, sizeof(data), 1);
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
     /* Data must differ from original */
     AssertIntNE(0, XMEMCMP(data, original, sizeof(original)));
 
-    /* Decrypt with ParamDec_AESCFB: swap nonce args so internal KDFa
-     * produces the same key as encryption */
-    rc = TPM2_ParamDec_AESCFB(&session, &sessKey, NULL, &nonceTPM,
-        &nonceCaller, data, sizeof(data));
+    /* Decrypt: same nonce order so KDFa produces the same key, doEncrypt=0 */
+    rc = TPM2_ParamEnc_AESCFB(authHash, keyBits,
+        sessKey.buffer, sessKey.size,
+        nonceCaller.buffer, nonceCaller.size,
+        nonceTPM.buffer, nonceTPM.size,
+        data, sizeof(data), 0);
     AssertIntEQ(TPM_RC_SUCCESS, rc);
 
     /* Must match original */

wolftpm/tpm2_param_enc.h

@@ -30,17 +30,19 @@
     extern "C" {
 #endif
 
-/* XOR parameter encryption/decryption (raw pointer interface) */
-WOLFTPM_LOCAL int TPM2_ParamEnc_XOR(
+/* XOR parameter encryption/decryption (raw pointer interface).
+ * XOR is symmetric so encrypt and decrypt are the same operation. */
+WOLFTPM_TEST_API int TPM2_ParamEnc_XOR(
     TPMI_ALG_HASH authHash,
     const BYTE *keyIn, UINT32 keyInSz,
     const BYTE *nonceA, UINT32 nonceASz,
     const BYTE *nonceB, UINT32 nonceBSz,
     BYTE *paramData, UINT32 paramSz
 );
 
-/* AES-CFB parameter encryption/decryption */
-WOLFTPM_LOCAL int TPM2_ParamEnc_AESCFB(
+/* AES-CFB parameter encryption/decryption (raw pointer interface).
+ * doEncrypt: 1 = encrypt, 0 = decrypt. */
+WOLFTPM_TEST_API int TPM2_ParamEnc_AESCFB(
     TPMI_ALG_HASH authHash, UINT16 keyBits,
     const BYTE *keyIn, UINT32 keyInSz,
     const BYTE *nonceA, UINT32 nonceASz,
@@ -58,28 +60,6 @@ WOLFTPM_LOCAL int TPM2_CalcCpHash(TPMI_ALG_HASH authHash, TPM_CC cmdCode,
     TPM2B_NAME* name1, TPM2B_NAME* name2, TPM2B_NAME* name3,
     BYTE* param, UINT32 paramSz, TPM2B_DIGEST* hash);
 
-/* Low-level XOR param encryption/decryption */
-WOLFTPM_TEST_API int TPM2_ParamEnc_XOR(TPM2_AUTH_SESSION *session,
-    TPM2B_AUTH* sessKey, TPM2B_AUTH* bindKey,
-    TPM2B_NONCE* nonceCaller, TPM2B_NONCE* nonceTPM,
-    BYTE *paramData, UINT32 paramSz);
-WOLFTPM_TEST_API int TPM2_ParamDec_XOR(TPM2_AUTH_SESSION *session,
-    TPM2B_AUTH* sessKey, TPM2B_AUTH* bindKey,
-    TPM2B_NONCE* nonceCaller, TPM2B_NONCE* nonceTPM,
-    BYTE *paramData, UINT32 paramSz);
-
-/* Low-level AES-CFB param encryption/decryption */
-#if !defined(WOLFTPM2_NO_WOLFCRYPT) && defined(WOLFSSL_AES_CFB)
-WOLFTPM_TEST_API int TPM2_ParamEnc_AESCFB(TPM2_AUTH_SESSION *session,
-    TPM2B_AUTH* sessKey, TPM2B_AUTH* bindKey,
-    TPM2B_NONCE* nonceCaller, TPM2B_NONCE* nonceTPM,
-    BYTE *paramData, UINT32 paramSz);
-WOLFTPM_TEST_API int TPM2_ParamDec_AESCFB(TPM2_AUTH_SESSION *session,
-    TPM2B_AUTH* sessKey, TPM2B_AUTH* bindKey,
-    TPM2B_NONCE* nonceCaller, TPM2B_NONCE* nonceTPM,
-    BYTE *paramData, UINT32 paramSz);
-#endif
-
 /* Perform encryption over the first parameter of a TPM packet */
 WOLFTPM_LOCAL TPM_RC TPM2_ParamEnc_CmdRequest(TPM2_AUTH_SESSION *session,
                                 BYTE *paramData, UINT32 paramSz);