| Index: tpmd/windows/tpmd.c
|
| diff --git a/tpmd/windows/tpmd.c b/tpmd/windows/tpmd.c
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..50290da0daf52aa6780eaa0013e3f43b0c4eb803
|
| --- /dev/null
|
| +++ b/tpmd/windows/tpmd.c
|
| @@ -0,0 +1,448 @@
|
| +/* Software-based Trusted Platform Module (TPM) Emulator
|
| + * Copyright (C) 2004-2010 Mario Strasser <mast@gmx.net>
|
| + * Copyright (C) 2009 Domenic Schroeder
|
| + *
|
| + * This program is free software; you can redistribute it and/or modify
|
| + * it under the terms of the GNU General Public License as published
|
| + * by the Free Software Foundation; either version 2 of the License,
|
| + * or (at your option) any later version.
|
| + *
|
| + * This program is distributed in the hope that it will be useful,
|
| + * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
| + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
| + * GNU General Public License for more details.
|
| + *
|
| + * $Id: tpmd.c 389 2010-02-18 09:52:11Z mast $
|
| + */
|
| +
|
| +#include <stdio.h>
|
| +#include <stdlib.h>
|
| +#include <unistd.h>
|
| +#include <string.h>
|
| +#include <errno.h>
|
| +#include <stdarg.h>
|
| +#include <fcntl.h>
|
| +#include <sys/stat.h>
|
| +#include <sys/time.h>
|
| +#include <windows.h>
|
| +#include <wincrypt.h>
|
| +#include "config.h"
|
| +#include "tpm/tpm_emulator.h"
|
| +
|
| +#define SERVICE_NAME "tpmd"
|
| +
|
| +static volatile int stopflag = 0;
|
| +static int is_service = 0;
|
| +static int opt_debug = 0;
|
| +static int opt_foreground = 0;
|
| +static const char *opt_pipe_name = TPM_DEVICE_NAME;
|
| +static const char *opt_storage_file = TPM_STORAGE_NAME;
|
| +static const char *opt_log_file = TPM_LOG_FILE;
|
| +static int tpm_startup = 2;
|
| +static uint32_t tpm_config = 0;
|
| +static HCRYPTPROV rand_ch;
|
| +static SERVICE_STATUS_HANDLE status_handle;
|
| +static DWORD current_status;
|
| +
|
| +void *tpm_malloc(size_t size)
|
| +{
|
| + return malloc(size);
|
| +}
|
| +
|
| +void tpm_free(/*const*/ void *ptr)
|
| +{
|
| + if (ptr != NULL) free((void*)ptr);
|
| +}
|
| +
|
| +void tpm_log(int priority, const char *fmt, ...)
|
| +{
|
| + FILE *file;
|
| + va_list ap, bp;
|
| + va_start(ap, fmt);
|
| + va_copy(bp, ap);
|
| + file = fopen(opt_log_file, "a");
|
| + if (file != NULL) {
|
| + vfprintf(file, fmt, ap);
|
| + fclose(file);
|
| + }
|
| + va_end(ap);
|
| + if (!is_service && (priority != TPM_LOG_DEBUG || opt_debug)) {
|
| + vprintf(fmt, bp);
|
| + }
|
| + va_end(bp);
|
| +}
|
| +
|
| +void tpm_get_extern_random_bytes(void *buf, size_t nbytes)
|
| +{
|
| + CryptGenRandom(rand_ch, nbytes, (BYTE*)buf);
|
| +}
|
| +
|
| +uint64_t tpm_get_ticks(void)
|
| +{
|
| + static uint64_t old_t = 0;
|
| + uint64_t new_t, res_t;
|
| + struct timeval tv;
|
| + gettimeofday(&tv, NULL);
|
| + new_t = (uint64_t)tv.tv_sec * 1000000 + (uint64_t)tv.tv_usec;
|
| + res_t = (old_t > 0) ? new_t - old_t : 0;
|
| + old_t = new_t;
|
| + return res_t;
|
| +}
|
| +
|
| +int tpm_write_to_storage(uint8_t *data, size_t data_length)
|
| +{
|
| + int fh;
|
| + ssize_t res;
|
| + fh = open(opt_storage_file, O_WRONLY | O_TRUNC | O_CREAT | O_BINARY,
|
| + S_IRUSR | S_IWUSR);
|
| + if (fh < 0) return -1;
|
| + while (data_length > 0) {
|
| + res = write(fh, data, data_length);
|
| + if (res < 0) {
|
| + close(fh);
|
| + return -1;
|
| + }
|
| + data_length -= res;
|
| + data += res;
|
| + }
|
| + close(fh);
|
| + return 0;
|
| +}
|
| +
|
| +int tpm_read_from_storage(uint8_t **data, size_t *data_length)
|
| +{
|
| + int fh;
|
| + ssize_t res;
|
| + size_t total_length;
|
| + fh = open(opt_storage_file, O_RDONLY | O_BINARY);
|
| + if (fh < 0) return -1;
|
| + total_length = lseek(fh, 0, SEEK_END);
|
| + lseek(fh, 0, SEEK_SET);
|
| + *data = tpm_malloc(total_length);
|
| + if (*data == NULL) {
|
| + close(fh);
|
| + return -1;
|
| + }
|
| + *data_length = 0;
|
| + while (total_length > 0) {
|
| + res = read(fh, &(*data)[*data_length], total_length);
|
| + if (res < 0) {
|
| + close(fh);
|
| + tpm_free(*data);
|
| + return -1;
|
| + }
|
| + if (res == 0) break;
|
| + *data_length += res;
|
| + total_length -= res;
|
| + }
|
| + close(fh);
|
| + return 0;
|
| +}
|
| +
|
| +static void print_usage(char *name)
|
| +{
|
| + printf("usage: %s [-d] [-f] [-s storage file] [-u windows pipe name] "
|
| + "[-l log file] [-h] [startup mode]\n", name);
|
| + printf(" d : enable debug mode\n");
|
| + printf(" f : forces the application to run in the foreground\n");
|
| + printf(" s : storage file to use (default: %s)\n", opt_storage_file);
|
| + printf(" u : windows named pipe name to use (default: %s)\n", opt_pipe_name);
|
| + printf(" l : name of the log file (default: %s)\n", opt_log_file);
|
| + printf(" h : print this help message\n");
|
| + printf(" startup mode : must be 'clear', "
|
| + "'save' (default) or 'deactivated\n");
|
| +}
|
| +
|
| +static int parse_options(int argc, char **argv)
|
| +{
|
| + char c;
|
| + info("parsing options");
|
| + while ((c = getopt (argc, argv, "dfs:u:o:g:c:h")) != -1) {
|
| + debug("handling option '-%c'", c);
|
| + switch (c) {
|
| + case 'd':
|
| + opt_debug = 1;
|
| + debug("debug mode enabled");
|
| + break;
|
| + case 'f':
|
| + debug("application is forced to run in foreground");
|
| + opt_foreground = 1;
|
| + break;
|
| + case 's':
|
| + opt_storage_file = optarg;
|
| + debug("using storage file '%s'", opt_storage_file);
|
| + break;
|
| + case 'u':
|
| + opt_pipe_name = optarg;
|
| + debug("using named pipe '%s'", opt_pipe_name);
|
| + break;
|
| + case 'l':
|
| + opt_log_file = optarg;
|
| + debug("using log file '%s'", opt_log_file);
|
| + break;
|
| + case 'c':
|
| + tpm_config = strtol(optarg, NULL, 0);
|
| + break;
|
| + case '?':
|
| + error("unknown option '-%c'", optopt);
|
| + print_usage(argv[0]);
|
| + return -1;
|
| + case 'h':
|
| + default:
|
| + print_usage(argv[0]);
|
| + return -1;
|
| + }
|
| + }
|
| + if (optind < argc && argv[optind][0] != 0) {
|
| + debug("startup mode = '%s'", argv[optind]);
|
| + if (!strcmp(argv[optind], "clear")) {
|
| + tpm_startup = 1;
|
| + } else if (!strcmp(argv[optind], "save")) {
|
| + tpm_startup = 2;
|
| + } else if (!strcmp(argv[optind], "deactivated")) {
|
| + tpm_startup = 3;
|
| + } else {
|
| + error("invalid startup mode '%s'; must be 'clear', "
|
| + "'save' (default) or 'deactivated", argv[optind]);
|
| + print_usage(argv[0]);
|
| + return 0;
|
| + }
|
| + } else {
|
| + /* if no startup mode is given assume save if a configuration
|
| + file is available, clear otherwise */
|
| + int fh = open(opt_storage_file, O_RDONLY);
|
| + if (fh < 0) {
|
| + tpm_startup = 1;
|
| + info("no startup mode was specified; asuming 'clear'");
|
| + } else {
|
| + tpm_startup = 2;
|
| + close(fh);
|
| + }
|
| + }
|
| + return 0;
|
| +}
|
| +
|
| +static const char *get_error(void)
|
| +{
|
| + static char buf[512];
|
| + memset(buf, 0, sizeof(buf));
|
| + FormatMessage(FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_FROM_SYSTEM,
|
| + "", GetLastError(), 0, buf, sizeof(buf), NULL);
|
| + return buf;
|
| +}
|
| +
|
| +static int init_random(void)
|
| +{
|
| + info("initializing crypto context for RNG");
|
| + BOOL res = CryptAcquireContext(&rand_ch, NULL, NULL,
|
| + PROV_RSA_FULL, CRYPT_SILENT);
|
| + if (!res) {
|
| + /* try it again with CRYPT_NEWKEYSET enabled */
|
| + res = CryptAcquireContext(&rand_ch, NULL, NULL,
|
| + PROV_RSA_FULL, CRYPT_SILENT | CRYPT_NEWKEYSET);
|
| + }
|
| + if (!res) {
|
| + error("CryptAcquireContext() failed: %s", get_error());
|
| + return -1;
|
| + }
|
| + return 0;
|
| +}
|
| +
|
| +BOOL signal_handler(DWORD event)
|
| +{
|
| + info("signal received: %d", event);
|
| + stopflag = 1;
|
| + /* unblock ConnectNamedPipe() */
|
| + HANDLE ph = CreateFile(opt_pipe_name, GENERIC_READ | GENERIC_WRITE,
|
| + 0, NULL, OPEN_EXISTING, FILE_ATTRIBUTE_NORMAL, NULL);
|
| + if (ph != INVALID_HANDLE_VALUE) CloseHandle(ph);
|
| + return TRUE;
|
| +}
|
| +
|
| +static int init_signal_handler(void)
|
| +{
|
| + info("installing signal handler");
|
| + if (!SetConsoleCtrlHandler((PHANDLER_ROUTINE)signal_handler,TRUE)) {
|
| + error("SetConsoleCtrlHandler() failed: %s", get_error());
|
| + return -1;
|
| + }
|
| + return 0;
|
| +}
|
| +
|
| +static int mkdirs(const char *path)
|
| +{
|
| + char *copy = strdup(path);
|
| + char *p = strchr(copy + 1, '/');
|
| + while (p != NULL) {
|
| + *p = '\0';
|
| + if ((mkdir(copy) == -1) && (errno != EEXIST)) {
|
| + free(copy);
|
| + return errno;
|
| + }
|
| + *p = '/';
|
| + p = strchr(p + 1, '/');
|
| + }
|
| + free(copy);
|
| + return 0;
|
| +}
|
| +
|
| +static void main_loop(void)
|
| +{
|
| + HANDLE ph;
|
| + DWORD in_len;
|
| + uint32_t out_len;
|
| + BYTE in[TPM_CMD_BUF_SIZE];
|
| + uint8_t *out;
|
| +
|
| + info("staring main loop");
|
| + /* open named pipe */
|
| + ph = CreateNamedPipe(opt_pipe_name, PIPE_ACCESS_DUPLEX,
|
| + PIPE_TYPE_MESSAGE | PIPE_READMODE_MESSAGE | PIPE_WAIT,
|
| + PIPE_UNLIMITED_INSTANCES, TPM_CMD_BUF_SIZE,
|
| + TPM_CMD_BUF_SIZE, 0, NULL);
|
| + if (ph == INVALID_HANDLE_VALUE) {
|
| + error("CreateNamedPipe() failed: %s", get_error());
|
| + return;
|
| + }
|
| + /* init tpm emulator */
|
| + mkdirs(opt_storage_file);
|
| + debug("initializing TPM emulator");
|
| + tpm_emulator_init(tpm_startup, tpm_config);
|
| + /* start command processing */
|
| + while (!stopflag) {
|
| + /* wait for incomming connections */
|
| + debug("waiting for connections...");
|
| + if (!ConnectNamedPipe(ph, NULL)) {
|
| + error("ConnectNamedPipe() failed: %s", get_error());
|
| + break;
|
| + }
|
| + if (stopflag) break;
|
| + /* receive and handle commands */
|
| + in_len = 0;
|
| + do {
|
| + if (!ReadFile(ph, in, sizeof(in), &in_len, NULL)) {
|
| + error("ReadFile() failed: %s", get_error());
|
| + }
|
| + if (in_len > 0) {
|
| + debug("received %d bytes", in_len);
|
| + out = NULL;
|
| + if (tpm_handle_command(in, in_len, &out, &out_len) != 0) {
|
| + error("tpm_handle_command() failed");
|
| + } else {
|
| + debug("sending %d bytes", out_len);
|
| + DWORD res, len = 0;
|
| + while (len < out_len) {
|
| + if (!WriteFile(ph, out, out_len, &res, NULL)) {
|
| + error("WriteFile(%d) failed: %s",
|
| + out_len - len, strerror(errno));
|
| + break;
|
| + }
|
| + len += res;
|
| + }
|
| + tpm_free(out);
|
| + }
|
| + }
|
| + } while (in_len > 0 && !stopflag);
|
| + DisconnectNamedPipe(ph);
|
| + }
|
| + /* shutdown tpm emulator */
|
| + tpm_emulator_shutdown();
|
| + /* close socket */
|
| + CloseHandle(ph);
|
| + info("main loop stopped");
|
| +}
|
| +
|
| +BOOL updateServiceStatus(DWORD currentState, DWORD winExitCode,
|
| + DWORD exitCode, DWORD checkPoint, DWORD waitHint)
|
| +{
|
| + SERVICE_STATUS status;
|
| +
|
| + /* if this is a service update the status, otherwise return success */
|
| + if (!is_service) return TRUE;
|
| + current_status = currentState;
|
| + status.dwServiceType = SERVICE_WIN32_OWN_PROCESS;
|
| + status.dwCurrentState = currentState;
|
| + /* once the service is up and running, it accepts
|
| + the events stop and shutdown */
|
| + if (currentState == SERVICE_START_PENDING) {
|
| + status.dwControlsAccepted = 0;
|
| + } else {
|
| + status.dwControlsAccepted = SERVICE_ACCEPT_STOP
|
| + | SERVICE_ACCEPT_SHUTDOWN;
|
| + }
|
| + status.dwWin32ExitCode = winExitCode;
|
| + status.dwServiceSpecificExitCode = exitCode;
|
| + status.dwCheckPoint = checkPoint;
|
| + status.dwWaitHint = waitHint;
|
| + return SetServiceStatus(status_handle, &status);
|
| +}
|
| +
|
| +void serviceCtrlHandler(DWORD code)
|
| +{
|
| + switch (code) {
|
| + /* stop service if told so or in the case of a system shutdown */
|
| + case SERVICE_CONTROL_STOP:
|
| + case SERVICE_CONTROL_SHUTDOWN:
|
| + updateServiceStatus(SERVICE_STOP_PENDING, NO_ERROR, 0, 1, 5000);
|
| + signal_handler(CTRL_CLOSE_EVENT);
|
| + break;
|
| + /* report the current status of the service to the SCM */
|
| + case SERVICE_CONTROL_INTERROGATE:
|
| + updateServiceStatus(current_status, NO_ERROR, 0, 0, 0);
|
| + break;
|
| + }
|
| +}
|
| +
|
| +void serviceMain(int argc, char **argv)
|
| +{
|
| + info("starting TPM Emulator daemon (1.2.%d.%d-%d)",
|
| + VERSION_MAJOR, VERSION_MINOR, VERSION_BUILD);
|
| + /* first of all register the control handler function of the service */
|
| + if (is_service) {
|
| + status_handle = RegisterServiceCtrlHandler(
|
| + SERVICE_NAME, (LPHANDLER_FUNCTION)serviceCtrlHandler);
|
| + }
|
| + if (argc > 0 && parse_options(argc, argv) != 0) {
|
| + updateServiceStatus(SERVICE_STOPPED,
|
| + ERROR_SERVICE_SPECIFIC_ERROR, 1, 0, 0);
|
| + return;
|
| + }
|
| + /* init logging */
|
| + mkdirs(opt_log_file);
|
| + /* init signal handler */
|
| + if (init_signal_handler() != 0) {
|
| + updateServiceStatus(SERVICE_STOPPED,
|
| + ERROR_SERVICE_SPECIFIC_ERROR, 1, 0, 0);
|
| + return;
|
| + }
|
| + /* init random number generator */
|
| + if (init_random() != 0) {
|
| + updateServiceStatus(SERVICE_STOPPED,
|
| + ERROR_SERVICE_SPECIFIC_ERROR, 1, 0, 0);
|
| + return;
|
| + }
|
| + /* start main processing loop */
|
| + updateServiceStatus(SERVICE_RUNNING, NO_ERROR, 0, 0, 0);
|
| + main_loop();
|
| + info("stopping TPM Emulator daemon");
|
| + CryptReleaseContext(rand_ch, 0);
|
| + updateServiceStatus(SERVICE_STOPPED, NO_ERROR, 0, 0, 0);
|
| +}
|
| +
|
| +int main(int argc, char **argv)
|
| +{
|
| + if (parse_options(argc, argv) != 0) return EXIT_FAILURE;
|
| + if (opt_foreground) {
|
| + is_service = 0;
|
| + serviceMain(0, NULL);
|
| + return EXIT_SUCCESS;
|
| + } else {
|
| + SERVICE_TABLE_ENTRY service_table[] = {
|
| + { (LPTSTR)SERVICE_NAME, (LPSERVICE_MAIN_FUNCTION)serviceMain },
|
| + { NULL, NULL } };
|
| + is_service = 1;
|
| + StartServiceCtrlDispatcher(service_table);
|
| + return GetLastError();
|
| + }
|
| +}
|
| +
|
|
|
Chromium Code Reviews
Issue 660204:
Upgrade to tpm-emulator version 0.7. (Closed)
