[TrouSerS-users] help with hash notation in TPM spec

Discussion:

Tadd Seiff

2016-04-07 01:32:50 UTC

Hi all,

I need help understanding the TPM_CHOSENID_HASH structure in the TPM spec,
section 12.4 in the structures document for 1.2. It says:

TPM_CHOSENID_HASH = SHA(identityLabel || privacyCA)

1.) What does the || notation suggest here? Concatenation? Or'ing?
2.) The privacyCA element is actually a structure, so, what do I do with
that? Just use the whole structure as a byte array?

Thanks,
-Tadd

Ken Goldman

2016-04-07 13:11:54 UTC

Permalink

On 4/6/2016 9:32 PM, Tadd Seiff wrote:
> Hi all,
>
> I need help understanding the TPM_CHOSENID_HASH structure in the TPM
> spec, section 12.4 in the structures document for 1.2. It says:
>
> TPM_CHOSENID_HASH = SHA(identityLabel || privacyCA)
>
> 1.) What does the || notation suggest here? Concatenation? Or'ing?

From Part 1:

"Throughout all parts of the specification the characters x1 || x2 imply
the concatenation of x1 and x2."

> 2.) The privacyCA element is actually a structure, so, what do I do with
> that? Just use the whole structure as a byte array?

The way I read Part 3 15.1 TPM_MakeIdentity, the TPM doesn't care. The
actual value is between you and the privacy CA.

I'm not an expert at this section. Let's see what others say.

------------------------------------------------------------------------------

Tadd Seiff

2016-04-07 19:55:26 UTC

Permalink

OK thanks. So TPM doesn't care, Trousers does, or, Trousers does it a
specific and "correct" way for interoperability.

I'm using Trousers, so as you point out, this is done for me. I am
actually working on the code for the PCA side right now, and got a little
confused; I don't have to generate this hash from that end, I don't think,
only use it to verify the TPM_ID_PROOF payload.

Thanks,
-Tadd

On Thu, Apr 7, 2016 at 12:27 PM Phil Lacroute <***@skyportsystems.com>
wrote:

> Tadd,
>
> The TPM doesnât care what values are hashed into TPM_CHOSENID_HASH, but if
> you require interoperability with a TCG-compliant privacy CA then the
> privacyCA value should be a marshaled TPM_PUBKEY structure. Part 2 2.1
> Representation of Information describes the basic rules for marshaling and
> Part 2 10.5 TPM_PUBKEY describes this structure.
>
> An easier reference for the marshaling code is the TrouSerS source (
> https://sourceforge.net/projects/trousers/files/trousers/). See
> src/tspi/tspi_aik.c:Tspi_TPM_CollateIdentityRequest() which shows how to
> compute the ChosenID hash.
>
> Phil
>
> > On Apr 7, 2016, at 6:11 AM, Ken Goldman <***@us.ibm.com> wrote:
> >
> > On 4/6/2016 9:32 PM, Tadd Seiff wrote:
> >> Hi all,
> >>
> >> I need help understanding the TPM_CHOSENID_HASH structure in the TPM
> >> spec, section 12.4 in the structures document for 1.2. It says:
> >>
> >> TPM_CHOSENID_HASH = SHA(identityLabel || privacyCA)
> >>
> >> 1.) What does the || notation suggest here? Concatenation? Or'ing?
> >
> > From Part 1:
> >
> > "Throughout all parts of the specification the characters x1 || x2 imply
> > the concatenation of x1 and x2."
> >
> >> 2.) The privacyCA element is actually a structure, so, what do I do with
> >> that? Just use the whole structure as a byte array?
> >
> > The way I read Part 3 15.1 TPM_MakeIdentity, the TPM doesn't care. The
> > actual value is between you and the privacy CA.
> >
> > I'm not an expert at this section. Let's see what others say.
> >
> >
> >
> >
> ------------------------------------------------------------------------------
> > _______________________________________________
> > TrouSerS-users mailing list
> > TrouSerS-***@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/trousers-users
>
>

Tadd Seiff

2016-04-07 20:03:37 UTC

Permalink

Just to come full-circle, in case it helps others:
>From the PCA side I do need to create a TPM_DIGEST in the ASYM_CA_CONTENTS
structure; "This SHALL be the digest of the TPM_PUBKEY of the key that is
being certified by the CA". So I still do need do understand how to hash
the structure.

I assume I should look at Tspi_TPM_ActivateIdentity() to see what trousers
expects for this digest.

On Thu, Apr 7, 2016 at 12:55 PM Tadd Seiff <***@gmail.com> wrote:

> OK thanks. So TPM doesn't care, Trousers does, or, Trousers does it a
> specific and "correct" way for interoperability.
>
> I'm using Trousers, so as you point out, this is done for me. I am
> actually working on the code for the PCA side right now, and got a little
> confused; I don't have to generate this hash from that end, I don't think,
> only use it to verify the TPM_ID_PROOF payload.
>
> Thanks,
> -Tadd
>
> On Thu, Apr 7, 2016 at 12:27 PM Phil Lacroute <***@skyportsystems.com>
> wrote:
>
>> Tadd,
>>
>> The TPM doesnât care what values are hashed into TPM_CHOSENID_HASH, but
>> if you require interoperability with a TCG-compliant privacy CA then the
>> privacyCA value should be a marshaled TPM_PUBKEY structure. Part 2 2.1
>> Representation of Information describes the basic rules for marshaling and
>> Part 2 10.5 TPM_PUBKEY describes this structure.
>>
>> An easier reference for the marshaling code is the TrouSerS source (
>> https://sourceforge.net/projects/trousers/files/trousers/). See
>> src/tspi/tspi_aik.c:Tspi_TPM_CollateIdentityRequest() which shows how to
>> compute the ChosenID hash.
>>
>> Phil
>>
>> > On Apr 7, 2016, at 6:11 AM, Ken Goldman <***@us.ibm.com> wrote:
>> >
>> > On 4/6/2016 9:32 PM, Tadd Seiff wrote:
>> >> Hi all,
>> >>
>> >> I need help understanding the TPM_CHOSENID_HASH structure in the TPM
>> >> spec, section 12.4 in the structures document for 1.2. It says:
>> >>
>> >> TPM_CHOSENID_HASH = SHA(identityLabel || privacyCA)
>> >>
>> >> 1.) What does the || notation suggest here? Concatenation? Or'ing?
>> >
>> > From Part 1:
>> >
>> > "Throughout all parts of the specification the characters x1 || x2 imply
>> > the concatenation of x1 and x2."
>> >
>> >> 2.) The privacyCA element is actually a structure, so, what do I do
>> with
>> >> that? Just use the whole structure as a byte array?
>> >
>> > The way I read Part 3 15.1 TPM_MakeIdentity, the TPM doesn't care. The
>> > actual value is between you and the privacy CA.
>> >
>> > I'm not an expert at this section. Let's see what others say.
>> >
>> >
>> >
>> >
>> ------------------------------------------------------------------------------
>> > _______________________________________________
>> > TrouSerS-users mailing list
>> > TrouSerS-***@lists.sourceforge.net
>> > https://lists.sourceforge.net/lists/listinfo/trousers-users
>>
>>

Bill Martin

2016-04-07 20:25:19 UTC

Permalink

Yes, once the CA has the identity blob from the TPM platform it must calculate the hash of the TPM_PUBKEY as you mentioned. This example of how it's done is in the function ca_create_credential() in the file Tsp_TPM_CreateIdentity.c in the test suite. I'm using test suite-0.3?, which you can get off the web, I think sourceforge.

regards,

Bill

________________________________
From: Tadd Seiff <***@gmail.com>
Sent: Thursday, April 7, 2016 1:03 PM
To: trousers-***@lists.sourceforge.net
Subject: Re: [TrouSerS-users] help with hash notation in TPM spec

Just to come full-circle, in case it helps others:
>From the PCA side I do need to create a TPM_DIGEST in the ASYM_CA_CONTENTS structure; "This SHALL be the digest of the TPM_PUBKEY of the key that is being certified by the CA". So I still do need do understand how to hash the structure.

I assume I should look at Tspi_TPM_ActivateIdentity() to see what trousers expects for this digest.

On Thu, Apr 7, 2016 at 12:55 PM Tadd Seiff <***@gmail.com<mailto:***@gmail.com>> wrote:
OK thanks. So TPM doesn't care, Trousers does, or, Trousers does it a specific and "correct" way for interoperability.

I'm using Trousers, so as you point out, this is done for me. I am actually working on the code for the PCA side right now, and got a little confused; I don't have to generate this hash from that end, I don't think, only use it to verify the TPM_ID_PROOF payload.

Thanks,
-Tadd

On Thu, Apr 7, 2016 at 12:27 PM Phil Lacroute <***@skyportsystems.com<mailto:***@skyportsystems.com>> wrote:
Tadd,

The TPM doesn't care what values are hashed into TPM_CHOSENID_HASH, but if you require interoperability with a TCG-compliant privacy CA then the privacyCA value should be a marshaled TPM_PUBKEY structure. Part 2 2.1 Representation of Information describes the basic rules for marshaling and Part 2 10.5 TPM_PUBKEY describes this structure.

An easier reference for the marshaling code is the TrouSerS source (https://sourceforge.net/projects/trousers/files/trousers/). See src/tspi/tspi_aik.c:Tspi_TPM_CollateIdentityRequest() which shows how to compute the ChosenID hash.

Phil

> On Apr 7, 2016, at 6:11 AM, Ken Goldman <***@us.ibm.com<mailto:***@us.ibm.com>> wrote:
>
> On 4/6/2016 9:32 PM, Tadd Seiff wrote:
>> Hi all,
>>
>> I need help understanding the TPM_CHOSENID_HASH structure in the TPM
>> spec, section 12.4 in the structures document for 1.2. It says:
>>
>> TPM_CHOSENID_HASH = SHA(identityLabel || privacyCA)
>>
>> 1.) What does the || notation suggest here? Concatenation? Or'ing?
>
> From Part 1:
>
> "Throughout all parts of the specification the characters x1 || x2 imply
> the concatenation of x1 and x2."
>
>> 2.) The privacyCA element is actually a structure, so, what do I do with
>> that? Just use the whole structure as a byte array?
>
> The way I read Part 3 15.1 TPM_MakeIdentity, the TPM doesn't care. The
> actual value is between you and the privacy CA.
>
> I'm not an expert at this section. Let's see what others say.
>
>
>
> ------------------------------------------------------------------------------
> _______________________________________________
> TrouSerS-users mailing list
> TrouSerS-***@lists.sourceforge.net<mailto:TrouSerS-***@lists.sourceforge.net>
> https://lists.sourceforge.net/lists/listinfo/trousers-users