Crate fidl_fuchsia_tpm_cr50

Macros

• CcdCapabilityStateUnknown
  Pattern that matches an unknown CcdCapabilityState member.
• CcdCapabilityUnknown
  Pattern that matches an unknown CcdCapability member.
• CcdStateUnknown
  Pattern that matches an unknown CcdState member.
• Cr50RcUnknown
  Pattern that matches an unknown Cr50Rc member.
• Cr50StatusUnknown
  Pattern that matches an unknown Cr50Status member.
• PhysicalPresenceEventUnknown
  Pattern that matches an unknown PhysicalPresenceEvent member.
• PhysicalPresenceStateUnknown
  Pattern that matches an unknown PhysicalPresenceState member.
• TryAuthResponseUnknown
  Pattern that matches an unknown TryAuthResponse member.

Structs

• CcdCapabilitySetting
• CcdFlags
• CcdIndicator
• CcdInfo
• Cr50CcdGetInfoResponder
• Cr50CcdGetInfoResponse
• Cr50CcdLockResponder
• Cr50CcdLockResponse
• Cr50CcdOpenRequest
• Cr50CcdOpenResponder
• Cr50CcdOpenResponse
• Cr50CcdUnlockRequest
• Cr50CcdUnlockResponder
• Cr50CcdUnlockResponse
• Cr50ControlHandle
• Cr50EventStream
• Cr50Marker
• Cr50Proxy
• Cr50RequestStream
  A Stream of incoming requests for fuchsia.tpm.cr50/Cr50.
• Cr50SynchronousProxy
• Cr50WpGetStateResponder
• Cr50WpGetStateResponse
• DelayScheduleEntry
  Defines a single entry in the table of failed authentication attempt number to authentication delay.
• EntryData
  Additional data included as part of LogEntry required to execute the replay step.
• InsertLeafParams
  Parameters to InsertLeaf method. TODO(fxbug.dev/88343): Replace with anonymous tables when avaliable as parameter arguments.
• InsertLeafResponse
  Response from the InsertLeaf method. TODO(fxbug.dev/88343): Replace with anonymous tables when avaliable as parameter arguments.
• LogEntry
  Describes a log entry as returned from GetLog.
• LogReplayParams
  Parameters to LogReplay method.
• LogReplayResponse
  Response from LogReplay method.
• PhysicalPresenceNotifierControlHandle
• PhysicalPresenceNotifierEventStream
• PhysicalPresenceNotifierMarker
• PhysicalPresenceNotifierOnChangeRequest
• PhysicalPresenceNotifierProxy
• PhysicalPresenceNotifierRequestStream
  A Stream of incoming requests for fuchsia.tpm.cr50/PhysicalPresenceNotifier.
• PhysicalPresenceNotifierSynchronousProxy
• PinWeaverControlHandle
• PinWeaverEventStream
• PinWeaverGetLogRequest
• PinWeaverGetLogResponder
• PinWeaverGetLogResponse
• PinWeaverGetVersionResponder
• PinWeaverGetVersionResponse
• PinWeaverInsertLeafRequest
• PinWeaverInsertLeafResponder
• PinWeaverInsertLeafResponse
• PinWeaverLogReplayRequest
• PinWeaverLogReplayResponder
• PinWeaverLogReplayResponse
• PinWeaverMarker
• PinWeaverProxy
• PinWeaverRemoveLeafRequest
• PinWeaverRemoveLeafResponder
• PinWeaverRemoveLeafResponse
• PinWeaverRequestStream
  A Stream of incoming requests for fuchsia.tpm.cr50/PinWeaver.
• PinWeaverResetTreeRequest
• PinWeaverResetTreeResponder
• PinWeaverResetTreeResponse
• PinWeaverSynchronousProxy
• PinWeaverTryAuthRequest
• PinWeaverTryAuthResponder
• PinWeaverTryAuthResponse
• RemoveLeafParams
  Parameters to RemoveLeaf method. TODO(fxbug.dev/88343): Replace with anonymous tables when avaliable as parameter arguments.
• TryAuthFailed
  Returned on authentication failure when the low entropy secret is incorrect.
• TryAuthParams
  Parameters to the TryAuth method. TODO(fxbug.dev/88343): Replace with anonymous tables when avaliable as parameter arguments.
• TryAuthRateLimited
  Returned on authentication failure when the rate limit has been reached. This is distinct from the other failure mode as the provided low entropy secret may be correct but the caller is locked out until time_to_wait has passed.
• TryAuthSuccess
  Returned on authentication success when the low entropy secret is correct.
• WpState
  Write protect status field.

Enums

• CcdCapability
  Case-closed debugging capabilities.
• CcdCapabilityState
  Represents the state of a CCD capability.
• CcdState
  State of case-closed debugging features on this device.
• Cr50Event
• Cr50Rc
  Response code type for cr50 commands.
• Cr50Request
• Cr50Status
  Vendor-specific TPM response codes.
• MessageType
  Enum defining the types of LogEntrys that can be returned.
• PhysicalPresenceEvent
  Union passed to OnChange() event handler of |PhysicalPresenceNotifier|.
• PhysicalPresenceNotifierEvent
• PhysicalPresenceNotifierRequest
  Protocol used to notify client of a pending physical presence event. This protocol has no form of backpressure because it is not expected to generate a large number of messages. An unlock or open will usually result in less than 20 messages.
• PhysicalPresenceState
• PinWeaverError
  All the errors that can be returned by the CR50 for the PinWeaver protocol.
• PinWeaverEvent
• PinWeaverRequest
  The PinWeaver protocol defines the low level interface to the CR50 firmware for low entropy credentials. This interface allows the caller which should be a high trust component the ability to seal high entropy secrets behind rate-limited low entropy secrets which can only be unsealed if the correct low entropy secret is provided and the rate limit has not been reached.
• TryAuthResponse
  Authentication can succeed and fail three distinct ways see the TryAuth() method for how. This response is returned on all TryAuth() calls with one member of the union being filled based on the success or error type.

Constants

• CCD_CAPABILITY_COUNT_MAX
• CCD_PASSWORD_MAX
• CREDENTIAL_METADATA_MAX_SIZE
  Maximum size of the credential metadata.
• DELAY_SCHEDULE_MAX_COUNT
  Maximum number of delay schedule entries.
• HASH_SIZE
  Size of a SHA256 hash.
• HE_SECRET_MAX_SIZE
  Maximum size of a high entropy secret
• LE_SECRET_MAX_SIZE
  Maximum size of a low entropy secret
• MAC_SIZE
  Size of a HMAC-SHA256 hash.
• MAX_LOG_ENTRIES
  Maximum number of log entries returned by GetLog.

Traits

• Cr50ProxyInterface
• PhysicalPresenceNotifierProxyInterface
• PinWeaverProxyInterface

Type Aliases

• AuxiliaryHashes
  The list of auxiliary hashes for a particular leaf node. These are the hashes which together with the leaf nodes HMAC are required to recompute the updated root hash of the hash tree.
• Cr50CcdGetInfoResult
• Cr50CcdLockResult
• Cr50CcdOpenResult
• Cr50CcdUnlockResult
• Cr50WpGetStateResult
• CredMetadata
  Opaque metadata for credential as produced by the PinWeaver server.
• Hash
  A secure SHA256 sized byte buffer. These are used by the intermediate Merkle tree nodes including the root hash.
• HeSecret
  A high entropy secret that is randomly generated and usable for symmetric key encryption.
• Label
  The identifier corresponding to a credential within the Merkle tree. This is a globally unique identifier that identifies a specific location in the tree.
• LeSecret
  A low entropy or user provided secret such as a pin or password.
• Mac
  A HMAC-SHA256 over the credential metadata and a secret key stored by the CR50. These form the leaf hashes of the Merkle tree.
• PinWeaverGetLogResult
• PinWeaverInsertLeafResult
• PinWeaverLogReplayResult
• PinWeaverRemoveLeafResult
• PinWeaverResetTreeResult
• PinWeaverTryAuthResult