common: add TPM vendor command to support RMA authentication

The new vendor command operates in two modes: when received with a
zero size payload, it triggers the Cr50 to generate a new RMA
authentication challenge and the expected authentication code value.

When receive with the payload, it compares the received payload with
the pre-calculate authentication code, and returns to the host the
comparison result (passed/not passed).

A care is taken not to accept payload until at least there is a valid
calculated auth code present (to avoid reporting a match on a payload
of all zeros).

Test config needed to be modified to allow compiling of the ccprintf
wrapper.

BRANCH=cr50
BUG=b:37952913
TEST=with the rest of the patches applied observed expected behavior
     of generating challenge/response and verifying the auth code.

Change-Id: I30638b0ceef68830565f222dd1f4af17cfc8d7ef
Signed-off-by: Vadim Bendebury <vbendeb@chromium.org>
Reviewed-on: https://chromium-review.googlesource.com/690992
(cherry picked from commit 2341692a8fe7f9b6327a060659b1e76bbe114e12)
Reviewed-on: https://chromium-review.googlesource.com/734637
(cherry picked from commit a53e1cbe6cb224ad81295952a2de7ea9c510742a)

1 files changed, 2 insertions, 0 deletions

diff --git a/test/test_config.h b/test/test_config.h
index b54a549eeb..a7780bfcc5 100644
--- a/test/test_config.h
+++ b/test/test_config.h
@@ -66,6 +66,8 @@
 #define CONFIG_RMA_AUTH_SERVER_KEY_ID RMA_TEST_SERVER_KEY_ID
 #define CONFIG_RNG
 #define CONFIG_SHA256
+#define CC_EXTENSION CC_COMMAND
+
 #endif
 
 #ifdef TEST_RSA