TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-M / tf-m-extras / 90d89a0b4e5ca0394fdcb2a119665d17585c68e2 / . / partitions / dice_protection_environment / dpe_log.c
blob: 0eea2e7a6b35ac1d0753572d8944e3b3a72137e4 [file] [log] [blame]
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]1/*
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]2 * SPDX-FileCopyrightText: Copyright The TrustedFirmware-M Contributors
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]3 *
4 * SPDX-License-Identifier: BSD-3-Clause
5 *
6 */
7
8#include "dpe_log.h"
Maulik Patelad2f3db2023-05-17 15:41:36 +0100[diff] [blame]9#include "dpe_context_mngr.h"
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]10
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]11#if (LOG_LEVEL_UNPRIV >= LOG_LEVEL_VERBOSE)
Maulik Patel780943f2024-03-14 11:40:14 +0000[diff] [blame]12#define LOG_BOOL_VAL(arg) ((arg) ? "true" : "false")
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]13
14static void print_byte_array(const uint8_t *array, size_t len)
15{
16 size_t i;
17
18 if (array != NULL) {
19 for (i = 0; i < len; ++i) {
20 if ((i & 0xF) == 0) {
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]21 VERBOSE_UNPRIV_RAW("\n ");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]22 }
23 if (array[i] < 0x10) {
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]24 VERBOSE_UNPRIV_RAW(" 0%x", array[i]);
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]25 } else {
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]26 VERBOSE_UNPRIV_RAW(" %x", array[i]);
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]27 }
28 }
29 }
30
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]31 VERBOSE_UNPRIV_RAW("\n");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]32}
33
34static void log_dice_inputs(const DiceInputValues *input)
35{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]36 VERBOSE_UNPRIV_RAW(" - DICE code_hash =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]37 print_byte_array(input->code_hash, sizeof(input->code_hash));
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]38 VERBOSE_UNPRIV_RAW(" - DICE code_descriptor =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]39 print_byte_array(input->code_descriptor, input->code_descriptor_size);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]40 VERBOSE_UNPRIV_RAW(" - DICE config_type = %d\n", input->config_type);
41 VERBOSE_UNPRIV_RAW(" - DICE config_value =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]42 print_byte_array(input->config_value, sizeof(input->config_value));
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]43 VERBOSE_UNPRIV_RAW(" - DICE config_descriptor =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]44 print_byte_array(input->config_descriptor, input->config_descriptor_size);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]45 VERBOSE_UNPRIV_RAW(" - DICE authority_hash =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]46 print_byte_array(input->authority_hash, sizeof(input->authority_hash));
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]47 VERBOSE_UNPRIV_RAW(" - DICE authority_descriptor =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]48 print_byte_array(input->authority_descriptor,
49 input->authority_descriptor_size);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]50 VERBOSE_UNPRIV_RAW(" - DICE mode = %d\n", input->mode);
51 VERBOSE_UNPRIV_RAW(" - DICE hidden =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]52 print_byte_array(input->hidden, sizeof(input->hidden));
53}
54
Maulik Patelad2f3db2023-05-17 15:41:36 +0100[diff] [blame]55void log_derive_rot_context(const DiceInputValues *dice_inputs)
56{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]57 VERBOSE_UNPRIV_RAW("DPE DeriveRoTContext:\n");
Maulik Patelad2f3db2023-05-17 15:41:36 +0100[diff] [blame]58 log_dice_inputs(dice_inputs);
59}
60
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]61static void log_handle(int context_handle)
62{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]63 VERBOSE_UNPRIV_RAW(" index - %d,", GET_IDX(context_handle));
64 VERBOSE_UNPRIV_RAW(" nonce - 0x%x\n", GET_NONCE(context_handle));
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]65}
66
Maulik Patela81605b2023-10-24 12:17:03 +0100[diff] [blame]67void log_derive_context(int context_handle,
Maulik Patelcb14cde2024-01-23 12:39:53 +0000[diff] [blame]68 uint32_t cert_id,
Maulik Patela81605b2023-10-24 12:17:03 +0100[diff] [blame]69 bool retain_parent_context,
70 bool allow_new_context_to_derive,
71 bool create_certificate,
72 const DiceInputValues *dice_inputs,
73 int32_t client_id)
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]74{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]75 VERBOSE_UNPRIV_RAW("DPE DeriveContext:\n");
76 VERBOSE_UNPRIV_RAW(" - input context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]77 log_handle(context_handle);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]78 VERBOSE_UNPRIV_RAW(" - cert_id = 0x%x\n", cert_id);
79 VERBOSE_UNPRIV_RAW(" - retain_parent_context = %s\n", LOG_BOOL_VAL(retain_parent_context));
80 VERBOSE_UNPRIV_RAW(" - allow_new_context_to_derive = %s\n", LOG_BOOL_VAL(allow_new_context_to_derive));
81 VERBOSE_UNPRIV_RAW(" - create_certificate = %s\n", LOG_BOOL_VAL(create_certificate));
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]82 log_dice_inputs(dice_inputs);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]83 VERBOSE_UNPRIV_RAW(" - client_id = %d\n", client_id);
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]84}
85
Maulik Patel54d65f72023-06-28 13:04:36 +0100[diff] [blame]86void log_destroy_context(int context_handle, bool destroy_recursively)
87{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]88 VERBOSE_UNPRIV_RAW("DPE DestroyContext:\n");
89 VERBOSE_UNPRIV_RAW(" - input context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]90 log_handle(context_handle);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]91 VERBOSE_UNPRIV_RAW(" - destroy_recursively = %s\n", LOG_BOOL_VAL(destroy_recursively));
Maulik Patel54d65f72023-06-28 13:04:36 +0100[diff] [blame]92}
93
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]94void log_certify_key(int context_handle,
95 bool retain_context,
96 const uint8_t *public_key,
97 size_t public_key_size,
98 const uint8_t *label,
99 size_t label_size)
100{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]101 VERBOSE_UNPRIV_RAW("DPE CertifyKey:\n");
102 VERBOSE_UNPRIV_RAW(" - input context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]103 log_handle(context_handle);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]104 VERBOSE_UNPRIV_RAW(" - retain_context = %s\n", LOG_BOOL_VAL(retain_context));
105 VERBOSE_UNPRIV_RAW(" - public_key =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]106 print_byte_array(public_key, public_key_size);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]107 VERBOSE_UNPRIV_RAW(" - label =");
Jamie Foxe7f8b4e2023-05-30 18:03:20 +0100[diff] [blame]108 print_byte_array(label, label_size);
109}
110
Maulik Patel83a6b592023-12-05 15:20:30 +0000[diff] [blame]111void log_get_certificate_chain(int context_handle,
112 bool retain_context,
Tamas Bana5e2f582024-01-25 16:59:26 +0100[diff] [blame]113 bool clear_from_context,
114 size_t cert_chain_buf_size)
Maulik Patel83a6b592023-12-05 15:20:30 +0000[diff] [blame]115{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]116 VERBOSE_UNPRIV_RAW("DPE GetCertificateChain:\n");
117 VERBOSE_UNPRIV_RAW(" - input context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]118 log_handle(context_handle);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]119 VERBOSE_UNPRIV_RAW(" - retain_context = %s\n", LOG_BOOL_VAL(retain_context));
120 VERBOSE_UNPRIV_RAW(" - clear_from_context = %s\n", LOG_BOOL_VAL(clear_from_context));
121 VERBOSE_UNPRIV_RAW(" - cert_chain_buf_size = %d\n", cert_chain_buf_size);
Maulik Patel83a6b592023-12-05 15:20:30 +0000[diff] [blame]122}
123
Maulik Patel00d06b62024-07-03 14:51:50 +0100[diff] [blame]124void log_intermediate_certificate(const uint8_t *cert_buf,
Tamas Ban7daae9e2024-04-03 13:54:34 +0200[diff] [blame]125 size_t cert_size)
Maulik Patel2358bbb2023-07-21 10:56:56 +0100[diff] [blame]126{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]127 VERBOSE_UNPRIV_RAW("DPE Intermediate Certificate:\n");
128 VERBOSE_UNPRIV_RAW(" - size = %d\n", cert_size);
129 VERBOSE_UNPRIV_RAW(" - certificate =");
Tamas Ban7daae9e2024-04-03 13:54:34 +0200[diff] [blame]130 print_byte_array(cert_buf, cert_size);
Maulik Patel2358bbb2023-07-21 10:56:56 +0100[diff] [blame]131}
132
Maulik Patele6adc112023-08-18 14:21:51 +0100[diff] [blame]133void log_certificate_chain(const uint8_t *certificate_chain_buf,
134 size_t certificate_chain_size)
135{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]136 VERBOSE_UNPRIV_RAW("DPE Certificate Chain:\n");
137 VERBOSE_UNPRIV_RAW(" - size = %d\n", certificate_chain_size);
Maulik Patele6adc112023-08-18 14:21:51 +0100[diff] [blame]138 print_byte_array(certificate_chain_buf, certificate_chain_size);
139}
140
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]141void log_derive_context_output_handles(int parent_context_handle,
142 int new_context_handle)
143{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]144 VERBOSE_UNPRIV_RAW("DPE DeriveContext output handles:\n");
145 VERBOSE_UNPRIV_RAW(" - parent context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]146 log_handle(parent_context_handle);
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]147 VERBOSE_UNPRIV_RAW(" - new context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]148 log_handle(new_context_handle);
149}
150
151void log_certify_key_output_handle(int new_context_handle)
152{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]153 VERBOSE_UNPRIV_RAW("DPE CertifyKey output handle:\n");
154 VERBOSE_UNPRIV_RAW(" - new context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]155 log_handle(new_context_handle);
156}
157
158void log_get_certificate_chain_output_handle(int new_context_handle)
159{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]160 VERBOSE_UNPRIV_RAW("DPE GetCertificateChain output handle:\n");
161 VERBOSE_UNPRIV_RAW(" - new context handle:");
Maulik Patel9a2a5672024-03-14 13:43:58 +0000[diff] [blame]162 log_handle(new_context_handle);
163}
164
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]165void log_dpe_component_ctx_metadata(const struct component_context_t *ctx_ptr,
166 int component_index)
167{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]168 VERBOSE_UNPRIV_RAW(" DPE component_ctx_array[%d]: \n", component_index);
169 VERBOSE_UNPRIV_RAW(" - in_use = %s\n", LOG_BOOL_VAL(ctx_ptr->in_use));
170 VERBOSE_UNPRIV_RAW(" - is_allowed_to_derive = %s\n",
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]171 LOG_BOOL_VAL(ctx_ptr->is_allowed_to_derive));
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]172 VERBOSE_UNPRIV_RAW(" - is_export_cdi_allowed = %s\n",
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]173 LOG_BOOL_VAL(ctx_ptr->is_export_cdi_allowed));
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]174 VERBOSE_UNPRIV_RAW(" - nonce = 0x%x\n", ctx_ptr->nonce);
175 VERBOSE_UNPRIV_RAW(" - target_locality = %d\n", ctx_ptr->target_locality);
176 VERBOSE_UNPRIV_RAW(" - expected_mhu_id = %u\n", ctx_ptr->expected_mhu_id);
177 VERBOSE_UNPRIV_RAW(" - parent_comp_ctx->nonce = %d\n", ctx_ptr->parent_comp_ctx->nonce);
Maulik Patel00d06b62024-07-03 14:51:50 +0100[diff] [blame]178 if (ctx_ptr->linked_cert_ctx != NULL) {
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]179 VERBOSE_UNPRIV_RAW(" - linked_cert_ctx->cert_id = %d\n",
Maulik Patel00d06b62024-07-03 14:51:50 +0100[diff] [blame]180 ctx_ptr->linked_cert_ctx->cert_id);
181 }
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]182}
183
Maulik Patel00d06b62024-07-03 14:51:50 +0100[diff] [blame]184void log_dpe_cert_ctx_metadata(const struct cert_context_t *ctx_ptr)
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]185{
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]186 VERBOSE_UNPRIV_RAW(" DPE cert_ctx_array[]: \n");
187 VERBOSE_UNPRIV_RAW(" - cert_id = 0x%x\n", ctx_ptr->cert_id);
188 VERBOSE_UNPRIV_RAW(" - state = %d\n", ctx_ptr->state);
189 VERBOSE_UNPRIV_RAW(" - is_external_pub_key_provided = %s\n",
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]190 LOG_BOOL_VAL(ctx_ptr->is_external_pub_key_provided));
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]191 VERBOSE_UNPRIV_RAW(" - is_cdi_to_be_exported = %s\n",
Maulik Patel5ac87802024-03-14 14:22:19 +0000[diff] [blame]192 LOG_BOOL_VAL(ctx_ptr->is_cdi_to_be_exported));
193}
194
Maulik Patelb3c82a02024-07-24 13:05:42 +0100[diff] [blame]195void log_derive_context_output(int *new_context_handle,
196 int *new_parent_context_handle,
197 struct component_context_t *derived_ctx,
198 int free_component_idx,
199 struct cert_context_t *cert_ctx,
200 uint8_t *new_certificate_buf,
Jamie Foxc4c3d792024-08-27 15:24:04 +0100[diff] [blame]201 size_t *new_certificate_actual_size)
Maulik Patelb3c82a02024-07-24 13:05:42 +0100[diff] [blame]202{
203 log_derive_context_output_handles(*new_parent_context_handle,
204 *new_context_handle);
205
206 /* Log component context, certificate context & certificate if no error */
207 log_dpe_component_ctx_metadata(derived_ctx, free_component_idx);
208 if (cert_ctx != NULL) {
209 log_dpe_cert_ctx_metadata(cert_ctx);
210 }
Jamie Foxc4c3d792024-08-27 15:24:04 +0100[diff] [blame]211 if (new_certificate_actual_size != NULL && *new_certificate_actual_size > 0) {
Maulik Patelb3c82a02024-07-24 13:05:42 +0100[diff] [blame]212 log_intermediate_certificate(new_certificate_buf,
Jamie Foxc4c3d792024-08-27 15:24:04 +0100[diff] [blame]213 *new_certificate_actual_size);
Maulik Patelb3c82a02024-07-24 13:05:42 +0100[diff] [blame]214 }
215}
216
Jackson Cooper-Driver90d89a02025-03-03 16:41:37 +0000[diff] [blame^]217#endif /* LOG_LEVEL_UNPRIV */