Core: Add dependency support According to PSA FF, if access between a client Secure Partition and an RoT Service is not specified in the manifest, then the client is not allowed to connect to the RoT Service. Change-Id: Iae45242a143981658e3fd73576b5a8f7f054a7bd Signed-off-by: Edison Ai <edison.ai@arm.com>

commit: e728fbfc2767c226c90876ab8ad26830af9578cc [log] [tgz]
author: Edison Ai <edison.ai@arm.com> Wed Nov 13 09:37:12 2019 +0800
committer: Ken Liu <ken.liu@arm.com> Fri Dec 06 06:56:15 2019 +0000
tree: fac6f496a0aee10d69327f1812304dcb03bee125
parent: 776606676af9114c632b70e71796bd8acadd6361 [diff] [blame]
diff --git a/secure_fw/spm/spm_api.h b/secure_fw/spm/spm_api.h
index 35be8c2..9d748bc 100644
--- a/secure_fw/spm/spm_api.h
+++ b/secure_fw/spm/spm_api.h

@@ -628,6 +628,21 @@
                                      uint32_t version);
 
 /**
+ * \brief                   Check the client access authorization
+ *
+ * \param[in] sid           Target RoT Service identity
+ * \param[in] service       Target service context pointer, which can be get
+ *                          by partition management functions
+ * \param[in] ns_caller     Whether from NS caller
+ *
+ * \retval IPC_SUCCESS      Success
+ * \retval IPC_ERROR_GENERIC Authorization check failed
+ */
+int32_t tfm_spm_check_authorization(uint32_t sid,
+                                    struct tfm_spm_service_t *service,
+                                    int32_t ns_caller);
+
+/**
  * \brief                      Check the memory reference is valid.
  *
  * \param[in] buffer           Pointer of memory reference
commit	e728fbfc2767c226c90876ab8ad26830af9578cc	[log] [tgz]
author	Edison Ai <edison.ai@arm.com>	Wed Nov 13 09:37:12 2019 +0800
committer	Ken Liu <ken.liu@arm.com>	Fri Dec 06 06:56:15 2019 +0000
tree	fac6f496a0aee10d69327f1812304dcb03bee125
parent	776606676af9114c632b70e71796bd8acadd6361 [diff] [blame]