TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TF-M / trusted-firmware-m / e13a48b65321a8828bd9e3a11e1652436df6c6b0 / . / secure_fw / services / initial_attestation / tfm_attestation.c
blob: 7e20b2e3d43bcc6f8e373d8bbfb2b17cf5a3fd21 [file] [log] [blame]
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]1/*
David Vinczee13a48b2020-01-08 17:42:30 +0100[diff] [blame^]2 * Copyright (c) 2019-2020, Arm Limited. All rights reserved.
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]3 *
4 * SPDX-License-Identifier: BSD-3-Clause
5 *
6 */
7
8#include "tfm_api.h"
9#include "tfm_secure_api.h"
10#include "attestation.h"
Jamie Foxcc31d402019-01-28 17:13:52 +0000[diff] [blame]11#include "psa/initial_attestation.h"
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]12#include "bl2/include/tfm_boot_status.h"
13
Kevin Peng2ed30222019-04-30 09:26:11 +0800[diff] [blame]14#ifdef TFM_PSA_API
15extern int32_t g_attest_caller_id;
16#endif
17
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]18enum psa_attest_err_t
19attest_check_memory_access(void *addr,
20 uint32_t size,
21 enum attest_memory_access_t access)
22{
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]23 enum psa_attest_err_t attest_res = PSA_ATTEST_ERR_SUCCESS;
Kevin Peng2ed30222019-04-30 09:26:11 +0800[diff] [blame]24#ifndef TFM_PSA_API
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]25 int32_t tfm_res;
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]26
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]27 tfm_res = tfm_core_memory_permission_check(addr, size, (int32_t)access);
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]28 if (tfm_res) {
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]29 attest_res = PSA_ATTEST_ERR_INVALID_INPUT;
30 }
Kevin Peng2ed30222019-04-30 09:26:11 +0800[diff] [blame]31#endif
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]32
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]33 return attest_res;
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]34}
35
36enum psa_attest_err_t
37attest_get_caller_client_id(int32_t *caller_id)
38{
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]39 enum psa_attest_err_t attest_res = PSA_ATTEST_ERR_SUCCESS;
Kevin Peng2ed30222019-04-30 09:26:11 +0800[diff] [blame]40#ifndef TFM_PSA_API
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]41 int32_t tfm_res;
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]42
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]43 tfm_res = tfm_core_get_caller_client_id(caller_id);
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]44 if (tfm_res) {
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]45 attest_res = PSA_ATTEST_ERR_CLAIM_UNAVAILABLE;
46 }
Kevin Peng2ed30222019-04-30 09:26:11 +0800[diff] [blame]47#else
48 *caller_id = g_attest_caller_id;
49#endif
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]50
51 return attest_res;
52}
53
54enum psa_attest_err_t
Tamas Bana24ce042019-02-20 11:50:22 +0000[diff] [blame]55attest_get_boot_data(uint8_t major_type,
56 struct tfm_boot_data *boot_data,
57 uint32_t len)
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]58{
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]59 enum psa_attest_err_t attest_res = PSA_ATTEST_ERR_SUCCESS;
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]60 int32_t tfm_res;
Tamas Banca682b22019-01-29 22:03:43 +0000[diff] [blame]61
Tamas Bana24ce042019-02-20 11:50:22 +0000[diff] [blame]62 tfm_res = tfm_core_get_boot_data(major_type, boot_data, len);
Hugues de Valonba1fa9a2019-06-18 16:12:54 +0100[diff] [blame]63 if (tfm_res != (int32_t)TFM_SUCCESS) {
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]64 attest_res = PSA_ATTEST_ERR_INIT_FAILED;
65 }
Tamas Band2b2f092019-01-23 22:29:14 +0000[diff] [blame]66
67 return attest_res;
68}