commit a24ce04b80a6c57b9a2eb08f52e7d7a0f6d31fd1
author Tamas Ban <tamas.ban@arm.com> Wed Feb 20 11:50:22 2019 +0000
committer Tamas Ban <tamas.ban@arm.com> Wed Apr 17 09:04:53 2019 +0000
tree 4fbb0746eb639a372cdcd2228f1882e67c3925b9
parent a4574d9332812680e61dee614ceb5bb1f44641b5

Attest: Generalize boot satus handling

Introduce wrapper structure to simplify the handling of
boot status data.

Change-Id: I4fecbf2b346e4e773a898b6013c0b351bcf5beeb
Signed-off-by: Tamas Ban <tamas.ban@arm.com>

secure_fw/services/initial_attestation/attestation.h

diff --git a/secure_fw/services/initial_attestation/attestation.h b/secure_fw/services/initial_attestation/attestation.h
index 404fb41..f73ed0f 100644
--- a/secure_fw/services/initial_attestation/attestation.h
+++ b/secure_fw/services/initial_attestation/attestation.h
@@ -10,6 +10,7 @@
 
 #include "psa_initial_attestation_api.h"
 #include "tfm_client.h"
+#include "bl2/include/tfm_boot_status.h"
 
 #ifdef __cplusplus
 extern "C" {
@@ -34,7 +35,9 @@
  * \return Returns error code as specified in \ref psa_attest_err_t
  */
 enum psa_attest_err_t
-attest_get_boot_data(uint8_t major_type, void *ptr, uint32_t len);
+attest_get_boot_data(uint8_t major_type,
+                     struct tfm_boot_data *boot_data,
+                     uint32_t len);
 
 /*!
  * \brief Get the ID of the caller thread.

secure_fw/services/initial_attestation/attestation_core.c

diff --git a/secure_fw/services/initial_attestation/attestation_core.c b/secure_fw/services/initial_attestation/attestation_core.c
index 82e2fd2..92c9e12 100644
--- a/secure_fw/services/initial_attestation/attestation_core.c
+++ b/secure_fw/services/initial_attestation/attestation_core.c
@@ -27,25 +27,38 @@
 #define EAT_SW_COMPONENT_NOT_NESTED 0  /* Flat structure */
 
 /*!
- * \var boot_status
+ * \struct attest_boot_data
  *
- * \brief Array variable to store the boot status in service's memory.
+ * \brief Contains the received boot status information from bootloader
+ *
+ * \details This is a redefinition of \ref tfm_boot_data to allocate the
+ *          appropriate, service dependent size of \ref boot_data.
+ */
+struct attest_boot_data {
+    struct shared_data_tlv_header header;
+    uint8_t data[MAX_BOOT_STATUS];
+};
+
+/*!
+ * \var boot_data
+ *
+ * \brief Store the boot status in service's memory.
  *
  * \details Boot status comes from the secure bootloader and primarily stored
  *          on a memory area which is shared between bootloader and SPM.
  *          SPM provides the \ref tfm_core_get_boot_data() API to retrieve
  *          the service related data from shared area.
  */
-
-/* Enforcement of 4 byte alignment, which is checked by TF-M SPM */
 __attribute__ ((aligned(4)))
-static uint8_t boot_status[MAX_BOOT_STATUS];
+static struct attest_boot_data boot_data;
 
 enum psa_attest_err_t attest_init(void)
 {
     enum psa_attest_err_t res;
 
-    res = attest_get_boot_data(TLV_MAJOR_IAS, boot_status, MAX_BOOT_STATUS);
+    res = attest_get_boot_data(TLV_MAJOR_IAS,
+                               (struct tfm_boot_data *)&boot_data,
+                               MAX_BOOT_STATUS);
 
     return res;
 }
@@ -136,21 +149,19 @@
                                         uint16_t  *tlv_len,
                                         uint8_t  **tlv_ptr)
 {
-    struct shared_data_tlv_header *tlv_header;
     struct shared_data_tlv_entry tlv_entry;
     uint8_t *tlv_end;
     uint8_t *tlv_curr;
 
-    tlv_header = (struct shared_data_tlv_header *)boot_status;
-    if (tlv_header->tlv_magic != SHARED_DATA_TLV_INFO_MAGIC) {
+    if (boot_data.header.tlv_magic != SHARED_DATA_TLV_INFO_MAGIC) {
         return -1;
     }
 
     /* Get the boundaries of TLV section where to lookup*/
-    tlv_end  = (uint8_t *)boot_status + tlv_header->tlv_tot_len;
+    tlv_end = (uint8_t *)&boot_data + boot_data.header.tlv_tot_len;
     if (*tlv_ptr == NULL) {
         /* At first call set to the beginning of the TLV section */
-        tlv_curr = (uint8_t *)boot_status + SHARED_DATA_HEADER_SIZE;
+        tlv_curr = boot_data.data;
     } else {
         /* Any subsequent call set to the next TLV entry */
         tfm_memcpy(&tlv_entry, *tlv_ptr, SHARED_DATA_ENTRY_HEADER_SIZE);

secure_fw/services/initial_attestation/tfm_attestation.c

diff --git a/secure_fw/services/initial_attestation/tfm_attestation.c b/secure_fw/services/initial_attestation/tfm_attestation.c
index 186a58c..4dca76a 100644
--- a/secure_fw/services/initial_attestation/tfm_attestation.c
+++ b/secure_fw/services/initial_attestation/tfm_attestation.c
@@ -42,24 +42,23 @@
 }
 
 enum psa_attest_err_t
-attest_get_boot_data(uint8_t major_type, void *ptr, uint32_t len)
+attest_get_boot_data(uint8_t major_type,
+                     struct tfm_boot_data *boot_data,
+                     uint32_t len)
 {
     enum psa_attest_err_t attest_res = PSA_ATTEST_ERR_SUCCESS;
 
 #ifndef BL2
-    struct shared_data_tlv_header *tlv_header;
-
     /* Avoid compiler warning due to unused argument */
     (void)len;
     (void)major_type;
 
-    tlv_header = (struct shared_data_tlv_header *)ptr;
-    tlv_header->tlv_magic   = SHARED_DATA_TLV_INFO_MAGIC;
-    tlv_header->tlv_tot_len = SHARED_DATA_HEADER_SIZE;
+    boot_data->header.tlv_magic   = SHARED_DATA_TLV_INFO_MAGIC;
+    boot_data->header.tlv_tot_len = SHARED_DATA_HEADER_SIZE;
 #else
     enum tfm_status_e tfm_res;
 
-    tfm_res = tfm_core_get_boot_data(major_type, ptr, len);
+    tfm_res = tfm_core_get_boot_data(major_type, boot_data, len);
     if (tfm_res != TFM_SUCCESS) {
         attest_res =  PSA_ATTEST_ERR_INIT_FAILED;
     }