commit a7ef16b88c062994f5ee2a856b727c2557c53464
author Tamas Ban <tamas.ban@arm.com> Tue Jun 28 15:03:10 2022 +0200
committer Anton Komlev <Anton.Komlev@arm.com> Wed Jul 27 23:10:24 2022 +0200
tree 54dd1491cf065447b210f34ccc0870cab6c243eb
parent fc318d7f644b52c1231cb51382c49ac981b6cbe4

Attest: Introduce PSA 2.0.0 attestation profile

The attestation profile is evolving.
The original implementation is based on this version:
 - https://www.ietf.org/archive/id/draft-tschofenig-rats-psa-token-05.html
 - Profile name in the config: PSA_IOT_1

An updated version is available:
 - https://www.ietf.org/archive/id/draft-tschofenig-rats-psa-token-09.html
 - Profile name in the config: PSA_2_0_0

This change (and some follow-up) addresses the
differences between these and make the attestation
profile configurable. Currently, both profile is
supported. But in the long-term, the PSA_IOT_1 is
planned to be deprecated and then later removed.

Signed-off-by: Tamas Ban <tamas.ban@arm.com>
Change-Id: Iebe584f22e05fa60a324e0a13126440cb6f936d5

platform/ext/common/provisioning.c

diff --git a/platform/ext/common/provisioning.c b/platform/ext/common/provisioning.c
index 11ff800..619cef8 100644
--- a/platform/ext/common/provisioning.c
+++ b/platform/ext/common/provisioning.c
@@ -90,7 +90,13 @@
     /* verification_service_url */
     "www.trustedfirmware.org",
     /* attestation_profile_definition */
+#if defined(ATTEST_TOKEN_PROFILE_PSA_IOT_1)
     "PSA_IOT_PROFILE_1",
+#elif defined(ATTEST_TOKEN_PROFILE_PSA_2_0_0)
+    "http://arm.com/psa/2.0.0",
+#else
+#error "Attestation token profile is incorrect"
+#endif
     /* Entropy seed */
     {
         0x12, 0x13, 0x23, 0x34, 0x0a, 0x05, 0x89, 0x78,