commit ff6da53ac651101ce38032131a26d46515687b71
author David Vincze <david.vincze@arm.com> Thu Nov 21 00:19:50 2019 +0100
committer David Vincze <david.vincze@arm.com> Fri Nov 29 16:35:36 2019 +0100
tree ee6c7ce16dd8b7b84607f456d80a59bc3868c0c8
parent 20c3e4e2b96c7c43be3f6ea5cc2e1383518e4881

Attest: Implement API to get attestation public key

Implement non-secure interface function for IPC and library models and
secure interface function to get the public part of the attestation
key pair.
Add public key getter secure function / service to Initial Attestation
partition manifest.

Change-Id: Idae5f5d5d645afa6d3c7e62e9169387e57932137
Signed-off-by: David Vincze <david.vincze@arm.com>

interface/include/psa/initial_attestation.h

diff --git a/interface/include/psa/initial_attestation.h b/interface/include/psa/initial_attestation.h
index 6a7b8d8..4dd247b 100644
--- a/interface/include/psa/initial_attestation.h
+++ b/interface/include/psa/initial_attestation.h
@@ -45,7 +45,9 @@
     PSA_ATTEST_ERR_INIT_FAILED,
     /** Token buffer is too small to store the created token there */
     PSA_ATTEST_ERR_TOKEN_BUFFER_OVERFLOW,
-    /** Some of the mandatory claims are unavailable*/
+    /** Attestation key buffer is too small to store the obtained key there */
+    PSA_ATTEST_ERR_KEY_BUFFER_OVERFLOW,
+    /** Some of the mandatory claims are unavailable */
     PSA_ATTEST_ERR_CLAIM_UNAVAILABLE,
     /** Some parameter or combination of parameters are recognised as invalid:
      * - challenge size is not allowed

interface/include/psa_manifest/sid.h

diff --git a/interface/include/psa_manifest/sid.h b/interface/include/psa_manifest/sid.h
index baa02c2..a6a96e7 100644
--- a/interface/include/psa_manifest/sid.h
+++ b/interface/include/psa_manifest/sid.h
@@ -45,6 +45,8 @@
 #define TFM_ATTEST_GET_TOKEN_VERSION                               (1U)
 #define TFM_ATTEST_GET_TOKEN_SIZE_SID                              (0x00000021U)
 #define TFM_ATTEST_GET_TOKEN_SIZE_VERSION                          (1U)
+#define TFM_ATTEST_GET_PUBLIC_KEY_SID                              (0x00000022U)
+#define TFM_ATTEST_GET_PUBLIC_KEY_VERSION                          (1U)
 
 /******** TFM_SP_CORE_TEST ********/
 #define SPM_CORE_TEST_INIT_SUCCESS_SID                             (0x0000F020U)

interface/include/tfm_veneers.h

diff --git a/interface/include/tfm_veneers.h b/interface/include/tfm_veneers.h
index b0b4867..0bcef49 100644
--- a/interface/include/tfm_veneers.h
+++ b/interface/include/tfm_veneers.h
@@ -94,6 +94,7 @@
 /******** TFM_SP_INITIAL_ATTESTATION ********/
 psa_status_t tfm_initial_attest_get_token_veneer(psa_invec *in_vec, size_t in_len, psa_outvec *out_vec, size_t out_len);
 psa_status_t tfm_initial_attest_get_token_size_veneer(psa_invec *in_vec, size_t in_len, psa_outvec *out_vec, size_t out_len);
+psa_status_t tfm_initial_attest_get_public_key_veneer(psa_invec *in_vec, size_t in_len, psa_outvec *out_vec, size_t out_len);
 
 #ifdef TFM_PARTITION_TEST_CORE
 /******** TFM_SP_CORE_TEST ********/