From f25ca35cf10693ccc45753231f171b453228b82e Mon Sep 17 00:00:00 2001 From: Nick Bofferding Date: Tue, 21 Jun 2016 14:49:31 -0500 Subject: Register verify_container runtime interface - Added verify_container API to runtime interface for secureboot - Added testcase to test API registration - Created common secureboot tracing files Change-Id: If755644ff6507f14fd0463f4accf05301fc91832 RTC: 156119 Reviewed-on: http://ralgit01.raleigh.ibm.com/gerrit1/26104 Tested-by: Jenkins Server Tested-by: FSP CI Jenkins Reviewed-by: Stephen M. Cprek Reviewed-by: Christopher J. Engel Reviewed-by: William G. Hoffa --- src/usr/secureboot/runtime/rt_secureboot.C | 79 ++++++++++++++++++++++++++++++ 1 file changed, 79 insertions(+) create mode 100644 src/usr/secureboot/runtime/rt_secureboot.C (limited to 'src/usr/secureboot/runtime/rt_secureboot.C') diff --git a/src/usr/secureboot/runtime/rt_secureboot.C b/src/usr/secureboot/runtime/rt_secureboot.C new file mode 100644 index 000000000..8ab6d5e51 --- /dev/null +++ b/src/usr/secureboot/runtime/rt_secureboot.C @@ -0,0 +1,79 @@ +/* IBM_PROLOG_BEGIN_TAG */ +/* This is an automatically generated prolog. */ +/* */ +/* $Source: src/usr/secureboot/runtime/rt_secureboot.C $ */ +/* */ +/* OpenPOWER HostBoot Project */ +/* */ +/* Contributors Listed Below - COPYRIGHT 2016 */ +/* [+] International Business Machines Corp. */ +/* */ +/* */ +/* Licensed under the Apache License, Version 2.0 (the "License"); */ +/* you may not use this file except in compliance with the License. */ +/* You may obtain a copy of the License at */ +/* */ +/* http://www.apache.org/licenses/LICENSE-2.0 */ +/* */ +/* Unless required by applicable law or agreed to in writing, software */ +/* distributed under the License is distributed on an "AS IS" BASIS, */ +/* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or */ +/* implied. See the License for the specific language governing */ +/* permissions and limitations under the License. */ +/* */ +/* IBM_PROLOG_END_TAG */ + +/** + * @file rt_secureboot.C + * @brief Provides runtime API for secure container verification + */ + +#include +#include + +#include "common/securetrace.H" + +namespace SECUREBOOT +{ + +int verify_container( + const void* i_pContainer, + const void* i_pHwHashKey, + const size_t i_hwHashKeySize) +{ + int rc = 0; + + SB_ENTER( + "verify_container: " + "container ptr = %p, " + "HW hash key ptr = %p, " + "HW hash key size = %d", + i_pContainer,i_pHwHashKey,i_hwHashKeySize); + + // TODO: RTC 156485 + // Implement guts of verify_container + + SB_EXIT( + "verify_container: rc = %d",rc); + + return rc; +} + +struct registerSecurebootRt +{ + registerSecurebootRt() + { + auto pRtIntf = getRuntimeInterfaces(); +#ifdef CONFIG_SECUREBOOT + pRtIntf->verify_container = &verify_container; +#else + pRtIntf->verify_container = nullptr; +#endif + } +}; + +registerSecurebootRt g_registerSecurebootRt; + +} // end of SECUREBOOT namespace + + -- cgit v1.2.3