[mirror_edk2.git] / EdkModulePkg / Core / Pei / Security / Security.c

/*++\r
\r
Copyright (c) 2006, Intel Corporation                                                         \r
All rights reserved. This program and the accompanying materials                          \r
are licensed and made available under the terms and conditions of the BSD License         \r
which accompanies this distribution.  The full text of the license may be found at        \r
http://opensource.org/licenses/bsd-license.php                                            \r
                                                                                          \r
THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,                     \r
WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.             \r
\r
Module Name:\r
\r
  Security.c\r
\r
Abstract:\r
\r
  EFI PEI Core Security services\r
\r
--*/\r
\r
#include <PeiMain.h>\r
\r
STATIC\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  );\r
\r
static EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
   EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH | EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
   &gEfiPeiSecurityPpiGuid,\r
   SecurityPpiNotifyCallback\r
};\r
\r
VOID\r
InitializeSecurityServices (\r
  IN EFI_PEI_SERVICES  **PeiServices,\r
  IN PEI_CORE_INSTANCE *OldCoreData\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Initialize the security services.\r
\r
Arguments:\r
\r
  PeiServices - The PEI core services table.\r
  OldCoreData - Pointer to the old core data.\r
                NULL if being run in non-permament memory mode.\r
Returns:\r
\r
  None\r
\r
--*/\r
{\r
  if (OldCoreData == NULL) {\r
    PeiServicesNotifyPpi (&mNotifyList);\r
  }\r
  return;\r
}\r
\r
STATIC\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Provide a callback for when the security PPI is installed.\r
\r
Arguments:\r
\r
  PeiServices       - The PEI core services table.\r
  NotifyDescriptor  - The descriptor for the notification event.\r
  Ppi               - Pointer to the PPI in question.\r
\r
Returns:\r
\r
  EFI_SUCCESS - The function is successfully processed.\r
\r
--*/\r
{\r
  PEI_CORE_INSTANCE                       *PrivateData;\r
\r
  //\r
  // Get PEI Core private data\r
  //\r
  PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
  \r
  //\r
  // If there isn't a security PPI installed, use the one from notification\r
  //\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY_PPI *)Ppi;\r
  }\r
  return EFI_SUCCESS;\r
}\r
\r
EFI_STATUS\r
VerifyPeim (\r
  IN EFI_PEI_SERVICES     **PeiServices,\r
  IN EFI_FFS_FILE_HEADER  *CurrentPeimAddress\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Provide a callout to the security verification service.\r
\r
Arguments:\r
\r
  PeiServices          - The PEI core services table.\r
  CurrentPeimAddress   - Pointer to the Firmware File under investigation.\r
\r
Returns:\r
\r
  EFI_SUCCESS             - Image is OK\r
  EFI_SECURITY_VIOLATION  - Image is illegal\r
\r
--*/\r
{\r
  PEI_CORE_INSTANCE               *PrivateData;\r
  EFI_STATUS                      Status;\r
  UINT32                          AuthenticationStatus;\r
  BOOLEAN                         StartCrisisRecovery;\r
\r
  //\r
  // Set a default authentication state\r
  //\r
  AuthenticationStatus = 0;\r
\r
  //\r
  // get security PPI instance from PEI private data\r
  //\r
  PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    Status = EFI_NOT_FOUND;\r
  } else {\r
    //\r
    // Check to see if the image is OK\r
    //\r
    Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
                                                PeiServices,\r
                                                PrivateData->PrivateSecurityPpi,\r
                                                AuthenticationStatus,\r
                                                CurrentPeimAddress,\r
                                                &StartCrisisRecovery\r
                                                );\r
    if (StartCrisisRecovery) {\r
      Status = EFI_SECURITY_VIOLATION;\r
    }\r
  }\r
  return Status;\r
}\r
\r
\r
EFI_STATUS\r
VerifyFv (\r
  IN EFI_FIRMWARE_VOLUME_HEADER  *CurrentFvAddress\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Verify a Firmware volume\r
\r
Arguments:\r
\r
  CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
\r
Returns:\r
\r
  EFI_SUCCESS             - Firmware Volume is legal\r
  EFI_SECURITY_VIOLATION  - Firmware Volume fails integrity test\r
\r
--*/\r
{\r
  //\r
  // Right now just pass the test.  Future can authenticate and/or check the\r
  // FV-header or other metric for goodness of binary.\r
  //\r
  return EFI_SUCCESS;\r
}\r
Commit	Line	Data
878ddf1f	1	/*++\r
	2	\r
	3	Copyright (c) 2006, Intel Corporation \r
	4	All rights reserved. This program and the accompanying materials \r
	5	are licensed and made available under the terms and conditions of the BSD License \r
	6	which accompanies this distribution. The full text of the license may be found at \r
	7	http://opensource.org/licenses/bsd-license.php \r
	8	\r
	9	THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
	10	WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. \r
	11	\r
	12	Module Name:\r
	13	\r
	14	Security.c\r
	15	\r
	16	Abstract:\r
	17	\r
	18	EFI PEI Core Security services\r
	19	\r
	20	--*/\r
	21	\r
	22	#include <PeiMain.h>\r
	23	\r
92dda53e	24	STATIC\r
878ddf1f	25	EFI_STATUS\r
	26	EFIAPI\r
	27	SecurityPpiNotifyCallback (\r
	28	IN EFI_PEI_SERVICES **PeiServices,\r
	29	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	30	IN VOID *Ppi\r
	31	);\r
	32	\r
	33	static EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
	34	EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH \| EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
	35	&gEfiPeiSecurityPpiGuid,\r
	36	SecurityPpiNotifyCallback\r
	37	};\r
	38	\r
	39	VOID\r
	40	InitializeSecurityServices (\r
	41	IN EFI_PEI_SERVICES **PeiServices,\r
	42	IN PEI_CORE_INSTANCE *OldCoreData\r
	43	)\r
	44	/*++\r
	45	\r
	46	Routine Description:\r
	47	\r
	48	Initialize the security services.\r
	49	\r
	50	Arguments:\r
	51	\r
	52	PeiServices - The PEI core services table.\r
	53	OldCoreData - Pointer to the old core data.\r
	54	NULL if being run in non-permament memory mode.\r
	55	Returns:\r
	56	\r
	57	None\r
	58	\r
	59	--*/\r
	60	{\r
	61	if (OldCoreData == NULL) {\r
84a99d48	62	PeiServicesNotifyPpi (&mNotifyList);\r
878ddf1f	63	}\r
	64	return;\r
	65	}\r
	66	\r
92dda53e	67	STATIC\r
878ddf1f	68	EFI_STATUS\r
	69	EFIAPI\r
	70	SecurityPpiNotifyCallback (\r
	71	IN EFI_PEI_SERVICES **PeiServices,\r
	72	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	73	IN VOID *Ppi\r
	74	)\r
	75	/*++\r
	76	\r
	77	Routine Description:\r
	78	\r
	79	Provide a callback for when the security PPI is installed.\r
	80	\r
	81	Arguments:\r
	82	\r
	83	PeiServices - The PEI core services table.\r
	84	NotifyDescriptor - The descriptor for the notification event.\r
	85	Ppi - Pointer to the PPI in question.\r
	86	\r
	87	Returns:\r
	88	\r
	89	EFI_SUCCESS - The function is successfully processed.\r
	90	\r
	91	--*/\r
	92	{\r
	93	PEI_CORE_INSTANCE *PrivateData;\r
	94	\r
	95	//\r
	96	// Get PEI Core private data\r
	97	//\r
	98	PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
	99	\r
	100	//\r
	101	// If there isn't a security PPI installed, use the one from notification\r
	102	//\r
	103	if (PrivateData->PrivateSecurityPpi == NULL) {\r
	104	PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY_PPI *)Ppi;\r
	105	}\r
	106	return EFI_SUCCESS;\r
	107	}\r
	108	\r
	109	EFI_STATUS\r
	110	VerifyPeim (\r
	111	IN EFI_PEI_SERVICES **PeiServices,\r
	112	IN EFI_FFS_FILE_HEADER *CurrentPeimAddress\r
	113	)\r
	114	/*++\r
	115	\r
	116	Routine Description:\r
	117	\r
	118	Provide a callout to the security verification service.\r
	119	\r
	120	Arguments:\r
	121	\r
	122	PeiServices - The PEI core services table.\r
	123	CurrentPeimAddress - Pointer to the Firmware File under investigation.\r
	124	\r
	125	Returns:\r
	126	\r
	127	EFI_SUCCESS - Image is OK\r
	128	EFI_SECURITY_VIOLATION - Image is illegal\r
	129	\r
	130	--*/\r
	131	{\r
132	PEI_CORE_INSTANCE *PrivateData;\r
133	EFI_STATUS Status;\r
134	UINT32 AuthenticationStatus;\r
135	BOOLEAN StartCrisisRecovery;\r
136	\r
137	//\r
138	// Set a default authentication state\r
139	//\r
140	AuthenticationStatus = 0;\r
141	\r
142	//\r
143	// get security PPI instance from PEI private data\r
144	//\r
145	PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
146	\r
147	if (PrivateData->PrivateSecurityPpi == NULL) {\r
148	Status = EFI_NOT_FOUND;\r
149	} else {\r
150	//\r
151	// Check to see if the image is OK\r
152	//\r
153	Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
154	PeiServices,\r
155	PrivateData->PrivateSecurityPpi,\r
156	AuthenticationStatus,\r
157	CurrentPeimAddress,\r
158	&StartCrisisRecovery\r
159	);\r
160	if (StartCrisisRecovery) {\r
161	Status = EFI_SECURITY_VIOLATION;\r
162	}\r
163	}\r
164	return Status;\r
165	}\r
166	\r
167	\r
168	EFI_STATUS\r
169	VerifyFv (\r
170	IN EFI_FIRMWARE_VOLUME_HEADER *CurrentFvAddress\r
171	)\r
172	/*++\r
173	\r
174	Routine Description:\r
175	\r
176	Verify a Firmware volume\r
177	\r
178	Arguments:\r
179	\r
180	CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
181	\r
182	Returns:\r
183	\r
184	EFI_SUCCESS - Firmware Volume is legal\r
185	EFI_SECURITY_VIOLATION - Firmware Volume fails integrity test\r
186	\r
187	--*/\r
188	{\r
189	//\r
190	// Right now just pass the test. Future can authenticate and/or check the\r
191	// FV-header or other metric for goodness of binary.\r
192	//\r
193	return EFI_SUCCESS;\r
194	}\r