[mirror_edk2.git] / MdeModulePkg / Core / Pei / Security / Security.c

/*++\r
\r
Copyright (c) 2006, Intel Corporation                                                         \r
All rights reserved. This program and the accompanying materials                          \r
are licensed and made available under the terms and conditions of the BSD License         \r
which accompanies this distribution.  The full text of the license may be found at        \r
http://opensource.org/licenses/bsd-license.php                                            \r
                                                                                          \r
THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,                     \r
WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.             \r
\r
Module Name:\r
\r
  Security.c\r
\r
Abstract:\r
\r
  EFI PEI Core Security services\r
\r
--*/\r
\r
//\r
// Include common header file for this module.\r
//\r
#include "CommonHeader.h"\r
\r
#include <PeiMain.h>\r
\r
STATIC\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  );\r
\r
static EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
   EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH | EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
   &gEfiPeiSecurityPpiGuid,\r
   SecurityPpiNotifyCallback\r
};\r
\r
VOID\r
InitializeSecurityServices (\r
  IN EFI_PEI_SERVICES  **PeiServices,\r
  IN PEI_CORE_INSTANCE *OldCoreData\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Initialize the security services.\r
\r
Arguments:\r
\r
  PeiServices - The PEI core services table.\r
  OldCoreData - Pointer to the old core data.\r
                NULL if being run in non-permament memory mode.\r
Returns:\r
\r
  None\r
\r
--*/\r
{\r
  if (OldCoreData == NULL) {\r
    PeiServicesNotifyPpi (&mNotifyList);\r
  }\r
  return;\r
}\r
\r
STATIC\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Provide a callback for when the security PPI is installed.\r
\r
Arguments:\r
\r
  PeiServices       - The PEI core services table.\r
  NotifyDescriptor  - The descriptor for the notification event.\r
  Ppi               - Pointer to the PPI in question.\r
\r
Returns:\r
\r
  EFI_SUCCESS - The function is successfully processed.\r
\r
--*/\r
{\r
  PEI_CORE_INSTANCE                       *PrivateData;\r
\r
  //\r
  // Get PEI Core private data\r
  //\r
  PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
  \r
  //\r
  // If there isn't a security PPI installed, use the one from notification\r
  //\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY_PPI *)Ppi;\r
  }\r
  return EFI_SUCCESS;\r
}\r
\r
EFI_STATUS\r
VerifyPeim (\r
  IN EFI_PEI_SERVICES     **PeiServices,\r
  IN EFI_FFS_FILE_HEADER  *CurrentPeimAddress\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Provide a callout to the security verification service.\r
\r
Arguments:\r
\r
  PeiServices          - The PEI core services table.\r
  CurrentPeimAddress   - Pointer to the Firmware File under investigation.\r
\r
Returns:\r
\r
  EFI_SUCCESS             - Image is OK\r
  EFI_SECURITY_VIOLATION  - Image is illegal\r
\r
--*/\r
{\r
  PEI_CORE_INSTANCE               *PrivateData;\r
  EFI_STATUS                      Status;\r
  UINT32                          AuthenticationStatus;\r
  BOOLEAN                         StartCrisisRecovery;\r
\r
  //\r
  // Set a default authentication state\r
  //\r
  AuthenticationStatus = 0;\r
\r
  //\r
  // get security PPI instance from PEI private data\r
  //\r
  PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    Status = EFI_NOT_FOUND;\r
  } else {\r
    //\r
    // Check to see if the image is OK\r
    //\r
    Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
                                                PeiServices,\r
                                                PrivateData->PrivateSecurityPpi,\r
                                                AuthenticationStatus,\r
                                                CurrentPeimAddress,\r
                                                &StartCrisisRecovery\r
                                                );\r
    if (StartCrisisRecovery) {\r
      Status = EFI_SECURITY_VIOLATION;\r
    }\r
  }\r
  return Status;\r
}\r
\r
\r
EFI_STATUS\r
VerifyFv (\r
  IN EFI_FIRMWARE_VOLUME_HEADER  *CurrentFvAddress\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Verify a Firmware volume\r
\r
Arguments:\r
\r
  CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
\r
Returns:\r
\r
  EFI_SUCCESS             - Firmware Volume is legal\r
  EFI_SECURITY_VIOLATION  - Firmware Volume fails integrity test\r
\r
--*/\r
{\r
  //\r
  // Right now just pass the test.  Future can authenticate and/or check the\r
  // FV-header or other metric for goodness of binary.\r
  //\r
  return EFI_SUCCESS;\r
}\r
Commit	Line	Data
192f6d4c	1	/*++\r
	2	\r
	3	Copyright (c) 2006, Intel Corporation \r
	4	All rights reserved. This program and the accompanying materials \r
	5	are licensed and made available under the terms and conditions of the BSD License \r
	6	which accompanies this distribution. The full text of the license may be found at \r
	7	http://opensource.org/licenses/bsd-license.php \r
	8	\r
	9	THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
	10	WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. \r
	11	\r
	12	Module Name:\r
	13	\r
	14	Security.c\r
	15	\r
	16	Abstract:\r
	17	\r
	18	EFI PEI Core Security services\r
	19	\r
	20	--*/\r
	21	\r
	22	//\r
	23	// Include common header file for this module.\r
	24	//\r
	25	#include "CommonHeader.h"\r
	26	\r
	27	#include <PeiMain.h>\r
	28	\r
	29	STATIC\r
	30	EFI_STATUS\r
	31	EFIAPI\r
	32	SecurityPpiNotifyCallback (\r
	33	IN EFI_PEI_SERVICES **PeiServices,\r
	34	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	35	IN VOID *Ppi\r
	36	);\r
	37	\r
	38	static EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
	39	EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH \| EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
	40	&gEfiPeiSecurityPpiGuid,\r
	41	SecurityPpiNotifyCallback\r
	42	};\r
	43	\r
	44	VOID\r
	45	InitializeSecurityServices (\r
	46	IN EFI_PEI_SERVICES **PeiServices,\r
	47	IN PEI_CORE_INSTANCE *OldCoreData\r
	48	)\r
	49	/*++\r
	50	\r
	51	Routine Description:\r
	52	\r
	53	Initialize the security services.\r
	54	\r
	55	Arguments:\r
	56	\r
	57	PeiServices - The PEI core services table.\r
	58	OldCoreData - Pointer to the old core data.\r
	59	NULL if being run in non-permament memory mode.\r
	60	Returns:\r
	61	\r
	62	None\r
	63	\r
	64	--*/\r
65	{\r
66	if (OldCoreData == NULL) {\r
67	PeiServicesNotifyPpi (&mNotifyList);\r
68	}\r
69	return;\r
70	}\r
71	\r
72	STATIC\r
73	EFI_STATUS\r
74	EFIAPI\r
75	SecurityPpiNotifyCallback (\r
76	IN EFI_PEI_SERVICES **PeiServices,\r
77	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
78	IN VOID *Ppi\r
79	)\r
80	/*++\r
81	\r
82	Routine Description:\r
83	\r
84	Provide a callback for when the security PPI is installed.\r
85	\r
86	Arguments:\r
87	\r
88	PeiServices - The PEI core services table.\r
89	NotifyDescriptor - The descriptor for the notification event.\r
90	Ppi - Pointer to the PPI in question.\r
91	\r
92	Returns:\r
93	\r
94	EFI_SUCCESS - The function is successfully processed.\r
95	\r
96	--*/\r
97	{\r
98	PEI_CORE_INSTANCE *PrivateData;\r
99	\r
100	//\r
101	// Get PEI Core private data\r
102	//\r
103	PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
104	\r
105	//\r
106	// If there isn't a security PPI installed, use the one from notification\r
107	//\r
108	if (PrivateData->PrivateSecurityPpi == NULL) {\r
109	PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY_PPI *)Ppi;\r
110	}\r
111	return EFI_SUCCESS;\r
112	}\r
113	\r
114	EFI_STATUS\r
115	VerifyPeim (\r
116	IN EFI_PEI_SERVICES **PeiServices,\r
117	IN EFI_FFS_FILE_HEADER *CurrentPeimAddress\r
118	)\r
119	/*++\r
120	\r
121	Routine Description:\r
122	\r
123	Provide a callout to the security verification service.\r
124	\r
125	Arguments:\r
126	\r
127	PeiServices - The PEI core services table.\r
128	CurrentPeimAddress - Pointer to the Firmware File under investigation.\r
129	\r
130	Returns:\r
131	\r
132	EFI_SUCCESS - Image is OK\r
133	EFI_SECURITY_VIOLATION - Image is illegal\r
134	\r
135	--*/\r
136	{\r
137	PEI_CORE_INSTANCE *PrivateData;\r
138	EFI_STATUS Status;\r
139	UINT32 AuthenticationStatus;\r
140	BOOLEAN StartCrisisRecovery;\r
141	\r
142	//\r
143	// Set a default authentication state\r
144	//\r
145	AuthenticationStatus = 0;\r
146	\r
147	//\r
148	// get security PPI instance from PEI private data\r
149	//\r
150	PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
151	\r
152	if (PrivateData->PrivateSecurityPpi == NULL) {\r
153	Status = EFI_NOT_FOUND;\r
154	} else {\r
155	//\r
156	// Check to see if the image is OK\r
157	//\r
158	Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
159	PeiServices,\r
160	PrivateData->PrivateSecurityPpi,\r
161	AuthenticationStatus,\r
162	CurrentPeimAddress,\r
163	&StartCrisisRecovery\r
164	);\r
165	if (StartCrisisRecovery) {\r
166	Status = EFI_SECURITY_VIOLATION;\r
167	}\r
168	}\r
169	return Status;\r
170	}\r
171	\r
172	\r
173	EFI_STATUS\r
174	VerifyFv (\r
175	IN EFI_FIRMWARE_VOLUME_HEADER *CurrentFvAddress\r
176	)\r
177	/*++\r
178	\r
179	Routine Description:\r
180	\r
181	Verify a Firmware volume\r
182	\r
183	Arguments:\r
184	\r
185	CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
186	\r
187	Returns:\r
188	\r
189	EFI_SUCCESS - Firmware Volume is legal\r
190	EFI_SECURITY_VIOLATION - Firmware Volume fails integrity test\r
191	\r
192	--*/\r
193	{\r
194	//\r
195	// Right now just pass the test. Future can authenticate and/or check the\r
196	// FV-header or other metric for goodness of binary.\r
197	//\r
198	return EFI_SUCCESS;\r
199	}\r