[mirror_edk2.git] / MdeModulePkg / Core / Pei / Security / Security.c

/*++\r
\r
Copyright (c) 2006, Intel Corporation                                                         \r
All rights reserved. This program and the accompanying materials                          \r
are licensed and made available under the terms and conditions of the BSD License         \r
which accompanies this distribution.  The full text of the license may be found at        \r
http://opensource.org/licenses/bsd-license.php                                            \r
                                                                                          \r
THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,                     \r
WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.             \r
\r
Module Name:\r
\r
  Security.c\r
\r
Abstract:\r
\r
  EFI PEI Core Security services\r
\r
--*/\r
\r
#include <PeiMain.h>\r
\r
STATIC\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  );\r
\r
static EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
   EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH | EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
   &gEfiPeiSecurity2PpiGuid,\r
   SecurityPpiNotifyCallback\r
};\r
\r
VOID\r
InitializeSecurityServices (\r
  IN EFI_PEI_SERVICES  **PeiServices,\r
  IN PEI_CORE_INSTANCE *OldCoreData\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Initialize the security services.\r
\r
Arguments:\r
\r
  PeiServices - The PEI core services table.\r
  OldCoreData - Pointer to the old core data.\r
                NULL if being run in non-permament memory mode.\r
Returns:\r
\r
  None\r
\r
--*/\r
{\r
  if (OldCoreData == NULL) {\r
    PeiServicesNotifyPpi (&mNotifyList);\r
  }\r
  return;\r
}\r
\r
STATIC\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Provide a callback for when the security PPI is installed.\r
\r
Arguments:\r
\r
  PeiServices       - The PEI core services table.\r
  NotifyDescriptor  - The descriptor for the notification event.\r
  Ppi               - Pointer to the PPI in question.\r
\r
Returns:\r
\r
  EFI_SUCCESS - The function is successfully processed.\r
\r
--*/\r
{\r
  PEI_CORE_INSTANCE                       *PrivateData;\r
\r
  //\r
  // Get PEI Core private data\r
  //\r
  PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
  \r
  //\r
  // If there isn't a security PPI installed, use the one from notification\r
  //\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY2_PPI *)Ppi;\r
  }\r
  return EFI_SUCCESS;\r
}\r
\r
EFI_STATUS\r
VerifyPeim (\r
  IN PEI_CORE_INSTANCE      *PrivateData,\r
  IN EFI_PEI_FV_HANDLE      VolumeHandle,\r
  IN EFI_PEI_FILE_HANDLE    FileHandle\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Provide a callout to the security verification service.\r
\r
Arguments:\r
\r
  PeiServices          - The PEI core services table.\r
  CurrentPeimAddress   - Pointer to the Firmware File under investigation.\r
\r
Returns:\r
\r
  EFI_SUCCESS             - Image is OK\r
  EFI_SECURITY_VIOLATION  - Image is illegal\r
\r
--*/\r
{\r
  EFI_STATUS                      Status;\r
  UINT32                          AuthenticationStatus;\r
  BOOLEAN                         DeferExection;\r
\r
  //\r
  // Set a default authentication state\r
  //\r
  AuthenticationStatus = 0;\r
\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    Status = EFI_NOT_FOUND;\r
  } else {\r
    //\r
    // Check to see if the image is OK\r
    //\r
    Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
                                                (CONST EFI_PEI_SERVICES **) &PrivateData->PS,\r
                                                PrivateData->PrivateSecurityPpi,\r
                                                AuthenticationStatus,\r
                                                VolumeHandle,\r
                                                FileHandle,\r
                                                &DeferExection\r
                                                );\r
    if (DeferExection) {\r
      Status = EFI_SECURITY_VIOLATION;\r
    }\r
  }\r
  return Status;\r
}\r
\r
\r
EFI_STATUS\r
VerifyFv (\r
  IN EFI_FIRMWARE_VOLUME_HEADER  *CurrentFvAddress\r
  )\r
/*++\r
\r
Routine Description:\r
\r
  Verify a Firmware volume\r
\r
Arguments:\r
\r
  CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
\r
Returns:\r
\r
  EFI_SUCCESS             - Firmware Volume is legal\r
  EFI_SECURITY_VIOLATION  - Firmware Volume fails integrity test\r
\r
--*/\r
{\r
  //\r
  // Right now just pass the test.  Future can authenticate and/or check the\r
  // FV-header or other metric for goodness of binary.\r
  //\r
  return EFI_SUCCESS;\r
}\r
Commit	Line	Data
192f6d4c	1	/*++\r
	2	\r
	3	Copyright (c) 2006, Intel Corporation \r
	4	All rights reserved. This program and the accompanying materials \r
	5	are licensed and made available under the terms and conditions of the BSD License \r
	6	which accompanies this distribution. The full text of the license may be found at \r
	7	http://opensource.org/licenses/bsd-license.php \r
	8	\r
	9	THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
	10	WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. \r
	11	\r
	12	Module Name:\r
	13	\r
	14	Security.c\r
	15	\r
	16	Abstract:\r
	17	\r
	18	EFI PEI Core Security services\r
	19	\r
	20	--*/\r
	21	\r
192f6d4c	22	#include <PeiMain.h>\r
	23	\r
	24	STATIC\r
	25	EFI_STATUS\r
	26	EFIAPI\r
	27	SecurityPpiNotifyCallback (\r
	28	IN EFI_PEI_SERVICES **PeiServices,\r
	29	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	30	IN VOID *Ppi\r
	31	);\r
	32	\r
	33	static EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
	34	EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH \| EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
b0d803fe	35	&gEfiPeiSecurity2PpiGuid,\r
192f6d4c	36	SecurityPpiNotifyCallback\r
	37	};\r
	38	\r
	39	VOID\r
	40	InitializeSecurityServices (\r
	41	IN EFI_PEI_SERVICES **PeiServices,\r
	42	IN PEI_CORE_INSTANCE *OldCoreData\r
	43	)\r
	44	/*++\r
	45	\r
	46	Routine Description:\r
	47	\r
	48	Initialize the security services.\r
	49	\r
	50	Arguments:\r
	51	\r
	52	PeiServices - The PEI core services table.\r
	53	OldCoreData - Pointer to the old core data.\r
	54	NULL if being run in non-permament memory mode.\r
	55	Returns:\r
	56	\r
	57	None\r
	58	\r
	59	--*/\r
	60	{\r
	61	if (OldCoreData == NULL) {\r
	62	PeiServicesNotifyPpi (&mNotifyList);\r
	63	}\r
	64	return;\r
	65	}\r
	66	\r
	67	STATIC\r
	68	EFI_STATUS\r
	69	EFIAPI\r
	70	SecurityPpiNotifyCallback (\r
	71	IN EFI_PEI_SERVICES **PeiServices,\r
	72	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	73	IN VOID *Ppi\r
	74	)\r
	75	/*++\r
	76	\r
	77	Routine Description:\r
	78	\r
	79	Provide a callback for when the security PPI is installed.\r
	80	\r
	81	Arguments:\r
	82	\r
	83	PeiServices - The PEI core services table.\r
	84	NotifyDescriptor - The descriptor for the notification event.\r
	85	Ppi - Pointer to the PPI in question.\r
	86	\r
	87	Returns:\r
	88	\r
	89	EFI_SUCCESS - The function is successfully processed.\r
	90	\r
	91	--*/\r
	92	{\r
	93	PEI_CORE_INSTANCE *PrivateData;\r
	94	\r
	95	//\r
	96	// Get PEI Core private data\r
	97	//\r
	98	PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
	99	\r
100	//\r
101	// If there isn't a security PPI installed, use the one from notification\r
102	//\r
103	if (PrivateData->PrivateSecurityPpi == NULL) {\r
b0d803fe	104	PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY2_PPI *)Ppi;\r
192f6d4c	105	}\r
	106	return EFI_SUCCESS;\r
	107	}\r
	108	\r
	109	EFI_STATUS\r
	110	VerifyPeim (\r
b0d803fe	111	IN PEI_CORE_INSTANCE *PrivateData,\r
	112	IN EFI_PEI_FV_HANDLE VolumeHandle,\r
	113	IN EFI_PEI_FILE_HANDLE FileHandle\r
192f6d4c	114	)\r
	115	/*++\r
	116	\r
	117	Routine Description:\r
	118	\r
	119	Provide a callout to the security verification service.\r
	120	\r
	121	Arguments:\r
	122	\r
	123	PeiServices - The PEI core services table.\r
	124	CurrentPeimAddress - Pointer to the Firmware File under investigation.\r
	125	\r
	126	Returns:\r
	127	\r
	128	EFI_SUCCESS - Image is OK\r
	129	EFI_SECURITY_VIOLATION - Image is illegal\r
	130	\r
	131	--*/\r
	132	{\r
192f6d4c	133	EFI_STATUS Status;\r
192f6d4c	134	UINT32 AuthenticationStatus;\r
b0d803fe	135	BOOLEAN DeferExection;\r
192f6d4c	136	\r
	137	//\r
	138	// Set a default authentication state\r
	139	//\r
	140	AuthenticationStatus = 0;\r
	141	\r
192f6d4c	142	if (PrivateData->PrivateSecurityPpi == NULL) {\r
	143	Status = EFI_NOT_FOUND;\r
	144	} else {\r
	145	//\r
	146	// Check to see if the image is OK\r
	147	//\r
	148	Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
b0d803fe	149	(CONST EFI_PEI_SERVICES **) &PrivateData->PS,\r
192f6d4c	150	PrivateData->PrivateSecurityPpi,\r
192f6d4c	151	AuthenticationStatus,\r
b0d803fe	152	VolumeHandle,\r
	153	FileHandle,\r
	154	&DeferExection\r
192f6d4c	155	);\r
b0d803fe	156	if (DeferExection) {\r
192f6d4c	157	Status = EFI_SECURITY_VIOLATION;\r
	158	}\r
	159	}\r
	160	return Status;\r
	161	}\r
	162	\r
	163	\r
	164	EFI_STATUS\r
	165	VerifyFv (\r
	166	IN EFI_FIRMWARE_VOLUME_HEADER *CurrentFvAddress\r
	167	)\r
	168	/*++\r
	169	\r
	170	Routine Description:\r
	171	\r
	172	Verify a Firmware volume\r
	173	\r
	174	Arguments:\r
	175	\r
	176	CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
	177	\r
	178	Returns:\r
	179	\r
	180	EFI_SUCCESS - Firmware Volume is legal\r
	181	EFI_SECURITY_VIOLATION - Firmware Volume fails integrity test\r
	182	\r
	183	--*/\r
	184	{\r
	185	//\r
	186	// Right now just pass the test. Future can authenticate and/or check the\r
	187	// FV-header or other metric for goodness of binary.\r
	188	//\r
	189	return EFI_SUCCESS;\r
	190	}\r