[mirror_edk2.git] / MdeModulePkg / Core / Pei / Security / Security.c

/** @file\r
  EFI PEI Core Security services\r
  \r
Copyright (c) 2006, Intel Corporation                                                         \r
All rights reserved. This program and the accompanying materials                          \r
are licensed and made available under the terms and conditions of the BSD License         \r
which accompanies this distribution.  The full text of the license may be found at        \r
http://opensource.org/licenses/bsd-license.php                                            \r
                                                                                          \r
THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS,                     \r
WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED.             \r
\r
**/\r
\r
#include <PeiMain.h>\r
\r
/**\r
\r
  Provide a callback for when the security PPI is installed.\r
\r
  @param PeiServices        An indirect pointer to the EFI_PEI_SERVICES table published by the PEI Foundation.\r
  @param NotifyDescriptor   The descriptor for the notification event.\r
  @param Ppi                Pointer to the PPI in question.\r
\r
  @return Always success\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  );\r
\r
STATIC EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
   EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH | EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
   &gEfiPeiSecurity2PpiGuid,\r
   SecurityPpiNotifyCallback\r
};\r
\r
/**\r
  Initialize the security services.\r
\r
  @param PeiServices     An indirect pointer to the EFI_PEI_SERVICES table published by the PEI Foundation.\r
  @param OldCoreData     Pointer to the old core data.\r
                         NULL if being run in non-permament memory mode.\r
\r
**/\r
VOID\r
InitializeSecurityServices (\r
  IN EFI_PEI_SERVICES  **PeiServices,\r
  IN PEI_CORE_INSTANCE *OldCoreData\r
  )\r
{\r
  if (OldCoreData == NULL) {\r
    PeiServicesNotifyPpi (&mNotifyList);\r
  }\r
  return;\r
}\r
\r
/**\r
\r
  Provide a callback for when the security PPI is installed.\r
\r
  @param PeiServices        An indirect pointer to the EFI_PEI_SERVICES table published by the PEI Foundation.\r
  @param NotifyDescriptor   The descriptor for the notification event.\r
  @param Ppi                Pointer to the PPI in question.\r
\r
  @return Always success\r
\r
**/\r
EFI_STATUS\r
EFIAPI\r
SecurityPpiNotifyCallback (\r
  IN EFI_PEI_SERVICES           **PeiServices,\r
  IN EFI_PEI_NOTIFY_DESCRIPTOR  *NotifyDescriptor,\r
  IN VOID                       *Ppi\r
  )\r
{\r
  PEI_CORE_INSTANCE                       *PrivateData;\r
\r
  //\r
  // Get PEI Core private data\r
  //\r
  PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
  \r
  //\r
  // If there isn't a security PPI installed, use the one from notification\r
  //\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY2_PPI *)Ppi;\r
  }\r
  return EFI_SUCCESS;\r
}\r
\r
/**\r
\r
  Provide a callout to the security verification service.\r
\r
\r
  @param PrivateData     PeiCore's private data structure\r
  @param VolumeHandle    Handle of FV\r
  @param FileHandle      Handle of PEIM's ffs\r
\r
  @retval EFI_SUCCESS              Image is OK\r
  @retval EFI_SECURITY_VIOLATION   Image is illegal\r
\r
**/\r
EFI_STATUS\r
VerifyPeim (\r
  IN PEI_CORE_INSTANCE      *PrivateData,\r
  IN EFI_PEI_FV_HANDLE      VolumeHandle,\r
  IN EFI_PEI_FILE_HANDLE    FileHandle\r
  )\r
{\r
  EFI_STATUS                      Status;\r
  UINT32                          AuthenticationStatus;\r
  BOOLEAN                         DeferExection;\r
\r
  //\r
  // Set a default authentication state\r
  //\r
  AuthenticationStatus = 0;\r
\r
  if (PrivateData->PrivateSecurityPpi == NULL) {\r
    Status = EFI_NOT_FOUND;\r
  } else {\r
    //\r
    // Check to see if the image is OK\r
    //\r
    Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
                                                (CONST EFI_PEI_SERVICES **) &PrivateData->PS,\r
                                                PrivateData->PrivateSecurityPpi,\r
                                                AuthenticationStatus,\r
                                                VolumeHandle,\r
                                                FileHandle,\r
                                                &DeferExection\r
                                                );\r
    if (DeferExection) {\r
      Status = EFI_SECURITY_VIOLATION;\r
    }\r
  }\r
  return Status;\r
}\r
\r
\r
/**\r
  Verify a Firmware volume.\r
\r
  @param CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
\r
  @retval EFI_SUCCESS              Firmware Volume is legal\r
  @retval EFI_SECURITY_VIOLATION   Firmware Volume fails integrity test\r
\r
**/\r
EFI_STATUS\r
VerifyFv (\r
  IN EFI_FIRMWARE_VOLUME_HEADER  *CurrentFvAddress\r
  )\r
{\r
  //\r
  // Right now just pass the test.  Future can authenticate and/or check the\r
  // FV-header or other metric for goodness of binary.\r
  //\r
  return EFI_SUCCESS;\r
}\r
Commit	Line	Data
615c6dd0	1	/** @file\r
b1f6a7c6	2	EFI PEI Core Security services\r
b1f6a7c6	3	\r
192f6d4c	4	Copyright (c) 2006, Intel Corporation \r
	5	All rights reserved. This program and the accompanying materials \r
	6	are licensed and made available under the terms and conditions of the BSD License \r
	7	which accompanies this distribution. The full text of the license may be found at \r
	8	http://opensource.org/licenses/bsd-license.php \r
	9	\r
	10	THE PROGRAM IS DISTRIBUTED UNDER THE BSD LICENSE ON AN "AS IS" BASIS, \r
	11	WITHOUT WARRANTIES OR REPRESENTATIONS OF ANY KIND, EITHER EXPRESS OR IMPLIED. \r
	12	\r
b1f6a7c6	13	**/\r
192f6d4c	14	\r
b1f6a7c6	15	#include <PeiMain.h>\r
192f6d4c	16	\r
b1f6a7c6	17	/**\r
192f6d4c	18	\r
b1f6a7c6	19	Provide a callback for when the security PPI is installed.\r
192f6d4c	20	\r
dc857d56	21	@param PeiServices An indirect pointer to the EFI_PEI_SERVICES table published by the PEI Foundation.\r
	22	@param NotifyDescriptor The descriptor for the notification event.\r
	23	@param Ppi Pointer to the PPI in question.\r
192f6d4c	24	\r
b1f6a7c6	25	@return Always success\r
192f6d4c	26	\r
b1f6a7c6	27	**/\r
192f6d4c	28	EFI_STATUS\r
	29	EFIAPI\r
	30	SecurityPpiNotifyCallback (\r
	31	IN EFI_PEI_SERVICES **PeiServices,\r
	32	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	33	IN VOID *Ppi\r
	34	);\r
	35	\r
b1f6a7c6	36	STATIC EFI_PEI_NOTIFY_DESCRIPTOR mNotifyList = {\r
192f6d4c	37	EFI_PEI_PPI_DESCRIPTOR_NOTIFY_DISPATCH \| EFI_PEI_PPI_DESCRIPTOR_TERMINATE_LIST,\r
b0d803fe	38	&gEfiPeiSecurity2PpiGuid,\r
192f6d4c	39	SecurityPpiNotifyCallback\r
	40	};\r
	41	\r
b1f6a7c6	42	/**\r
192f6d4c	43	Initialize the security services.\r
192f6d4c	44	\r
dc857d56	45	@param PeiServices An indirect pointer to the EFI_PEI_SERVICES table published by the PEI Foundation.\r
40f26b8f	46	@param OldCoreData Pointer to the old core data.\r
b1f6a7c6	47	NULL if being run in non-permament memory mode.\r
192f6d4c	48	\r
b1f6a7c6	49	**/\r
	50	VOID\r
	51	InitializeSecurityServices (\r
	52	IN EFI_PEI_SERVICES **PeiServices,\r
	53	IN PEI_CORE_INSTANCE *OldCoreData\r
	54	)\r
192f6d4c	55	{\r
	56	if (OldCoreData == NULL) {\r
	57	PeiServicesNotifyPpi (&mNotifyList);\r
	58	}\r
	59	return;\r
	60	}\r
	61	\r
b1f6a7c6	62	/**\r
	63	\r
	64	Provide a callback for when the security PPI is installed.\r
	65	\r
dc857d56	66	@param PeiServices An indirect pointer to the EFI_PEI_SERVICES table published by the PEI Foundation.\r
	67	@param NotifyDescriptor The descriptor for the notification event.\r
	68	@param Ppi Pointer to the PPI in question.\r
b1f6a7c6	69	\r
	70	@return Always success\r
	71	\r
	72	**/\r
192f6d4c	73	EFI_STATUS\r
	74	EFIAPI\r
	75	SecurityPpiNotifyCallback (\r
	76	IN EFI_PEI_SERVICES **PeiServices,\r
	77	IN EFI_PEI_NOTIFY_DESCRIPTOR *NotifyDescriptor,\r
	78	IN VOID *Ppi\r
	79	)\r
192f6d4c	80	{\r
	81	PEI_CORE_INSTANCE *PrivateData;\r
	82	\r
	83	//\r
	84	// Get PEI Core private data\r
	85	//\r
	86	PrivateData = PEI_CORE_INSTANCE_FROM_PS_THIS (PeiServices);\r
	87	\r
	88	//\r
	89	// If there isn't a security PPI installed, use the one from notification\r
	90	//\r
	91	if (PrivateData->PrivateSecurityPpi == NULL) {\r
b0d803fe	92	PrivateData->PrivateSecurityPpi = (EFI_PEI_SECURITY2_PPI *)Ppi;\r
192f6d4c	93	}\r
	94	return EFI_SUCCESS;\r
	95	}\r
	96	\r
b1f6a7c6	97	/**\r
192f6d4c	98	\r
	99	Provide a callout to the security verification service.\r
	100	\r
192f6d4c	101	\r
b1f6a7c6	102	@param PrivateData PeiCore's private data structure\r
	103	@param VolumeHandle Handle of FV\r
	104	@param FileHandle Handle of PEIM's ffs\r
192f6d4c	105	\r
b1f6a7c6	106	@retval EFI_SUCCESS Image is OK\r
b1f6a7c6	107	@retval EFI_SECURITY_VIOLATION Image is illegal\r
192f6d4c	108	\r
b1f6a7c6	109	**/\r
	110	EFI_STATUS\r
	111	VerifyPeim (\r
	112	IN PEI_CORE_INSTANCE *PrivateData,\r
	113	IN EFI_PEI_FV_HANDLE VolumeHandle,\r
	114	IN EFI_PEI_FILE_HANDLE FileHandle\r
	115	)\r
192f6d4c	116	{\r
192f6d4c	117	EFI_STATUS Status;\r
192f6d4c	118	UINT32 AuthenticationStatus;\r
b0d803fe	119	BOOLEAN DeferExection;\r
192f6d4c	120	\r
	121	//\r
	122	// Set a default authentication state\r
	123	//\r
	124	AuthenticationStatus = 0;\r
	125	\r
192f6d4c	126	if (PrivateData->PrivateSecurityPpi == NULL) {\r
	127	Status = EFI_NOT_FOUND;\r
	128	} else {\r
	129	//\r
	130	// Check to see if the image is OK\r
	131	//\r
	132	Status = PrivateData->PrivateSecurityPpi->AuthenticationState (\r
b0d803fe	133	(CONST EFI_PEI_SERVICES **) &PrivateData->PS,\r
192f6d4c	134	PrivateData->PrivateSecurityPpi,\r
192f6d4c	135	AuthenticationStatus,\r
b0d803fe	136	VolumeHandle,\r
	137	FileHandle,\r
	138	&DeferExection\r
192f6d4c	139	);\r
b0d803fe	140	if (DeferExection) {\r
192f6d4c	141	Status = EFI_SECURITY_VIOLATION;\r
	142	}\r
	143	}\r
	144	return Status;\r
	145	}\r
	146	\r
	147	\r
b1f6a7c6	148	/**\r
	149	Verify a Firmware volume.\r
	150	\r
	151	@param CurrentFvAddress - Pointer to the current Firmware Volume under consideration\r
	152	\r
dc857d56	153	@retval EFI_SUCCESS Firmware Volume is legal\r
dc857d56	154	@retval EFI_SECURITY_VIOLATION Firmware Volume fails integrity test\r
b1f6a7c6	155	\r
b1f6a7c6	156	**/\r
192f6d4c	157	EFI_STATUS\r
	158	VerifyFv (\r
	159	IN EFI_FIRMWARE_VOLUME_HEADER *CurrentFvAddress\r
	160	)\r
192f6d4c	161	{\r
	162	//\r
	163	// Right now just pass the test. Future can authenticate and/or check the\r
	164	// FV-header or other metric for goodness of binary.\r
	165	//\r
	166	return EFI_SUCCESS;\r
	167	}\r