docs/master/_spdm_security_lib_internal_8h_source.html

#ifndef SPDM_SECURITY_LIB_INTERNAL_H_

#define SPDM_SECURITY_LIB_INTERNAL_H_


#include <Uefi.h>

#include <hal/base.h>

#include <Stub/SpdmLibStub.h>

#include <industry_standard/spdm.h>

#include <industry_standard/spdm_secured_message.h>

#include <IndustryStandard/Pci.h>

#include <IndustryStandard/Tpm20.h>

#include <IndustryStandard/UefiTcgPlatform.h>

#include <Library/BaseLib.h>

#include <Library/DebugLib.h>

#include <Library/BaseMemoryLib.h>

#include <Library/UefiBootServicesTableLib.h>

#include <Library/UefiRuntimeServicesTableLib.h>

#include <Library/MemoryAllocationLib.h>

#include <Library/DevicePathLib.h>

#include <Library/UefiLib.h>

#include <Library/TpmMeasurementLib.h>

#include <Library/RngLib.h>

#include <Library/BaseCryptLib.h>

#include <library/spdm_requester_lib.h>


#include <Guid/DeviceAuthentication.h>

#include <Guid/ImageAuthentication.h>


#include <Protocol/PciIo.h>

#include <Library/SpdmSecurityLib.h>

#include "library/spdm_crypt_lib.h"


#define SPDM_DEVICE_CONTEXT_SIGNATURE  SIGNATURE_32 ('S', 'P', 'D', 'C')


typedef struct {

  UINT32                      Signature;

  // UEFI Context

  EDKII_DEVICE_IDENTIFIER     DeviceId;

  BOOLEAN                     IsEmbeddedDevice;

  EFI_DEVICE_PATH_PROTOCOL    *DevicePath;

  VOID                        *DeviceIo;

  UINT64                      DeviceUID;

  // SPDM Context

  UINTN                       SpdmContextSize;

  VOID                        *SpdmContext;

  UINTN                       ScratchBufferSize;

  VOID                        *ScratchBuffer;

  UINT8                       SpdmVersion;

  VOID                        *SpdmIoProtocol;

  EFI_SIGNATURE_LIST          *SignatureList;

  UINTN                       SignatureListSize;

} SPDM_DEVICE_CONTEXT;


typedef struct {

  UINTN                  Signature;

  LIST_ENTRY             Link;

  SPDM_DEVICE_CONTEXT    *SpdmDeviceContext;

} SPDM_DEVICE_CONTEXT_INSTANCE;


#define SPDM_DEVICE_CONTEXT_INSTANCE_SIGNATURE  SIGNATURE_32 ('S', 'D', 'C', 'S')

#define SPDM_DEVICE_CONTEXT_INSTANCE_FROM_LINK(a)  CR (a, SPDM_DEVICE_CONTEXT_INSTANCE, Link, SPDM_DEVICE_CONTEXT_INSTANCE_SIGNATURE)


VOID *

EFIAPI

GetSpdmIoProtocolViaSpdmContext (

  IN VOID  *SpdmContext

  );


SPDM_DEVICE_CONTEXT *

EFIAPI

CreateSpdmDeviceContext (

  IN  EDKII_SPDM_DEVICE_INFO       *SpdmDeviceInfo,

  OUT EDKII_DEVICE_SECURITY_STATE  *SecurityState

  );


VOID

EFIAPI

DestroySpdmDeviceContext (

  IN SPDM_DEVICE_CONTEXT  *SpdmDeviceContext

  );


UINT32

EFIAPI

GetSpdmDeviceType (

  IN  SPDM_DEVICE_CONTEXT  *SpdmDeviceContext

  );


UINTN

EFIAPI

GetDeviceMeasurementContextSize (

  IN  SPDM_DEVICE_CONTEXT  *SpdmDeviceContext

  );


EFI_STATUS

EFIAPI

CreateDeviceMeasurementContext (

  IN  SPDM_DEVICE_CONTEXT  *SpdmDeviceContext,

  IN OUT VOID              *DeviceContext,

  IN UINTN                 DeviceContextSize

  );


EFI_STATUS

ExtendCertificate (

  IN  SPDM_DEVICE_CONTEXT          *SpdmDeviceContext,

  IN UINT8                         AuthState,

  IN UINTN                         CertChainSize,

  IN UINT8                         *CertChain,

  IN VOID                          *TrustAnchor,

  IN UINTN                         TrustAnchorSize,

  IN UINT8                         SlotId,

  OUT EDKII_DEVICE_SECURITY_STATE  *SecurityState

  );


EFI_STATUS

EFIAPI

DoDeviceMeasurement (

  IN  SPDM_DEVICE_CONTEXT          *SpdmDeviceContext,

  IN  UINT8                        SlotId,

  OUT EDKII_DEVICE_SECURITY_STATE  *SecurityState

  );


EFI_STATUS

EFIAPI

DoDeviceCertificate (

  IN  SPDM_DEVICE_CONTEXT          *SpdmDeviceContext,

  OUT UINT8                        *AuthState,

  OUT UINT8                        *ValidSlotId,

  OUT EDKII_DEVICE_SECURITY_STATE  *SecurityState,

  OUT BOOLEAN                      *IsValidCertChain,

  OUT BOOLEAN                      *RootCertMatch

  );


EFI_STATUS

EFIAPI

DoDeviceAuthentication (

  IN  SPDM_DEVICE_CONTEXT          *SpdmDeviceContext,

  OUT UINT8                        *AuthState,

  IN  UINT8                        ValidSlotId,

  IN  BOOLEAN                      IsValidCertChain,

  IN  BOOLEAN                      RootCertMatch,

  OUT EDKII_DEVICE_SECURITY_STATE  *SecurityState

  );


VOID

EFIAPI

InternalDumpData (

  CONST UINT8  *Data,

  UINTN        Size

  );


#endif

UINTN
UINT64 UINTN
Definition: ProcessorBind.h:112

BaseCryptLib.h

BaseLib.h

BaseMemoryLib.h

DeviceAuthentication.h

DevicePathLib.h

ImageAuthentication.h

CONST
#define CONST
Definition: Base.h:259

IN
#define IN
Definition: Base.h:279

OUT
#define OUT
Definition: Base.h:284

Pci.h

DebugLib.h

PciIo.h

MemoryAllocationLib.h

RngLib.h

base.h

SpdmLibStub.h

SpdmSecurityLib.h

GetSpdmIoProtocolViaSpdmContext
VOID *EFIAPI GetSpdmIoProtocolViaSpdmContext(IN VOID *SpdmContext)
Definition: SpdmConnectionInit.c:55

CreateSpdmDeviceContext
SPDM_DEVICE_CONTEXT *EFIAPI CreateSpdmDeviceContext(IN EDKII_SPDM_DEVICE_INFO *SpdmDeviceInfo, OUT EDKII_DEVICE_SECURITY_STATE *SecurityState)
Definition: SpdmConnectionInit.c:167

InternalDumpData
VOID EFIAPI InternalDumpData(CONST UINT8 *Data, UINTN Size)
Definition: SpdmMeasurement.c:148

DoDeviceCertificate
EFI_STATUS EFIAPI DoDeviceCertificate(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext, OUT UINT8 *AuthState, OUT UINT8 *ValidSlotId, OUT EDKII_DEVICE_SECURITY_STATE *SecurityState, OUT BOOLEAN *IsValidCertChain, OUT BOOLEAN *RootCertMatch)
Definition: SpdmAuthentication.c:497

CreateDeviceMeasurementContext
EFI_STATUS EFIAPI CreateDeviceMeasurementContext(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext, IN OUT VOID *DeviceContext, IN UINTN DeviceContextSize)
Definition: SpdmMeasurement.c:122

ExtendCertificate
EFI_STATUS ExtendCertificate(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext, IN UINT8 AuthState, IN UINTN CertChainSize, IN UINT8 *CertChain, IN VOID *TrustAnchor, IN UINTN TrustAnchorSize, IN UINT8 SlotId, OUT EDKII_DEVICE_SECURITY_STATE *SecurityState)
Definition: SpdmAuthentication.c:107

DoDeviceMeasurement
EFI_STATUS EFIAPI DoDeviceMeasurement(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext, IN UINT8 SlotId, OUT EDKII_DEVICE_SECURITY_STATE *SecurityState)
Definition: SpdmMeasurement.c:504

GetSpdmDeviceType
UINT32 EFIAPI GetSpdmDeviceType(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext)
Definition: SpdmMeasurement.c:21

DoDeviceAuthentication
EFI_STATUS EFIAPI DoDeviceAuthentication(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext, OUT UINT8 *AuthState, IN UINT8 ValidSlotId, IN BOOLEAN IsValidCertChain, IN BOOLEAN RootCertMatch, OUT EDKII_DEVICE_SECURITY_STATE *SecurityState)
Definition: SpdmAuthentication.c:618

DestroySpdmDeviceContext
VOID EFIAPI DestroySpdmDeviceContext(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext)
Definition: SpdmConnectionInit.c:460

GetDeviceMeasurementContextSize
UINTN EFIAPI GetDeviceMeasurementContextSize(IN SPDM_DEVICE_CONTEXT *SpdmDeviceContext)
Definition: SpdmMeasurement.c:45

Tpm20.h

TpmMeasurementLib.h

Uefi.h

EFI_STATUS
RETURN_STATUS EFI_STATUS
Definition: UefiBaseType.h:29

UefiBootServicesTableLib.h

UefiLib.h

UefiRuntimeServicesTableLib.h

UefiTcgPlatform.h

_LIST_ENTRY
Definition: Base.h:247

EDKII_DEVICE_IDENTIFIER
Definition: DeviceSecurity.h:38

EDKII_DEVICE_SECURITY_STATE
Definition: DeviceSecurityPolicy.h:70

EDKII_SPDM_DEVICE_INFO
Definition: SpdmSecurityLib.h:302

EFI_DEVICE_PATH_PROTOCOL
Definition: DevicePath.h:43

EFI_SIGNATURE_LIST
Definition: ImageAuthentication.h:66

SPDM_DEVICE_CONTEXT_INSTANCE
Definition: SpdmSecurityLibInternal.h:62

SPDM_DEVICE_CONTEXT
Definition: SpdmSecurityLibInternal.h:43