feat(lib/psa): add initial attestation API Supports: - Get Platform Attestation token from secure enclave Signed-off-by: Tamas Ban <tamas.ban@arm.com> Change-Id: Icaeb7b4eaff08e10f449fbf752068de3ac7974bf

commit: c034b732865703aff88284c6ea90850a262c757c [log] [tgz]
author: Tamas Ban <tamas.ban@arm.com> Fri Feb 11 15:24:05 2022 +0100
committer: David Vincze <david.vincze@arm.com> Wed May 11 15:47:02 2022 +0200
tree: afea1c12b6ad17edaa81c9473dfb7014101ce536
parent: f54927596a7aba52fbe280d9d9e4f68a3d4222ba [diff] [blame]
diff --git a/lib/psa/initial_attestation.c b/lib/psa/initial_attestation.c
new file mode 100644
index 0000000..aa0bba0
--- /dev/null
+++ b/lib/psa/initial_attestation.c

@@ -0,0 +1,36 @@
+/*
+ * Copyright (c) 2018-2022, Arm Limited. All rights reserved.
+ *
+ * SPDX-License-Identifier: BSD-3-Clause
+ *
+ */
+
+#include <initial_attestation.h>
+#include <psa/client.h>
+#include <psa_manifest/sid.h>
+
+psa_status_t
+psa_initial_attest_get_token(const uint8_t *auth_challenge,
+			     size_t         challenge_size,
+			     uint8_t       *token_buf,
+			     size_t         token_buf_size,
+			     size_t        *token_size)
+{
+	psa_status_t status;
+	psa_invec in_vec[] = {
+		{auth_challenge, challenge_size}
+	};
+	psa_outvec out_vec[] = {
+		{token_buf, token_buf_size},
+	};
+
+	status = psa_call(RSS_ATTESTATION_SERVICE_HANDLE, RSS_ATTEST_GET_TOKEN,
+			  in_vec, IOVEC_LEN(in_vec),
+			  out_vec, IOVEC_LEN(out_vec));
+
+	if (status == PSA_SUCCESS) {
+		*token_size = out_vec[0].len;
+	}
+
+	return status;
+}
commit	c034b732865703aff88284c6ea90850a262c757c	[log] [tgz]
author	Tamas Ban <tamas.ban@arm.com>	Fri Feb 11 15:24:05 2022 +0100
committer	David Vincze <david.vincze@arm.com>	Wed May 11 15:47:02 2022 +0200
tree	afea1c12b6ad17edaa81c9473dfb7014101ce536
parent	f54927596a7aba52fbe280d9d9e4f68a3d4222ba [diff] [blame]