TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / sandbox / arthur / trustedfirmware-a / 23fc05a33d2bd67d25e20b51f68e18872d761608 / . / include / common / tbbr / cot_def.h
blob: bf23917bbf286e999ee15c0dcd6a234c7f545e67 [file] [log] [blame]
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]1/*
laurenw-armc1ec23d2023-10-03 15:25:21 -0500[diff] [blame]2 * Copyright (c) 2015-2023, Arm Limited and Contributors. All rights reserved.
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]3 *
dp-arm82cb2c12017-05-03 09:38:09 +0100[diff] [blame]4 * SPDX-License-Identifier: BSD-3-Clause
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]5 */
6
Antonio Nino Diazc3cf06f2018-11-08 10:20:19 +0000[diff] [blame]7#ifndef COT_DEF_H
8#define COT_DEF_H
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]9
Govindraj Rajaa9edc322023-02-28 11:37:02 +0000[diff] [blame]10/*
11 * Guard here with availability of mbedtls config since PLAT=lx2162aqds
12 * uses custom tbbr from 'drivers/nxp/auth/tbbr/tbbr_cot.c' and also may
13 * build without mbedtls folder only with TRUSTED_BOOT enabled.
14 */
15#ifdef MBEDTLS_CONFIG_FILE
Govindraj Rajaa8eadc52023-01-11 18:34:58 +0000[diff] [blame]16#include <mbedtls/version.h>
Govindraj Rajaa9edc322023-02-28 11:37:02 +0000[diff] [blame]17#endif
Pankaj Guptaff67fca2020-12-09 14:02:38 +0530[diff] [blame]18
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]19/* TBBR CoT definitions */
Manish Pandey44f1aa82020-05-27 22:40:10 +0100[diff] [blame]20#if defined(SPD_spmd)
21#define COT_MAX_VERIFIED_PARAMS 8
laurenw-arm56b741d2022-04-21 15:49:00 -0500[diff] [blame]22#elif defined(ARM_COT_cca)
23#define COT_MAX_VERIFIED_PARAMS 8
Manish Pandey44f1aa82020-05-27 22:40:10 +0100[diff] [blame]24#else
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]25#define COT_MAX_VERIFIED_PARAMS 4
Manish Pandey44f1aa82020-05-27 22:40:10 +0100[diff] [blame]26#endif
Juan Castillodff93c82015-05-07 14:52:44 +0100[diff] [blame]27
Manish V Badarkhead43c492020-05-16 16:36:39 +0100[diff] [blame]28/*
29 * Maximum key and hash sizes (in DER format).
30 *
31 * Both RSA and ECDSA keys may be used at the same time. In this case, the key
32 * buffers must be big enough to hold either. As RSA keys are bigger than ECDSA
33 * ones for all key sizes we support, they impose the minimum size of these
34 * buffers.
Manish V Badarkhe81c2e152023-10-20 10:53:42 +0100[diff] [blame]35 *
36 * If the platform employs its own mbedTLS configuration, it is the platform's
37 * responsibility to define TF_MBEDTLS_USE_RSA or TF_MBEDTLS_USE_ECDSA to
38 * establish the appropriate PK_DER_LEN size.
Manish V Badarkhead43c492020-05-16 16:36:39 +0100[diff] [blame]39 */
Manish V Badarkhe81c2e152023-10-20 10:53:42 +0100[diff] [blame]40#ifdef MBEDTLS_CONFIG_FILE
Manish V Badarkhead43c492020-05-16 16:36:39 +0100[diff] [blame]41#if TF_MBEDTLS_USE_RSA
42#if TF_MBEDTLS_KEY_SIZE == 1024
43#define PK_DER_LEN 162
44#elif TF_MBEDTLS_KEY_SIZE == 2048
45#define PK_DER_LEN 294
46#elif TF_MBEDTLS_KEY_SIZE == 3072
47#define PK_DER_LEN 422
48#elif TF_MBEDTLS_KEY_SIZE == 4096
49#define PK_DER_LEN 550
50#else
51#error "Invalid value for TF_MBEDTLS_KEY_SIZE"
52#endif
Manish V Badarkhe2ea42fe2023-10-26 11:06:23 +0100[diff] [blame]53#elif TF_MBEDTLS_USE_ECDSA
laurenw-armc1ec23d2023-10-03 15:25:21 -0500[diff] [blame]54#if TF_MBEDTLS_KEY_SIZE == 384
55#define PK_DER_LEN 120
56#elif TF_MBEDTLS_KEY_SIZE == 256
Nicolas Toromanoff1ef303f2020-11-17 10:03:40 +0100[diff] [blame]57#define PK_DER_LEN 92
laurenw-armc1ec23d2023-10-03 15:25:21 -0500[diff] [blame]58#else
59#error "Invalid value for TF_MBEDTLS_KEY_SIZE"
60#endif
Manish V Badarkhe2ea42fe2023-10-26 11:06:23 +0100[diff] [blame]61#else
62#error "Invalid value of algorithm"
63#endif /* TF_MBEDTLS_USE_RSA */
Manish V Badarkhead43c492020-05-16 16:36:39 +0100[diff] [blame]64
65#if TF_MBEDTLS_HASH_ALG_ID == TF_MBEDTLS_SHA256
66#define HASH_DER_LEN 51
67#elif TF_MBEDTLS_HASH_ALG_ID == TF_MBEDTLS_SHA384
68#define HASH_DER_LEN 67
69#elif TF_MBEDTLS_HASH_ALG_ID == TF_MBEDTLS_SHA512
70#define HASH_DER_LEN 83
71#else
72#error "Invalid value for TF_MBEDTLS_HASH_ALG_ID"
73#endif
Manish V Badarkhe81c2e152023-10-20 10:53:42 +0100[diff] [blame]74#endif /* MBEDTLS_CONFIG_FILE */
Manish V Badarkhead43c492020-05-16 16:36:39 +0100[diff] [blame]75
Antonio Nino Diazc3cf06f2018-11-08 10:20:19 +0000[diff] [blame]76#endif /* COT_DEF_H */