Google Git
Sign in
fuchsia / fuchsia / 5e132742745b99823868ebdc0922a59f6d904197 / . / src / devices / tee / drivers / optee / optee-controller.h
blob: 10877490c98ea9bea9413eefb06811942f9c8586 [file] [log] [blame]
// Copyright 2018 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef SRC_DEVICES_TEE_DRIVERS_OPTEE_OPTEE_CONTROLLER_H_
#define SRC_DEVICES_TEE_DRIVERS_OPTEE_OPTEE_CONTROLLER_H_
#include <fuchsia/hardware/rpmb/cpp/banjo.h>
#include <fuchsia/hardware/rpmb/llcpp/fidl.h>
#include <fuchsia/hardware/sysmem/cpp/banjo.h>
#include <fuchsia/hardware/tee/cpp/banjo.h>
#include <fuchsia/hardware/tee/llcpp/fidl.h>
#include <fuchsia/tee/manager/llcpp/fidl.h>
#include <lib/device-protocol/pdev.h>
#include <lib/device-protocol/platform-device.h>
#include <lib/fidl/llcpp/server_end.h>
#include <lib/zircon-internal/thread_annotations.h>
#include <lib/zx/channel.h>
#include <lib/zx/resource.h>
#include <memory>
#include <ddktl/device.h>
#include <ddktl/fidl.h>
#include <ddktl/protocol/empty-protocol.h>
#include <fbl/function.h>
#include <fbl/intrusive_double_list.h>
#include <fbl/mutex.h>
#include "optee-message.h"
#include "optee-smc.h"
#include "optee-util.h"
#include "shared-memory.h"
namespace optee {
namespace fuchsia_hardware_tee = fuchsia_hardware_tee;
class OpteeClient;
class OpteeDeviceInfo;
class OpteeControllerBase {
public:
using RpcHandler = fbl::Function<zx_status_t(const RpcFunctionArgs&, RpcFunctionResult*)>;
// Helper struct for the return value of CallWithMessage.
struct CallResult {
uint32_t return_code;
// For each CallWithMessage, the OpteeController will likely make several invocations of
// zx_smc_call. This is usually due to interrupts or RPC calls and we'll re-enter the secure
// world with a subsequent zx_smc_call. The peak_smc_call_duration will capture the duration of
// the longest zx_smc_call invocation for debugging purposes.
zx::duration peak_smc_call_duration;
};
virtual CallResult CallWithMessage(const optee::Message& message, RpcHandler rpc_handler) = 0;
virtual SharedMemoryManager::DriverMemoryPool* driver_pool() const = 0;
virtual SharedMemoryManager::ClientMemoryPool* client_pool() const = 0;
virtual zx_status_t RpmbConnectServer(
fidl::ServerEnd<fuchsia_hardware_rpmb::Rpmb> server) const = 0;
virtual const GetOsRevisionResult& os_revision() const = 0;
virtual zx_device_t* GetDevice() const = 0;
};
class OpteeController;
using DeviceType = ddk::Device<OpteeController, ddk::Messageable, ddk::Openable, ddk::Suspendable,
ddk::Unbindable>;
class OpteeController : public OpteeControllerBase,
public DeviceType,
public ddk::TeeProtocol<OpteeController, ddk::base_protocol>,
public fidl::WireInterface<fuchsia_hardware_tee::DeviceConnector> {
public:
explicit OpteeController(zx_device_t* parent) : DeviceType(parent) {}
OpteeController(const OpteeController&) = delete;
OpteeController& operator=(const OpteeController&) = delete;
static zx_status_t Create(void* ctx, zx_device_t* parent);
zx_status_t Bind();
zx_status_t DdkMessage(fidl_incoming_msg_t* msg, fidl_txn_t* txn);
zx_status_t DdkOpen(zx_device_t** out_dev, uint32_t flags);
void DdkSuspend(ddk::SuspendTxn txn);
void DdkUnbind(ddk::UnbindTxn txn);
void DdkRelease();
// fuchsia.hardware.Tee
zx_status_t TeeConnectToApplication(const uuid_t* application_uuid, zx::channel tee_app_request,
zx::channel service_provider);
// `DeviceConnector` FIDL protocol
void ConnectToDeviceInfo(fidl::ServerEnd<fuchsia_tee::DeviceInfo> device_info_request,
ConnectToDeviceInfoCompleter::Sync& _completer) override;
void ConnectToApplication(fuchsia_tee::wire::Uuid application_uuid,
fidl::ClientEnd<fuchsia_tee_manager::Provider> service_provider,
fidl::ServerEnd<fuchsia_tee::Application> application_request,
ConnectToApplicationCompleter::Sync& _completer) override;
CallResult CallWithMessage(const optee::Message& message, RpcHandler rpc_handler) override;
SharedMemoryManager::DriverMemoryPool* driver_pool() const override {
return shared_memory_manager_->driver_pool();
}
SharedMemoryManager::ClientMemoryPool* client_pool() const override {
return shared_memory_manager_->client_pool();
}
zx_device_t* GetDevice() const override { return zxdev(); }
zx_status_t RpmbConnectServer(
fidl::ServerEnd<fuchsia_hardware_rpmb::Rpmb> server) const override {
if (!server.is_valid()) {
return ZX_ERR_INVALID_ARGS;
}
if (!rpmb_protocol_client_.is_valid()) {
return ZX_ERR_UNAVAILABLE;
}
rpmb_protocol_client_.ConnectServer(server.TakeChannel());
return ZX_OK;
}
const GetOsRevisionResult& os_revision() const override { return os_revision_; }
// Should only be used for testing.
const zx::pmt& pmt() const { return pmt_; }
private:
zx_status_t ValidateApiUid() const;
zx_status_t ValidateApiRevision() const;
zx_status_t GetOsRevision();
zx_status_t ExchangeCapabilities();
zx_status_t InitializeSharedMemory();
zx_status_t DiscoverSharedMemoryConfig(zx_paddr_t* out_start_addr, size_t* out_size);
zx_status_t ConnectToApplicationInternal(
Uuid application_uuid, fidl::ClientEnd<fuchsia_tee_manager::Provider> service_provider,
fidl::ServerEnd<fuchsia_tee::Application> application_request);
ddk::PDev pdev_;
ddk::SysmemProtocolClient sysmem_;
ddk::RpmbProtocolClient rpmb_protocol_client_ = {};
zx::resource secure_monitor_;
uint32_t secure_world_capabilities_ = 0;
GetOsRevisionResult os_revision_;
zx::bti bti_;
zx::pmt pmt_;
std::unique_ptr<SharedMemoryManager> shared_memory_manager_;
};
} // namespace optee
#endif // SRC_DEVICES_TEE_DRIVERS_OPTEE_OPTEE_CONTROLLER_H_