guru
/
android_kernel_modules_lenovo_1050f
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
android_kernel_modules_leno.../sldriver/include/arch72.h

364 lines
17 KiB
C
Raw Permalink Blame History

/**
* INTEL CONFIDENTIAL
* Copyright 2011, 2012, 2013 Intel Corporation All Rights Reserved.
*
* The source code contained or described herein and all documents related to
* the source code ("Material") are owned by Intel Corporation or its suppliers
* or licensors. Title to the Material remains with Intel Corporation or its
* suppliers and licensors. The Material contains trade secrets and proprietary
* and confidential information of Intel or its suppliers and licensors. The
* Material is protected by worldwide copyright and trade secret laws and treaty
* provisions. No part of the Material may be used, copied, reproduced, modified,
* published, uploaded, posted, transmitted, distributed, or disclosed in any
* way without Intel's prior express written permission.
*
* No license under any patent, copyright, trade secret or other intellectual
* property right is granted to or conferred upon you by disclosure or delivery
* of the Materials, either expressly, by implication, inducement, estoppel or
* otherwise. Any license under such intellectual property rights must be
* express and approved by Intel in writing.
*
*/
#pragma once
//#ifndef _SE_ARCH_H_
//# error "never include arch72.h directly; use arch.h instead."
//#endif
#ifdef ANDROID
# define NUM_ARGS(...) NUM_ARGS_HELP1(__VA_ARGS__, 3, 2, 1, 0)
# define NUM_ARGS_HELP1(...) NUM_ARGS_HELP2(__VA_ARGS__)
# define NUM_ARGS_HELP2(x1, x2, x3, n, ...) n
#define _ASSERT_CONCAT(a, b) a##b
#define ASSERT_CONCAT(a, b) _ASSERT_CONCAT(a, b)
#define static_assert2(e,x) typedef char ASSERT_CONCAT(se_static_, __LINE__)[(e)?1:-1]
#define static_assert3(e1,e2,x) typedef char ASSERT_CONCAT(se_static_, __LINE__)[(e1,e2)?1:-1]
#define static_assertx(s1,s2, s3, macro, ...) macro
#define static_assert(e,x,...) static_assertx(e,x,##__VA_ARGS__, \
static_assert3(e,x,__VA_ARGS__), \
static_assert2(e,x))
#endif
#ifndef _SE_ARCH72_H_
#define _SE_ARCH72_H_
#include "se_types.h"
#include "se_attributes.h"
#include "se_key.h"
#include "se_report.h"
#define SE_PAGE_SIZE 0x1000
#pragma pack(push, 1)
#if !defined(__cplusplus) || defined(__INTEL_COMPILER) || (defined(SE_GNU) && !defined(__GXX_EXPERIMENTAL_CXX0X__))
#define _ASSERT_CONCAT(a, b) a##b
#define ASSERT_CONCAT(a, b) _ASSERT_CONCAT(a, b)
#define se_static_assert(e) typedef char ASSERT_CONCAT(assert_line, __LINE__)[(e)?1:-1]
#else
#define se_static_assert(e) static_assert(e,#e)
#endif
#define UUID_SIZE (36)
typedef struct _per_core_t
{
uint64_t tcs; // 0 tcs
uint64_t idtr; // 8 asserted idtr
uint64_t gdtr; // 16 asserted gdtr
uint64_t ldtr; // 24 asserted ldtr
uint64_t tr; // 32 asserted tr
uint64_t r0sp; // 40 asserted r0 stack
uint64_t reserved1; // 48
uint64_t reserved2; // 56
} se_per_core_data_t; // size 64 - always keep power of 2
//SECS data structure
typedef struct _secs_t
{
uint64_t size; // ( 0) Size of the enclave in bytes
PADDED_POINTER(void, base); // ( 8) Base address of enclave
uint32_t ssa_frame_size; // ( 16) size of 1 SSA frame in pages
#define SECS_RESERVED1_LENGTH 28
uint8_t reserved1[SECS_RESERVED1_LENGTH]; // ( 20) reserved
se_attributes_t attributes; // ( 48) ATTRIBUTES Flags Field
se_measurement_t mr_enclave; // ( 64) Integrity Reg 0 - Enclave measurement
#define SECS_RESERVED2_LENGTH 32
uint8_t reserved2[SECS_RESERVED2_LENGTH]; // ( 96) reserved
se_measurement_t mr_signer; // (128) Integrity Reg 1 - Enclave signing key
#define SECS_RESERVED3_LENGTH 96
uint8_t reserved3[SECS_RESERVED3_LENGTH]; // (160) reserved
se_prod_id_t isv_prod_id; // (256) product ID of enclave
se_isv_svn_t isv_svn; // (258) Security Version of the Enclave
uint64_t eid; // (260) Enclave id
#define SECS_RESERVED_LENGTH 3292
uint8_t ui_reserved[SECS_RESERVED_LENGTH];//(268) Microcode Specific Reserved Fields
PADDED_POINTER(void, acr3); // (3816) cr3 for view
uint64_t scv; // (3824) security cookie
uint64_t os_cr3; // (3832) cached OS cr3
#define SECS_MAX_CORES 8
se_per_core_data_t pcd[SECS_MAX_CORES]; //(3840) per core data
} secs_t;
se_static_assert(sizeof(secs_t) == SE_PAGE_SIZE);
//TCS
// Thread State Definitions
#define SE_STATE_INACTIVE 0 //The TCS is available for a normal EENTER
#define SE_STATE_ACTIVE 1 //A Processor is currently executing in the context of this TCS
#define DBGOPTIN 1 //used by debugger
typedef struct _tcs_t
{
uint64_t state; // (0)Indicates the current state of the thread. SE_STATE_xxxx
uint64_t flags; // (8)bit 0: DBGOPTION
PADDED_DWORD( ossa); // (16)State Save Area
uint32_t cssa; // (24)Current SSA slot
uint32_t nssa; // (28)Number of SSA slots
PADDED_DWORD( oentry); // (32)Offset in enclave to which control is transferred on EENTER if enclave INACTIVE state
PADDED_POINTER(void,aep); // (40)Interrupt return routine. Location reported as exit rip when an asyn exit from the enclave occurs
PADDED_DWORD( ofs_base); // (48)When added to the base address of the enclave, produces the base address FS segment inside the enclave
PADDED_DWORD( ogs_base); // (56)When added to the base address of the enclave, produces the base address GS segment inside the enclave
uint32_t ofs_limit; // (64)Size to become the new FS limit in 32-bit mode
uint32_t ogs_limit; // (68)Size to become the new GS limit in 32-bit mode
uint16_t save_fs_selector; // (72)
uint32_t save_fs_desc_low; // (74)
uint32_t save_fs_desc_high; // (78)
uint16_t save_gs_selector; // (82)
uint32_t save_gs_desc_low; // (84)
uint32_t save_gs_desc_high; // (88)
uint32_t ssa; // (92)
uint32_t eflags; // (96)
PADDED_POINTER(void,os_cr3); // (100)
uint64_t ur0sp; // (108)
#define TCS_RESERVED_LENGTH 3980
uint8_t reserved[TCS_RESERVED_LENGTH]; // (116)unused reserved length
}tcs_t;
se_static_assert(sizeof(tcs_t) == SE_PAGE_SIZE);
/****************************************************************************
* Definitions for SSA
****************************************************************************/
typedef struct _exit_info_t
{
uint32_t vector:8; // Exception number of exceptions reported inside enclave
uint32_t exit_type:3; // 3: Hardware exceptions, 6: Software exceptions
uint32_t reserved:20;
uint32_t valid:1; // 0: unsupported exceptions, 1: Supported exceptions
} exit_info_t;
#define SE_VECTOR_DE 0
#define SE_VECTOR_DB 1
#define SE_VECTOR_BP 3
#define SE_VECTOR_BR 5
#define SE_VECTOR_UD 6
#define SE_VECTOR_MF 16
#define SE_VECTOR_AC 17
#define SE_VECTOR_XM 19
typedef struct _ssa_gpr_t
{
REGISTER( ax); // (0)
REGISTER( cx); // (8)
REGISTER( dx); // (16)
REGISTER( bx); // (24)
REGISTER( sp); // (32)
REGISTER( bp); // (40)
REGISTER( si); // (48)
REGISTER( di); // (56)
uint64_t r8; // (64)
uint64_t r9; // (72)
uint64_t r10; // (80)
uint64_t r11; // (88)
uint64_t r12; // (96)
uint64_t r13; // (104)
uint64_t r14; // (112)
uint64_t r15; // (120)
REGISTER(flags); // (128)
REGISTER( ip); // (136)
REGISTER( sp_u); // (144) untrusted stack pointer. saved by EENTER
REGISTER( bp_u); // (152) untrusted frame pointer. saved by EENTER
exit_info_t exit_info; // (160) contain information for exits
uint32_t reserved; // (164) padding to multiple of 8 bytes
} ssa_gpr_t;
/****************************************************************************
* Definitions for Page Information
****************************************************************************/
typedef struct secinfo_flags_t
{
union {
struct{
uint32_t r:1;
uint32_t w:1;
uint32_t x:1;
uint32_t pt:2;
uint32_t reserved: 27;
uint32_t reserved1;
}s1;
uint64_t bits;
}u1;
} secinfo_flags_t;
typedef uint64_t si_flags_t;
#define SI_FLAG_R 0x1 // Read Access
#define SI_FLAG_W 0x2 // Write Access
#define SI_FLAG_X 0x4 // Execute Access
#define SI_FLAG_PT_LOW_BIT 0x8 // PT low bit
#define SI_FLAG_PT_MASK (0xFF<<SI_FLAG_PT_LOW_BIT) // Page Type Mask [15:8]
#define SI_FLAG_SECS (0x00<<SI_FLAG_PT_LOW_BIT) // SECS
#define SI_FLAG_TCS (0x01<<SI_FLAG_PT_LOW_BIT) // TCS
#define SI_FLAG_REG (0x02<<SI_FLAG_PT_LOW_BIT) // Regular Page
#define SI_FLAGS_EXTERNAL (SI_FLAG_PT_MASK | SI_FLAG_R | SI_FLAG_W | SI_FLAG_X) // Flags visible/usable by instructions
#define SI_FLAGS_R (SI_FLAG_R|SI_FLAG_REG)
#define SI_FLAGS_RW (SI_FLAG_R|SI_FLAG_W|SI_FLAG_REG)
#define SI_FLAGS_RX (SI_FLAG_R|SI_FLAG_X|SI_FLAG_REG)
#define SI_FLAGS_TCS (SI_FLAG_TCS)
#define SI_FLAGS_SECS (SI_FLAG_SECS)
#define SI_MASK_TCS (SI_FLAG_PT_MASK)
typedef struct _sec_info_t
{
si_flags_t flags;
uint64_t reserved[7];
} sec_info_t;
typedef struct _page_info_t
{
PADDED_POINTER(void, lin_addr); // Enclave linear address
PADDED_POINTER(void, src_page); // Linear address of the page where contents are located
PADDED_POINTER(sec_info_t, sec_info); // Linear address of the SEC_INFO structure for the page
PADDED_POINTER(void, secs); // Linear address of EPC slot that contains SECS for this enclave
} page_info_t;
/****************************************************************************
* Definitions for enclave signature
****************************************************************************/
#define SE_KEY_SIZE 384 // in bytes
#define SE_EXPONENT_SIZE 4 // RSA public key exponent size in bytes
typedef struct _css_header_t { // 128 bytes
uint32_t header_type; // (0) Module type (Must be 7)
uint32_t header_len; // (4) Header length including crypto fields (dwords) (Must be 00A1h)
uint32_t header_version; // (8) Struct version (Must be 0101h)
uint32_t type; // (12) bit 31: 0 = prod, 1 = debug; Bit 30-0: Must be zero
uint32_t module_vendor; // (16) Intel=0x8086, ISV=0x0000
uint32_t date; // (20) build date as yyyymmdd
uint32_t size; // (24) Size of the entire module (dwords) (Must be 0101h)
uint32_t key_size; // (28) RSA public key modulus size (dwords) (Must be 0060h in SE1.5)
uint32_t modulus_size; // (32) RSA public key modulus size (dwords) (Must be 0060h in SE1.5)
uint32_t exponent_size; // (36) RSA public key exponent size (dword) (Must be 0001h in SE1.5)
uint32_t hw_version; // (40) For Architectural Enclaves: refer to pas. For Non-Architectural Enclaves: HWVERSION = 0
uint8_t reserved[84]; // (44) Must be 0
} css_header_t;
se_static_assert(sizeof(css_header_t) == 128);
typedef struct _css_key_t { // 772 bytes
uint8_t modulus[SE_KEY_SIZE]; // (128) Module Public Key (keylength=3072 bits)
uint8_t exponent[SE_EXPONENT_SIZE]; // (512) RSA Exponent = 3
uint8_t signature[SE_KEY_SIZE]; // (516) Signature over Header and Body
} css_key_t;
se_static_assert(sizeof(css_key_t) == 772);
typedef struct _css_body_t { // 128 bytes
uint8_t reserved[28]; // (900) Reserved. Must be 0.
se_attributes_t attributes; // (928) Enclave Attributes that must be set
se_attributes_t attribute_mask; // (944) Mask of Attributes to Enforce
se_measurement_t enclave_hash; // (960) MRENCLAVE - (32 bytes)
uint8_t reserved2[32]; // (992) Must be 0
uint16_t isv_prod_id; // (1024) ISV assigned Product ID
uint16_t isv_svn; // (1026) ISV assigned SVN
} css_body_t;
se_static_assert(sizeof(css_body_t) == 128);
typedef struct _css_buffer_t { // 780 bytes
uint8_t reserved[12]; // (1028) Must be 0
uint8_t q1[SE_KEY_SIZE]; // (1040) Q1 value for RSA Signature Verification
uint8_t q2[SE_KEY_SIZE]; // (1424) Q2 value for RSA Signature Verification
} css_buffer_t;
se_static_assert(sizeof(css_buffer_t) == 780);
typedef struct _enclave_css_t { // 1808 bytes
css_header_t header; // (0)
css_key_t key; // (128)
css_body_t body; // (900)
css_buffer_t buffer; // (1028)
} enclave_css_t;
se_static_assert(sizeof(enclave_css_t) == 1808);
/****************************************************************************
* Definitions for license
****************************************************************************/
typedef struct _license_body_t
{
uint32_t valid; // ( 0) 0 = Invalid, 1 = Valid
uint32_t reserved1[11]; // ( 4) must be zero
se_attributes_t attributes; // ( 48) ATTRIBUTES of Enclave
se_measurement_t mr_enclave; // ( 64) MRENCLAVE of Enclave
uint8_t reserved2[32]; // ( 96)
se_measurement_t mr_signer; // (128) MRSIGNER of Enclave
uint8_t reserved3[32]; // (160)
} license_body_t;
se_static_assert(sizeof(license_body_t) == 192);
typedef struct _license_t {
license_body_t body;
se_cpu_svn_t cpu_svn; // (192) License Enclave's CPUSVN
uint16_t isv_prod_id; // (208) License Enclave's ISVPRODID
uint16_t isv_svn; // (210) License Enclave's ISVSVN
uint8_t reserved2[28]; // (212) Must be 0
se_attributes_t attributes_le; // (240) ATTRIBUTES of License Enclave
se_key_id_t key_id; // (256) Value for key wear-out protection
se_mac_t mac; // (288) CMAC using License Key
} license_t;
se_static_assert(sizeof(license_t) == 304);
typedef struct _license_blob_body_t {
uint16_t blob_rev; // (0) License blob revision ID (1 for SKL)
uint8_t reserved[10]; // (2) License Enclave's ISVSVN
uint32_t licinfo ; // (12) License information
uint64_t lic_id[2]; // (16) License ID
se_attributes_t lic_cert_attr; // (32) ATTRIBUTES of License policy
se_attributes_t lic_cert_mask; // (48) ATTRIBUTES mask of License policy
uint64_t lic_plat_type[2]; // (64) License Platform type
} license_blob_body_t;
se_static_assert(sizeof(license_blob_body_t) == 80);
typedef struct _license_blob_t {
license_t lic_token; // (0) License token
license_blob_body_t lic_blob; // (304) License blob
se_mac_t mac; // (384) CMAC using License Key
} license_blob_t;
se_static_assert(sizeof(license_blob_t) == 400);
typedef struct _sku_blob_t {
uint8_t sku_info[16]; // (0)sku information, 16 byte
se_cpu_svn_t cpu_svn_le; // (16)License Enclave<76>s CPUSVN
uint16_t isv_svn_le; // (32)License Enclave<76>s ISVSVN
uint8_t reserved[6]; // (34)Must be 0
se_key_id_t key_id; // (40) Value for key wear-out
se_mac_t mac; // (72) CMAC using License Key
} sku_blob_t;
se_static_assert(sizeof(sku_blob_t) == 88);
#pragma pack(pop)
#endif//_SE_ARCH72_H_
Reference in New Issue View Git Blame Copy Permalink