/* * Copyright (C) 2017 The Android Open Source Project * * Permission is hereby granted, free of charge, to any person * obtaining a copy of this software and associated documentation * files (the "Software"), to deal in the Software without * restriction, including without limitation the rights to use, copy, * modify, merge, publish, distribute, sublicense, and/or sell copies * of the Software, and to permit persons to whom the Software is * furnished to do so, subject to the following conditions: * * The above copyright notice and this permission notice shall be * included in all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE * SOFTWARE. */ #ifndef AVB_CERT_SLOT_VERIFY_H_ #define AVB_CERT_SLOT_VERIFY_H_ #include #ifdef __cplusplus extern "C" { #endif typedef enum { AVB_CERT_LOCKED, AVB_CERT_UNLOCKED, } AvbCertLockState; typedef enum { AVB_CERT_SLOT_MARKED_SUCCESSFUL, AVB_CERT_SLOT_NOT_MARKED_SUCCESSFUL, } AvbCertSlotState; typedef enum { AVB_CERT_OEM_DATA_USED, AVB_CERT_OEM_DATA_NOT_USED, } AvbCertOemDataState; /* Performs a full verification of the slot identified by |ab_suffix|. If * |lock_state| indicates verified boot is unlocked then verification errors * will be allowed (see AVB_SLOT_VERIFY_FLAGS_ALLOW_VERIFICATION_ERROR for more * details. * * If |slot_state| indicates the slot identified by |ab_suffix| has been marked * successful then minimum rollback index values will be bumped to match the * values in the verified slot (on success). * * If |oem_data_state| indicates that OEM-specific data is not being used, then * verification of the 'oem_bootloader' partition will be skipped and it will * not be represented in |out_data|. * * The semantics of |out_data| are the same as for avb_slot_verify(). * * On success, the SHA256 vbmeta digest is written to |vbmeta_digest|. This * value may be used e.g. for device attestation. * * All of the function pointers in |ops| must be valid except for * set_key_version, which will be ignored and may be NULL. */ AvbSlotVerifyResult avb_cert_slot_verify( AvbCertOps* ops, const char* ab_suffix, AvbCertLockState lock_state, AvbCertSlotState slot_state, AvbCertOemDataState oem_data_state, AvbSlotVerifyData** verify_data, uint8_t vbmeta_digest[AVB_SHA256_DIGEST_SIZE]); #ifdef __cplusplus } #endif #endif /* AVB_SLOT_VERIFY_H_ */