feat(esp_tee): Make the attestation service configurable

Author: laukik-hase

components/esp_tee/Kconfig.projbuild

@@ -59,44 +59,56 @@ menu "ESP-TEE (Trusted Execution Environment)"
 
     endmenu
 
-    choice SECURE_TEE_SEC_STG_MODE
-        prompt "Secure Storage: Mode"
+    menu "Secure Services"
         depends on SECURE_ENABLE_TEE
-        default SECURE_TEE_SEC_STG_MODE_DEVELOPMENT
-        help
-            Select the TEE secure storage mode
 
-        config SECURE_TEE_SEC_STG_MODE_DEVELOPMENT
-            bool "Development"
+        choice SECURE_TEE_SEC_STG_MODE
+            prompt "Secure Storage: Mode"
+            depends on SECURE_ENABLE_TEE
+            default SECURE_TEE_SEC_STG_MODE_DEVELOPMENT
+            help
+                Select the TEE secure storage mode
+
+            config SECURE_TEE_SEC_STG_MODE_DEVELOPMENT
+                bool "Development"
+                help
+                    Secure storage will be encrypted by the data stored in eFuse BLK2
+
+            config SECURE_TEE_SEC_STG_MODE_RELEASE
+                depends on IDF_TARGET_ESP32C6
+                bool "Release"
+                help
+                    Secure storage will be encrypted by the data stored in eFuse block
+                    configured through the SECURE_TEE_SEC_STG_KEY_EFUSE_BLK option
+
+        endchoice
+
+        config SECURE_TEE_SEC_STG_KEY_EFUSE_BLK
+            int "Secure Storage: Encryption key eFuse block"
+            depends on SECURE_TEE_SEC_STG_MODE_RELEASE
+            range 4 10
+            default 10
             help
-                Secure storage will be encrypted by the data stored in eFuse BLK2
+                eFuse block ID storing the TEE secure storage encryption key
 
-        config SECURE_TEE_SEC_STG_MODE_RELEASE
-            depends on IDF_TARGET_ESP32C6
-            bool "Release"
+        config SECURE_TEE_ATTESTATION
+            bool "Enable Attestation"
+            default y
             help
-                Secure storage will be encrypted by the data stored in eFuse block
-                configured through the SECURE_TEE_SEC_STG_KEY_EFUSE_BLK option
+                This configuration enables the support for the Attestation service.
 
-    endchoice
 
-    config SECURE_TEE_SEC_STG_KEY_EFUSE_BLK
-        int "Secure Storage: Encryption key eFuse block"
-        depends on SECURE_TEE_SEC_STG_MODE_RELEASE
-        range 4 10
-        default 10
-        help
-            eFuse block ID storing the TEE secure storage encryption key
+        config SECURE_TEE_ATT_KEY_SLOT_ID
+            depends on SECURE_TEE_ATTESTATION
+            int "Attestation: Secure Storage slot ID for EAT signing"
+            default 0
+            range 0 14
+            help
+                This configuration sets the slot ID from the TEE secure storage
+                storing the ECDSA keypair for executing sign/verify operations
+                from the TEE side for attestation.
 
-    config SECURE_TEE_ATT_KEY_SLOT_ID
-        depends on SECURE_ENABLE_TEE
-        int "Attestation: Secure Storage slot ID for EAT signing"
-        default 0
-        range 0 14
-        help
-            This configuration sets the slot ID from the TEE secure storage
-            storing the ECDSA keypair for executing sign/verify operations
-            from the TEE side (E.g. Attestation)
+    endmenu
 
     config SECURE_TEE_DEBUG_MODE
         bool "Enable Debug Mode"

components/esp_tee/scripts/esp32c6/secure_service.tbl

@@ -43,4 +43,3 @@
 41          custom      esp_tee_sec_storage_decrypt                   8
 42          custom      esp_tee_sec_storage_is_slot_empty             1
 43          custom      esp_tee_sec_storage_clear_slot                1
-44          custom      esp_tee_att_generate_token                    6

components/esp_tee/subproject/CMakeLists.txt

@@ -25,7 +25,7 @@ set(ESP_TEE_BUILD 1)
 set(NON_OS_BUILD 1)
 
 # TEE-specific components
-list(APPEND COMPONENTS tee_flash_mgr tee_ota_ops tee_sec_storage attestation)
+list(APPEND COMPONENTS tee_flash_mgr tee_ota_ops tee_sec_storage tee_attestation)
 
 # Include sdkconfig.h derived from the parent build.
 include_directories(${CONFIG_DIR})

components/esp_tee/subproject/components/attestation/private_include/esp_attestation_utils.h

@@ -41,7 +41,7 @@ extern "C" {
 
 #define ESP_ATT_TK_MIN_SIZE         (ESP_ATT_HDR_JSON_MAX_SZ + ESP_ATT_EAT_JSON_MAX_SZ + ESP_ATT_PUBKEY_JSON_MAX_SZ + ESP_ATT_SIGN_JSON_MAX_SZ)
 
-#if ESP_TEE_BUILD
+#if ESP_TEE_BUILD && CONFIG_SECURE_TEE_ATTESTATION
 #define ESP_ATT_TK_KEY_ID  (CONFIG_SECURE_TEE_ATT_KEY_SLOT_ID)
 #else
 #define ESP_ATT_TK_KEY_ID  (-1)

components/esp_tee/subproject/components/tee_attestation/CMakeLists.txt

@@ -1,12 +1,16 @@
 idf_build_get_property(esp_tee_build ESP_TEE_BUILD)
 
+set(srcs)
+set(include_dirs ".")
+set(priv_requires esp_tee)
+
 if(esp_tee_build)
-    return()
+    list(APPEND priv_requires attestation main)
 endif()
 
-set(srcs "esp_tee_attestation.c")
-set(include_dirs ".")
-set(priv_requires esp_tee)
+if(CONFIG_SECURE_TEE_ATTESTATION)
+    list(APPEND srcs "esp_tee_attestation.c")
+endif()
 
 idf_component_register(SRCS ${srcs}
                        INCLUDE_DIRS ${include_dirs}

components/esp_tee/subproject/components/tee_attestation/esp_tee_att.cmake

@@ -0,0 +1,5 @@
+# This file must be manually included in the project's top level CMakeLists.txt before project()
+# This ensures that the variables are set before TEE starts building
+
+# Append secure service table consisting of secure services
+idf_build_set_property(CUSTOM_SECURE_SERVICE_TBL ${CMAKE_CURRENT_LIST_DIR}/esp_tee_att.tbl APPEND)

components/esp_tee/subproject/components/tee_attestation/esp_tee_att.tbl

@@ -0,0 +1,2 @@
+# SS no.    API type    Function                                    Args
+101         custom      esp_tee_att_generate_token                  6

components/esp_tee/subproject/components/tee_attestation/esp_tee_attestation.c

@@ -1,5 +1,5 @@
 /*
- * SPDX-FileCopyrightText: 2024 Espressif Systems (Shanghai) CO LTD
+ * SPDX-FileCopyrightText: 2024-2025 Espressif Systems (Shanghai) CO LTD
  *
  * SPDX-License-Identifier: Apache-2.0
  */
@@ -12,16 +12,44 @@
 #include "esp_log.h"
 #include "esp_err.h"
 
+#if ESP_TEE_BUILD
+#include "esp_fault.h"
+#include "esp_tee_memory_utils.h"
+#include "esp_attestation.h"
+#endif
+
 #include "esp_tee.h"
 #include "secure_service_num.h"
 
 #include "sdkconfig.h"
 
 static __attribute__((unused)) const char *TAG = "esp_tee_att";
 
+#if ESP_TEE_BUILD
+
+esp_err_t _ss_esp_tee_att_generate_token(const uint32_t nonce, const uint32_t client_id, const char *psa_cert_ref,
+                                         uint8_t *token_buf, const size_t token_buf_size, uint32_t *token_len)
+{
+    bool valid_addr = (esp_tee_ptr_in_ree((void *)psa_cert_ref) &&
+                       esp_tee_ptr_in_ree((void *)token_buf) &&
+                       esp_tee_ptr_in_ree((void *)token_len));
+    valid_addr &= (esp_tee_ptr_in_ree((void *)((char *)psa_cert_ref + 20)) &&
+                   esp_tee_ptr_in_ree((void *)((char *)token_buf + token_buf_size)));
+
+    if (!valid_addr) {
+        return ESP_ERR_INVALID_ARG;
+    }
+    ESP_FAULT_ASSERT(valid_addr);
+
+    return esp_att_generate_token(nonce, client_id, psa_cert_ref, token_buf, token_buf_size, token_len);
+}
+
+#else
+
 esp_err_t esp_tee_att_generate_token(const uint32_t nonce, const uint32_t client_id, const char *psa_cert_ref,
                                      uint8_t *token_buf, const size_t token_buf_size, uint32_t *token_len)
 {
     return (esp_err_t)esp_tee_service_call_with_noniram_intr_disabled(7, SS_ESP_TEE_ATT_GENERATE_TOKEN, nonce, client_id,
                                                                       psa_cert_ref, token_buf, token_buf_size, token_len);
 }
+#endif

components/esp_tee/subproject/main/core/esp_secure_services.c

@@ -434,26 +434,8 @@ esp_err_t _ss_esp_tee_sec_storage_clear_slot(uint16_t slot_id)
     return esp_tee_sec_storage_clear_slot(slot_id);
 }
 
-/* ---------------------------------------------- Attestation ------------------------------------------------- */
-
-esp_err_t _ss_esp_tee_att_generate_token(const uint32_t nonce, const uint32_t client_id, const char *psa_cert_ref,
-                                         uint8_t *token_buf, const size_t token_buf_size, uint32_t *token_len)
-{
-    bool valid_addr = (is_valid_ree_address((void *)psa_cert_ref) && is_valid_ree_address((void *)token_buf) &&
-                       is_valid_ree_address((void *)token_len));
-
-    valid_addr &= (is_valid_ree_address((void *)((char *)psa_cert_ref + 32)) && is_valid_ree_address((void *)((char *)token_buf + token_buf_size)));
-
-    if (!valid_addr) {
-        return ESP_ERR_INVALID_ARG;
-    }
-
-    ESP_FAULT_ASSERT(valid_addr);
-
-    return esp_att_generate_token(nonce, client_id, psa_cert_ref, token_buf, token_buf_size, token_len);
-}
-
 /* ---------------------------------------------- MMU HAL ------------------------------------------------- */
+
 void _ss_mmu_hal_map_region(uint32_t mmu_id, mmu_target_t mem_type, uint32_t vaddr,
                             uint32_t paddr, uint32_t len, uint32_t *out_len)
 {

components/esp_tee/test_apps/tee_cli_app/CMakeLists.txt

@@ -13,4 +13,8 @@ list(APPEND EXTRA_COMPONENT_DIRS $ENV{IDF_PATH}/components/esp_tee/subproject/co
                                  $ENV{IDF_PATH}/components/esp_tee/subproject/components/tee_sec_storage)
 
 include($ENV{IDF_PATH}/tools/cmake/project.cmake)
+
+# Including the attestation service calls
+include($ENV{IDF_PATH}/components/esp_tee/subproject/components/tee_attestation/esp_tee_att.cmake)
+
 project(tee_cli)