[iot] Support reading ATAP certificate UUID from keymaster

Add API and IPC calls to read the ATAP certificate UUID from keymaster.
Also rename const local variables to the standard convention.
This cherry-picked the CL 649562 from trusty/external/trusty.

Bug: 76211194

Change-Id: I98ab68180c3855e07884994dc20b879f0b59965d
Signed-off-by: Haoran.Wang <elven.wang@nxp.com>

2 files changed, 10 insertions, 0 deletions

diff --git a/include/interface/keymaster/keymaster.h b/include/interface/keymaster/keymaster.h
index fa60a1aeb5..7b18a64f36 100644
--- a/include/interface/keymaster/keymaster.h
+++ b/include/interface/keymaster/keymaster.h
@@ -61,6 +61,7 @@ enum keymaster_command {
     KM_ATAP_SET_CA_RESPONSE_BEGIN      = (0x5000 << KEYMASTER_REQ_SHIFT),
     KM_ATAP_SET_CA_RESPONSE_UPDATE     = (0x6000 << KEYMASTER_REQ_SHIFT),
     KM_ATAP_SET_CA_RESPONSE_FINISH     = (0x7000 << KEYMASTER_REQ_SHIFT),
+    KM_ATAP_READ_UUID                  = (0x8000 << KEYMASTER_REQ_SHIFT),
 };
 
 typedef enum {
diff --git a/include/trusty/keymaster.h b/include/trusty/keymaster.h
index e69527e0fa..beb2ff9578 100644
--- a/include/trusty/keymaster.h
+++ b/include/trusty/keymaster.h
@@ -108,4 +108,13 @@ int trusty_atap_get_ca_request(const uint8_t *operation_start,
 int trusty_atap_set_ca_response(const uint8_t *ca_response,
                                 uint32_t ca_response_size);
 
+/*
+* Reads the UUID from the certificate of the last provisioned attestation
+* credentials as a c-string into |*uuid_p|. Caller takes ownership of
+* |*uuid_p|. Returns one of trusty_err.
+*
+* @uuid_p: location of newly allocated UUID c-string
+*/
+int trusty_atap_read_uuid_str(char **uuid_p);
+
 #endif /* TRUSTY_KEYMASTER_H_ */