Crypto integration with SPM #9409
Conversation
|
@itayzafrir, thank you for your changes. |
itayzafrir
force-pushed
the
crypto-integration-with-spm
branch
3 times, most recently
from
a67ab9f to
57bbeb7
Compare
Test key handles by adding a test to TESTS/mbed-crypto/sanity/main.cpp
1. Removed obsolete crypto APIs from IPC implementation. 2. Updated existing crypto APIs in IPC implementation. 3. Added new crypto APIs to IPC implemntation (except for psa_hash_clone).
Test hash clone by adding a test to TESTS/mbed-crypto/sanity/main.cpp
itayzafrir
force-pushed
the
crypto-integration-with-spm
branch
from
57bbeb7 to
dc54be2
Compare
itayzafrir
changed the title
| sizeof(*lifetime)) | ||
| } | ||
| psa_outvec_t out_vec[1] = { | ||
| { key_handle, sizeof(*key_handle) } |
There was a problem hiding this comment.
if the allocate fails then key_handle remains untouched
| psa_handle_t handle = PSA_NULL_HANDLE; | ||
| psa_invec_t in_vec[1] = { | ||
| { &psa_key_mng_ipc, sizeof(psa_key_mng_ipc_t) } | ||
| { &psa_key_mng_ipc, sizeof(psa_key_mng_ipc) } |
There was a problem hiding this comment.
sizeof(psa_key_mng_ipc)
or
sizeof(psa_key_mng_ipc_t)? :)
| psa_key_mng_ipc.type = 0; | ||
| psa_key_mng_ipc.func = PSA_GET_KEY_LIFETIME; | ||
| psa_key_mng_ipc_t psa_key_mng_ipc = { 0, 0, 0, 0 }; | ||
| psa_key_mng_ipc.handle = *key_handle; |
There was a problem hiding this comment.
so handle expects a content of ptr, not ptr?
There was a problem hiding this comment.
yep, this is going IPC from here so it's different memory anyways.
| @@ -689,22 +696,18 @@ psa_status_t psa_asymmetric_decrypt(psa_key_slot_t key, | |||
| /* PSA_KEY_MANAGMENT */ | |||
| /****************************************************************/ | |||
|
|
|||
| psa_status_t psa_get_key_lifetime(psa_key_slot_t key, | |||
| psa_key_lifetime_t *lifetime) | |||
| psa_status_t psa_allocate_key(psa_key_handle_t *key_handle) | |||
There was a problem hiding this comment.
psa_get_key_lifetime is no more?
There was a problem hiding this comment.
gone, removed from the API
| { &psa_key_mng_ipc, sizeof(psa_key_mng_ipc) }, | ||
| { &id, sizeof(id) } | ||
| }; | ||
| psa_outvec_t out_vec[1] = { { |
There was a problem hiding this comment.
style:
psa_outvec_t out_vec[1] = {
{ key_handle, sizeof(*key_handle) }
};
There was a problem hiding this comment.
this style is inconsistent throughout the whole file, see:
mbed-os/components/TARGET_PSA/services/crypto/COMPONENT_PSA_SRV_IPC/psa_crypto_spm.c
Lines 1438 to 1440 in dc54be2
| }; | ||
|
|
||
| handle = psa_connect(PSA_KEY_MNG_ID, MINOR_VER); | ||
| if (handle <= 0) { |
There was a problem hiding this comment.
yes, same as the rest of the file
| err_call = psa_call(handle, in_vec, 2, out_vec, 1); | ||
| psa_close(handle); | ||
|
|
||
| if (err_call < 0) { |
There was a problem hiding this comment.
0 == PSA_SUCCESS
> 0 == PSA_ERROR_XXX
< 0 == PSA_ERROR_COMMUNICATION_FAILURE
All IPC function calls work this way.
|
Hi @mbed-os-crypto , |
| static int psa_spm_init_refence_counter = 0; | ||
|
|
||
| #ifndef MAX_CONCURRENT_HASH_CLONES | ||
| #define MAX_CONCURRENT_HASH_CLONES 2 |
There was a problem hiding this comment.
It would take a very rare and unlikely scenario, I think it would be a waste of space...
| #ifndef MAX_CONCURRENT_HASH_CLONES | ||
| #define MAX_CONCURRENT_HASH_CLONES 2 | ||
| #endif | ||
| static psa_spm_hash_clone_t psa_spm_hash_clones[MAX_CONCURRENT_HASH_CLONES]; |
There was a problem hiding this comment.
so there is no multithreading, we don't need to sync over this data structure, right?
There was a problem hiding this comment.
nope, assuming single threaded
| for (*index = 0; *index < MAX_CONCURRENT_HASH_CLONES; (*index)++) { | ||
| if (psa_spm_hash_clones[*index].partition_id == partition_id && | ||
| psa_spm_hash_clones[*index].source_operation == source_operation) { | ||
| psa_spm_hash_clones[*index].ref_count++; |
There was a problem hiding this comment.
I think it's ok, will run through astyle to double check
| for (*index = 0; *index < MAX_CONCURRENT_HASH_CLONES; (*index)++) { | ||
| if (psa_spm_hash_clones[*index].partition_id == 0 && | ||
| psa_spm_hash_clones[*index].source_operation == NULL) { | ||
| psa_spm_hash_clones[*index].partition_id = partition_id; |
There was a problem hiding this comment.
will check with astyle
| // ------------------------- Internal Helper Functions ------------------------- | ||
| static inline psa_status_t reserve_hash_clone(int32_t partition_id, void *source_operation, size_t *index) | ||
| { | ||
| for (*index = 0; *index < MAX_CONCURRENT_HASH_CLONES; (*index)++) { |
There was a problem hiding this comment.
why index is a ptr, why not by value?
There was a problem hiding this comment.
because it's an output parameter
| } | ||
| } | ||
|
|
||
| for (*index = 0; *index < MAX_CONCURRENT_HASH_CLONES; (*index)++) { |
There was a problem hiding this comment.
please do this in single uper for with if, elseif, etc. why scan twice performance wise?
There was a problem hiding this comment.
scanning for different predicates in these 2 loops, it could be done in one loop but would also add a couple of if so not sure if it would be more efficient, it would make the code harder to understand though.
| size_t index = 0; | ||
|
|
||
| status = reserve_hash_clone(psa_identity(msg.handle), msg.rhandle, &index); | ||
| if (status == PSA_SUCCESS) { |
There was a problem hiding this comment.
then return PSA_ERROR_BAD_STATE
| } | ||
|
|
||
| status = get_hash_clone(index, psa_identity(msg.handle), &hash_clone); | ||
| if (status == PSA_SUCCESS) { |
There was a problem hiding this comment.
if not?
release_hash_clone anyway?
There was a problem hiding this comment.
then there will be nothing to release and returns PSA_ERROR_BAD_STATE
| psa_key_mng.type, | ||
| bits, | ||
| parameter, parameter_size); | ||
| mbedtls_free(parameter); | ||
| break; | ||
| } | ||
|
|
||
| case PSA_ALLOCATE_KEY: { | ||
| status = psa_allocate_key(&psa_key_mng.handle); | ||
| if (status == PSA_SUCCESS) { |
There was a problem hiding this comment.
then whatever the crypto library returns, it's their error code which is returned.
| } | ||
|
|
||
| status = psa_create_key(psa_key_mng.lifetime, id, &psa_key_mng.handle); | ||
| if (status == PSA_SUCCESS) { |
There was a problem hiding this comment.
then whatever the crypto library returns, it's their error code which is returned.
| } | ||
|
|
||
| status = psa_open_key(psa_key_mng.lifetime, id, &psa_key_mng.handle); | ||
| if (status == PSA_SUCCESS) { |
There was a problem hiding this comment.
then whatever the crypto library returns, it's their error code which is returned.
|
Merged via #9529 |
Description
Update to the crypto service due to crypto API changes and an additional new test.
This PR is dependent upon an import of crypto (with the key handles API changes) into mbed os.
PLEASE DO NOT MERGE (or attempt to run CI) until crypto has been re-imported.
This PR is now part of #9529.
Pull request type
Reviewers