commit 25e2b2dba5d7eb3ba0da14384a6c8240278f5c15
author Antonio de Angelis <antonio.deangelis@arm.com> Thu Apr 25 14:49:50 2019 +0100
committer Antonio de Angelis <antonio.deangelis@arm.com> Fri May 24 10:06:47 2019 +0100
tree 028ff9686cfc76173caccda0146fe5d120d12429
parent 3a97d86309f4de9374bb8b2b43e4055c748e0f2b

Crypto: Implement additional PSA Crypto APIs

This patch implements additional missing APIs available
in the PSA Crypto API headers.

Change-Id: I453f6829ed2c87a47546514becda599ecd1273a4
Signed-off-by: Antonio de Angelis <antonio.deangelis@arm.com>

secure_fw/services/crypto/crypto_cipher.c

diff --git a/secure_fw/services/crypto/crypto_cipher.c b/secure_fw/services/crypto/crypto_cipher.c
index e49b145..aa61025c 100644
--- a/secure_fw/services/crypto/crypto_cipher.c
+++ b/secure_fw/services/crypto/crypto_cipher.c
@@ -24,6 +24,52 @@
  */
 
 /*!@{*/
+psa_status_t tfm_crypto_cipher_generate_iv(psa_invec in_vec[],
+                                           size_t in_len,
+                                           psa_outvec out_vec[],
+                                           size_t out_len)
+{
+    psa_status_t status = PSA_SUCCESS;
+    psa_cipher_operation_t *operation = NULL;
+
+    if ((in_len != 1) || (out_len != 2)) {
+        return PSA_CONNECTION_REFUSED;
+    }
+
+    if ((in_vec[0].len != sizeof(struct tfm_crypto_pack_iovec)) ||
+        (out_vec[0].len != sizeof(uint32_t))) {
+        return PSA_CONNECTION_REFUSED;
+    }
+
+    const struct tfm_crypto_pack_iovec *iov = in_vec[0].base;
+    uint32_t handle = iov->op_handle;
+    uint32_t *handle_out = out_vec[0].base;
+    unsigned char *iv = out_vec[1].base;
+    size_t iv_size = out_vec[1].len;
+
+    /* Init the handle in the operation with the one passed from the iov */
+    *handle_out = iov->op_handle;
+
+    /* Look up the corresponding operation context */
+    status = tfm_crypto_operation_lookup(TFM_CRYPTO_CIPHER_OPERATION,
+                                         handle,
+                                         (void **)&operation);
+    if (status != PSA_SUCCESS) {
+        return status;
+    }
+
+    *handle_out = handle;
+
+    status = psa_cipher_generate_iv(operation, iv, iv_size, &out_vec[1].len);
+    if (status != PSA_SUCCESS) {
+        /* Release the operation context, ignore if the operation fails. */
+        (void)tfm_crypto_operation_release(handle_out);
+        return status;
+    }
+
+    return status;
+}
+
 psa_status_t tfm_crypto_cipher_set_iv(psa_invec in_vec[],
                                       size_t in_len,
                                       psa_outvec out_vec[],
@@ -67,11 +113,6 @@
     return status;
 }
 
-/**
- * TODO: psa_cipher_generate_iv(...)
- *
- */
-
 psa_status_t tfm_crypto_cipher_encrypt_setup(psa_invec in_vec[],
                                              size_t in_len,
                                              psa_outvec out_vec[],
@@ -281,7 +322,8 @@
                                          handle,
                                          (void **)&operation);
     if (status != PSA_SUCCESS) {
-        return status;
+        /* Operation does not exist, so abort has no effect */
+        return PSA_SUCCESS;
     }
 
     status = psa_cipher_abort(operation);