TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TS / trusted-services / 464021a2435c3abf1ff3757ff3627d87b270ad1b / . / components / service / crypto / provider / crypto_provider.c
blob: d0fc7cac24758c3566f00f666cd49e4245734d35 [file] [log] [blame]
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]1/*
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]2 * Copyright (c) 2020-2021, Arm Limited and Contributors. All rights reserved.
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]3 *
4 * SPDX-License-Identifier: BSD-3-Clause
5 */
6#include <stdint.h>
7#include <stdlib.h>
8#include <protocols/service/crypto/packed-c/opcodes.h>
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]9#include <service/crypto/provider/crypto_provider.h>
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]10#include <protocols/rpc/common/packed-c/status.h>
11#include <psa/crypto.h>
12
13/* Service request handlers */
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]14static rpc_status_t generate_key_handler(void *context, struct call_req* req);
15static rpc_status_t destroy_key_handler(void *context, struct call_req* req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]16static rpc_status_t export_key_handler(void *context, struct call_req* req);
17static rpc_status_t export_public_key_handler(void *context, struct call_req* req);
18static rpc_status_t import_key_handler(void *context, struct call_req* req);
19static rpc_status_t sign_hash_handler(void *context, struct call_req* req);
20static rpc_status_t verify_hash_handler(void *context, struct call_req* req);
21static rpc_status_t asymmetric_decrypt_handler(void *context, struct call_req* req);
22static rpc_status_t asymmetric_encrypt_handler(void *context, struct call_req* req);
23static rpc_status_t generate_random_handler(void *context, struct call_req* req);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]24static rpc_status_t copy_key_handler(void *context, struct call_req* req);
25static rpc_status_t purge_key_handler(void *context, struct call_req* req);
26static rpc_status_t get_key_attributes_handler(void *context, struct call_req* req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]27
28/* Handler mapping table for service */
29static const struct service_handler handler_table[] = {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]30 {TS_CRYPTO_OPCODE_GENERATE_KEY, generate_key_handler},
31 {TS_CRYPTO_OPCODE_DESTROY_KEY, destroy_key_handler},
32 {TS_CRYPTO_OPCODE_EXPORT_KEY, export_key_handler},
33 {TS_CRYPTO_OPCODE_EXPORT_PUBLIC_KEY, export_public_key_handler},
34 {TS_CRYPTO_OPCODE_IMPORT_KEY, import_key_handler},
35 {TS_CRYPTO_OPCODE_SIGN_HASH, sign_hash_handler},
36 {TS_CRYPTO_OPCODE_VERIFY_HASH, verify_hash_handler},
37 {TS_CRYPTO_OPCODE_ASYMMETRIC_DECRYPT, asymmetric_decrypt_handler},
38 {TS_CRYPTO_OPCODE_ASYMMETRIC_ENCRYPT, asymmetric_encrypt_handler},
39 {TS_CRYPTO_OPCODE_GENERATE_RANDOM, generate_random_handler},
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]40 {TS_CRYPTO_OPCODE_COPY_KEY, copy_key_handler},
41 {TS_CRYPTO_OPCODE_PURGE_KEY, purge_key_handler},
42 {TS_CRYPTO_OPCODE_GET_KEY_ATTRIBUTES, get_key_attributes_handler},
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]43};
44
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]45struct rpc_interface *crypto_provider_init(struct crypto_provider *context)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]46{
Julian Hall3e614542021-07-29 11:47:47 +0100[diff] [blame]47 /* Initialise the crypto provider */
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]48 for (size_t encoding = 0; encoding < TS_RPC_ENCODING_LIMIT; ++encoding)
49 context->serializers[encoding] = NULL;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]50
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]51 service_provider_init(&context->base_provider, context,
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]52 handler_table, sizeof(handler_table)/sizeof(struct service_handler));
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]53
Julian Hall3e614542021-07-29 11:47:47 +0100[diff] [blame]54 /* Initialise the associated discovery provider */
55 discovery_provider_init(&context->discovery_provider);
56 service_provider_extend(&context->base_provider, &context->discovery_provider.base_provider);
57
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]58 return service_provider_get_rpc_interface(&context->base_provider);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]59}
60
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]61void crypto_provider_deinit(struct crypto_provider *context)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]62{
Julian Hall3e614542021-07-29 11:47:47 +0100[diff] [blame]63 discovery_provider_deinit(&context->discovery_provider);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]64}
65
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]66void crypto_provider_register_serializer(struct crypto_provider *context,
67 unsigned int encoding, const struct crypto_provider_serializer *serializer)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]68{
Julian Hall3e614542021-07-29 11:47:47 +0100[diff] [blame]69 if (encoding < TS_RPC_ENCODING_LIMIT) {
70
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]71 context->serializers[encoding] = serializer;
Julian Hall3e614542021-07-29 11:47:47 +0100[diff] [blame]72 discovery_provider_register_supported_encoding(&context->discovery_provider, encoding);
73 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]74}
75
Julian Hall13e76952021-07-13 12:17:09 +0100[diff] [blame]76void crypto_provider_extend(struct crypto_provider *context,
77 struct service_provider *sub_provider)
78{
79 service_provider_extend(&context->base_provider, sub_provider);
80}
81
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]82static const struct crypto_provider_serializer* get_crypto_serializer(void *context,
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]83 const struct call_req *req)
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]84{
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]85 struct crypto_provider *this_instance = (struct crypto_provider*)context;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]86 const struct crypto_provider_serializer* serializer = NULL;
87 unsigned int encoding = call_req_get_encoding(req);
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]88
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]89 if (encoding < TS_RPC_ENCODING_LIMIT) serializer = this_instance->serializers[encoding];
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]90
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]91 return serializer;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]92}
93
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]94static rpc_status_t generate_key_handler(void *context, struct call_req* req)
95{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]96 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
97 struct call_param_buf *req_buf = call_req_get_req_buf(req);
98 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]99
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]100 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]101
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]102 if (serializer)
103 rpc_status = serializer->deserialize_generate_key_req(req_buf, &attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]104
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]105 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]106
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]107 psa_status_t psa_status;
108 psa_key_id_t id;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]109
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]110 psa_status = psa_generate_key(&attributes, &id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]111
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]112 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]113
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]114 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
115 rpc_status = serializer->serialize_generate_key_resp(resp_buf, id);
116 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]117
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]118 call_req_set_opstatus(req, psa_status);
119 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]120
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]121 psa_reset_key_attributes(&attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]122
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]123 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]124}
125
126static rpc_status_t destroy_key_handler(void *context, struct call_req* req)
127{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]128 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
129 struct call_param_buf *req_buf = call_req_get_req_buf(req);
130 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]131
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]132 psa_key_id_t id;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]133
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]134 if (serializer)
135 rpc_status = serializer->deserialize_destroy_key_req(req_buf, &id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]136
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]137 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]138
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]139 psa_status_t psa_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]140
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]141 psa_status = psa_destroy_key(id);
142 call_req_set_opstatus(req, psa_status);
143 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]144
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]145 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]146}
147
148static rpc_status_t export_key_handler(void *context, struct call_req* req)
149{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]150 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
151 struct call_param_buf *req_buf = call_req_get_req_buf(req);
152 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]153
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]154 psa_key_id_t id;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]155
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]156 if (serializer)
157 rpc_status = serializer->deserialize_export_key_req(req_buf, &id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]158
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]159 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]160
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]161 size_t max_export_size = PSA_EXPORT_KEY_PAIR_MAX_SIZE;
162 uint8_t *key_buffer = malloc(max_export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]163
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]164 if (key_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]165
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]166 size_t export_size;
167 psa_status_t psa_status = psa_export_key(id, key_buffer,
168 max_export_size, &export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]169
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]170 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]171
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]172 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
173 rpc_status = serializer->serialize_export_key_resp(resp_buf,
174 key_buffer, export_size);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]175 }
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]176
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]177 free(key_buffer);
178 call_req_set_opstatus(req, psa_status);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]179 }
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame^]180 else {
181 /* Failed to allocate key buffer */
182 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
183 }
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]184 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]185
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]186 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]187}
188
189static rpc_status_t export_public_key_handler(void *context, struct call_req* req)
190{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]191 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
192 struct call_param_buf *req_buf = call_req_get_req_buf(req);
193 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]194
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]195 psa_key_id_t id;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]196
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]197 if (serializer)
198 rpc_status = serializer->deserialize_export_public_key_req(req_buf, &id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]199
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]200 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]201
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]202 size_t max_export_size = PSA_EXPORT_PUBLIC_KEY_MAX_SIZE;
203 uint8_t *key_buffer = malloc(max_export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]204
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]205 if (key_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]206
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]207 size_t export_size;
208 psa_status_t psa_status = psa_export_public_key(id, key_buffer,
209 max_export_size, &export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]210
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]211 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]212
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]213 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
214 rpc_status = serializer->serialize_export_public_key_resp(resp_buf,
215 key_buffer, export_size);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]216 }
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]217
218 free(key_buffer);
219 call_req_set_opstatus(req, psa_status);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]220 }
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]221 else {
222 /* Failed to allocate key buffer */
223 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
224 }
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]225 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]226
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]227 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]228}
229
230static rpc_status_t import_key_handler(void *context, struct call_req* req)
231{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]232 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
233 struct call_param_buf *req_buf = call_req_get_req_buf(req);
234 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]235
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]236 if (serializer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]237
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]238 size_t key_data_len = serializer->max_deserialised_parameter_size(req_buf);
239 uint8_t *key_buffer = malloc(key_data_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]240
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]241 if (key_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]242
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]243 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]244 rpc_status = serializer->deserialize_import_key_req(req_buf, &attributes,
245 key_buffer, &key_data_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]246
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]247 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]248
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]249 psa_status_t psa_status;
250 psa_key_id_t id;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]251
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]252 psa_status = psa_import_key(&attributes, key_buffer, key_data_len, &id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]253
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]254 if (psa_status == PSA_SUCCESS) {
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]255
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]256 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
257 rpc_status = serializer->serialize_import_key_resp(resp_buf, id);
258 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]259
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]260 call_req_set_opstatus(req, psa_status);
261 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]262
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]263 psa_reset_key_attributes(&attributes);
264 free(key_buffer);
265 }
266 else {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]267
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]268 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
269 }
270 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]271
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]272 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]273}
274
275static rpc_status_t sign_hash_handler(void *context, struct call_req* req)
276{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]277 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
278 struct call_param_buf *req_buf = call_req_get_req_buf(req);
279 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]280
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]281 psa_key_id_t id;
282 psa_algorithm_t alg;
283 size_t hash_len = PSA_HASH_MAX_SIZE;
284 uint8_t hash_buffer[PSA_HASH_MAX_SIZE];
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]285
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]286 if (serializer)
287 rpc_status = serializer->deserialize_sign_hash_req(req_buf, &id, &alg, hash_buffer, &hash_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]288
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]289 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]290
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]291 psa_status_t psa_status;
292 size_t sig_len;
293 uint8_t sig_buffer[PSA_SIGNATURE_MAX_SIZE];
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]294
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]295 psa_status = psa_sign_hash(id, alg,
296 hash_buffer, hash_len,
297 sig_buffer, sizeof(sig_buffer), &sig_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]298
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]299 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]300
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]301 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
302 rpc_status = serializer->serialize_sign_hash_resp(resp_buf, sig_buffer, sig_len);
303 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]304
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]305 call_req_set_opstatus(req, psa_status);
306 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]307
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]308 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]309}
310
311static rpc_status_t verify_hash_handler(void *context, struct call_req* req)
312{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]313 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
314 struct call_param_buf *req_buf = call_req_get_req_buf(req);
315 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]316
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]317 psa_key_id_t id;
318 psa_algorithm_t alg;
319 size_t hash_len = PSA_HASH_MAX_SIZE;
320 uint8_t hash_buffer[PSA_HASH_MAX_SIZE];
321 size_t sig_len = PSA_SIGNATURE_MAX_SIZE;
322 uint8_t sig_buffer[PSA_SIGNATURE_MAX_SIZE];
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]323
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]324 if (serializer)
325 rpc_status = serializer->deserialize_verify_hash_req(req_buf, &id, &alg,
326 hash_buffer, &hash_len,
327 sig_buffer, &sig_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]328
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]329 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]330
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]331 psa_status_t psa_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]332
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]333 psa_status = psa_verify_hash(id, alg,
334 hash_buffer, hash_len,
335 sig_buffer, sig_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]336
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]337 call_req_set_opstatus(req, psa_status);
338 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]339
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]340 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]341}
342
343static rpc_status_t asymmetric_decrypt_handler(void *context, struct call_req* req)
344{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]345 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
346 struct call_param_buf *req_buf = call_req_get_req_buf(req);
347 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]348
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]349 if (serializer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]350
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]351 size_t max_param_size = serializer->max_deserialised_parameter_size(req_buf);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]352
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]353 psa_key_id_t id;
354 psa_algorithm_t alg;
355 size_t ciphertext_len = max_param_size;
356 uint8_t *ciphertext_buffer = malloc(ciphertext_len);
357 size_t salt_len = max_param_size;
358 uint8_t *salt_buffer = malloc(salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]359
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]360 if (ciphertext_buffer && salt_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]361
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]362 rpc_status = serializer->deserialize_asymmetric_decrypt_req(req_buf,
363 &id, &alg,
364 ciphertext_buffer, &ciphertext_len,
365 salt_buffer, &salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]366
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]367 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]368
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]369 psa_status_t psa_status;
370 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]371
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]372 psa_status = psa_get_key_attributes(id, &attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]373
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]374 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]375
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]376 size_t max_decrypt_size = PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(
377 psa_get_key_type(&attributes),
378 psa_get_key_bits(&attributes),
379 alg);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]380
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]381 size_t plaintext_len;
382 uint8_t *plaintext_buffer = malloc(max_decrypt_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]383
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]384 if (plaintext_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]385
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]386 /* Salt is an optional parameter */
387 uint8_t *salt = (salt_len) ? salt_buffer : NULL;
Julian Hallf688a0b2021-04-09 11:58:30 +0100[diff] [blame]388
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]389 psa_status = psa_asymmetric_decrypt(id, alg,
390 ciphertext_buffer, ciphertext_len,
391 salt, salt_len,
392 plaintext_buffer, max_decrypt_size, &plaintext_len);
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]393
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]394 if (psa_status == PSA_SUCCESS) {
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]395
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]396 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
397 rpc_status = serializer->serialize_asymmetric_decrypt_resp(resp_buf,
398 plaintext_buffer, plaintext_len);
399 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]400
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]401 free(plaintext_buffer);
402 }
403 else {
404 /* Failed to allocate ouptput buffer */
405 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
406 }
407 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]408
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]409 call_req_set_opstatus(req, psa_status);
410 psa_reset_key_attributes(&attributes);
411 }
412 }
413 else {
414 /* Failed to allocate buffers */
415 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
416 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]417
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]418 free(ciphertext_buffer);
419 free(salt_buffer);
420 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]421
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]422 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]423}
424
425static rpc_status_t asymmetric_encrypt_handler(void *context, struct call_req* req)
426{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]427 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
428 struct call_param_buf *req_buf = call_req_get_req_buf(req);
429 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]430
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]431 if (serializer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]432
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]433 size_t max_param_size = serializer->max_deserialised_parameter_size(req_buf);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]434
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]435 psa_key_id_t id;
436 psa_algorithm_t alg;
437 size_t plaintext_len = max_param_size;
438 uint8_t *plaintext_buffer = malloc(plaintext_len);
439 size_t salt_len = max_param_size;
440 uint8_t *salt_buffer = malloc(salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]441
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]442 if (plaintext_buffer && salt_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]443
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]444 rpc_status = serializer->deserialize_asymmetric_encrypt_req(req_buf,
445 &id, &alg,
446 plaintext_buffer, &plaintext_len,
447 salt_buffer, &salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]448
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]449 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]450
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]451 psa_status_t psa_status;
452 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]453
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]454 psa_status = psa_get_key_attributes(id, &attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]455
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]456 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]457
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]458 size_t max_encrypt_size = PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(
459 psa_get_key_type(&attributes),
460 psa_get_key_bits(&attributes),
461 alg);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]462
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]463 size_t ciphertext_len;
464 uint8_t *ciphertext_buffer = malloc(max_encrypt_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]465
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]466 if (ciphertext_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]467
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]468 /* Salt is an optional parameter */
469 uint8_t *salt = (salt_len) ? salt_buffer : NULL;
Julian Hallf688a0b2021-04-09 11:58:30 +0100[diff] [blame]470
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]471 psa_status = psa_asymmetric_encrypt(id, alg,
472 plaintext_buffer, plaintext_len,
473 salt, salt_len,
474 ciphertext_buffer, max_encrypt_size, &ciphertext_len);
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]475
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]476 if (psa_status == PSA_SUCCESS) {
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]477
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]478 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
479 rpc_status = serializer->serialize_asymmetric_encrypt_resp(resp_buf,
480 ciphertext_buffer, ciphertext_len);
481 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]482
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]483 free(ciphertext_buffer);
484 }
485 else {
486 /* Failed to allocate ouptput buffer */
487 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
488 }
489 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]490
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]491 call_req_set_opstatus(req, psa_status);
492 psa_reset_key_attributes(&attributes);
493 }
494 }
495 else {
496 /* Failed to allocate buffers */
497 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
498 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]499
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]500 free(plaintext_buffer);
501 free(salt_buffer);
502 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]503
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]504 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]505}
506
507static rpc_status_t generate_random_handler(void *context, struct call_req* req)
508{
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]509 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
510 struct call_param_buf *req_buf = call_req_get_req_buf(req);
511 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]512
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]513 size_t output_size;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]514
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]515 if (serializer)
516 rpc_status = serializer->deserialize_generate_random_req(req_buf, &output_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]517
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]518 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]519
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]520 psa_status_t psa_status;
521 uint8_t *output_buffer = malloc(output_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]522
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]523 if (output_buffer) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]524
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]525 psa_status = psa_generate_random(output_buffer, output_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]526
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]527 if (psa_status == PSA_SUCCESS) {
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]528
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]529 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
530 rpc_status = serializer->serialize_generate_random_resp(resp_buf,
531 output_buffer, output_size);
532 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]533
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]534 call_req_set_opstatus(req, psa_status);
535 free(output_buffer);
536 }
537 else {
538 /* Failed to allocate output buffer */
539 rpc_status = TS_RPC_ERROR_RESOURCE_FAILURE;
540 }
541 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]542
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]543 return rpc_status;
544}
545
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]546static rpc_status_t copy_key_handler(void *context, struct call_req* req)
547{
548 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
549 struct call_param_buf *req_buf = call_req_get_req_buf(req);
550 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
551
552 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
553 psa_key_id_t source_key_id;
554
555 if (serializer)
556 rpc_status = serializer->deserialize_copy_key_req(req_buf, &attributes, &source_key_id);
557
558 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
559
560 psa_key_id_t target_key_id;
561
562 psa_status_t psa_status = psa_copy_key(source_key_id, &attributes, &target_key_id);
563
564 if (psa_status == PSA_SUCCESS) {
565
566 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
567 rpc_status = serializer->serialize_copy_key_resp(resp_buf, target_key_id);
568 }
569
570 call_req_set_opstatus(req, psa_status);
571 }
572
573 psa_reset_key_attributes(&attributes);
574
575 return rpc_status;
576}
577
578static rpc_status_t purge_key_handler(void *context, struct call_req* req)
579{
580 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
581 struct call_param_buf *req_buf = call_req_get_req_buf(req);
582 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
583
584 psa_key_id_t id;
585
586 if (serializer)
587 rpc_status = serializer->deserialize_purge_key_req(req_buf, &id);
588
589 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
590
591 psa_status_t psa_status = psa_purge_key(id);
592 call_req_set_opstatus(req, psa_status);
593 }
594
595 return rpc_status;
596}
597
598static rpc_status_t get_key_attributes_handler(void *context, struct call_req* req)
599{
600 rpc_status_t rpc_status = TS_RPC_ERROR_SERIALIZATION_NOT_SUPPORTED;
601 struct call_param_buf *req_buf = call_req_get_req_buf(req);
602 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
603
604 psa_key_id_t id;
605
606 if (serializer)
607 rpc_status = serializer->deserialize_get_key_attributes_req(req_buf, &id);
608
609 if (rpc_status == TS_RPC_CALL_ACCEPTED) {
610
611 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
612
613 psa_status_t psa_status = psa_get_key_attributes(id, &attributes);
614
615 if (psa_status == PSA_SUCCESS) {
616
617 struct call_param_buf *resp_buf = call_req_get_resp_buf(req);
618 rpc_status = serializer->serialize_get_key_attributes_resp(resp_buf, &attributes);
619 }
620
621 psa_reset_key_attributes(&attributes);
622 call_req_set_opstatus(req, psa_status);
623 }
624
625 return rpc_status;
626}