TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / TS / trusted-services / c64890c202018f76d138d84f5560b4018c20c360 / . / components / service / crypto / provider / crypto_provider.c
blob: f94b47eb73f4f67e66e056e5d22f94b73a4d4962 [file] [log] [blame]
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]1/*
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]2 * Copyright (c) 2020-2023, Arm Limited and Contributors. All rights reserved.
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]3 *
4 * SPDX-License-Identifier: BSD-3-Clause
5 */
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]6#include <protocols/common/efi/efi_status.h>
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]7#include <protocols/rpc/common/packed-c/status.h>
8#include <protocols/service/crypto/packed-c/opcodes.h>
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]9#include <service/crypto/backend/crypto_backend.h>
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]10#include <service/crypto/provider/crypto_provider.h>
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]11#include <compiler.h>
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]12#include <stdint.h>
13#include <stdlib.h>
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]14#include <string.h>
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]15
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]16#include "crypto_partition.h"
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]17#include "crypto_uuid.h"
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]18
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]19#if defined(MBEDTLS_PKCS7_C) && defined(MBEDTLS_X509_CRT_PARSE_C)
20#include "common/mbedtls/mbedtls_utils.h"
21#endif
22
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]23/* Service request handlers */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]24static rpc_status_t generate_key_handler(void *context, struct rpc_request *req);
25static rpc_status_t destroy_key_handler(void *context, struct rpc_request *req);
26static rpc_status_t export_key_handler(void *context, struct rpc_request *req);
27static rpc_status_t export_public_key_handler(void *context, struct rpc_request *req);
28static rpc_status_t import_key_handler(void *context, struct rpc_request *req);
29static rpc_status_t asymmetric_sign_handler(void *context, struct rpc_request *req);
30static rpc_status_t asymmetric_verify_handler(void *context, struct rpc_request *req);
31static rpc_status_t asymmetric_decrypt_handler(void *context, struct rpc_request *req);
32static rpc_status_t asymmetric_encrypt_handler(void *context, struct rpc_request *req);
33static rpc_status_t generate_random_handler(void *context, struct rpc_request *req);
34static rpc_status_t copy_key_handler(void *context, struct rpc_request *req);
35static rpc_status_t purge_key_handler(void *context, struct rpc_request *req);
36static rpc_status_t get_key_attributes_handler(void *context, struct rpc_request *req);
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]37static rpc_status_t verify_pkcs7_signature_handler(void *context, struct rpc_request *req);
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]38static rpc_status_t get_uefi_priv_auth_var_fingerprint_handler(void *context, struct rpc_request *req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]39
40/* Handler mapping table for service */
41static const struct service_handler handler_table[] = {
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]42 { TS_CRYPTO_OPCODE_GENERATE_KEY, generate_key_handler },
43 { TS_CRYPTO_OPCODE_DESTROY_KEY, destroy_key_handler },
44 { TS_CRYPTO_OPCODE_EXPORT_KEY, export_key_handler },
45 { TS_CRYPTO_OPCODE_EXPORT_PUBLIC_KEY, export_public_key_handler },
46 { TS_CRYPTO_OPCODE_IMPORT_KEY, import_key_handler },
47 { TS_CRYPTO_OPCODE_SIGN_HASH, asymmetric_sign_handler },
48 { TS_CRYPTO_OPCODE_VERIFY_HASH, asymmetric_verify_handler },
49 { TS_CRYPTO_OPCODE_ASYMMETRIC_DECRYPT, asymmetric_decrypt_handler },
50 { TS_CRYPTO_OPCODE_ASYMMETRIC_ENCRYPT, asymmetric_encrypt_handler },
51 { TS_CRYPTO_OPCODE_GENERATE_RANDOM, generate_random_handler },
52 { TS_CRYPTO_OPCODE_COPY_KEY, copy_key_handler },
53 { TS_CRYPTO_OPCODE_PURGE_KEY, purge_key_handler },
54 { TS_CRYPTO_OPCODE_GET_KEY_ATTRIBUTES, get_key_attributes_handler },
55 { TS_CRYPTO_OPCODE_SIGN_MESSAGE, asymmetric_sign_handler },
56 { TS_CRYPTO_OPCODE_VERIFY_MESSAGE, asymmetric_verify_handler },
57 { TS_CRYPTO_OPCODE_VERIFY_PKCS7_SIGNATURE, verify_pkcs7_signature_handler },
58 { TS_CRYPTO_OPCODE_GET_UEFI_PRIV_AUTH_VAR_FINGERPRINT, get_uefi_priv_auth_var_fingerprint_handler },
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]59};
60
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]61struct rpc_service_interface *
62crypto_provider_init(struct crypto_provider *context, unsigned int encoding,
63 const struct crypto_provider_serializer *serializer)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]64{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]65 const struct rpc_uuid crypto_service_uuid[2] = {
66 { .uuid = TS_PSA_CRYPTO_SERVICE_UUID },
67 { .uuid = TS_PSA_CRYPTO_PROTOBUF_SERVICE_UUID },
68 };
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]69
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]70 if (encoding >= TS_RPC_ENCODING_LIMIT)
71 return NULL;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]72
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]73 context->serializer = serializer;
74
75 service_provider_init(&context->base_provider, context, &crypto_service_uuid[encoding],
76 handler_table,
77 sizeof(handler_table) / sizeof(struct service_handler));
Julian Hall3e614542021-07-29 11:47:47 +0100[diff] [blame]78
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]79 return service_provider_get_rpc_interface(&context->base_provider);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]80}
81
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]82void crypto_provider_deinit(struct crypto_provider *context)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]83{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]84 (void)context;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]85}
86
Julian Hall9061e6c2021-06-29 14:24:20 +0100[diff] [blame]87void crypto_provider_register_serializer(struct crypto_provider *context,
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]88 const struct crypto_provider_serializer *serializer)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]89{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]90 context->serializer = serializer;
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]91}
92
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]93void crypto_provider_extend(struct crypto_provider *context, struct service_provider *sub_provider)
Julian Hall13e76952021-07-13 12:17:09 +0100[diff] [blame]94{
95 service_provider_extend(&context->base_provider, sub_provider);
96}
97
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]98static const struct crypto_provider_serializer *get_crypto_serializer(void *context,
99 const struct rpc_request *req)
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]100{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]101 struct crypto_provider *this_instance = (struct crypto_provider *)context;
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]102
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]103 return this_instance->serializer;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]104}
105
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]106static rpc_status_t generate_key_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]107{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]108 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
109 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]110 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]111
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]112 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]113
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]114 if (serializer)
115 rpc_status = serializer->deserialize_generate_key_req(req_buf, &attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]116
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]117 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]118 psa_status_t psa_status;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]119 namespaced_key_id_t ns_key_id = NAMESPACED_KEY_ID_INIT;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]120
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]121 crypto_partition_bind_to_owner(&attributes, req->source_id);
122
123 psa_status = psa_generate_key(&attributes, &ns_key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]124
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]125 if (psa_status == PSA_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]126 psa_key_id_t key_id = namespaced_key_id_get_key_id(ns_key_id);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]127 struct rpc_buffer *resp_buf = &req->response;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]128 rpc_status = serializer->serialize_generate_key_resp(resp_buf, key_id);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]129 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]130
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]131 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]132 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]133
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]134 psa_reset_key_attributes(&attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]135
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]136 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]137}
138
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]139static rpc_status_t destroy_key_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]140{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]141 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
142 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]143 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]144
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]145 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]146
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]147 if (serializer)
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]148 rpc_status = serializer->deserialize_destroy_key_req(req_buf, &key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]149
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]150 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]151 psa_status_t psa_status;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]152 namespaced_key_id_t ns_key_id =
153 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]154
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]155 psa_status = psa_destroy_key(ns_key_id);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]156 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]157 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]158
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]159 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]160}
161
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]162static rpc_status_t export_key_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]163{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]164 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
165 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]166 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]167
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]168 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]169
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]170 if (serializer)
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]171 rpc_status = serializer->deserialize_export_key_req(req_buf, &key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]172
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]173 if (rpc_status == RPC_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]174 namespaced_key_id_t ns_key_id =
175 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]176 size_t max_export_size = PSA_EXPORT_KEY_PAIR_MAX_SIZE;
177 uint8_t *key_buffer = malloc(max_export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]178
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]179 if (key_buffer) {
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]180 size_t export_size;
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]181 psa_status_t psa_status =
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]182 psa_export_key(ns_key_id, key_buffer, max_export_size, &export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]183
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]184 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]185 struct rpc_buffer *resp_buf = &req->response;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]186
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]187 rpc_status = serializer->serialize_export_key_resp(
188 resp_buf, key_buffer, export_size);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]189 }
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]190
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]191 free(key_buffer);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]192 req->service_status = psa_status;
193 } else {
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]194 /* Failed to allocate key buffer */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]195 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hall464021a2021-07-29 15:20:10 +0100[diff] [blame]196 }
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]197 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]198
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]199 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]200}
201
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]202static rpc_status_t export_public_key_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]203{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]204 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
205 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]206 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]207
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]208 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]209
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]210 if (serializer)
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]211 rpc_status = serializer->deserialize_export_public_key_req(req_buf, &key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]212
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]213 if (rpc_status == RPC_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]214 namespaced_key_id_t ns_key_id =
215 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]216 size_t max_export_size = PSA_EXPORT_PUBLIC_KEY_MAX_SIZE;
217 uint8_t *key_buffer = malloc(max_export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]218
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]219 if (key_buffer) {
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]220 size_t export_size;
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]221 psa_status_t psa_status = psa_export_public_key(
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]222 ns_key_id, key_buffer, max_export_size, &export_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]223
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]224 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]225 struct rpc_buffer *resp_buf = &req->response;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]226
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]227 rpc_status = serializer->serialize_export_public_key_resp(
228 resp_buf, key_buffer, export_size);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]229 }
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]230
231 free(key_buffer);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]232 req->service_status = psa_status;
233 } else {
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]234 /* Failed to allocate key buffer */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]235 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallec81a502021-07-12 11:36:37 +0100[diff] [blame]236 }
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]237 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]238
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]239 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]240}
241
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]242static rpc_status_t import_key_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]243{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]244 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
245 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]246 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]247
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]248 if (serializer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]249 size_t key_data_len = serializer->max_deserialised_parameter_size(req_buf);
250 uint8_t *key_buffer = malloc(key_data_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]251
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]252 if (key_buffer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]253 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]254 rpc_status = serializer->deserialize_import_key_req(
255 req_buf, &attributes, key_buffer, &key_data_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]256
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]257 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]258 psa_status_t psa_status;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]259 namespaced_key_id_t ns_key_id = NAMESPACED_KEY_ID_INIT;
260
261 crypto_partition_bind_to_owner(&attributes, req->source_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]262
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]263 psa_status =
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]264 psa_import_key(&attributes, key_buffer, key_data_len, &ns_key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]265
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]266 if (psa_status == PSA_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]267 psa_key_id_t key_id =
268 namespaced_key_id_get_key_id(ns_key_id);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]269 struct rpc_buffer *resp_buf = &req->response;
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]270
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]271 rpc_status =
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]272 serializer->serialize_import_key_resp(resp_buf, key_id);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]273 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]274
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]275 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]276 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]277
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]278 psa_reset_key_attributes(&attributes);
279 free(key_buffer);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]280 } else {
281 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]282 }
283 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]284
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]285 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]286}
287
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]288static rpc_status_t asymmetric_sign_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]289{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]290 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
291 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]292 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]293
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]294 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]295 psa_algorithm_t alg;
296 size_t hash_len = PSA_HASH_MAX_SIZE;
297 uint8_t hash_buffer[PSA_HASH_MAX_SIZE];
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]298
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]299 if (serializer)
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]300 rpc_status = serializer->deserialize_asymmetric_sign_req(req_buf, &key_id, &alg,
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]301 hash_buffer, &hash_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]302
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]303 if (rpc_status == RPC_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]304 namespaced_key_id_t ns_key_id =
305 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]306 psa_status_t psa_status;
307 size_t sig_len;
308 uint8_t sig_buffer[PSA_SIGNATURE_MAX_SIZE];
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]309
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]310 psa_status = (req->opcode == TS_CRYPTO_OPCODE_SIGN_HASH) ?
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]311 psa_sign_hash(ns_key_id, alg, hash_buffer, hash_len, sig_buffer, sizeof(sig_buffer), &sig_len) :
312 psa_sign_message(ns_key_id, alg, hash_buffer, hash_len, sig_buffer, sizeof(sig_buffer), &sig_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]313
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]314 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]315 struct rpc_buffer *resp_buf = &req->response;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]316
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]317 rpc_status = serializer->serialize_asymmetric_sign_resp(
318 resp_buf, sig_buffer, sig_len);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]319 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]320
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]321 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]322 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]323
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]324 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]325}
326
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]327static rpc_status_t asymmetric_verify_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]328{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]329 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
330 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]331 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]332
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]333 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]334 psa_algorithm_t alg;
335 size_t hash_len = PSA_HASH_MAX_SIZE;
336 uint8_t hash_buffer[PSA_HASH_MAX_SIZE];
337 size_t sig_len = PSA_SIGNATURE_MAX_SIZE;
338 uint8_t sig_buffer[PSA_SIGNATURE_MAX_SIZE];
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]339
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]340 if (serializer)
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]341 rpc_status = serializer->deserialize_asymmetric_verify_req(
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]342 req_buf, &key_id, &alg, hash_buffer, &hash_len, sig_buffer, &sig_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]343
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]344 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]345 psa_status_t psa_status;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]346 namespaced_key_id_t ns_key_id =
347 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]348
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]349 psa_status = (req->opcode == TS_CRYPTO_OPCODE_VERIFY_HASH) ?
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]350 psa_verify_hash(ns_key_id, alg, hash_buffer, hash_len, sig_buffer, sig_len) :
351 psa_verify_message(ns_key_id, alg, hash_buffer, hash_len, sig_buffer, sig_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]352
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]353 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]354 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]355
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]356 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]357}
358
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]359static rpc_status_t asymmetric_decrypt_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]360{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]361 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
362 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]363 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]364
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]365 if (serializer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]366 size_t max_param_size = serializer->max_deserialised_parameter_size(req_buf);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]367
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]368 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]369 psa_algorithm_t alg;
370 size_t ciphertext_len = max_param_size;
371 uint8_t *ciphertext_buffer = malloc(ciphertext_len);
372 size_t salt_len = max_param_size;
373 uint8_t *salt_buffer = malloc(salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]374
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]375 if (ciphertext_buffer && salt_buffer) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]376 rpc_status = serializer->deserialize_asymmetric_decrypt_req(
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]377 req_buf, &key_id, &alg, ciphertext_buffer, &ciphertext_len, salt_buffer,
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]378 &salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]379
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]380 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]381 psa_status_t psa_status;
382 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]383 namespaced_key_id_t ns_key_id =
384 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]385
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]386 psa_status = psa_get_key_attributes(ns_key_id, &attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]387
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]388 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]389 size_t max_decrypt_size =
390 PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(
391 psa_get_key_type(&attributes),
392 psa_get_key_bits(&attributes), alg);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]393
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]394 size_t plaintext_len;
395 uint8_t *plaintext_buffer = malloc(max_decrypt_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]396
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]397 if (plaintext_buffer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]398 /* Salt is an optional parameter */
399 uint8_t *salt = (salt_len) ? salt_buffer : NULL;
Julian Hallf688a0b2021-04-09 11:58:30 +0100[diff] [blame]400
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]401 psa_status = psa_asymmetric_decrypt(
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]402 ns_key_id, alg, ciphertext_buffer, ciphertext_len,
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]403 salt, salt_len, plaintext_buffer,
404 max_decrypt_size, &plaintext_len);
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]405
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]406 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]407 struct rpc_buffer *resp_buf =
408 &req->response;
409 rpc_status = serializer->serialize_asymmetric_decrypt_resp(
410 resp_buf, plaintext_buffer, plaintext_len);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]411 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]412
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]413 free(plaintext_buffer);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]414 } else {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]415 /* Failed to allocate ouptput buffer */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]416 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]417 }
418 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]419
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]420 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]421 psa_reset_key_attributes(&attributes);
422 }
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]423 } else {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]424 /* Failed to allocate buffers */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]425 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]426 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]427
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]428 free(ciphertext_buffer);
429 free(salt_buffer);
430 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]431
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]432 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]433}
434
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]435static rpc_status_t asymmetric_encrypt_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]436{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]437 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
438 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]439 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]440
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]441 if (serializer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]442 size_t max_param_size = serializer->max_deserialised_parameter_size(req_buf);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]443
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]444 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]445 psa_algorithm_t alg;
446 size_t plaintext_len = max_param_size;
447 uint8_t *plaintext_buffer = malloc(plaintext_len);
448 size_t salt_len = max_param_size;
449 uint8_t *salt_buffer = malloc(salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]450
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]451 if (plaintext_buffer && salt_buffer) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]452 rpc_status = serializer->deserialize_asymmetric_encrypt_req(
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]453 req_buf, &key_id, &alg, plaintext_buffer, &plaintext_len, salt_buffer,
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]454 &salt_len);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]455
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]456 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]457 psa_status_t psa_status;
458 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]459 namespaced_key_id_t ns_key_id =
460 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]461
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]462 psa_status = psa_get_key_attributes(ns_key_id, &attributes);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]463
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]464 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]465 size_t max_encrypt_size =
466 PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(
467 psa_get_key_type(&attributes),
468 psa_get_key_bits(&attributes), alg);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]469
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]470 size_t ciphertext_len;
471 uint8_t *ciphertext_buffer = malloc(max_encrypt_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]472
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]473 if (ciphertext_buffer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]474 /* Salt is an optional parameter */
475 uint8_t *salt = (salt_len) ? salt_buffer : NULL;
Julian Hallf688a0b2021-04-09 11:58:30 +0100[diff] [blame]476
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]477 psa_status = psa_asymmetric_encrypt(
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]478 ns_key_id, alg, plaintext_buffer, plaintext_len,
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]479 salt, salt_len, ciphertext_buffer,
480 max_encrypt_size, &ciphertext_len);
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]481
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]482 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]483 struct rpc_buffer *resp_buf =
484 &req->response;
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]485
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]486 rpc_status = serializer->serialize_asymmetric_encrypt_resp(
487 resp_buf, ciphertext_buffer, ciphertext_len);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]488 }
julhal01c3f4e9a2020-12-15 13:39:01 +0000[diff] [blame]489
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]490 free(ciphertext_buffer);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]491 } else {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]492 /* Failed to allocate ouptput buffer */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]493 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]494 }
495 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]496
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]497 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]498 psa_reset_key_attributes(&attributes);
499 }
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]500 } else {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]501 /* Failed to allocate buffers */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]502 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]503 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]504
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]505 free(plaintext_buffer);
506 free(salt_buffer);
507 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]508
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]509 return rpc_status;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]510}
511
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]512static rpc_status_t generate_random_handler(void *context, struct rpc_request *req)
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]513{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]514 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
515 struct rpc_buffer *req_buf = &req->request;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]516 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]517
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]518 size_t output_size;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]519
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]520 if (serializer)
521 rpc_status = serializer->deserialize_generate_random_req(req_buf, &output_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]522
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]523 if (rpc_status == RPC_SUCCESS) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]524 psa_status_t psa_status;
525 uint8_t *output_buffer = malloc(output_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]526
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]527 if (output_buffer) {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]528 psa_status = psa_generate_random(output_buffer, output_size);
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]529
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]530 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]531 struct rpc_buffer *resp_buf = &req->response;
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]532
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]533 rpc_status = serializer->serialize_generate_random_resp(
534 resp_buf, output_buffer, output_size);
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]535 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]536
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]537 req->service_status = psa_status;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]538 free(output_buffer);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]539 } else {
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]540 /* Failed to allocate output buffer */
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]541 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]542 }
543 }
Julian Hallc02fffb2020-11-23 18:22:06 +0100[diff] [blame]544
Julian Hallf5728962021-06-24 09:40:23 +0100[diff] [blame]545 return rpc_status;
546}
547
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]548static rpc_status_t copy_key_handler(void *context, struct rpc_request *req)
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]549{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]550 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
551 struct rpc_buffer *req_buf = &req->request;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]552 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
553
554 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]555 psa_key_id_t source_key_id = PSA_KEY_ID_NULL;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]556
557 if (serializer)
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]558 rpc_status =
559 serializer->deserialize_copy_key_req(req_buf, &attributes, &source_key_id);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]560
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]561 if (rpc_status == RPC_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]562 namespaced_key_id_t target_ns_key_id = NAMESPACED_KEY_ID_INIT;
563 namespaced_key_id_t source_ns_key_id =
564 crypto_partition_get_namespaced_key_id(req->source_id, source_key_id);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]565
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]566 crypto_partition_bind_to_owner(&attributes, req->source_id);
567
568 psa_status_t psa_status = psa_copy_key(source_ns_key_id, &attributes, &target_ns_key_id);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]569
570 if (psa_status == PSA_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]571 psa_key_id_t target_key_id = namespaced_key_id_get_key_id(target_ns_key_id);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]572 struct rpc_buffer *resp_buf = &req->response;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]573 rpc_status = serializer->serialize_copy_key_resp(resp_buf, target_key_id);
574 }
575
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]576 req->service_status = psa_status;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]577 }
578
579 psa_reset_key_attributes(&attributes);
580
581 return rpc_status;
582}
583
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]584static rpc_status_t purge_key_handler(void *context, struct rpc_request *req)
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]585{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]586 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
587 struct rpc_buffer *req_buf = &req->request;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]588 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
589
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]590 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]591
592 if (serializer)
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]593 rpc_status = serializer->deserialize_purge_key_req(req_buf, &key_id);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]594
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]595 if (rpc_status == RPC_SUCCESS) {
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]596 namespaced_key_id_t ns_key_id =
597 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
598 psa_status_t psa_status = psa_purge_key(ns_key_id);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]599 req->service_status = psa_status;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]600 }
601
602 return rpc_status;
603}
604
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]605static rpc_status_t get_key_attributes_handler(void *context, struct rpc_request *req)
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]606{
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]607 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
608 struct rpc_buffer *req_buf = &req->request;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]609 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
610
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]611 psa_key_id_t key_id = PSA_KEY_ID_NULL;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]612
613 if (serializer)
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]614 rpc_status = serializer->deserialize_get_key_attributes_req(req_buf, &key_id);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]615
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]616 if (rpc_status == RPC_SUCCESS) {
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]617 psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]618 namespaced_key_id_t ns_key_id =
619 crypto_partition_get_namespaced_key_id(req->source_id, key_id);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]620
Balint Dobszaydc945e92024-01-15 16:07:21 +0100[diff] [blame]621 psa_status_t psa_status = psa_get_key_attributes(ns_key_id, &attributes);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]622
623 if (psa_status == PSA_SUCCESS) {
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]624 struct rpc_buffer *resp_buf = &req->response;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]625
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]626 rpc_status = serializer->serialize_get_key_attributes_resp(resp_buf,
627 &attributes);
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]628 }
629
630 psa_reset_key_attributes(&attributes);
Imre Kis6d867d82023-07-04 13:29:33 +0200[diff] [blame]631 req->service_status = psa_status;
Julian Hall8359a632021-07-08 15:10:30 +0100[diff] [blame]632 }
633
634 return rpc_status;
635}
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]636
Balint Dobszay77183322024-01-25 16:17:16 +0100[diff] [blame]637#if defined(MBEDTLS_PKCS7_C) && defined(MBEDTLS_X509_CRT_PARSE_C)
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]638static rpc_status_t verify_pkcs7_signature_handler(void *context, struct rpc_request *req)
639{
640 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
641 struct rpc_buffer *req_buf = &req->request;
642 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
643
644 int mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
645
646 uint8_t *signature_cert = NULL;
647 uint64_t signature_cert_len = 0;
648 uint8_t *hash = NULL;
649 uint64_t hash_len = 0;
650 uint8_t *public_key_cert = NULL;
651 uint64_t public_key_cert_len = 0;
652
653 if (serializer) {
654 /* First collect the lengths of the fields */
655 rpc_status = serializer->deserialize_verify_pkcs7_signature_req(
656 req_buf, NULL, &signature_cert_len, NULL, &hash_len, NULL,
657 &public_key_cert_len);
658
659 if (rpc_status == RPC_SUCCESS) {
660 /* Allocate the needed space and get the data */
661 signature_cert = (uint8_t *)malloc(signature_cert_len);
662 hash = (uint8_t *)malloc(hash_len);
663 public_key_cert = (uint8_t *)malloc(public_key_cert_len);
664
665 if (signature_cert && hash && public_key_cert) {
666 rpc_status = serializer->deserialize_verify_pkcs7_signature_req(
667 req_buf, signature_cert, &signature_cert_len, hash,
668 &hash_len, public_key_cert, &public_key_cert_len);
669 } else {
670 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
671 }
672 }
673 }
674
675 if (rpc_status == RPC_SUCCESS) {
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]676 /* Parse the PKCS#7 DER encoded signature block */
677 mbedtls_pkcs7 pkcs7_structure;
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]678
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]679 mbedtls_pkcs7_init(&pkcs7_structure);
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]680
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]681 mbedtls_status = mbedtls_pkcs7_parse_der(&pkcs7_structure, signature_cert,
682 signature_cert_len);
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]683
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]684 if (mbedtls_status == MBEDTLS_PKCS7_SIGNED_DATA) {
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]685
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]686 /*
687 * If a separate public key is provided, verify the signature with it,
688 * else use the key from the pkcs7 signature structure, because it is
689 * a self-signed certificate.
690 */
691 if(public_key_cert_len) {
692 /* Parse the public key certificate */
693 mbedtls_x509_crt signer_certificate;
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]694
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]695 mbedtls_x509_crt_init(&signer_certificate);
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]696
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]697 mbedtls_status = mbedtls_x509_crt_parse_der(&signer_certificate, public_key_cert,
698 public_key_cert_len);
699
700 if (mbedtls_status == 0) {
701 /* Verify hash against signed hash */
702 mbedtls_status = mbedtls_pkcs7_signed_hash_verify(
703 &pkcs7_structure, &signer_certificate, hash, hash_len);
704 }
705
706 mbedtls_x509_crt_free(&signer_certificate);
707 } else {
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]708 mbedtls_status = mbedtls_pkcs7_signed_hash_verify(
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]709 &pkcs7_structure, &pkcs7_structure.private_signed_data.private_certs, hash, hash_len);
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]710 }
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]711 }
712
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]713 mbedtls_pkcs7_free(&pkcs7_structure);
Gabor Tothab7db212023-08-18 16:08:12 +0200[diff] [blame]714 }
715
716 free(signature_cert);
717 free(hash);
718 free(public_key_cert);
719
720 /* Provide the result of the verification */
721 req->service_status = mbedtls_status;
722
723 return rpc_status;
724}
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]725
726static rpc_status_t get_uefi_priv_auth_var_fingerprint_handler(void *context, struct rpc_request *req)
727{
728 rpc_status_t rpc_status = RPC_ERROR_INTERNAL;
729 struct rpc_buffer *req_buf = &req->request;
730 const struct crypto_provider_serializer *serializer = get_crypto_serializer(context, req);
731
732 int mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
733
734 uint8_t *signature_cert = NULL;
735 uint64_t signature_cert_len = 0;
736
737 if (serializer) {
738 /* First collect the lengths of the field */
739 rpc_status = serializer->deserialize_get_uefi_priv_auth_var_fingerprint_req(
740 req_buf, NULL, &signature_cert_len);
741
742 if (rpc_status == RPC_SUCCESS) {
743 /* Allocate the needed space and get the data */
744 signature_cert = (uint8_t *)malloc(signature_cert_len);
745
746 if (signature_cert) {
747 rpc_status = serializer->deserialize_get_uefi_priv_auth_var_fingerprint_req(
748 req_buf, signature_cert, &signature_cert_len);
749 } else {
750 rpc_status = RPC_ERROR_RESOURCE_FAILURE;
751 }
752 }
753 }
754
755 if (rpc_status == RPC_SUCCESS) {
756 /* Parse the PKCS#7 DER encoded signature block */
757 mbedtls_pkcs7 pkcs7_structure;
758
759 mbedtls_pkcs7_init(&pkcs7_structure);
760
761 mbedtls_status = mbedtls_pkcs7_parse_der(&pkcs7_structure, signature_cert,
762 signature_cert_len);
763
764 if (mbedtls_status == MBEDTLS_PKCS7_SIGNED_DATA) {
765
766 uint8_t output_buffer[PSA_HASH_MAX_SIZE] = { 0 };
767 size_t __maybe_unused output_size = 0;
768 const mbedtls_asn1_buf *signerCertCN = NULL;
769 const mbedtls_x509_crt *topLevelCert = &pkcs7_structure.private_signed_data.private_certs;
770 const mbedtls_x509_buf *toplevelCertTbs = NULL;
771 struct rpc_buffer *resp_buf = &req->response;;
772 psa_hash_operation_t op = PSA_HASH_OPERATION_INIT;
773
774 /* Find common name field of the signing certificate, which is the first in the chain */
775 signerCertCN = findCommonName(&topLevelCert->subject);
776 if (!signerCertCN) {
777 mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
778 goto end;
779 }
780
781 /* Get the TopLevel certificate which is the last in the chain */
782 while(topLevelCert->next)
783 topLevelCert = topLevelCert->next;
784 toplevelCertTbs = &topLevelCert->tbs;
785
786 /* Hash the data to create the fingerprint */
787 op = psa_hash_operation_init();
788
789 if (psa_hash_setup(&op, PSA_ALG_SHA_256) != PSA_SUCCESS) {
790 mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
791 goto end;
792 }
793
794 if (psa_hash_update(&op, signerCertCN->p, signerCertCN->len)) {
795 psa_hash_abort(&op);
796 mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
797 goto end;
798 }
799
800 if (psa_hash_update(&op, toplevelCertTbs->p, toplevelCertTbs->len)) {
801 psa_hash_abort(&op);
802 mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
803 goto end;
804 }
805
806 if (psa_hash_finish(&op, (uint8_t*)&output_buffer, PSA_HASH_MAX_SIZE, &output_size)) {
807 psa_hash_abort(&op);
808 mbedtls_status = MBEDTLS_ERR_PKCS7_VERIFY_FAIL;
809 goto end;
810 }
811
812 /* Clear the remaining part of the buffer for consistency */
813 memset(&output_buffer[output_size], 0, PSA_HASH_MAX_SIZE - output_size);
814
815 rpc_status = serializer->serialize_get_uefi_priv_auth_var_fingerprint_resp(
816 resp_buf, (uint8_t*)&output_buffer);
817 }
818
819end:
820 mbedtls_pkcs7_free(&pkcs7_structure);
821 }
822
823 free(signature_cert);
824
825 /* Provide the result of the verification */
826 req->service_status = (mbedtls_status == MBEDTLS_PKCS7_SIGNED_DATA) ? EFI_SUCCESS : EFI_COMPROMISED_DATA;
827
828 return rpc_status;
829}
Balint Dobszay77183322024-01-25 16:17:16 +0100[diff] [blame]830#else
831static rpc_status_t verify_pkcs7_signature_handler(void *context, struct rpc_request *req)
832{
833 (void)context;
834 (void)req;
835
836 return RPC_ERROR_INTERNAL;
837}
Gabor Tothaf77b472024-04-05 11:19:37 +0200[diff] [blame]838
839static rpc_status_t get_uefi_priv_auth_var_fingerprint_handler(void *context, struct rpc_request *req)
840{
841 (void)context;
842 (void)req;
843
844 return RPC_ERROR_INTERNAL;
845}
Balint Dobszay77183322024-01-25 16:17:16 +0100[diff] [blame]846#endif