TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 9dd2440c95707ae66e707f8144a80a384e89c5c2^! / .
commit9dd2440c95707ae66e707f8144a80a384e89c5c2[log] [tgz]
authorPrzemek Stekiel <przemyslaw.stekiel@mobica.com>Thu Jan 26 15:06:09 2023 +0100
committerPrzemek Stekiel <przemyslaw.stekiel@mobica.com>Wed Feb 22 11:30:32 2023 +0100
treecc757c6a6f8d71f2fa0462d76a5adda46909dd54
parentd5d28a217fd0b2e5ee40cbd8cee241f7ffbceab1 [diff]
Change pake input: key_lifetime -> key attributes

In the future key attributes will be available for opaque driver via psa_crypto_driver_pake_get_password_key().

Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>

Signed-off-by: Przemek Stekiel <przemyslaw.stekiel@mobica.com>

diff --git a/include/psa/crypto_extra.h b/include/psa/crypto_extra.h
index 32e9569..2d6b6ab 100644
--- a/include/psa/crypto_extra.h
+++ b/include/psa/crypto_extra.h

@@ -1970,7 +1970,7 @@
     uint8_t *MBEDTLS_PRIVATE(password);
     size_t MBEDTLS_PRIVATE(password_len);
     psa_pake_role_t MBEDTLS_PRIVATE(role);
-    psa_key_lifetime_t MBEDTLS_PRIVATE(key_lifetime);
+    psa_key_attributes_t MBEDTLS_PRIVATE(attributes);
     psa_pake_cipher_suite_t MBEDTLS_PRIVATE(cipher_suite);
 };
 

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index 5e567ad..b4fad33 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c

@@ -7306,7 +7306,7 @@
 
     memcpy(operation->data.inputs.password, slot->key.data, slot->key.bytes);
     operation->data.inputs.password_len = slot->key.bytes;
-    operation->data.inputs.key_lifetime = attributes.core.lifetime;
+    operation->data.inputs.attributes = attributes;
 error:
     unlock_status = psa_unlock_key_slot(slot);
     return (status == PSA_SUCCESS) ? unlock_status : status;

diff --git a/scripts/data_files/driver_templates/psa_crypto_driver_wrappers.c.jinja b/scripts/data_files/driver_templates/psa_crypto_driver_wrappers.c.jinja
index d7dabed..d52ed59 100644
--- a/scripts/data_files/driver_templates/psa_crypto_driver_wrappers.c.jinja
+++ b/scripts/data_files/driver_templates/psa_crypto_driver_wrappers.c.jinja

@@ -2816,7 +2816,7 @@
     psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
 
     psa_key_location_t location =
-            PSA_KEY_LIFETIME_GET_LOCATION( inputs->key_lifetime );
+            PSA_KEY_LIFETIME_GET_LOCATION( inputs->attributes.core.lifetime );
 
     switch( location )
     {

diff --git a/tests/scripts/all.sh b/tests/scripts/all.sh
index 98060d7..7964319 100755
--- a/tests/scripts/all.sh
+++ b/tests/scripts/all.sh

@@ -2506,15 +2506,19 @@
 
     loc_accel_list="ALG_JPAKE"
     loc_accel_flags=$( echo "$loc_accel_list" | sed 's/[^ ]* */-DLIBTESTDRIVER1_MBEDTLS_PSA_ACCEL_&/g' )
-    make -C tests libtestdriver1.a CFLAGS="$ASAN_CFLAGS $loc_accel_flags" LDFLAGS="$ASAN_CFLAGS"
+    make -C tests libtestdriver1.a CFLAGS="$ASAN_CFLAGS $loc_accel_flags" LDFLAGS="$ASAN_CFLAGS" DEBUG=1
 
     scripts/config.py set MBEDTLS_PSA_CRYPTO_DRIVERS
     scripts/config.py set MBEDTLS_PSA_CRYPTO_CONFIG
 
     scripts/config.py unset MBEDTLS_ECJPAKE_C
 
+    # Dynamic secure element support is a deprecated feature and needs to be disabled here.
+    # This is done to have the same form of psa_key_attributes_s for libdriver and library.
+    scripts/config.py unset MBEDTLS_PSA_CRYPTO_SE_C
+
     loc_accel_flags="$loc_accel_flags $( echo "$loc_accel_list" | sed 's/[^ ]* */-DMBEDTLS_PSA_ACCEL_&/g' )"
-    make CFLAGS="$ASAN_CFLAGS -Werror -I../tests/include -I../tests -I../../tests -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_TEST_LIBTESTDRIVER1 $loc_accel_flags" LDFLAGS="-ltestdriver1 $ASAN_CFLAGS"
+    make CFLAGS="$ASAN_CFLAGS -Werror -I../tests/include -I../tests -I../../tests -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_TEST_LIBTESTDRIVER1 $loc_accel_flags" LDFLAGS="-ltestdriver1 $ASAN_CFLAGS" DEBUG=1
 
     msg "test: ssl-opt.sh, MBEDTLS_PSA_CRYPTO_CONFIG with accelerated PAKE"
     tests/ssl-opt.sh -f "ECJPAKE"
@@ -2547,6 +2551,10 @@
     scripts/config.py -f include/psa/crypto_config.h unset PSA_WANT_ALG_JPAKE
     scripts/config.py unset MBEDTLS_KEY_EXCHANGE_ECJPAKE_ENABLED
 
+    # Dynamic secure element support is a deprecated feature and needs to be disabled here.
+    # This is done to have the same form of psa_key_attributes_s for libdriver and library.
+    scripts/config.py unset MBEDTLS_PSA_CRYPTO_SE_C
+
     loc_accel_flags="$loc_accel_flags $( echo "$loc_accel_list" | sed 's/[^ ]* */-DMBEDTLS_PSA_ACCEL_&/g' )"
     make CFLAGS="$ASAN_CFLAGS -Werror -I../tests/include -I../tests -I../../tests -DPSA_CRYPTO_DRIVER_TEST -DMBEDTLS_TEST_LIBTESTDRIVER1 $loc_accel_flags" LDFLAGS="-ltestdriver1 $ASAN_CFLAGS"