Always configure PSA-based keys for encryption and decryption Mbed TLS cipher layer allows usage of keys for other purposes than indicated in the `operation` parameter of `mbedtls_cipher_setkey()`. The semantics of the PSA Crypto API, in contrast, checks key usage against the key policy. As a remedy, this commit modifies the PSA key slot setup to always allow both encryption and decryption.

commit: a395d8f1e998e7b472973f1cf9df3279fc3f622b [log] [tgz]
author: Hanno Becker <hanno.becker@arm.com> Mon Nov 12 13:33:16 2018 +0000
committer: Hanno Becker <hanno.becker@arm.com> Thu Nov 22 16:33:01 2018 +0000
tree: 1aa61c2f8540060a4cbf59348102fd963b3f32a4
parent: 58fc9aab549bdb995cc150c3113e601a5cccb82d [diff] [blame]
diff --git a/library/cipher.c b/library/cipher.c
index a83d3c6..243c739 100644
--- a/library/cipher.c
+++ b/library/cipher.c

@@ -310,7 +310,13 @@
 
         /* Setup policy for the new key slot. */
         psa_key_policy_init( &key_policy );
-        key_usage = mbedtls_psa_translate_cipher_operation( operation );
+
+        /* Mbed TLS' cipher layer doesn't enforce the mode of operation
+         * (encrypt vs. decrypt): it is possible to setup a key for encryption
+         * and use it for AEAD decryption. Until tests relying on this
+         * are changed, allow any usage in PSA. */
+        /* key_usage = mbedtls_psa_translate_cipher_operation( operation ); */
+        key_usage = PSA_KEY_USAGE_ENCRYPT | PSA_KEY_USAGE_DECRYPT;
         psa_key_policy_set_usage( &key_policy, key_usage, cipher_psa->alg );
         status = psa_set_key_policy( cipher_psa->slot, &key_policy );
         if( status != PSA_SUCCESS )
commit	a395d8f1e998e7b472973f1cf9df3279fc3f622b	[log] [tgz]
author	Hanno Becker <hanno.becker@arm.com>	Mon Nov 12 13:33:16 2018 +0000
committer	Hanno Becker <hanno.becker@arm.com>	Thu Nov 22 16:33:01 2018 +0000
tree	1aa61c2f8540060a4cbf59348102fd963b3f32a4
parent	58fc9aab549bdb995cc150c3113e601a5cccb82d [diff] [blame]