TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 6e412a71ee3505b92f34e9cfa153231bccf347f6 / . / library / psa_crypto_driver_wrappers.c
blob: af63fbf88ff2d901518da852d3c2eeeabc408b47 [file] [log] [blame]
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]1/*
2 * Functions to delegate cryptographic operations to an available
3 * and appropriate accelerator.
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]4 * Warning: This file will be auto-generated in the future.
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]5 */
Steven Cooreman2c7b2f82020-09-02 13:43:46 +0200[diff] [blame]6/* Copyright The Mbed TLS Contributors
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]7 * SPDX-License-Identifier: Apache-2.0
8 *
9 * Licensed under the Apache License, Version 2.0 (the "License"); you may
10 * not use this file except in compliance with the License.
11 * You may obtain a copy of the License at
12 *
13 * http://www.apache.org/licenses/LICENSE-2.0
14 *
15 * Unless required by applicable law or agreed to in writing, software
16 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
17 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
18 * See the License for the specific language governing permissions and
19 * limitations under the License.
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]20 */
21
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]22#include "psa_crypto_cipher.h"
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]23#include "psa_crypto_core.h"
24#include "psa_crypto_driver_wrappers.h"
Steven Cooreman830aff22021-03-09 09:50:44 +0100[diff] [blame]25#include "psa_crypto_hash.h"
26
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]27#include "mbedtls/platform.h"
28
29#if defined(MBEDTLS_PSA_CRYPTO_DRIVERS)
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]30
31/* Include test driver definition when running tests */
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]32#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]33#ifndef PSA_CRYPTO_DRIVER_PRESENT
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]34#define PSA_CRYPTO_DRIVER_PRESENT
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]35#endif
36#ifndef PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]37#define PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]38#endif
Steven Cooreman0d7c64d2020-09-07 16:17:55 +0200[diff] [blame]39#include "test/drivers/test_driver.h"
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]40#endif /* PSA_CRYPTO_DRIVER_TEST */
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]41
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]42/* Repeat above block for each JSON-declared driver during autogeneration */
Steven Cooremanaa87fd02021-03-15 18:54:03 +0100[diff] [blame]43#endif /* MBEDTLS_PSA_CRYPTO_DRIVERS */
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]44
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]45/* Auto-generated values depending on which drivers are registered.
46 * ID 0 is reserved for unallocated operations.
47 * ID 1 is reserved for the Mbed TLS software driver. */
Steven Cooreman830aff22021-03-09 09:50:44 +0100[diff] [blame]48#define PSA_CRYPTO_MBED_TLS_DRIVER_ID (1)
49
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]50#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]51#define PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID (2)
52#define PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID (3)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]53#endif /* PSA_CRYPTO_DRIVER_TEST */
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]54
55/* Support the 'old' SE interface when asked to */
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]56#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]57/* PSA_CRYPTO_DRIVER_PRESENT is defined when either a new-style or old-style
58 * SE driver is present, to avoid unused argument errors at compile time. */
59#ifndef PSA_CRYPTO_DRIVER_PRESENT
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]60#define PSA_CRYPTO_DRIVER_PRESENT
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]61#endif
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]62#include "psa_crypto_se.h"
63#endif
64
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]65/* Start delegation functions */
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]66psa_status_t psa_driver_wrapper_sign_hash(
67 const psa_key_attributes_t *attributes,
68 const uint8_t *key_buffer, size_t key_buffer_size,
69 psa_algorithm_t alg, const uint8_t *hash, size_t hash_length,
70 uint8_t *signature, size_t signature_size, size_t *signature_length )
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]71{
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]72 /* Try dynamically-registered SE interface first */
73#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
74 const psa_drv_se_t *drv;
75 psa_drv_se_context_t *drv_context;
76
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]77 if( psa_get_se_driver( attributes->core.lifetime, &drv, &drv_context ) )
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]78 {
79 if( drv->asymmetric == NULL ||
80 drv->asymmetric->p_sign == NULL )
81 {
82 /* Key is defined in SE, but we have no way to exercise it */
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]83 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]84 }
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]85 return( drv->asymmetric->p_sign(
86 drv_context, *( (psa_key_slot_number_t *)key_buffer ),
87 alg, hash, hash_length,
88 signature, signature_size, signature_length ) );
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]89 }
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]90#endif /* PSA_CRYPTO_SE_C */
Steven Cooreman7a250572020-07-17 16:43:05 +0200[diff] [blame]91
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]92 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]93 psa_key_location_t location =
94 PSA_KEY_LIFETIME_GET_LOCATION( attributes->core.lifetime );
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]95
96 switch( location )
97 {
98 case PSA_KEY_LOCATION_LOCAL_STORAGE:
99 /* Key is stored in the slot in export representation, so
100 * cycle through all known transparent accelerators */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]101#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]102#if defined(PSA_CRYPTO_DRIVER_TEST)
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]103 status = test_transparent_signature_sign_hash( attributes,
104 key_buffer,
105 key_buffer_size,
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]106 alg,
107 hash,
108 hash_length,
109 signature,
110 signature_size,
111 signature_length );
112 /* Declared with fallback == true */
113 if( status != PSA_ERROR_NOT_SUPPORTED )
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]114 return( status );
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]115#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]116#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]117 /* Fell through, meaning no accelerator supports this operation */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]118 return( psa_sign_hash_internal( attributes,
119 key_buffer,
120 key_buffer_size,
121 alg,
122 hash,
123 hash_length,
124 signature,
125 signature_size,
126 signature_length ) );
127
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]128 /* Add cases for opaque driver here */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]129#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]130#if defined(PSA_CRYPTO_DRIVER_TEST)
131 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]132 return( test_opaque_signature_sign_hash( attributes,
133 key_buffer,
134 key_buffer_size,
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]135 alg,
136 hash,
137 hash_length,
138 signature,
139 signature_size,
140 signature_length ) );
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]141#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]142#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]143 default:
144 /* Key is declared with a lifetime not known to us */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]145 (void)status;
146 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]147 }
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]148}
149
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]150psa_status_t psa_driver_wrapper_verify_hash(
151 const psa_key_attributes_t *attributes,
152 const uint8_t *key_buffer, size_t key_buffer_size,
153 psa_algorithm_t alg, const uint8_t *hash, size_t hash_length,
154 const uint8_t *signature, size_t signature_length )
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]155{
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]156 /* Try dynamically-registered SE interface first */
157#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
158 const psa_drv_se_t *drv;
159 psa_drv_se_context_t *drv_context;
160
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]161 if( psa_get_se_driver( attributes->core.lifetime, &drv, &drv_context ) )
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]162 {
163 if( drv->asymmetric == NULL ||
164 drv->asymmetric->p_verify == NULL )
165 {
166 /* Key is defined in SE, but we have no way to exercise it */
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]167 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]168 }
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]169 return( drv->asymmetric->p_verify(
170 drv_context, *( (psa_key_slot_number_t *)key_buffer ),
171 alg, hash, hash_length,
172 signature, signature_length ) );
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]173 }
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]174#endif /* PSA_CRYPTO_SE_C */
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]175
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]176 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]177 psa_key_location_t location =
178 PSA_KEY_LIFETIME_GET_LOCATION( attributes->core.lifetime );
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]179
180 switch( location )
181 {
182 case PSA_KEY_LOCATION_LOCAL_STORAGE:
183 /* Key is stored in the slot in export representation, so
184 * cycle through all known transparent accelerators */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]185#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]186#if defined(PSA_CRYPTO_DRIVER_TEST)
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]187 status = test_transparent_signature_verify_hash( attributes,
188 key_buffer,
189 key_buffer_size,
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]190 alg,
191 hash,
192 hash_length,
193 signature,
194 signature_length );
195 /* Declared with fallback == true */
196 if( status != PSA_ERROR_NOT_SUPPORTED )
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]197 return( status );
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]198#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]199#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
200
201 return( psa_verify_hash_internal( attributes,
202 key_buffer,
203 key_buffer_size,
204 alg,
205 hash,
206 hash_length,
207 signature,
208 signature_length ) );
209
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]210 /* Add cases for opaque driver here */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]211#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]212#if defined(PSA_CRYPTO_DRIVER_TEST)
213 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
Ronald Cron9f17aa42020-12-08 17:07:25 +0100[diff] [blame]214 return( test_opaque_signature_verify_hash( attributes,
215 key_buffer,
216 key_buffer_size,
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]217 alg,
218 hash,
219 hash_length,
220 signature,
221 signature_length ) );
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]222#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]223#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]224 default:
225 /* Key is declared with a lifetime not known to us */
Ronald Cronfce9df22020-12-08 18:06:03 +0100[diff] [blame]226 (void)status;
227 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]228 }
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]229}
230
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]231/** Get the key buffer size for the key material of a generated key in the
232 * case of an opaque driver without storage.
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]233 *
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]234 * \param[in] attributes The key attributes.
235 * \param[out] key_buffer_size Minimum buffer size to contain the key material
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]236 *
237 * \retval #PSA_SUCCESS
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]238 * The minimum size for a buffer to contain the key material has been
239 * returned successfully.
240 * \retval #PSA_ERROR_INVALID_ARGUMENT
241 * The size in bits of the key is not valid.
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]242 * \retval #PSA_ERROR_NOT_SUPPORTED
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]243 * The type and/or the size in bits of the key or the combination of
244 * the two is not supported.
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]245 */
Ronald Cron9df74be2020-12-05 19:15:23 +0100[diff] [blame]246psa_status_t psa_driver_wrapper_get_key_buffer_size(
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]247 const psa_key_attributes_t *attributes,
248 size_t *key_buffer_size )
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]249{
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]250 psa_key_location_t location = PSA_KEY_LIFETIME_GET_LOCATION( attributes->core.lifetime );
251 psa_key_type_t key_type = attributes->core.type;
252 size_t key_bits = attributes->core.bits;
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]253
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]254 *key_buffer_size = 0;
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]255 switch( location )
256 {
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]257#if defined(PSA_CRYPTO_DRIVER_TEST)
258 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
John Durkopac93e3b2020-10-16 06:48:55 -0700[diff] [blame]259#ifdef TEST_DRIVER_KEY_CONTEXT_SIZE_FUNCTION
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]260 *key_buffer_size = test_size_function( key_type, key_bits );
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]261 return( PSA_SUCCESS );
262#else /* TEST_DRIVER_KEY_CONTEXT_SIZE_FUNCTION */
263 if( PSA_KEY_TYPE_IS_KEY_PAIR( key_type ) )
264 {
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]265 int public_key_overhead =
266 ( ( TEST_DRIVER_KEY_CONTEXT_STORE_PUBLIC_KEY == 1 ) ?
267 PSA_EXPORT_KEY_OUTPUT_SIZE( key_type, key_bits ) : 0 );
268 *key_buffer_size = TEST_DRIVER_KEY_CONTEXT_BASE_SIZE
John Durkop135ce692020-10-19 07:12:28 -0700[diff] [blame]269 + TEST_DRIVER_KEY_CONTEXT_PUBLIC_KEY_SIZE
270 + public_key_overhead;
271 }
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]272 else if( PSA_KEY_TYPE_IS_PUBLIC_KEY( key_type ) )
John Durkop135ce692020-10-19 07:12:28 -0700[diff] [blame]273 {
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]274 *key_buffer_size = TEST_DRIVER_KEY_CONTEXT_BASE_SIZE
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]275 + TEST_DRIVER_KEY_CONTEXT_PUBLIC_KEY_SIZE;
276 }
John Durkop135ce692020-10-19 07:12:28 -0700[diff] [blame]277 else if ( !PSA_KEY_TYPE_IS_KEY_PAIR( key_type ) &&
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]278 !PSA_KEY_TYPE_IS_PUBLIC_KEY ( key_type ) )
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]279 {
Ronald Cron31216282020-12-05 18:47:56 +0100[diff] [blame]280 *key_buffer_size = TEST_DRIVER_KEY_CONTEXT_BASE_SIZE
John Durkop2c618352020-09-22 06:54:01 -0700[diff] [blame]281 + TEST_DRIVER_KEY_CONTEXT_SYMMETRIC_FACTOR
282 * ( ( key_bits + 7 ) / 8 );
283 }
284 else
285 {
286 return( PSA_ERROR_NOT_SUPPORTED );
287 }
288 return( PSA_SUCCESS );
289#endif /* TEST_DRIVER_KEY_CONTEXT_SIZE_FUNCTION */
290#endif /* PSA_CRYPTO_DRIVER_TEST */
291
292 default:
Ronald Cron9df74be2020-12-05 19:15:23 +0100[diff] [blame]293 (void)key_type;
294 (void)key_bits;
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]295 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]296 }
297}
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]298
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]299psa_status_t psa_driver_wrapper_generate_key(
300 const psa_key_attributes_t *attributes,
301 uint8_t *key_buffer, size_t key_buffer_size, size_t *key_buffer_length )
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]302{
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]303 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
304 psa_key_location_t location =
305 PSA_KEY_LIFETIME_GET_LOCATION(attributes->core.lifetime);
306
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]307 /* Try dynamically-registered SE interface first */
308#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
309 const psa_drv_se_t *drv;
310 psa_drv_se_context_t *drv_context;
311
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]312 if( psa_get_se_driver( attributes->core.lifetime, &drv, &drv_context ) )
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]313 {
314 size_t pubkey_length = 0; /* We don't support this feature yet */
315 if( drv->key_management == NULL ||
316 drv->key_management->p_generate == NULL )
317 {
318 /* Key is defined as being in SE, but we have no way to generate it */
Steven Cooreman56250fd2020-09-04 13:07:15 +0200[diff] [blame]319 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]320 }
321 return( drv->key_management->p_generate(
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]322 drv_context,
323 *( (psa_key_slot_number_t *)key_buffer ),
Ronald Cronea0f8a62020-11-25 17:52:23 +0100[diff] [blame]324 attributes, NULL, 0, &pubkey_length ) );
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]325 }
326#endif /* MBEDTLS_PSA_CRYPTO_SE_C */
327
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]328 switch( location )
329 {
330 case PSA_KEY_LOCATION_LOCAL_STORAGE:
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]331#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]332 /* Transparent drivers are limited to generating asymmetric keys */
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]333 if( PSA_KEY_TYPE_IS_ASYMMETRIC( attributes->core.type ) )
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]334 {
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]335 /* Cycle through all known transparent accelerators */
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]336#if defined(PSA_CRYPTO_DRIVER_TEST)
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]337 status = test_transparent_generate_key(
338 attributes, key_buffer, key_buffer_size,
339 key_buffer_length );
340 /* Declared with fallback == true */
341 if( status != PSA_ERROR_NOT_SUPPORTED )
342 break;
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]343#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]344 }
345#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
346
347 /* Software fallback */
348 status = psa_generate_key_internal(
349 attributes, key_buffer, key_buffer_size, key_buffer_length );
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]350 break;
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]351
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]352 /* Add cases for opaque driver here */
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]353#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]354#if defined(PSA_CRYPTO_DRIVER_TEST)
355 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]356 status = test_opaque_generate_key(
357 attributes, key_buffer, key_buffer_size, key_buffer_length );
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]358 break;
Steven Cooremanf1720ea2020-07-24 18:41:58 +0200[diff] [blame]359#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron977c2472020-10-13 08:32:21 +0200[diff] [blame]360#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
361
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]362 default:
363 /* Key is declared with a lifetime not known to us */
364 status = PSA_ERROR_INVALID_ARGUMENT;
365 break;
366 }
367
Steven Cooreman2a1664c2020-07-20 15:33:08 +0200[diff] [blame]368 return( status );
Steven Cooreman55ae2172020-07-17 19:46:15 +0200[diff] [blame]369}
370
Ronald Cron83282872020-11-22 14:02:39 +0100[diff] [blame]371psa_status_t psa_driver_wrapper_import_key(
372 const psa_key_attributes_t *attributes,
373 const uint8_t *data,
374 size_t data_length,
375 uint8_t *key_buffer,
376 size_t key_buffer_size,
377 size_t *key_buffer_length,
378 size_t *bits )
Steven Cooreman04524762020-10-13 17:43:44 +0200[diff] [blame]379{
Steven Cooreman04524762020-10-13 17:43:44 +0200[diff] [blame]380 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Ronald Cronbf33c932020-11-28 18:06:53 +0100[diff] [blame]381 psa_key_location_t location = PSA_KEY_LIFETIME_GET_LOCATION(
382 psa_get_key_lifetime( attributes ) );
Steven Cooreman04524762020-10-13 17:43:44 +0200[diff] [blame]383
Ronald Cronfb2ed5b2020-11-30 12:11:01 +0100[diff] [blame]384 /* Try dynamically-registered SE interface first */
385#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
386 const psa_drv_se_t *drv;
387 psa_drv_se_context_t *drv_context;
388
389 if( psa_get_se_driver( attributes->core.lifetime, &drv, &drv_context ) )
390 {
391 if( drv->key_management == NULL ||
392 drv->key_management->p_import == NULL )
393 return( PSA_ERROR_NOT_SUPPORTED );
394
395 /* The driver should set the number of key bits, however in
396 * case it doesn't, we initialize bits to an invalid value. */
397 *bits = PSA_MAX_KEY_BITS + 1;
398 status = drv->key_management->p_import(
399 drv_context,
400 *( (psa_key_slot_number_t *)key_buffer ),
401 attributes, data, data_length, bits );
402
403 if( status != PSA_SUCCESS )
404 return( status );
405
406 if( (*bits) > PSA_MAX_KEY_BITS )
407 return( PSA_ERROR_NOT_SUPPORTED );
408
409 return( PSA_SUCCESS );
410 }
411#endif /* PSA_CRYPTO_SE_C */
412
Ronald Cronbf33c932020-11-28 18:06:53 +0100[diff] [blame]413 switch( location )
414 {
415 case PSA_KEY_LOCATION_LOCAL_STORAGE:
416 /* Key is stored in the slot in export representation, so
417 * cycle through all known transparent accelerators */
418#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
419#if defined(PSA_CRYPTO_DRIVER_TEST)
420 status = test_transparent_import_key( attributes,
421 data, data_length,
422 key_buffer, key_buffer_size,
423 key_buffer_length, bits );
424 /* Declared with fallback == true */
425 if( status != PSA_ERROR_NOT_SUPPORTED )
426 return( status );
427#endif /* PSA_CRYPTO_DRIVER_TEST */
428#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
429 /* Fell through, meaning no accelerator supports this operation */
430 return( psa_import_key_into_slot( attributes,
431 data, data_length,
432 key_buffer, key_buffer_size,
433 key_buffer_length, bits ) );
434
435 default:
Ronald Cronfb2ed5b2020-11-30 12:11:01 +0100[diff] [blame]436 /* Importing a key with external storage in not yet supported.
437 * Return in error indicating that the lifetime is not valid. */
Ronald Cronbf33c932020-11-28 18:06:53 +0100[diff] [blame]438 (void)status;
Ronald Cronfb2ed5b2020-11-30 12:11:01 +0100[diff] [blame]439 return( PSA_ERROR_INVALID_ARGUMENT );
Ronald Cronbf33c932020-11-28 18:06:53 +0100[diff] [blame]440 }
441
Steven Cooreman04524762020-10-13 17:43:44 +0200[diff] [blame]442}
443
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]444psa_status_t psa_driver_wrapper_export_key(
445 const psa_key_attributes_t *attributes,
446 const uint8_t *key_buffer, size_t key_buffer_size,
447 uint8_t *data, size_t data_size, size_t *data_length )
448
449{
450 psa_status_t status = PSA_ERROR_INVALID_ARGUMENT;
451 psa_key_location_t location = PSA_KEY_LIFETIME_GET_LOCATION(
452 psa_get_key_lifetime( attributes ) );
453
Ronald Cron152e3f82020-11-26 16:06:41 +0100[diff] [blame]454 /* Try dynamically-registered SE interface first */
455#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
456 const psa_drv_se_t *drv;
457 psa_drv_se_context_t *drv_context;
458
459 if( psa_get_se_driver( attributes->core.lifetime, &drv, &drv_context ) )
460 {
461 if( ( drv->key_management == NULL ) ||
462 ( drv->key_management->p_export == NULL ) )
Ronald Cron9cfdf6e2021-01-18 11:58:39 +0100[diff] [blame]463 {
Ronald Cron152e3f82020-11-26 16:06:41 +0100[diff] [blame]464 return( PSA_ERROR_NOT_SUPPORTED );
Ronald Cron9cfdf6e2021-01-18 11:58:39 +0100[diff] [blame]465 }
Ronald Cron152e3f82020-11-26 16:06:41 +0100[diff] [blame]466
467 return( drv->key_management->p_export(
468 drv_context,
469 *( (psa_key_slot_number_t *)key_buffer ),
470 data, data_size, data_length ) );
471 }
472#endif /* PSA_CRYPTO_SE_C */
473
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]474 switch( location )
475 {
476 case PSA_KEY_LOCATION_LOCAL_STORAGE:
477 return( psa_export_key_internal( attributes,
478 key_buffer,
479 key_buffer_size,
480 data,
481 data_size,
482 data_length ) );
483
484 /* Add cases for opaque driver here */
485#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
486#if defined(PSA_CRYPTO_DRIVER_TEST)
487 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
488 return( test_opaque_export_key( attributes,
489 key_buffer,
490 key_buffer_size,
491 data,
492 data_size,
493 data_length ) );
494#endif /* PSA_CRYPTO_DRIVER_TEST */
495#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
496 default:
497 /* Key is declared with a lifetime not known to us */
498 return( status );
499 }
500}
501
Ronald Cron84cc9942020-11-25 14:30:05 +0100[diff] [blame]502psa_status_t psa_driver_wrapper_export_public_key(
503 const psa_key_attributes_t *attributes,
504 const uint8_t *key_buffer, size_t key_buffer_size,
505 uint8_t *data, size_t data_size, size_t *data_length )
506
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]507{
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]508 psa_status_t status = PSA_ERROR_INVALID_ARGUMENT;
Ronald Cron84cc9942020-11-25 14:30:05 +0100[diff] [blame]509 psa_key_location_t location = PSA_KEY_LIFETIME_GET_LOCATION(
510 psa_get_key_lifetime( attributes ) );
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]511
Ronald Cron152e3f82020-11-26 16:06:41 +0100[diff] [blame]512 /* Try dynamically-registered SE interface first */
513#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
514 const psa_drv_se_t *drv;
515 psa_drv_se_context_t *drv_context;
516
517 if( psa_get_se_driver( attributes->core.lifetime, &drv, &drv_context ) )
518 {
519 if( ( drv->key_management == NULL ) ||
520 ( drv->key_management->p_export_public == NULL ) )
Ronald Cron9cfdf6e2021-01-18 11:58:39 +0100[diff] [blame]521 {
Ronald Cron152e3f82020-11-26 16:06:41 +0100[diff] [blame]522 return( PSA_ERROR_NOT_SUPPORTED );
Ronald Cron9cfdf6e2021-01-18 11:58:39 +0100[diff] [blame]523 }
Ronald Cron152e3f82020-11-26 16:06:41 +0100[diff] [blame]524
525 return( drv->key_management->p_export_public(
526 drv_context,
527 *( (psa_key_slot_number_t *)key_buffer ),
528 data, data_size, data_length ) );
529 }
530#endif /* MBEDTLS_PSA_CRYPTO_SE_C */
531
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]532 switch( location )
533 {
534 case PSA_KEY_LOCATION_LOCAL_STORAGE:
535 /* Key is stored in the slot in export representation, so
536 * cycle through all known transparent accelerators */
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]537#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]538#if defined(PSA_CRYPTO_DRIVER_TEST)
Ronald Cron84cc9942020-11-25 14:30:05 +0100[diff] [blame]539 status = test_transparent_export_public_key( attributes,
540 key_buffer,
541 key_buffer_size,
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]542 data,
543 data_size,
544 data_length );
545 /* Declared with fallback == true */
546 if( status != PSA_ERROR_NOT_SUPPORTED )
547 return( status );
548#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]549#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]550 /* Fell through, meaning no accelerator supports this operation */
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]551 return( psa_export_public_key_internal( attributes,
552 key_buffer,
553 key_buffer_size,
554 data,
555 data_size,
556 data_length ) );
557
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]558 /* Add cases for opaque driver here */
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]559#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]560#if defined(PSA_CRYPTO_DRIVER_TEST)
561 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
Ronald Cron84cc9942020-11-25 14:30:05 +0100[diff] [blame]562 return( test_opaque_export_public_key( attributes,
563 key_buffer,
564 key_buffer_size,
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]565 data,
566 data_size,
567 data_length ) );
568#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron67227982020-11-26 15:16:05 +0100[diff] [blame]569#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]570 default:
571 /* Key is declared with a lifetime not known to us */
572 return( status );
573 }
Steven Cooremanb9b84422020-10-14 14:39:20 +0200[diff] [blame]574}
575
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]576/*
577 * Cipher functions
578 */
579psa_status_t psa_driver_wrapper_cipher_encrypt(
580 psa_key_slot_t *slot,
581 psa_algorithm_t alg,
582 const uint8_t *input,
583 size_t input_length,
584 uint8_t *output,
585 size_t output_size,
586 size_t *output_length )
587{
588#if defined(PSA_CRYPTO_DRIVER_PRESENT) && defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
589 psa_status_t status = PSA_ERROR_INVALID_ARGUMENT;
590 psa_key_location_t location = PSA_KEY_LIFETIME_GET_LOCATION(slot->attr.lifetime);
591 psa_key_attributes_t attributes = {
592 .core = slot->attr
593 };
594
595 switch( location )
596 {
597 case PSA_KEY_LOCATION_LOCAL_STORAGE:
598 /* Key is stored in the slot in export representation, so
599 * cycle through all known transparent accelerators */
600#if defined(PSA_CRYPTO_DRIVER_TEST)
601 status = test_transparent_cipher_encrypt( &attributes,
Ronald Cronea0f8a62020-11-25 17:52:23 +0100[diff] [blame]602 slot->key.data,
603 slot->key.bytes,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]604 alg,
605 input,
606 input_length,
607 output,
608 output_size,
609 output_length );
610 /* Declared with fallback == true */
611 if( status != PSA_ERROR_NOT_SUPPORTED )
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]612 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]613#endif /* PSA_CRYPTO_DRIVER_TEST */
614 /* Fell through, meaning no accelerator supports this operation */
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]615 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]616 /* Add cases for opaque driver here */
617#if defined(PSA_CRYPTO_DRIVER_TEST)
618 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
619 return( test_opaque_cipher_encrypt( &attributes,
Ronald Cronea0f8a62020-11-25 17:52:23 +0100[diff] [blame]620 slot->key.data,
621 slot->key.bytes,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]622 alg,
623 input,
624 input_length,
625 output,
626 output_size,
627 output_length ) );
628#endif /* PSA_CRYPTO_DRIVER_TEST */
629 default:
630 /* Key is declared with a lifetime not known to us */
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]631 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]632 }
633#else /* PSA_CRYPTO_DRIVER_PRESENT */
634 (void) slot;
635 (void) alg;
636 (void) input;
637 (void) input_length;
638 (void) output;
639 (void) output_size;
640 (void) output_length;
641
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]642 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]643#endif /* PSA_CRYPTO_DRIVER_PRESENT */
644}
645
646psa_status_t psa_driver_wrapper_cipher_decrypt(
647 psa_key_slot_t *slot,
648 psa_algorithm_t alg,
649 const uint8_t *input,
650 size_t input_length,
651 uint8_t *output,
652 size_t output_size,
653 size_t *output_length )
654{
655#if defined(PSA_CRYPTO_DRIVER_PRESENT) && defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
656 psa_status_t status = PSA_ERROR_INVALID_ARGUMENT;
657 psa_key_location_t location = PSA_KEY_LIFETIME_GET_LOCATION(slot->attr.lifetime);
658 psa_key_attributes_t attributes = {
659 .core = slot->attr
660 };
661
662 switch( location )
663 {
664 case PSA_KEY_LOCATION_LOCAL_STORAGE:
665 /* Key is stored in the slot in export representation, so
666 * cycle through all known transparent accelerators */
667#if defined(PSA_CRYPTO_DRIVER_TEST)
668 status = test_transparent_cipher_decrypt( &attributes,
Ronald Cronea0f8a62020-11-25 17:52:23 +0100[diff] [blame]669 slot->key.data,
670 slot->key.bytes,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]671 alg,
672 input,
673 input_length,
674 output,
675 output_size,
676 output_length );
677 /* Declared with fallback == true */
678 if( status != PSA_ERROR_NOT_SUPPORTED )
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]679 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]680#endif /* PSA_CRYPTO_DRIVER_TEST */
681 /* Fell through, meaning no accelerator supports this operation */
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]682 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]683 /* Add cases for opaque driver here */
684#if defined(PSA_CRYPTO_DRIVER_TEST)
685 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
686 return( test_opaque_cipher_decrypt( &attributes,
Ronald Cronea0f8a62020-11-25 17:52:23 +0100[diff] [blame]687 slot->key.data,
688 slot->key.bytes,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]689 alg,
690 input,
691 input_length,
692 output,
693 output_size,
694 output_length ) );
695#endif /* PSA_CRYPTO_DRIVER_TEST */
696 default:
697 /* Key is declared with a lifetime not known to us */
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]698 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]699 }
700#else /* PSA_CRYPTO_DRIVER_PRESENT */
701 (void) slot;
702 (void) alg;
703 (void) input;
704 (void) input_length;
705 (void) output;
706 (void) output_size;
707 (void) output_length;
708
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]709 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]710#endif /* PSA_CRYPTO_DRIVER_PRESENT */
711}
712
713psa_status_t psa_driver_wrapper_cipher_encrypt_setup(
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]714 psa_cipher_operation_t *operation,
715 const psa_key_attributes_t *attributes,
716 const uint8_t *key_buffer, size_t key_buffer_size,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]717 psa_algorithm_t alg )
718{
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]719 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]720 psa_key_location_t location =
721 PSA_KEY_LIFETIME_GET_LOCATION( attributes->core.lifetime );
722 void *driver_ctx = NULL;
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]723
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]724 switch( location )
725 {
726 case PSA_KEY_LOCATION_LOCAL_STORAGE:
727 /* Key is stored in the slot in export representation, so
728 * cycle through all known transparent accelerators */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]729#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]730#if defined(PSA_CRYPTO_DRIVER_TEST)
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]731 driver_ctx = mbedtls_calloc( 1,
732 sizeof( test_transparent_cipher_operation_t ) );
733 if( driver_ctx == NULL )
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]734 return PSA_ERROR_INSUFFICIENT_MEMORY;
735
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]736 status = test_transparent_cipher_encrypt_setup( driver_ctx,
737 attributes,
738 key_buffer,
739 key_buffer_size,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]740 alg );
741 /* Declared with fallback == true */
Steven Cooreman150c99b2020-09-09 14:32:44 +0200[diff] [blame]742 if( status == PSA_SUCCESS )
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]743 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]744 operation->id = PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID;
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]745 operation->ctx.driver.ctx = driver_ctx;
746 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]747 else
748 {
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]749 mbedtls_platform_zeroize( driver_ctx,
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]750 sizeof( test_transparent_cipher_operation_t ) );
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]751 mbedtls_free( driver_ctx );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]752 }
Steven Cooreman150c99b2020-09-09 14:32:44 +0200[diff] [blame]753
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]754 if( status != PSA_ERROR_NOT_SUPPORTED )
755 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]756#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]757#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]758 /* Fell through, meaning no accelerator supports this operation */
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]759 status = mbedtls_psa_cipher_encrypt_setup( &operation->ctx.mbedtls_ctx,
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]760 attributes,
761 key_buffer,
762 key_buffer_size,
763 alg );
764 if( status == PSA_SUCCESS )
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]765 operation->id = PSA_CRYPTO_MBED_TLS_DRIVER_ID;
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]766
767 return( status );
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]768
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]769 /* Add cases for opaque driver here */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]770#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]771#if defined(PSA_CRYPTO_DRIVER_TEST)
772 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]773 driver_ctx =
774 mbedtls_calloc( 1, sizeof(test_opaque_cipher_operation_t) );
775 if( driver_ctx == NULL )
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]776 return( PSA_ERROR_INSUFFICIENT_MEMORY );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]777
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]778 status = test_opaque_cipher_encrypt_setup( driver_ctx,
779 attributes,
780 key_buffer,
781 key_buffer_size,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]782 alg );
783 if( status == PSA_SUCCESS )
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]784 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]785 operation->id = PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID;
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]786 operation->ctx.driver.ctx = driver_ctx;
787 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]788 else
789 {
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]790 mbedtls_platform_zeroize(
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]791 driver_ctx, sizeof( test_opaque_cipher_operation_t ) );
792 mbedtls_free( driver_ctx );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]793 }
794
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]795 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]796#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]797#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]798 default:
799 /* Key is declared with a lifetime not known to us */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]800 (void)status;
801 (void)driver_ctx;
Ronald Cronc45b4af2020-09-29 16:18:05 +0200[diff] [blame]802 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]803 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]804}
805
806psa_status_t psa_driver_wrapper_cipher_decrypt_setup(
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]807 psa_cipher_operation_t *operation,
808 const psa_key_attributes_t *attributes,
809 const uint8_t *key_buffer, size_t key_buffer_size,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]810 psa_algorithm_t alg )
811{
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]812 psa_status_t status = PSA_ERROR_INVALID_ARGUMENT;
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]813 psa_key_location_t location =
814 PSA_KEY_LIFETIME_GET_LOCATION( attributes->core.lifetime );
815 void *driver_ctx = NULL;
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]816
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]817 switch( location )
818 {
819 case PSA_KEY_LOCATION_LOCAL_STORAGE:
820 /* Key is stored in the slot in export representation, so
821 * cycle through all known transparent accelerators */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]822#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]823#if defined(PSA_CRYPTO_DRIVER_TEST)
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]824 driver_ctx = mbedtls_calloc( 1,
825 sizeof( test_transparent_cipher_operation_t ) );
826 if( driver_ctx == NULL )
827 return PSA_ERROR_INSUFFICIENT_MEMORY;
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]828
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]829 status = test_transparent_cipher_decrypt_setup( driver_ctx,
830 attributes,
831 key_buffer,
832 key_buffer_size,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]833 alg );
834 /* Declared with fallback == true */
Steven Cooreman150c99b2020-09-09 14:32:44 +0200[diff] [blame]835 if( status == PSA_SUCCESS )
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]836 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]837 operation->id = PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID;
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]838 operation->ctx.driver.ctx = driver_ctx;
839 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]840 else
841 {
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]842 mbedtls_platform_zeroize( driver_ctx,
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]843 sizeof( test_transparent_cipher_operation_t ) );
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]844 mbedtls_free( driver_ctx );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]845 }
Steven Cooreman150c99b2020-09-09 14:32:44 +0200[diff] [blame]846
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]847 if( status != PSA_ERROR_NOT_SUPPORTED )
848 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]849#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]850#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]851 /* Fell through, meaning no accelerator supports this operation */
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]852 status = mbedtls_psa_cipher_decrypt_setup( &operation->ctx.mbedtls_ctx,
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]853 attributes,
854 key_buffer,
855 key_buffer_size,
856 alg );
857 if( status == PSA_SUCCESS )
858 operation->id = PSA_CRYPTO_MBED_TLS_DRIVER_ID;
859
860 return( status );
861
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]862 /* Add cases for opaque driver here */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]863#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]864#if defined(PSA_CRYPTO_DRIVER_TEST)
865 case PSA_CRYPTO_TEST_DRIVER_LIFETIME:
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]866 driver_ctx =
867 mbedtls_calloc( 1, sizeof(test_opaque_cipher_operation_t) );
868 if( driver_ctx == NULL )
869 return( PSA_ERROR_INSUFFICIENT_MEMORY );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]870
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]871 status = test_opaque_cipher_decrypt_setup( driver_ctx,
872 attributes,
873 key_buffer,
874 key_buffer_size,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]875 alg );
876 if( status == PSA_SUCCESS )
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]877 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]878 operation->id = PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID;
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]879 operation->ctx.driver.ctx = driver_ctx;
880 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]881 else
882 {
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]883 mbedtls_platform_zeroize(
Ronald Crona4af55f2020-12-14 14:36:06 +0100[diff] [blame]884 driver_ctx, sizeof( test_opaque_cipher_operation_t ) );
885 mbedtls_free( driver_ctx );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]886 }
887
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]888 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]889#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]890#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]891 default:
892 /* Key is declared with a lifetime not known to us */
Ronald Cron0b805592020-12-14 18:08:20 +0100[diff] [blame]893 (void)status;
894 (void)driver_ctx;
Ronald Cronc45b4af2020-09-29 16:18:05 +0200[diff] [blame]895 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]896 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]897}
898
899psa_status_t psa_driver_wrapper_cipher_generate_iv(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]900 psa_cipher_operation_t *operation,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]901 uint8_t *iv,
902 size_t iv_size,
903 size_t *iv_length )
904{
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]905 switch( operation->id )
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]906 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]907 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]908 return( mbedtls_psa_cipher_generate_iv( &operation->ctx.mbedtls_ctx,
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]909 iv,
910 iv_size,
911 iv_length ) );
912#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]913#if defined(PSA_CRYPTO_DRIVER_TEST)
914 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]915 return( test_transparent_cipher_generate_iv(
916 operation->ctx.driver.ctx,
917 iv,
918 iv_size,
919 iv_length ) );
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]920
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]921 case PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]922 return( test_opaque_cipher_generate_iv(
923 operation->ctx.driver.ctx,
924 iv,
925 iv_size,
926 iv_length ) );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]927#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]928#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]929 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]930
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]931 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]932}
933
934psa_status_t psa_driver_wrapper_cipher_set_iv(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]935 psa_cipher_operation_t *operation,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]936 const uint8_t *iv,
937 size_t iv_length )
938{
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]939 switch( operation->id )
940 {
941 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]942 return( mbedtls_psa_cipher_set_iv( &operation->ctx.mbedtls_ctx,
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]943 iv,
944 iv_length ) );
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]945
946#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]947#if defined(PSA_CRYPTO_DRIVER_TEST)
948 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]949 return( test_transparent_cipher_set_iv( operation->ctx.driver.ctx,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]950 iv,
951 iv_length ) );
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]952
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]953 case PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]954 return( test_opaque_cipher_set_iv( operation->ctx.driver.ctx,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]955 iv,
956 iv_length ) );
957#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]958#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]959 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]960
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]961 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]962}
963
964psa_status_t psa_driver_wrapper_cipher_update(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]965 psa_cipher_operation_t *operation,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]966 const uint8_t *input,
967 size_t input_length,
968 uint8_t *output,
969 size_t output_size,
970 size_t *output_length )
971{
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]972 switch( operation->id )
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]973 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]974 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]975 return( mbedtls_psa_cipher_update( &operation->ctx.mbedtls_ctx,
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]976 input,
977 input_length,
978 output,
979 output_size,
980 output_length ) );
981#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]982#if defined(PSA_CRYPTO_DRIVER_TEST)
983 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]984 return( test_transparent_cipher_update( operation->ctx.driver.ctx,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]985 input,
986 input_length,
987 output,
988 output_size,
989 output_length ) );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]990 case PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]991 return( test_opaque_cipher_update( operation->ctx.driver.ctx,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]992 input,
993 input_length,
994 output,
995 output_size,
996 output_length ) );
997#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]998#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]999 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1000
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1001 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1002}
1003
1004psa_status_t psa_driver_wrapper_cipher_finish(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1005 psa_cipher_operation_t *operation,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1006 uint8_t *output,
1007 size_t output_size,
1008 size_t *output_length )
1009{
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1010 switch( operation->id )
1011 {
1012 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]1013 return( mbedtls_psa_cipher_finish( &operation->ctx.mbedtls_ctx,
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1014 output,
1015 output_size,
1016 output_length ) );
1017
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1018
1019#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1020#if defined(PSA_CRYPTO_DRIVER_TEST)
1021 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1022 return( test_transparent_cipher_finish( operation->ctx.driver.ctx,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1023 output,
1024 output_size,
1025 output_length ) );
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1026
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1027 case PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1028 return( test_opaque_cipher_finish( operation->ctx.driver.ctx,
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1029 output,
1030 output_size,
1031 output_length ) );
1032#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1033#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1034 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1035
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1036 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1037}
1038
1039psa_status_t psa_driver_wrapper_cipher_abort(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1040 psa_cipher_operation_t *operation )
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1041{
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1042 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1043 psa_operation_driver_context_t *driver_context = &operation->ctx.driver;
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]1044
1045 /* The object has (apparently) been initialized but it is not in use. It's
1046 * ok to call abort on such an object, and there's nothing to do. */
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1047 if( ( operation->id != PSA_CRYPTO_MBED_TLS_DRIVER_ID ) &&
1048 ( driver_context->ctx == NULL ) )
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]1049 return( PSA_SUCCESS );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1050
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1051 switch( operation->id )
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1052 {
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1053 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
Ronald Cron6e412a72021-03-10 09:58:47 +0100[diff] [blame^]1054 return( mbedtls_psa_cipher_abort( &operation->ctx.mbedtls_ctx ) );
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1055
1056#if defined(PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT)
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1057#if defined(PSA_CRYPTO_DRIVER_TEST)
1058 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1059 status = test_transparent_cipher_abort( driver_context->ctx );
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]1060 mbedtls_platform_zeroize(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1061 driver_context->ctx,
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]1062 sizeof( test_transparent_cipher_operation_t ) );
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1063 mbedtls_free( driver_context->ctx );
1064 driver_context->ctx = NULL;
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1065
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]1066 return( status );
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1067
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1068 case PSA_CRYPTO_OPAQUE_TEST_DRIVER_ID:
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1069 status = test_opaque_cipher_abort( driver_context->ctx );
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]1070 mbedtls_platform_zeroize(
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1071 driver_context->ctx,
Steven Cooremancfeea8f2020-09-09 15:09:18 +0200[diff] [blame]1072 sizeof( test_opaque_cipher_operation_t ) );
Ronald Cron6056fe82020-12-15 13:58:07 +0100[diff] [blame]1073 mbedtls_free( driver_context->ctx );
1074 driver_context->ctx = NULL;
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1075
Steven Cooreman5240e8b2020-09-09 11:51:45 +0200[diff] [blame]1076 return( status );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1077#endif /* PSA_CRYPTO_DRIVER_TEST */
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1078#endif /* PSA_CRYPTO_ACCELERATOR_DRIVER_PRESENT */
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1079 }
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1080
Ronald Cron49fafa92021-03-10 08:34:23 +0100[diff] [blame]1081 (void)status;
Ronald Crondd24c9b2020-12-15 14:10:01 +0100[diff] [blame]1082 return( PSA_ERROR_INVALID_ARGUMENT );
Steven Cooreman37941cb2020-07-28 18:49:51 +0200[diff] [blame]1083}
1084
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1085/*
1086 * Hashing functions
1087 */
1088psa_status_t psa_driver_wrapper_hash_compute(
1089 psa_algorithm_t alg,
1090 const uint8_t *input,
1091 size_t input_length,
1092 uint8_t *hash,
1093 size_t hash_size,
1094 size_t *hash_length)
1095{
Steven Cooreman0eeb7942021-03-08 12:13:21 +0100[diff] [blame]1096 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1097
1098 /* Try accelerators first */
Steven Cooremanf8e45a42021-03-16 11:07:55 +0100[diff] [blame]1099#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooreman0f8ffa82021-03-15 11:56:33 +0100[diff] [blame]1100 status = mbedtls_transparent_test_driver_hash_compute(
1101 alg, input, input_length, hash, hash_size, hash_length );
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1102 if( status != PSA_ERROR_NOT_SUPPORTED )
1103 return( status );
1104#endif
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1105
1106 /* If software fallback is compiled in, try fallback */
1107#if defined(MBEDTLS_PSA_BUILTIN_HASH)
1108 status = mbedtls_psa_hash_compute( alg, input, input_length,
1109 hash, hash_size, hash_length );
1110 if( status != PSA_ERROR_NOT_SUPPORTED )
1111 return( status );
1112#endif
Steven Cooreman0eeb7942021-03-08 12:13:21 +0100[diff] [blame]1113 (void) status;
1114 (void) alg;
1115 (void) input;
1116 (void) input_length;
1117 (void) hash;
1118 (void) hash_size;
1119 (void) hash_length;
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1120
Steven Cooreman0eeb7942021-03-08 12:13:21 +0100[diff] [blame]1121 return( PSA_ERROR_NOT_SUPPORTED );
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1122}
1123
1124psa_status_t psa_driver_wrapper_hash_setup(
Steven Cooremandbf8ced2021-03-04 13:01:18 +0100[diff] [blame]1125 psa_hash_operation_t *operation,
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1126 psa_algorithm_t alg )
1127{
Steven Cooreman0eeb7942021-03-08 12:13:21 +0100[diff] [blame]1128 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1129
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1130 /* Try setup on accelerators first */
Steven Cooremanf8e45a42021-03-16 11:07:55 +0100[diff] [blame]1131#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooreman0f8ffa82021-03-15 11:56:33 +0100[diff] [blame]1132 status = mbedtls_transparent_test_driver_hash_setup(
1133 &operation->ctx.test_driver_ctx, alg );
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1134 if( status == PSA_SUCCESS )
1135 operation->id = PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID;
1136
1137 if( status != PSA_ERROR_NOT_SUPPORTED )
1138 return( status );
1139#endif
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1140
1141 /* If software fallback is compiled in, try fallback */
1142#if defined(MBEDTLS_PSA_BUILTIN_HASH)
Steven Cooremandbf8ced2021-03-04 13:01:18 +0100[diff] [blame]1143 status = mbedtls_psa_hash_setup( &operation->ctx.mbedtls_ctx, alg );
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1144 if( status == PSA_SUCCESS )
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1145 operation->id = PSA_CRYPTO_MBED_TLS_DRIVER_ID;
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1146
1147 if( status != PSA_ERROR_NOT_SUPPORTED )
1148 return( status );
1149#endif
1150 /* Nothing left to try if we fall through here */
1151 (void) status;
1152 (void) operation;
1153 (void) alg;
1154 return( PSA_ERROR_NOT_SUPPORTED );
1155}
1156
1157psa_status_t psa_driver_wrapper_hash_clone(
Steven Cooremandbf8ced2021-03-04 13:01:18 +0100[diff] [blame]1158 const psa_hash_operation_t *source_operation,
1159 psa_hash_operation_t *target_operation )
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1160{
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1161 switch( source_operation->id )
1162 {
Steven Cooreman5e4c18f2021-03-15 12:26:07 +0100[diff] [blame]1163#if defined(MBEDTLS_PSA_BUILTIN_HASH)
1164 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
1165 target_operation->id = PSA_CRYPTO_MBED_TLS_DRIVER_ID;
1166 return( mbedtls_psa_hash_clone( &source_operation->ctx.mbedtls_ctx,
1167 &target_operation->ctx.mbedtls_ctx ) );
1168#endif
Steven Cooremanf8e45a42021-03-16 11:07:55 +0100[diff] [blame]1169#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1170 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
1171 target_operation->id = PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID;
Steven Cooreman0f8ffa82021-03-15 11:56:33 +0100[diff] [blame]1172 return( mbedtls_transparent_test_driver_hash_clone(
1173 &source_operation->ctx.test_driver_ctx,
1174 &target_operation->ctx.test_driver_ctx ) );
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1175#endif
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1176 default:
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1177 (void) target_operation;
1178 return( PSA_ERROR_BAD_STATE );
1179 }
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1180}
1181
1182psa_status_t psa_driver_wrapper_hash_update(
Steven Cooremandbf8ced2021-03-04 13:01:18 +0100[diff] [blame]1183 psa_hash_operation_t *operation,
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1184 const uint8_t *input,
1185 size_t input_length )
1186{
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1187 switch( operation->id )
1188 {
Steven Cooreman5e4c18f2021-03-15 12:26:07 +0100[diff] [blame]1189#if defined(MBEDTLS_PSA_BUILTIN_HASH)
1190 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
1191 return( mbedtls_psa_hash_update( &operation->ctx.mbedtls_ctx,
1192 input, input_length ) );
1193#endif
Steven Cooremanf8e45a42021-03-16 11:07:55 +0100[diff] [blame]1194#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1195 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Steven Cooreman0f8ffa82021-03-15 11:56:33 +0100[diff] [blame]1196 return( mbedtls_transparent_test_driver_hash_update(
1197 &operation->ctx.test_driver_ctx,
1198 input, input_length ) );
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1199#endif
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1200 default:
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1201 (void) input;
1202 (void) input_length;
1203 return( PSA_ERROR_BAD_STATE );
1204 }
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1205}
1206
1207psa_status_t psa_driver_wrapper_hash_finish(
Steven Cooremandbf8ced2021-03-04 13:01:18 +0100[diff] [blame]1208 psa_hash_operation_t *operation,
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1209 uint8_t *hash,
1210 size_t hash_size,
1211 size_t *hash_length )
1212{
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1213 switch( operation->id )
1214 {
Steven Cooreman5e4c18f2021-03-15 12:26:07 +0100[diff] [blame]1215#if defined(MBEDTLS_PSA_BUILTIN_HASH)
1216 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
1217 return( mbedtls_psa_hash_finish( &operation->ctx.mbedtls_ctx,
1218 hash, hash_size, hash_length ) );
1219#endif
Steven Cooremanf8e45a42021-03-16 11:07:55 +0100[diff] [blame]1220#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1221 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Steven Cooreman0f8ffa82021-03-15 11:56:33 +0100[diff] [blame]1222 return( mbedtls_transparent_test_driver_hash_finish(
1223 &operation->ctx.test_driver_ctx,
1224 hash, hash_size, hash_length ) );
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1225#endif
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1226 default:
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1227 (void) hash;
1228 (void) hash_size;
1229 (void) hash_length;
1230 return( PSA_ERROR_BAD_STATE );
1231 }
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1232}
1233
1234psa_status_t psa_driver_wrapper_hash_abort(
Steven Cooremandbf8ced2021-03-04 13:01:18 +0100[diff] [blame]1235 psa_hash_operation_t *operation )
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1236{
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1237 switch( operation->id )
1238 {
Steven Cooreman5e4c18f2021-03-15 12:26:07 +0100[diff] [blame]1239#if defined(MBEDTLS_PSA_BUILTIN_HASH)
1240 case PSA_CRYPTO_MBED_TLS_DRIVER_ID:
1241 return( mbedtls_psa_hash_abort( &operation->ctx.mbedtls_ctx ) );
1242#endif
Steven Cooremanf8e45a42021-03-16 11:07:55 +0100[diff] [blame]1243#if defined(PSA_CRYPTO_DRIVER_TEST)
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1244 case PSA_CRYPTO_TRANSPARENT_TEST_DRIVER_ID:
Steven Cooreman0f8ffa82021-03-15 11:56:33 +0100[diff] [blame]1245 return( mbedtls_transparent_test_driver_hash_abort(
1246 &operation->ctx.test_driver_ctx ) );
Steven Cooremanf7638102021-03-04 15:14:36 +0100[diff] [blame]1247#endif
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1248 default:
Steven Cooreman1e582352021-02-18 17:24:37 +0100[diff] [blame]1249 return( PSA_ERROR_BAD_STATE );
1250 }
1251}
1252
Steven Cooremancd84cb42020-07-16 20:28:36 +0200[diff] [blame]1253/* End of automatically generated file. */