TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / sandbox / pfalcon / trusted-firmware-m / 8f7db7df4360d7e5afe90560b920fdbd13db7b14 / . / secure_fw / partitions / crypto / crypto_init.c
blob: df8203753aa1c1295396321a640634ecf651ff55 [file] [log] [blame]
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]1/*
Kevin Peng6aa48952022-01-28 15:40:46 +0800[diff] [blame]2 * Copyright (c) 2018-2022, Arm Limited. All rights reserved.
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]3 *
4 * SPDX-License-Identifier: BSD-3-Clause
5 *
6 */
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]7#include <stdbool.h>
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]8
Xinyu Zhangd755b822022-10-25 11:18:09 +0800[diff] [blame]9#include "config_crypto.h"
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]10#include "tfm_mbedcrypto_include.h"
11
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]12#include "tfm_crypto_api.h"
Antonio de Angelis7557e682022-11-30 15:37:51 +0000[diff] [blame]13#include "tfm_crypto_key.h"
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]14#include "tfm_crypto_defs.h"
Summer Qinc737ece2020-08-28 10:47:26 +0800[diff] [blame]15#include "tfm_sp_log.h"
Summer Qinca6c1522022-06-17 14:25:55 +0800[diff] [blame]16#include "crypto_check_config.h"
Raef Coles79809c72022-03-02 13:48:20 +0000[diff] [blame]17#include "tfm_plat_crypto_keys.h"
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]18
Antonio de Angelis8f7db7d2022-12-01 12:09:16 +0000[diff] [blame^]19#include "crypto_library.h"
20
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]21/*
22 * \brief This Mbed TLS include is needed to initialise the memory allocator
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]23 * of the library used for internal allocations
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]24 */
25#include "mbedtls/memory_buffer_alloc.h"
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]26
Sherry Zhange1524982022-06-08 16:57:59 +0800[diff] [blame]27#include "mbedtls/platform.h"
28
Xinyu Zhangd755b822022-10-25 11:18:09 +0800[diff] [blame]29#if CRYPTO_NV_SEED
Raef Coles618fc152021-06-18 09:26:46 +0100[diff] [blame]30#include "tfm_plat_crypto_nv_seed.h"
31#endif /* CRYPTO_NV_SEED */
Summer Qina5448d62020-12-07 14:03:37 +0800[diff] [blame]32
Raef Colesd2485af2019-10-30 10:15:33 +0000[diff] [blame]33#ifdef CRYPTO_HW_ACCELERATOR
34#include "crypto_hw.h"
Michel Jaouenf41c6422021-10-07 14:38:08 +0200[diff] [blame]35#endif /* CRYPTO_HW_ACCELERATOR */
Raef Colesd2485af2019-10-30 10:15:33 +0000[diff] [blame]36
Ken Liub671d682022-05-12 20:39:29 +0800[diff] [blame]37#include <string.h>
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]38#include "psa/framework_feature.h"
Jamie Foxcc31d402019-01-28 17:13:52 +0000[diff] [blame]39#include "psa/service.h"
Edison Aicc4c6162019-06-21 13:52:49 +0800[diff] [blame]40#include "psa_manifest/tfm_crypto.h"
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]41
42/**
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]43 * \brief Aligns a value x up to an alignment a.
44 */
45#define ALIGN(x, a) (((x) + ((a) - 1)) & ~((a) - 1))
46
47/**
48 * \brief Maximum alignment required by any iovec parameters to the TF-M Crypto
49 * partition.
50 */
51#define TFM_CRYPTO_IOVEC_ALIGNMENT (4u)
52
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]53#if PSA_FRAMEWORK_HAS_MM_IOVEC == 1
54static int32_t g_client_id;
55
56static void tfm_crypto_set_caller_id(int32_t id)
57{
58 g_client_id = id;
59}
60
61psa_status_t tfm_crypto_get_caller_id(int32_t *id)
62{
63 *id = g_client_id;
64 return PSA_SUCCESS;
65}
66
67static psa_status_t tfm_crypto_init_iovecs(const psa_msg_t *msg,
68 psa_invec in_vec[],
69 size_t in_len,
70 psa_outvec out_vec[],
71 size_t out_len)
72{
73 uint32_t i;
74
75 /* Map from the second element as the first is read when parsing */
76 for (i = 1; i < in_len; i++) {
77 in_vec[i].len = msg->in_size[i];
78 if (in_vec[i].len != 0) {
79 in_vec[i].base = psa_map_invec(msg->handle, i);
80 } else {
81 in_vec[i].base = NULL;
82 }
83 }
84
85 for (i = 0; i < out_len; i++) {
86 out_vec[i].len = msg->out_size[i];
87 if (out_vec[i].len != 0) {
88 out_vec[i].base = psa_map_outvec(msg->handle, i);
89 } else {
90 out_vec[i].base = NULL;
91 }
92 }
93
94 return PSA_SUCCESS;
95}
96#else /* PSA_FRAMEWORK_HAS_MM_IOVEC == 1 */
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]97/**
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]98 * \brief Internal scratch used for IOVec allocations
99 *
100 */
101static struct tfm_crypto_scratch {
102 __attribute__((__aligned__(TFM_CRYPTO_IOVEC_ALIGNMENT)))
Xinyu Zhangd755b822022-10-25 11:18:09 +0800[diff] [blame]103 uint8_t buf[CRYPTO_IOVEC_BUFFER_SIZE];
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]104 uint32_t alloc_index;
Antonio de Angelis60a6fe62019-06-18 15:27:34 +0100[diff] [blame]105 int32_t owner;
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]106} scratch = {.buf = {0}, .alloc_index = 0};
107
Antonio de Angelis60a6fe62019-06-18 15:27:34 +0100[diff] [blame]108static psa_status_t tfm_crypto_set_scratch_owner(int32_t id)
109{
110 scratch.owner = id;
111 return PSA_SUCCESS;
112}
113
114static psa_status_t tfm_crypto_get_scratch_owner(int32_t *id)
115{
116 *id = scratch.owner;
117 return PSA_SUCCESS;
118}
119
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]120static psa_status_t tfm_crypto_alloc_scratch(size_t requested_size, void **buf)
121{
122 /* Ensure alloc_index remains aligned to the required iovec alignment */
123 requested_size = ALIGN(requested_size, TFM_CRYPTO_IOVEC_ALIGNMENT);
124
125 if (requested_size > (sizeof(scratch.buf) - scratch.alloc_index)) {
126 return PSA_ERROR_INSUFFICIENT_MEMORY;
127 }
128
129 /* Compute the pointer to the allocated space */
130 *buf = (void *)&scratch.buf[scratch.alloc_index];
131
132 /* Increase the allocated size */
133 scratch.alloc_index += requested_size;
134
135 return PSA_SUCCESS;
136}
137
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]138static void tfm_crypto_clear_scratch(void)
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]139{
Antonio de Angelis60a6fe62019-06-18 15:27:34 +0100[diff] [blame]140 scratch.owner = 0;
Ken Liub671d682022-05-12 20:39:29 +0800[diff] [blame]141 (void)memset(scratch.buf, 0, scratch.alloc_index);
Summer Qin0a9e5372020-11-27 16:04:05 +0800[diff] [blame]142 scratch.alloc_index = 0;
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]143}
144
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]145static void tfm_crypto_set_caller_id(int32_t id)
146{
147 /* Set the owner of the data in the scratch */
148 (void)tfm_crypto_set_scratch_owner(id);
149}
150
151psa_status_t tfm_crypto_get_caller_id(int32_t *id)
152{
153 return tfm_crypto_get_scratch_owner(id);
154}
155
156static psa_status_t tfm_crypto_init_iovecs(const psa_msg_t *msg,
157 psa_invec in_vec[],
158 size_t in_len,
159 psa_outvec out_vec[],
160 size_t out_len)
161{
162 uint32_t i;
163 void *alloc_buf_ptr = NULL;
164 psa_status_t status;
165
166 /* Alloc/read from the second element as the first is read when parsing */
167 for (i = 1; i < in_len; i++) {
168 /* Allocate necessary space in the internal scratch */
169 status = tfm_crypto_alloc_scratch(msg->in_size[i], &alloc_buf_ptr);
170 if (status != PSA_SUCCESS) {
171 tfm_crypto_clear_scratch();
172 return status;
173 }
174 /* Read from the IPC framework inputs into the scratch */
175 in_vec[i].len =
176 psa_read(msg->handle, i, alloc_buf_ptr, msg->in_size[i]);
177 /* Populate the fields of the input to the secure function */
178 in_vec[i].base = alloc_buf_ptr;
179 }
180
181 for (i = 0; i < out_len; i++) {
182 /* Allocate necessary space for the output in the internal scratch */
183 status = tfm_crypto_alloc_scratch(msg->out_size[i], &alloc_buf_ptr);
184 if (status != PSA_SUCCESS) {
185 tfm_crypto_clear_scratch();
186 return status;
187 }
188 /* Populate the fields of the output to the secure function */
189 out_vec[i].base = alloc_buf_ptr;
190 out_vec[i].len = msg->out_size[i];
191 }
192
193 return PSA_SUCCESS;
194}
195#endif /* PSA_FRAMEWORK_HAS_MM_IOVEC == 1 */
196
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]197static psa_status_t tfm_crypto_call_srv(const psa_msg_t *msg)
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]198{
199 psa_status_t status = PSA_SUCCESS;
TTornblomfaf74f52020-03-04 17:56:27 +0100[diff] [blame]200 size_t in_len = PSA_MAX_IOVEC, out_len = PSA_MAX_IOVEC, i;
Soby Mathewd8abdfd2020-10-14 10:28:01 +0100[diff] [blame]201 psa_invec in_vec[PSA_MAX_IOVEC] = { {NULL, 0} };
202 psa_outvec out_vec[PSA_MAX_IOVEC] = { {NULL, 0} };
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]203 struct tfm_crypto_pack_iovec iov = {0};
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]204
205 /* Check the number of in_vec filled */
Jamie Fox9a234e22019-04-30 11:12:05 +0100[diff] [blame]206 while ((in_len > 0) && (msg->in_size[in_len - 1] == 0)) {
207 in_len--;
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]208 }
209
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]210 /* Check the number of out_vec filled */
211 while ((out_len > 0) && (msg->out_size[out_len - 1] == 0)) {
212 out_len--;
213 }
214
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]215 /* There will always be a tfm_crypto_pack_iovec in the first iovec */
216 if (in_len < 1) {
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]217 return PSA_ERROR_GENERIC_ERROR;
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]218 }
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]219
220 if (psa_read(msg->handle, 0, &iov, sizeof(iov)) != sizeof(iov)) {
221 return PSA_ERROR_GENERIC_ERROR;
222 }
223
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]224 /* Initialise the first iovec with the IOV read when parsing */
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]225 in_vec[0].base = &iov;
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]226 in_vec[0].len = sizeof(struct tfm_crypto_pack_iovec);
227
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]228 status = tfm_crypto_init_iovecs(msg, in_vec, in_len, out_vec, out_len);
229 if (status != PSA_SUCCESS) {
230 return status;
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]231 }
232
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]233 tfm_crypto_set_caller_id(msg->client_id);
Antonio de Angelis60a6fe62019-06-18 15:27:34 +0100[diff] [blame]234
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]235 /* Call the dispatcher to the functions that implement the PSA Crypto API */
236 status = tfm_crypto_api_dispatcher(in_vec, in_len, out_vec, out_len);
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]237
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]238#if PSA_FRAMEWORK_HAS_MM_IOVEC == 1
239 for (i = 0; i < out_len; i++) {
240 if (out_vec[i].base != NULL) {
241 psa_unmap_outvec(msg->handle, i, out_vec[i].len);
242 }
243 }
244#else
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]245 /* Write into the IPC framework outputs from the scratch */
246 for (i = 0; i < out_len; i++) {
247 psa_write(msg->handle, i, out_vec[i].base, out_vec[i].len);
248 }
249
250 /* Clear the allocated internal scratch before returning */
Summer Qin0a9e5372020-11-27 16:04:05 +0800[diff] [blame]251 tfm_crypto_clear_scratch();
Kevin Pengfe730cc2022-04-11 17:48:42 +0800[diff] [blame]252#endif
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]253
254 return status;
255}
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]256
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]257/**
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]258 * \brief Static buffer to be used by Mbed Crypto for memory allocations
259 *
260 */
Xinyu Zhangd755b822022-10-25 11:18:09 +0800[diff] [blame]261static uint8_t mbedtls_mem_buf[CRYPTO_ENGINE_BUF_SIZE] = {0};
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]262
263static psa_status_t tfm_crypto_engine_init(void)
264{
Antonio de Angelis8f7db7d2022-12-01 12:09:16 +0000[diff] [blame^]265 char *library_info = NULL;
Xinyu Zhangd755b822022-10-25 11:18:09 +0800[diff] [blame]266#if CRYPTO_NV_SEED
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]267 LOG_INFFMT("[INF][Crypto] ");
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]268 LOG_INFFMT("Provisioning entropy seed... ");
Raef Coles618fc152021-06-18 09:26:46 +0100[diff] [blame]269 if (tfm_plat_crypto_provision_entropy_seed() != TFM_CRYPTO_NV_SEED_SUCCESS) {
Summer Qina5448d62020-12-07 14:03:37 +0800[diff] [blame]270 return PSA_ERROR_GENERIC_ERROR;
271 }
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]272 LOG_INFFMT("\033[0;32mcomplete.\033[0m\r\n");
Raef Coles618fc152021-06-18 09:26:46 +0100[diff] [blame]273#endif /* CRYPTO_NV_SEED */
Summer Qina5448d62020-12-07 14:03:37 +0800[diff] [blame]274
Antonio de Angelis8f7db7d2022-12-01 12:09:16 +0000[diff] [blame^]275 library_info = tfm_crypto_library_get_info();
276 LOG_DBGFMT("[DBG][Crypto] PSA Crypto backend library identifier: \033[0;32m%s\033[0m\r\n", library_info);
277
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]278 /* Initialise the Mbed Crypto memory allocator to use static memory
279 * allocation from the provided buffer instead of using the heap
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]280 */
281 mbedtls_memory_buffer_alloc_init(mbedtls_mem_buf,
Xinyu Zhangd755b822022-10-25 11:18:09 +0800[diff] [blame]282 CRYPTO_ENGINE_BUF_SIZE);
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]283
Sherry Zhange1524982022-06-08 16:57:59 +0800[diff] [blame]284 /* mbedtls_printf is used to print messages including error information. */
285#if (TFM_PARTITION_LOG_LEVEL >= TFM_PARTITION_LOG_LEVEL_ERROR)
Ken Liu53b2e332022-09-29 10:56:16 +0800[diff] [blame]286 mbedtls_platform_set_printf(printf);
Sherry Zhange1524982022-06-08 16:57:59 +0800[diff] [blame]287#endif
288
Antonio de Angelis695d75b2022-08-22 15:06:24 +0100[diff] [blame]289 /* Initialise the crypto accelerator if one is enabled. If the driver API is
290 * the one defined by the PSA Unified Driver interface, the initialisation is
291 * performed directly through psa_crypto_init() while the PSA subsystem is
292 * initialised
293 */
294#if defined(CRYPTO_HW_ACCELERATOR) && defined(CC312_LEGACY_DRIVER_API_ENABLED)
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]295 LOG_INFFMT("[INF][Crypto] Initialising HW accelerator... ");
Raef Colesd2485af2019-10-30 10:15:33 +0000[diff] [blame]296 if (crypto_hw_accelerator_init() != 0) {
297 return PSA_ERROR_HARDWARE_FAILURE;
298 }
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]299 LOG_INFFMT("\033[0;32mcomplete.\033[0m\r\n");
Raef Colesd2485af2019-10-30 10:15:33 +0000[diff] [blame]300#endif /* CRYPTO_HW_ACCELERATOR */
301
Antonio de Angelis695d75b2022-08-22 15:06:24 +0100[diff] [blame]302 /* Perform the initialisation of the PSA subsystem in the Mbed Crypto
303 * library. If a driver is built using the PSA Driver interface, the function
304 * below will perform also the same operations as crypto_hw_accelerator_init()
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]305 */
306 return psa_crypto_init();
307}
308
Antonio de Angelisab85ccd2019-03-25 15:14:29 +0000[diff] [blame]309static psa_status_t tfm_crypto_module_init(void)
Antonio de Angeliscf85ba22018-10-09 13:29:40 +0100[diff] [blame]310{
Antonio de Angeliscf85ba22018-10-09 13:29:40 +0100[diff] [blame]311 /* Init the Alloc module */
Antonio de Angelisab85ccd2019-03-25 15:14:29 +0000[diff] [blame]312 return tfm_crypto_init_alloc();
Antonio de Angeliscf85ba22018-10-09 13:29:40 +0100[diff] [blame]313}
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]314
Antonio de Angelisab85ccd2019-03-25 15:14:29 +0000[diff] [blame]315psa_status_t tfm_crypto_init(void)
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]316{
Antonio de Angeliscf85ba22018-10-09 13:29:40 +0100[diff] [blame]317 psa_status_t status;
Raef Coles79809c72022-03-02 13:48:20 +0000[diff] [blame]318 enum tfm_plat_err_t plat_err;
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]319
Antonio de Angeliscf85ba22018-10-09 13:29:40 +0100[diff] [blame]320 /* Initialise other modules of the service */
Antonio de Angelisab85ccd2019-03-25 15:14:29 +0000[diff] [blame]321 status = tfm_crypto_module_init();
322 if (status != PSA_SUCCESS) {
323 return status;
Antonio de Angeliscf85ba22018-10-09 13:29:40 +0100[diff] [blame]324 }
325
Jamie Fox0e54ebc2019-04-09 14:21:04 +0100[diff] [blame]326 /* Initialise the engine layer */
Raef Coles79809c72022-03-02 13:48:20 +0000[diff] [blame]327 status = tfm_crypto_engine_init();
328 if (status != PSA_SUCCESS) {
329 return status;
330 }
331
332 plat_err = tfm_plat_load_builtin_keys();
333 if (plat_err != TFM_PLAT_ERR_SUCCESS) {
334 return PSA_ERROR_GENERIC_ERROR;
335 }
336
337 return PSA_SUCCESS;
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]338}
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]339
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]340psa_status_t tfm_crypto_sfn(const psa_msg_t *msg)
341{
342 /* Process the message type */
343 switch (msg->type) {
344 case PSA_IPC_CALL:
345 return tfm_crypto_call_srv(msg);
346 default:
347 return PSA_ERROR_NOT_SUPPORTED;
348 }
Antonio de Angelis4743e672019-04-11 11:38:48 +0100[diff] [blame]349
Kevin Peng2d4bc2e2022-01-28 16:19:30 +0800[diff] [blame]350 return PSA_ERROR_GENERIC_ERROR;
Antonio de Angelis8908f472018-08-31 15:44:25 +0100[diff] [blame]351}
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]352
353psa_status_t tfm_crypto_api_dispatcher(psa_invec in_vec[],
354 size_t in_len,
355 psa_outvec out_vec[],
356 size_t out_len)
357{
358 psa_status_t status = PSA_ERROR_CORRUPTION_DETECTED;
359 const struct tfm_crypto_pack_iovec *iov = in_vec[0].base;
360 int32_t caller_id = 0;
Antonio de Angelis7557e682022-11-30 15:37:51 +0000[diff] [blame]361 struct tfm_crypto_key_id_s encoded_key = TFM_CRYPTO_KEY_ID_S_INIT;
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]362 bool is_key_required = false;
David Huc9679cc2022-06-21 13:09:34 +0800[diff] [blame]363 enum tfm_crypto_group_id group_id;
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]364
365 if (in_vec[0].len != sizeof(struct tfm_crypto_pack_iovec)) {
366 return PSA_ERROR_PROGRAMMER_ERROR;
367 }
368
David Huc9679cc2022-06-21 13:09:34 +0800[diff] [blame]369 group_id = TFM_CRYPTO_GET_GROUP_ID(iov->function_id);
370
371 is_key_required = !((group_id == TFM_CRYPTO_GROUP_ID_HASH) ||
372 (group_id == TFM_CRYPTO_GROUP_ID_RANDOM));
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]373
374 if (is_key_required) {
375 status = tfm_crypto_get_caller_id(&caller_id);
376 if (status != PSA_SUCCESS) {
377 return status;
378 }
379 /* The caller_id being set in the owner field is the partition ID
380 * of the calling partition
381 */
Antonio de Angelis7557e682022-11-30 15:37:51 +0000[diff] [blame]382 encoded_key.key_id = iov->key_id;
383 encoded_key.owner = caller_id;
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]384 }
385
386 /* Dispatch to each sub-module based on the Group ID */
David Huc9679cc2022-06-21 13:09:34 +0800[diff] [blame]387 switch (group_id) {
388 case TFM_CRYPTO_GROUP_ID_KEY_MANAGEMENT:
389 return tfm_crypto_key_management_interface(in_vec, out_vec,
390 &encoded_key);
391 case TFM_CRYPTO_GROUP_ID_HASH:
392 return tfm_crypto_hash_interface(in_vec, out_vec);
393 case TFM_CRYPTO_GROUP_ID_MAC:
394 return tfm_crypto_mac_interface(in_vec, out_vec, &encoded_key);
395 case TFM_CRYPTO_GROUP_ID_CIPHER:
396 return tfm_crypto_cipher_interface(in_vec, out_vec, &encoded_key);
397 case TFM_CRYPTO_GROUP_ID_AEAD:
398 return tfm_crypto_aead_interface(in_vec, out_vec, &encoded_key);
399 case TFM_CRYPTO_GROUP_ID_ASYM_SIGN:
400 return tfm_crypto_asymmetric_sign_interface(in_vec, out_vec,
401 &encoded_key);
402 case TFM_CRYPTO_GROUP_ID_ASYM_ENCRYPT:
403 return tfm_crypto_asymmetric_encrypt_interface(in_vec, out_vec,
404 &encoded_key);
405 case TFM_CRYPTO_GROUP_ID_KEY_DERIVATION:
406 return tfm_crypto_key_derivation_interface(in_vec, out_vec,
407 &encoded_key);
408 case TFM_CRYPTO_GROUP_ID_RANDOM:
409 return tfm_crypto_random_interface(in_vec, out_vec);
410 default:
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]411 LOG_ERRFMT("[ERR][Crypto] Unsupported request!\r\n");
David Huc9679cc2022-06-21 13:09:34 +0800[diff] [blame]412 return PSA_ERROR_NOT_SUPPORTED;
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]413 }
414
David Huc9679cc2022-06-21 13:09:34 +0800[diff] [blame]415 return PSA_ERROR_NOT_SUPPORTED;
Antonio de Angelis202425a2022-04-06 11:13:15 +0100[diff] [blame]416}