/** \file psa_crypto_helpers.c * * \brief Helper functions to test PSA crypto functionality. */ /* * Copyright The Mbed TLS Contributors * SPDX-License-Identifier: Apache-2.0 * * Licensed under the Apache License, Version 2.0 (the "License"); you may * not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include #include #include #if defined(MBEDTLS_PSA_CRYPTO_C) #include #if defined(MBEDTLS_PSA_CRYPTO_STORAGE_C) #include static mbedtls_svc_key_id_t key_ids_used_in_test[9]; static size_t num_key_ids_used; int mbedtls_test_uses_key_id( mbedtls_svc_key_id_t key_id ) { size_t i; if( MBEDTLS_SVC_KEY_ID_GET_KEY_ID( key_id ) > PSA_MAX_PERSISTENT_KEY_IDENTIFIER ) { /* Don't touch key id values that designate non-key files. */ return( 1 ); } for( i = 0; i < num_key_ids_used ; i++ ) { if( mbedtls_svc_key_id_equal( key_id, key_ids_used_in_test[i] ) ) return( 1 ); } if( num_key_ids_used == ARRAY_LENGTH( key_ids_used_in_test ) ) return( 0 ); key_ids_used_in_test[num_key_ids_used] = key_id; ++num_key_ids_used; return( 1 ); } void mbedtls_test_psa_purge_key_storage( void ) { size_t i; for( i = 0; i < num_key_ids_used; i++ ) psa_destroy_persistent_key( key_ids_used_in_test[i] ); num_key_ids_used = 0; } void mbedtls_test_psa_purge_key_cache( void ) { size_t i; for( i = 0; i < num_key_ids_used; i++ ) psa_purge_key( key_ids_used_in_test[i] ); } #endif /* MBEDTLS_PSA_CRYPTO_STORAGE_C */ const char *mbedtls_test_helper_is_psa_leaking( void ) { mbedtls_psa_stats_t stats; mbedtls_psa_get_stats( &stats ); if( stats.volatile_slots != 0 ) return( "A volatile slot has not been closed properly." ); if( stats.persistent_slots != 0 ) return( "A persistent slot has not been closed properly." ); if( stats.external_slots != 0 ) return( "An external slot has not been closed properly." ); if( stats.half_filled_slots != 0 ) return( "A half-filled slot has not been cleared properly." ); if( stats.locked_slots != 0 ) return( "Some slots are still marked as locked." ); return( NULL ); } #if defined(RECORD_PSA_STATUS_COVERAGE_LOG) /** Name of the file where return statuses are logged by #RECORD_STATUS. */ #define STATUS_LOG_FILE_NAME "statuses.log" psa_status_t mbedtls_test_record_status( psa_status_t status, const char *func, const char *file, int line, const char *expr ) { /* We open the log file on first use. * We never close the log file, so the record_status feature is not * compatible with resource leak detectors such as Asan. */ static FILE *log; if( log == NULL ) log = fopen( STATUS_LOG_FILE_NAME, "a" ); fprintf( log, "%d:%s:%s:%d:%s\n", (int) status, func, file, line, expr ); return( status ); } #endif /* defined(RECORD_PSA_STATUS_COVERAGE_LOG) */ psa_key_usage_t update_key_usage_flags( psa_key_usage_t usage_flags ) { psa_key_usage_t updated_usage = usage_flags; if( usage_flags & PSA_KEY_USAGE_SIGN_HASH ) updated_usage |= PSA_KEY_USAGE_SIGN_MESSAGE; if( usage_flags & PSA_KEY_USAGE_VERIFY_HASH ) updated_usage |= PSA_KEY_USAGE_VERIFY_MESSAGE; return( updated_usage ); } #endif /* MBEDTLS_PSA_CRYPTO_C */