mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2025-01-12 06:45:39 +00:00
tests: slot mgmt: Rename ways of invalidating keys
Rename ways of invalidating keys before introducing key purging tests because the "CLOSE_BY" prefix doesn't get on well with the purge operation. Signed-off-by: Ronald Cron <ronald.cron@arm.com>
This commit is contained in:
parent
3930997922
commit
e7e86cfa3c
|
@ -1,65 +1,65 @@
|
||||||
Transient slot, check after closing
|
Transient slot, check after closing
|
||||||
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_CLOSE
|
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_CLOSING
|
||||||
|
|
||||||
Transient slot, check after closing and restarting
|
Transient slot, check after closing and restarting
|
||||||
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_CLOSE_WITH_SHUTDOWN
|
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_CLOSING_WITH_SHUTDOWN
|
||||||
|
|
||||||
Transient slot, check after destroying
|
Transient slot, check after destroying
|
||||||
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_DESTROY
|
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_DESTROYING
|
||||||
|
|
||||||
Transient slot, check after destroying and restarting
|
Transient slot, check after destroying and restarting
|
||||||
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_DESTROY_WITH_SHUTDOWN
|
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_DESTROYING_WITH_SHUTDOWN
|
||||||
|
|
||||||
Transient slot, check after restart with live handles
|
Transient slot, check after restart with live handles
|
||||||
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_SHUTDOWN
|
transient_slot_lifecycle:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_SHUTDOWN
|
||||||
|
|
||||||
Persistent slot, check after closing, id=min
|
Persistent slot, check after closing, id=min
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:124:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_CLOSE
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:124:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_CLOSING
|
||||||
|
|
||||||
Persistent slot, check after closing and restarting, id=min
|
Persistent slot, check after closing and restarting, id=min
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:125:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_CLOSE
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:125:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_CLOSING
|
||||||
|
|
||||||
Persistent slot, check after destroying, id=min
|
Persistent slot, check after destroying, id=min
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:126:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_DESTROY
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:126:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_DESTROYING
|
||||||
|
|
||||||
Persistent slot, check after destroying and restarting, id=min
|
Persistent slot, check after destroying and restarting, id=min
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:127:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_DESTROY
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:127:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_DESTROYING
|
||||||
|
|
||||||
Persistent slot, check after restart with live handle, id=min
|
Persistent slot, check after restart with live handle, id=min
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:128:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_SHUTDOWN
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:128:PSA_KEY_ID_USER_MIN:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_SHUTDOWN
|
||||||
|
|
||||||
Persistent slot, check after closing, id=max
|
Persistent slot, check after closing, id=max
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:129:PSA_KEY_ID_USER_MAX:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_CLOSE
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:129:PSA_KEY_ID_USER_MAX:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_CLOSING
|
||||||
|
|
||||||
Persistent slot, check after destroying, id=max
|
Persistent slot, check after destroying, id=max
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:130:PSA_KEY_ID_USER_MAX:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_DESTROY
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:130:PSA_KEY_ID_USER_MAX:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_DESTROYING
|
||||||
|
|
||||||
Persistent slot, check after restart, id=max
|
Persistent slot, check after restart, id=max
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:131:PSA_KEY_ID_USER_MAX:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":CLOSE_BY_SHUTDOWN
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:131:PSA_KEY_ID_USER_MAX:0:0:0:PSA_KEY_TYPE_RAW_DATA:"0123456789abcdef0123456789abcdef":INVALIDATE_BY_SHUTDOWN
|
||||||
|
|
||||||
Persistent slot: ECP keypair (ECDSA, exportable), close
|
Persistent slot: ECP keypair (ECDSA, exportable), close
|
||||||
depends_on:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
depends_on:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:132:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_ECDSA_ANY:0:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":CLOSE_BY_CLOSE
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:132:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_ECDSA_ANY:0:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":INVALIDATE_BY_CLOSING
|
||||||
|
|
||||||
Persistent slot: ECP keypair (ECDSA, exportable), close+restart
|
Persistent slot: ECP keypair (ECDSA, exportable), close+restart
|
||||||
depends_on:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
depends_on:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:133:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_ECDSA_ANY:0:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":CLOSE_BY_CLOSE_WITH_SHUTDOWN
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:133:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_ECDSA_ANY:0:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":INVALIDATE_BY_CLOSING_WITH_SHUTDOWN
|
||||||
|
|
||||||
Persistent slot: ECP keypair (ECDSA, exportable), restart
|
Persistent slot: ECP keypair (ECDSA, exportable), restart
|
||||||
depends_on:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
depends_on:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:134:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_ECDSA_ANY:0:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":CLOSE_BY_SHUTDOWN
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:134:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_ECDSA_ANY:0:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":INVALIDATE_BY_SHUTDOWN
|
||||||
|
|
||||||
Persistent slot: ECP keypair (ECDH+ECDSA, exportable), close
|
Persistent slot: ECP keypair (ECDH+ECDSA, exportable), close
|
||||||
depends_on:MBEDTLS_ECDH_C:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
depends_on:MBEDTLS_ECDH_C:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:135:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_KEY_AGREEMENT(PSA_ALG_ECDH, PSA_ALG_HKDF(PSA_ALG_SHA_256)):PSA_ALG_ECDSA_ANY:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":CLOSE_BY_CLOSE
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:135:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_KEY_AGREEMENT(PSA_ALG_ECDH, PSA_ALG_HKDF(PSA_ALG_SHA_256)):PSA_ALG_ECDSA_ANY:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":INVALIDATE_BY_CLOSING
|
||||||
|
|
||||||
Persistent slot: ECP keypair (ECDH+ECDSA, exportable), close+restart
|
Persistent slot: ECP keypair (ECDH+ECDSA, exportable), close+restart
|
||||||
depends_on:MBEDTLS_ECDH_C:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
depends_on:MBEDTLS_ECDH_C:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:136:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_KEY_AGREEMENT(PSA_ALG_ECDH, PSA_ALG_HKDF(PSA_ALG_SHA_256)):PSA_ALG_ECDSA_ANY:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":CLOSE_BY_CLOSE_WITH_SHUTDOWN
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:136:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_KEY_AGREEMENT(PSA_ALG_ECDH, PSA_ALG_HKDF(PSA_ALG_SHA_256)):PSA_ALG_ECDSA_ANY:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":INVALIDATE_BY_CLOSING_WITH_SHUTDOWN
|
||||||
|
|
||||||
Persistent slot: ECP keypair (ECDH+ECDSA, exportable), restart
|
Persistent slot: ECP keypair (ECDH+ECDSA, exportable), restart
|
||||||
depends_on:MBEDTLS_ECDH_C:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
depends_on:MBEDTLS_ECDH_C:MBEDTLS_SHA256_C:MBEDTLS_ECDSA_C:MBEDTLS_ECP_DP_SECP256R1_ENABLED
|
||||||
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:137:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_KEY_AGREEMENT(PSA_ALG_ECDH, PSA_ALG_HKDF(PSA_ALG_SHA_256)):PSA_ALG_ECDSA_ANY:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":CLOSE_BY_SHUTDOWN
|
persistent_slot_lifecycle:PSA_KEY_LIFETIME_PERSISTENT:137:1:PSA_KEY_USAGE_EXPORT | PSA_KEY_USAGE_SIGN_HASH | PSA_KEY_USAGE_VERIFY_HASH:PSA_ALG_KEY_AGREEMENT(PSA_ALG_ECDH, PSA_ALG_HKDF(PSA_ALG_SHA_256)):PSA_ALG_ECDSA_ANY:PSA_KEY_TYPE_ECC_KEY_PAIR(PSA_ECC_FAMILY_SECP_R1):"49c9a8c18c4b885638c431cf1df1c994131609b580d4fd43a0cab17db2f13eee":INVALIDATE_BY_SHUTDOWN
|
||||||
|
|
||||||
Attempt to overwrite: close before
|
Attempt to overwrite: close before
|
||||||
create_existent:PSA_KEY_LIFETIME_PERSISTENT:0x1736:1:CLOSE_BEFORE
|
create_existent:PSA_KEY_LIFETIME_PERSISTENT:0x1736:1:CLOSE_BEFORE
|
||||||
|
|
|
@ -7,12 +7,21 @@
|
||||||
|
|
||||||
typedef enum
|
typedef enum
|
||||||
{
|
{
|
||||||
CLOSE_BY_CLOSE, /**< Close key(s). */
|
/**< Close key(s) */
|
||||||
CLOSE_BY_DESTROY, /**< Destroy key(s) */
|
INVALIDATE_BY_CLOSING,
|
||||||
CLOSE_BY_SHUTDOWN, /**< Deinit and reinit without closing keys. */
|
|
||||||
CLOSE_BY_CLOSE_WITH_SHUTDOWN, /**< Close key(s) then deinit/reinit. */
|
/**< Destroy key(s) */
|
||||||
CLOSE_BY_DESTROY_WITH_SHUTDOWN, /**< Destroy key(s) then deinit/reinit. */
|
INVALIDATE_BY_DESTROYING,
|
||||||
} close_method_t;
|
|
||||||
|
/**< Terminate and reinitialize without closing/destroying keys */
|
||||||
|
INVALIDATE_BY_SHUTDOWN,
|
||||||
|
|
||||||
|
/**< Close key(s) then terminate and re-initialize */
|
||||||
|
INVALIDATE_BY_CLOSING_WITH_SHUTDOWN,
|
||||||
|
|
||||||
|
/**< Destroy key(s) then terminate and re-initialize */
|
||||||
|
INVALIDATE_BY_DESTROYING_WITH_SHUTDOWN,
|
||||||
|
} invalidate_method_t;
|
||||||
|
|
||||||
typedef enum
|
typedef enum
|
||||||
{
|
{
|
||||||
|
@ -74,24 +83,24 @@ static void psa_purge_key_storage( void )
|
||||||
#define TEST_USES_KEY_ID( key_id ) ( (void) ( key_id ) )
|
#define TEST_USES_KEY_ID( key_id ) ( (void) ( key_id ) )
|
||||||
#endif /* MBEDTLS_PSA_CRYPTO_STORAGE_C */
|
#endif /* MBEDTLS_PSA_CRYPTO_STORAGE_C */
|
||||||
|
|
||||||
/** Apply \p close_method to invalidate the specified key:
|
/** Apply \p invalidate_method to invalidate the specified key:
|
||||||
* close it, destroy it, or do nothing;
|
* close it, destroy it, or do nothing;
|
||||||
*/
|
*/
|
||||||
static int invalidate_key( close_method_t close_method,
|
static int invalidate_key( invalidate_method_t invalidate_method,
|
||||||
mbedtls_svc_key_id_t key )
|
mbedtls_svc_key_id_t key )
|
||||||
{
|
{
|
||||||
switch( close_method )
|
switch( invalidate_method )
|
||||||
{
|
{
|
||||||
/* Closing the key invalidate only volatile keys, not permanent ones. */
|
/* Closing the key invalidate only volatile keys, not permanent ones. */
|
||||||
case CLOSE_BY_CLOSE:
|
case INVALIDATE_BY_CLOSING:
|
||||||
case CLOSE_BY_CLOSE_WITH_SHUTDOWN:
|
case INVALIDATE_BY_CLOSING_WITH_SHUTDOWN:
|
||||||
PSA_ASSERT( psa_close_key( key ) );
|
PSA_ASSERT( psa_close_key( key ) );
|
||||||
break;
|
break;
|
||||||
case CLOSE_BY_DESTROY:
|
case INVALIDATE_BY_DESTROYING:
|
||||||
case CLOSE_BY_DESTROY_WITH_SHUTDOWN:
|
case INVALIDATE_BY_DESTROYING_WITH_SHUTDOWN:
|
||||||
PSA_ASSERT( psa_destroy_key( key ) );
|
PSA_ASSERT( psa_destroy_key( key ) );
|
||||||
break;
|
break;
|
||||||
case CLOSE_BY_SHUTDOWN:
|
case INVALIDATE_BY_SHUTDOWN:
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
return( 1 );
|
return( 1 );
|
||||||
|
@ -99,20 +108,20 @@ exit:
|
||||||
return( 0 );
|
return( 0 );
|
||||||
}
|
}
|
||||||
|
|
||||||
/** Restart the PSA subsystem if \p close_method says so. */
|
/** Restart the PSA subsystem if \p invalidate_method says so. */
|
||||||
static int invalidate_psa( close_method_t close_method )
|
static int invalidate_psa( invalidate_method_t invalidate_method )
|
||||||
{
|
{
|
||||||
switch( close_method )
|
switch( invalidate_method )
|
||||||
{
|
{
|
||||||
case CLOSE_BY_CLOSE:
|
case INVALIDATE_BY_CLOSING:
|
||||||
case CLOSE_BY_DESTROY:
|
case INVALIDATE_BY_DESTROYING:
|
||||||
return( 1 );
|
return( 1 );
|
||||||
case CLOSE_BY_CLOSE_WITH_SHUTDOWN:
|
case INVALIDATE_BY_CLOSING_WITH_SHUTDOWN:
|
||||||
case CLOSE_BY_DESTROY_WITH_SHUTDOWN:
|
case INVALIDATE_BY_DESTROYING_WITH_SHUTDOWN:
|
||||||
/* All keys must have been closed. */
|
/* All keys must have been closed. */
|
||||||
PSA_DONE( );
|
PSA_DONE( );
|
||||||
break;
|
break;
|
||||||
case CLOSE_BY_SHUTDOWN:
|
case INVALIDATE_BY_SHUTDOWN:
|
||||||
/* Some keys may remain behind, and we're testing that this
|
/* Some keys may remain behind, and we're testing that this
|
||||||
* properly closes them. */
|
* properly closes them. */
|
||||||
mbedtls_psa_crypto_free( );
|
mbedtls_psa_crypto_free( );
|
||||||
|
@ -137,12 +146,12 @@ exit:
|
||||||
/* BEGIN_CASE */
|
/* BEGIN_CASE */
|
||||||
void transient_slot_lifecycle( int usage_arg, int alg_arg,
|
void transient_slot_lifecycle( int usage_arg, int alg_arg,
|
||||||
int type_arg, data_t *key_data,
|
int type_arg, data_t *key_data,
|
||||||
int close_method_arg )
|
int invalidate_method_arg )
|
||||||
{
|
{
|
||||||
psa_algorithm_t alg = alg_arg;
|
psa_algorithm_t alg = alg_arg;
|
||||||
psa_key_usage_t usage_flags = usage_arg;
|
psa_key_usage_t usage_flags = usage_arg;
|
||||||
psa_key_type_t type = type_arg;
|
psa_key_type_t type = type_arg;
|
||||||
close_method_t close_method = close_method_arg;
|
invalidate_method_t invalidate_method = invalidate_method_arg;
|
||||||
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
|
mbedtls_svc_key_id_t key = MBEDTLS_SVC_KEY_ID_INIT;
|
||||||
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
|
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
|
||||||
|
|
||||||
|
@ -169,9 +178,9 @@ void transient_slot_lifecycle( int usage_arg, int alg_arg,
|
||||||
psa_reset_key_attributes( &attributes );
|
psa_reset_key_attributes( &attributes );
|
||||||
|
|
||||||
/* Do something that invalidates the key. */
|
/* Do something that invalidates the key. */
|
||||||
if( ! invalidate_key( close_method, key ) )
|
if( ! invalidate_key( invalidate_method, key ) )
|
||||||
goto exit;
|
goto exit;
|
||||||
if( ! invalidate_psa( close_method ) )
|
if( ! invalidate_psa( invalidate_method ) )
|
||||||
goto exit;
|
goto exit;
|
||||||
|
|
||||||
/* Test that the key is now invalid. */
|
/* Test that the key is now invalid. */
|
||||||
|
@ -188,7 +197,7 @@ exit:
|
||||||
void persistent_slot_lifecycle( int lifetime_arg, int owner_id_arg, int id_arg,
|
void persistent_slot_lifecycle( int lifetime_arg, int owner_id_arg, int id_arg,
|
||||||
int usage_arg, int alg_arg, int alg2_arg,
|
int usage_arg, int alg_arg, int alg2_arg,
|
||||||
int type_arg, data_t *key_data,
|
int type_arg, data_t *key_data,
|
||||||
int close_method_arg )
|
int invalidate_method_arg )
|
||||||
{
|
{
|
||||||
psa_key_lifetime_t lifetime = lifetime_arg;
|
psa_key_lifetime_t lifetime = lifetime_arg;
|
||||||
mbedtls_svc_key_id_t id = mbedtls_svc_key_id_make( owner_id_arg, id_arg );
|
mbedtls_svc_key_id_t id = mbedtls_svc_key_id_make( owner_id_arg, id_arg );
|
||||||
|
@ -196,7 +205,7 @@ void persistent_slot_lifecycle( int lifetime_arg, int owner_id_arg, int id_arg,
|
||||||
psa_algorithm_t alg2 = alg2_arg;
|
psa_algorithm_t alg2 = alg2_arg;
|
||||||
psa_key_usage_t usage_flags = usage_arg;
|
psa_key_usage_t usage_flags = usage_arg;
|
||||||
psa_key_type_t type = type_arg;
|
psa_key_type_t type = type_arg;
|
||||||
close_method_t close_method = close_method_arg;
|
invalidate_method_t invalidate_method = invalidate_method_arg;
|
||||||
mbedtls_svc_key_id_t returned_id = MBEDTLS_SVC_KEY_ID_INIT;
|
mbedtls_svc_key_id_t returned_id = MBEDTLS_SVC_KEY_ID_INIT;
|
||||||
psa_key_handle_t handle = PSA_KEY_HANDLE_INIT;
|
psa_key_handle_t handle = PSA_KEY_HANDLE_INIT;
|
||||||
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
|
psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
|
||||||
|
@ -261,19 +270,19 @@ void persistent_slot_lifecycle( int lifetime_arg, int owner_id_arg, int id_arg,
|
||||||
* Do something that wipes key data in volatile memory or destroy the
|
* Do something that wipes key data in volatile memory or destroy the
|
||||||
* key.
|
* key.
|
||||||
*/
|
*/
|
||||||
if( ! invalidate_key( close_method, id ) )
|
if( ! invalidate_key( invalidate_method, id ) )
|
||||||
goto exit;
|
goto exit;
|
||||||
if( ! invalidate_psa( close_method ) )
|
if( ! invalidate_psa( invalidate_method ) )
|
||||||
goto exit;
|
goto exit;
|
||||||
|
|
||||||
/* Try to reaccess the key. If we destroyed it, check that it doesn't
|
/* Try to reaccess the key. If we destroyed it, check that it doesn't
|
||||||
* exist. Otherwise check that it still exists and has the expected
|
* exist. Otherwise check that it still exists and has the expected
|
||||||
* content. */
|
* content. */
|
||||||
switch( close_method )
|
switch( invalidate_method )
|
||||||
{
|
{
|
||||||
case CLOSE_BY_CLOSE:
|
case INVALIDATE_BY_CLOSING:
|
||||||
case CLOSE_BY_CLOSE_WITH_SHUTDOWN:
|
case INVALIDATE_BY_CLOSING_WITH_SHUTDOWN:
|
||||||
case CLOSE_BY_SHUTDOWN:
|
case INVALIDATE_BY_SHUTDOWN:
|
||||||
PSA_ASSERT( psa_open_key( id, &handle ) );
|
PSA_ASSERT( psa_open_key( id, &handle ) );
|
||||||
PSA_ASSERT( psa_get_key_attributes( id, &read_attributes ) );
|
PSA_ASSERT( psa_get_key_attributes( id, &read_attributes ) );
|
||||||
TEST_EQUAL( psa_get_key_lifetime( &attributes ),
|
TEST_EQUAL( psa_get_key_lifetime( &attributes ),
|
||||||
|
@ -306,8 +315,8 @@ void persistent_slot_lifecycle( int lifetime_arg, int owner_id_arg, int id_arg,
|
||||||
PSA_ASSERT( psa_close_key( handle ) );
|
PSA_ASSERT( psa_close_key( handle ) );
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case CLOSE_BY_DESTROY:
|
case INVALIDATE_BY_DESTROYING:
|
||||||
case CLOSE_BY_DESTROY_WITH_SHUTDOWN:
|
case INVALIDATE_BY_DESTROYING_WITH_SHUTDOWN:
|
||||||
/*
|
/*
|
||||||
* Test that the key handle and identifier are now not refering to an
|
* Test that the key handle and identifier are now not refering to an
|
||||||
* existing key.
|
* existing key.
|
||||||
|
|
Loading…
Reference in a new issue