[Cryptech-Commits] [sw/stm32] branch master updated: The new keywrap core now talks directly to the MKM, so there are some API changes.
git at cryptech.is
git at cryptech.is
Wed Apr 29 16:53:10 UTC 2020
This is an automated email from the git hooks/post-receive script.
paul at psgd.org pushed a commit to branch master
in repository sw/stm32.
The following commit(s) were added to refs/heads/master by this push:
new 042f99a The new keywrap core now talks directly to the MKM, so there are some API changes.
042f99a is described below
commit 042f99af11085a1979ca5b2670b11672ad934654
Author: Paul Selkirk <paul at psgd.org>
AuthorDate: Wed Apr 29 11:44:17 2020 -0400
The new keywrap core now talks directly to the MKM, so there are some API changes.
---
projects/hsm/mgmt-masterkey.c | 11 ++++++++---
projects/hsm/mgmt-misc.c | 32 --------------------------------
2 files changed, 8 insertions(+), 35 deletions(-)
diff --git a/projects/hsm/mgmt-masterkey.c b/projects/hsm/mgmt-masterkey.c
index e63e0e0..97e62a0 100644
--- a/projects/hsm/mgmt-masterkey.c
+++ b/projects/hsm/mgmt-masterkey.c
@@ -70,7 +70,7 @@ static int cmd_masterkey_status(struct cli_def *cli, const char *command, char *
cli_print(cli, "Status of master key:\n");
- status = hal_mkm_volatile_read(NULL, 0);
+ status = hal_keywrap_mkm_status(NULL);
cli_print(cli, " volatile: %s / %s", _status2str(status), hal_error_string(status));
status = hal_mkm_flash_read(NULL, 0);
@@ -170,11 +170,16 @@ static int _masterkey_set(struct cli_def *cli, char *argv[], int argc,
return CLI_OK;
}
+static hal_error_t _mkm_volatile_write(const uint8_t *kek, const size_t kek_len)
+{
+ return hal_keywrap_mkm_write(NULL, kek, kek_len);
+}
+
static int cmd_masterkey_set(struct cli_def *cli, const char *command, char *argv[], int argc)
{
command = command;
- return _masterkey_set(cli, argv, argc, "volatile", hal_mkm_volatile_write);
+ return _masterkey_set(cli, argv, argc, "volatile", _mkm_volatile_write);
}
static int cmd_masterkey_erase(struct cli_def *cli, const char *command, char *argv[], int argc)
@@ -185,7 +190,7 @@ static int cmd_masterkey_erase(struct cli_def *cli, const char *command, char *a
argv = argv;
argc = argc;
- if ((err = hal_mkm_volatile_erase(KEK_LENGTH)) == LIBHAL_OK) {
+ if ((err = hal_keywrap_mkm_erase(NULL, KEK_LENGTH)) == LIBHAL_OK) {
cli_print(cli, "Erased master key from volatile memory");
} else {
cli_print(cli, "Failed erasing master key from volatile memory: %s", hal_error_string(err));
diff --git a/projects/hsm/mgmt-misc.c b/projects/hsm/mgmt-misc.c
index e732484..377af73 100644
--- a/projects/hsm/mgmt-misc.c
+++ b/projects/hsm/mgmt-misc.c
@@ -230,40 +230,8 @@ static int cmd_rsa_modexpng(struct cli_def *cli, const char *command, char *argv
return CLI_ERROR;
}
-static int cmd_keywrap_core(struct cli_def *cli, const char *command, char *argv[], int argc)
-{
- int onoff;
-
- if (argc != 1) {
- cli_print(cli, "Wrong number of arguments (%i).", argc);
- cli_print(cli, "Syntax: %s <on|off>", command);
- return CLI_ERROR;
- }
-
- if (strcmp(argv[0], "on") == 0)
- onoff = 1;
- else if (strcmp(argv[0], "off") == 0)
- onoff = 0;
- else {
- cli_print(cli, "Argument must be 'on' or 'off' - not '%s'", argv[0]);
- return CLI_ERROR;
- }
-
- hal_error_t err;
- if ((err = hal_aes_use_keywrap_core(onoff)) == LIBHAL_OK)
- return CLI_OK;
-
- cli_print(cli, hal_error_string(err));
- return CLI_ERROR;
-}
-
void configure_cli_misc(struct cli_def *cli)
{
- struct cli_command *c_keywrap = cli_register_command(cli, NULL, "keywrap", NULL, 0, 0, NULL);
-
- /* keywrap core */
- cli_register_command(cli, c_keywrap, "core", cmd_keywrap_core, 0, 0, "Set use of the keywrap core");
-
#ifdef DO_PROFILING
struct cli_command *c_profile = cli_register_command(cli, NULL, "profile", NULL, 0, 0, NULL);
--
To stop receiving notification emails like this one, please contact
the administrator of this repository.
More information about the Commits
mailing list