1*62c56f98SSadaf Ebrahimi /**
2*62c56f98SSadaf Ebrahimi * \file psa_crypto_storage.h
3*62c56f98SSadaf Ebrahimi *
4*62c56f98SSadaf Ebrahimi * \brief PSA cryptography module: Mbed TLS key storage
5*62c56f98SSadaf Ebrahimi */
6*62c56f98SSadaf Ebrahimi /*
7*62c56f98SSadaf Ebrahimi * Copyright The Mbed TLS Contributors
8*62c56f98SSadaf Ebrahimi * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
9*62c56f98SSadaf Ebrahimi */
10*62c56f98SSadaf Ebrahimi
11*62c56f98SSadaf Ebrahimi #ifndef PSA_CRYPTO_STORAGE_H
12*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_STORAGE_H
13*62c56f98SSadaf Ebrahimi
14*62c56f98SSadaf Ebrahimi #ifdef __cplusplus
15*62c56f98SSadaf Ebrahimi extern "C" {
16*62c56f98SSadaf Ebrahimi #endif
17*62c56f98SSadaf Ebrahimi
18*62c56f98SSadaf Ebrahimi #include "psa/crypto.h"
19*62c56f98SSadaf Ebrahimi #include "psa/crypto_se_driver.h"
20*62c56f98SSadaf Ebrahimi
21*62c56f98SSadaf Ebrahimi #include <stdint.h>
22*62c56f98SSadaf Ebrahimi #include <string.h>
23*62c56f98SSadaf Ebrahimi
24*62c56f98SSadaf Ebrahimi /* Limit the maximum key size in storage. This should have no effect
25*62c56f98SSadaf Ebrahimi * since the key size is limited in memory. */
26*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_MAX_STORAGE_SIZE (PSA_BITS_TO_BYTES(PSA_MAX_KEY_BITS))
27*62c56f98SSadaf Ebrahimi /* Sanity check: a file size must fit in 32 bits. Allow a generous
28*62c56f98SSadaf Ebrahimi * 64kB of metadata. */
29*62c56f98SSadaf Ebrahimi #if PSA_CRYPTO_MAX_STORAGE_SIZE > 0xffff0000
30*62c56f98SSadaf Ebrahimi #error "PSA_CRYPTO_MAX_STORAGE_SIZE > 0xffff0000"
31*62c56f98SSadaf Ebrahimi #endif
32*62c56f98SSadaf Ebrahimi
33*62c56f98SSadaf Ebrahimi /** The maximum permitted persistent slot number.
34*62c56f98SSadaf Ebrahimi *
35*62c56f98SSadaf Ebrahimi * In Mbed Crypto 0.1.0b:
36*62c56f98SSadaf Ebrahimi * - Using the file backend, all key ids are ok except 0.
37*62c56f98SSadaf Ebrahimi * - Using the ITS backend, all key ids are ok except 0xFFFFFF52
38*62c56f98SSadaf Ebrahimi * (#PSA_CRYPTO_ITS_RANDOM_SEED_UID) for which the file contains the
39*62c56f98SSadaf Ebrahimi * device's random seed (if this feature is enabled).
40*62c56f98SSadaf Ebrahimi * - Only key ids from 1 to #MBEDTLS_PSA_KEY_SLOT_COUNT are actually used.
41*62c56f98SSadaf Ebrahimi *
42*62c56f98SSadaf Ebrahimi * Since we need to preserve the random seed, avoid using that key slot.
43*62c56f98SSadaf Ebrahimi * Reserve a whole range of key slots just in case something else comes up.
44*62c56f98SSadaf Ebrahimi *
45*62c56f98SSadaf Ebrahimi * This limitation will probably become moot when we implement client
46*62c56f98SSadaf Ebrahimi * separation for key storage.
47*62c56f98SSadaf Ebrahimi */
48*62c56f98SSadaf Ebrahimi #define PSA_MAX_PERSISTENT_KEY_IDENTIFIER PSA_KEY_ID_VENDOR_MAX
49*62c56f98SSadaf Ebrahimi
50*62c56f98SSadaf Ebrahimi /**
51*62c56f98SSadaf Ebrahimi * \brief Checks if persistent data is stored for the given key slot number
52*62c56f98SSadaf Ebrahimi *
53*62c56f98SSadaf Ebrahimi * This function checks if any key data or metadata exists for the key slot in
54*62c56f98SSadaf Ebrahimi * the persistent storage.
55*62c56f98SSadaf Ebrahimi *
56*62c56f98SSadaf Ebrahimi * \param key Persistent identifier to check.
57*62c56f98SSadaf Ebrahimi *
58*62c56f98SSadaf Ebrahimi * \retval 0
59*62c56f98SSadaf Ebrahimi * No persistent data present for slot number
60*62c56f98SSadaf Ebrahimi * \retval 1
61*62c56f98SSadaf Ebrahimi * Persistent data present for slot number
62*62c56f98SSadaf Ebrahimi */
63*62c56f98SSadaf Ebrahimi int psa_is_key_present_in_storage(const mbedtls_svc_key_id_t key);
64*62c56f98SSadaf Ebrahimi
65*62c56f98SSadaf Ebrahimi /**
66*62c56f98SSadaf Ebrahimi * \brief Format key data and metadata and save to a location for given key
67*62c56f98SSadaf Ebrahimi * slot.
68*62c56f98SSadaf Ebrahimi *
69*62c56f98SSadaf Ebrahimi * This function formats the key data and metadata and saves it to a
70*62c56f98SSadaf Ebrahimi * persistent storage backend. The storage location corresponding to the
71*62c56f98SSadaf Ebrahimi * key slot must be empty, otherwise this function will fail. This function
72*62c56f98SSadaf Ebrahimi * should be called after loading the key into an internal slot to ensure the
73*62c56f98SSadaf Ebrahimi * persistent key is not saved into a storage location corresponding to an
74*62c56f98SSadaf Ebrahimi * already occupied non-persistent key, as well as ensuring the key data is
75*62c56f98SSadaf Ebrahimi * validated.
76*62c56f98SSadaf Ebrahimi *
77*62c56f98SSadaf Ebrahimi * Note: This function will only succeed for key buffers which are not
78*62c56f98SSadaf Ebrahimi * empty. If passed a NULL pointer or zero-length, the function will fail
79*62c56f98SSadaf Ebrahimi * with #PSA_ERROR_INVALID_ARGUMENT.
80*62c56f98SSadaf Ebrahimi *
81*62c56f98SSadaf Ebrahimi * \param[in] attr The attributes of the key to save.
82*62c56f98SSadaf Ebrahimi * The key identifier field in the attributes
83*62c56f98SSadaf Ebrahimi * determines the key's location.
84*62c56f98SSadaf Ebrahimi * \param[in] data Buffer containing the key data.
85*62c56f98SSadaf Ebrahimi * \param data_length The number of bytes that make up the key data.
86*62c56f98SSadaf Ebrahimi *
87*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS \emptydescription
88*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INVALID_ARGUMENT \emptydescription
89*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INSUFFICIENT_MEMORY \emptydescription
90*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INSUFFICIENT_STORAGE \emptydescription
91*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_STORAGE_FAILURE \emptydescription
92*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_ALREADY_EXISTS \emptydescription
93*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_INVALID \emptydescription
94*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_CORRUPT \emptydescription
95*62c56f98SSadaf Ebrahimi */
96*62c56f98SSadaf Ebrahimi psa_status_t psa_save_persistent_key(const psa_core_key_attributes_t *attr,
97*62c56f98SSadaf Ebrahimi const uint8_t *data,
98*62c56f98SSadaf Ebrahimi const size_t data_length);
99*62c56f98SSadaf Ebrahimi
100*62c56f98SSadaf Ebrahimi /**
101*62c56f98SSadaf Ebrahimi * \brief Parses key data and metadata and load persistent key for given
102*62c56f98SSadaf Ebrahimi * key slot number.
103*62c56f98SSadaf Ebrahimi *
104*62c56f98SSadaf Ebrahimi * This function reads from a storage backend, parses the key data and
105*62c56f98SSadaf Ebrahimi * metadata and writes them to the appropriate output parameters.
106*62c56f98SSadaf Ebrahimi *
107*62c56f98SSadaf Ebrahimi * Note: This function allocates a buffer and returns a pointer to it through
108*62c56f98SSadaf Ebrahimi * the data parameter. On successful return, the pointer is guaranteed to be
109*62c56f98SSadaf Ebrahimi * valid and the buffer contains at least one byte of data.
110*62c56f98SSadaf Ebrahimi * psa_free_persistent_key_data() must be called on the data buffer
111*62c56f98SSadaf Ebrahimi * afterwards to zeroize and free this buffer.
112*62c56f98SSadaf Ebrahimi *
113*62c56f98SSadaf Ebrahimi * \param[in,out] attr On input, the key identifier field identifies
114*62c56f98SSadaf Ebrahimi * the key to load. Other fields are ignored.
115*62c56f98SSadaf Ebrahimi * On success, the attribute structure contains
116*62c56f98SSadaf Ebrahimi * the key metadata that was loaded from storage.
117*62c56f98SSadaf Ebrahimi * \param[out] data Pointer to an allocated key data buffer on return.
118*62c56f98SSadaf Ebrahimi * \param[out] data_length The number of bytes that make up the key data.
119*62c56f98SSadaf Ebrahimi *
120*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS \emptydescription
121*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INSUFFICIENT_MEMORY \emptydescription
122*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_INVALID \emptydescription
123*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_CORRUPT \emptydescription
124*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DOES_NOT_EXIST \emptydescription
125*62c56f98SSadaf Ebrahimi */
126*62c56f98SSadaf Ebrahimi psa_status_t psa_load_persistent_key(psa_core_key_attributes_t *attr,
127*62c56f98SSadaf Ebrahimi uint8_t **data,
128*62c56f98SSadaf Ebrahimi size_t *data_length);
129*62c56f98SSadaf Ebrahimi
130*62c56f98SSadaf Ebrahimi /**
131*62c56f98SSadaf Ebrahimi * \brief Remove persistent data for the given key slot number.
132*62c56f98SSadaf Ebrahimi *
133*62c56f98SSadaf Ebrahimi * \param key Persistent identifier of the key to remove
134*62c56f98SSadaf Ebrahimi * from persistent storage.
135*62c56f98SSadaf Ebrahimi *
136*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS
137*62c56f98SSadaf Ebrahimi * The key was successfully removed,
138*62c56f98SSadaf Ebrahimi * or the key did not exist.
139*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_INVALID \emptydescription
140*62c56f98SSadaf Ebrahimi */
141*62c56f98SSadaf Ebrahimi psa_status_t psa_destroy_persistent_key(const mbedtls_svc_key_id_t key);
142*62c56f98SSadaf Ebrahimi
143*62c56f98SSadaf Ebrahimi /**
144*62c56f98SSadaf Ebrahimi * \brief Free the temporary buffer allocated by psa_load_persistent_key().
145*62c56f98SSadaf Ebrahimi *
146*62c56f98SSadaf Ebrahimi * This function must be called at some point after psa_load_persistent_key()
147*62c56f98SSadaf Ebrahimi * to zeroize and free the memory allocated to the buffer in that function.
148*62c56f98SSadaf Ebrahimi *
149*62c56f98SSadaf Ebrahimi * \param key_data Buffer for the key data.
150*62c56f98SSadaf Ebrahimi * \param key_data_length Size of the key data buffer.
151*62c56f98SSadaf Ebrahimi *
152*62c56f98SSadaf Ebrahimi */
153*62c56f98SSadaf Ebrahimi void psa_free_persistent_key_data(uint8_t *key_data, size_t key_data_length);
154*62c56f98SSadaf Ebrahimi
155*62c56f98SSadaf Ebrahimi /**
156*62c56f98SSadaf Ebrahimi * \brief Formats key data and metadata for persistent storage
157*62c56f98SSadaf Ebrahimi *
158*62c56f98SSadaf Ebrahimi * \param[in] data Buffer containing the key data.
159*62c56f98SSadaf Ebrahimi * \param data_length Length of the key data buffer.
160*62c56f98SSadaf Ebrahimi * \param[in] attr The core attributes of the key.
161*62c56f98SSadaf Ebrahimi * \param[out] storage_data Output buffer for the formatted data.
162*62c56f98SSadaf Ebrahimi *
163*62c56f98SSadaf Ebrahimi */
164*62c56f98SSadaf Ebrahimi void psa_format_key_data_for_storage(const uint8_t *data,
165*62c56f98SSadaf Ebrahimi const size_t data_length,
166*62c56f98SSadaf Ebrahimi const psa_core_key_attributes_t *attr,
167*62c56f98SSadaf Ebrahimi uint8_t *storage_data);
168*62c56f98SSadaf Ebrahimi
169*62c56f98SSadaf Ebrahimi /**
170*62c56f98SSadaf Ebrahimi * \brief Parses persistent storage data into key data and metadata
171*62c56f98SSadaf Ebrahimi *
172*62c56f98SSadaf Ebrahimi * \param[in] storage_data Buffer for the storage data.
173*62c56f98SSadaf Ebrahimi * \param storage_data_length Length of the storage data buffer
174*62c56f98SSadaf Ebrahimi * \param[out] key_data On output, pointer to a newly allocated buffer
175*62c56f98SSadaf Ebrahimi * containing the key data. This must be freed
176*62c56f98SSadaf Ebrahimi * using psa_free_persistent_key_data()
177*62c56f98SSadaf Ebrahimi * \param[out] key_data_length Length of the key data buffer
178*62c56f98SSadaf Ebrahimi * \param[out] attr On success, the attribute structure is filled
179*62c56f98SSadaf Ebrahimi * with the loaded key metadata.
180*62c56f98SSadaf Ebrahimi *
181*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS \emptydescription
182*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INSUFFICIENT_MEMORY \emptydescription
183*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_INVALID \emptydescription
184*62c56f98SSadaf Ebrahimi */
185*62c56f98SSadaf Ebrahimi psa_status_t psa_parse_key_data_from_storage(const uint8_t *storage_data,
186*62c56f98SSadaf Ebrahimi size_t storage_data_length,
187*62c56f98SSadaf Ebrahimi uint8_t **key_data,
188*62c56f98SSadaf Ebrahimi size_t *key_data_length,
189*62c56f98SSadaf Ebrahimi psa_core_key_attributes_t *attr);
190*62c56f98SSadaf Ebrahimi
191*62c56f98SSadaf Ebrahimi #if defined(MBEDTLS_PSA_CRYPTO_SE_C)
192*62c56f98SSadaf Ebrahimi /** This symbol is defined if transaction support is required. */
193*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_STORAGE_HAS_TRANSACTIONS 1
194*62c56f98SSadaf Ebrahimi #endif
195*62c56f98SSadaf Ebrahimi
196*62c56f98SSadaf Ebrahimi #if defined(PSA_CRYPTO_STORAGE_HAS_TRANSACTIONS)
197*62c56f98SSadaf Ebrahimi
198*62c56f98SSadaf Ebrahimi /** The type of transaction that is in progress.
199*62c56f98SSadaf Ebrahimi */
200*62c56f98SSadaf Ebrahimi /* This is an integer type rather than an enum for two reasons: to support
201*62c56f98SSadaf Ebrahimi * unknown values when loading a transaction file, and to ensure that the
202*62c56f98SSadaf Ebrahimi * type has a known size.
203*62c56f98SSadaf Ebrahimi */
204*62c56f98SSadaf Ebrahimi typedef uint16_t psa_crypto_transaction_type_t;
205*62c56f98SSadaf Ebrahimi
206*62c56f98SSadaf Ebrahimi /** No transaction is in progress.
207*62c56f98SSadaf Ebrahimi *
208*62c56f98SSadaf Ebrahimi * This has the value 0, so zero-initialization sets a transaction's type to
209*62c56f98SSadaf Ebrahimi * this value.
210*62c56f98SSadaf Ebrahimi */
211*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_TRANSACTION_NONE ((psa_crypto_transaction_type_t) 0x0000)
212*62c56f98SSadaf Ebrahimi
213*62c56f98SSadaf Ebrahimi /** A key creation transaction.
214*62c56f98SSadaf Ebrahimi *
215*62c56f98SSadaf Ebrahimi * This is only used for keys in an external cryptoprocessor (secure element).
216*62c56f98SSadaf Ebrahimi * Keys in RAM or in internal storage are created atomically in storage
217*62c56f98SSadaf Ebrahimi * (simple file creation), so they do not need a transaction mechanism.
218*62c56f98SSadaf Ebrahimi */
219*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_TRANSACTION_CREATE_KEY ((psa_crypto_transaction_type_t) 0x0001)
220*62c56f98SSadaf Ebrahimi
221*62c56f98SSadaf Ebrahimi /** A key destruction transaction.
222*62c56f98SSadaf Ebrahimi *
223*62c56f98SSadaf Ebrahimi * This is only used for keys in an external cryptoprocessor (secure element).
224*62c56f98SSadaf Ebrahimi * Keys in RAM or in internal storage are destroyed atomically in storage
225*62c56f98SSadaf Ebrahimi * (simple file deletion), so they do not need a transaction mechanism.
226*62c56f98SSadaf Ebrahimi */
227*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_TRANSACTION_DESTROY_KEY ((psa_crypto_transaction_type_t) 0x0002)
228*62c56f98SSadaf Ebrahimi
229*62c56f98SSadaf Ebrahimi /** Transaction data.
230*62c56f98SSadaf Ebrahimi *
231*62c56f98SSadaf Ebrahimi * This type is designed to be serialized by writing the memory representation
232*62c56f98SSadaf Ebrahimi * and reading it back on the same device.
233*62c56f98SSadaf Ebrahimi *
234*62c56f98SSadaf Ebrahimi * \note The transaction mechanism is designed for a single active transaction
235*62c56f98SSadaf Ebrahimi * at a time. The transaction object is #psa_crypto_transaction.
236*62c56f98SSadaf Ebrahimi *
237*62c56f98SSadaf Ebrahimi * \note If an API call starts a transaction, it must complete this transaction
238*62c56f98SSadaf Ebrahimi * before returning to the application.
239*62c56f98SSadaf Ebrahimi *
240*62c56f98SSadaf Ebrahimi * The lifetime of a transaction is the following (note that only one
241*62c56f98SSadaf Ebrahimi * transaction may be active at a time):
242*62c56f98SSadaf Ebrahimi *
243*62c56f98SSadaf Ebrahimi * -# Call psa_crypto_prepare_transaction() to initialize the transaction
244*62c56f98SSadaf Ebrahimi * object in memory and declare the type of transaction that is starting.
245*62c56f98SSadaf Ebrahimi * -# Fill in the type-specific fields of #psa_crypto_transaction.
246*62c56f98SSadaf Ebrahimi * -# Call psa_crypto_save_transaction() to start the transaction. This
247*62c56f98SSadaf Ebrahimi * saves the transaction data to internal storage.
248*62c56f98SSadaf Ebrahimi * -# Perform the work of the transaction by modifying files, contacting
249*62c56f98SSadaf Ebrahimi * external entities, or whatever needs doing. Note that the transaction
250*62c56f98SSadaf Ebrahimi * may be interrupted by a power failure, so you need to have a way
251*62c56f98SSadaf Ebrahimi * recover from interruptions either by undoing what has been done
252*62c56f98SSadaf Ebrahimi * so far or by resuming where you left off.
253*62c56f98SSadaf Ebrahimi * -# If there are intermediate stages in the transaction, update
254*62c56f98SSadaf Ebrahimi * the fields of #psa_crypto_transaction and call
255*62c56f98SSadaf Ebrahimi * psa_crypto_save_transaction() again when each stage is reached.
256*62c56f98SSadaf Ebrahimi * -# When the transaction is over, call psa_crypto_stop_transaction() to
257*62c56f98SSadaf Ebrahimi * remove the transaction data in storage and in memory.
258*62c56f98SSadaf Ebrahimi *
259*62c56f98SSadaf Ebrahimi * If the system crashes while a transaction is in progress, psa_crypto_init()
260*62c56f98SSadaf Ebrahimi * calls psa_crypto_load_transaction() and takes care of completing or
261*62c56f98SSadaf Ebrahimi * rewinding the transaction. This is done in psa_crypto_recover_transaction()
262*62c56f98SSadaf Ebrahimi * in psa_crypto.c. If you add a new type of transaction, be
263*62c56f98SSadaf Ebrahimi * sure to add code for it in psa_crypto_recover_transaction().
264*62c56f98SSadaf Ebrahimi */
265*62c56f98SSadaf Ebrahimi typedef union {
266*62c56f98SSadaf Ebrahimi /* Each element of this union must have the following properties
267*62c56f98SSadaf Ebrahimi * to facilitate serialization and deserialization:
268*62c56f98SSadaf Ebrahimi *
269*62c56f98SSadaf Ebrahimi * - The element is a struct.
270*62c56f98SSadaf Ebrahimi * - The first field of the struct is `psa_crypto_transaction_type_t type`.
271*62c56f98SSadaf Ebrahimi * - Elements of the struct are arranged such a way that there is
272*62c56f98SSadaf Ebrahimi * no padding.
273*62c56f98SSadaf Ebrahimi */
274*62c56f98SSadaf Ebrahimi struct psa_crypto_transaction_unknown_s {
275*62c56f98SSadaf Ebrahimi psa_crypto_transaction_type_t type;
276*62c56f98SSadaf Ebrahimi uint16_t unused1;
277*62c56f98SSadaf Ebrahimi uint32_t unused2;
278*62c56f98SSadaf Ebrahimi uint64_t unused3;
279*62c56f98SSadaf Ebrahimi uint64_t unused4;
280*62c56f98SSadaf Ebrahimi } unknown;
281*62c56f98SSadaf Ebrahimi /* ::type is #PSA_CRYPTO_TRANSACTION_CREATE_KEY or
282*62c56f98SSadaf Ebrahimi * #PSA_CRYPTO_TRANSACTION_DESTROY_KEY. */
283*62c56f98SSadaf Ebrahimi struct psa_crypto_transaction_key_s {
284*62c56f98SSadaf Ebrahimi psa_crypto_transaction_type_t type;
285*62c56f98SSadaf Ebrahimi uint16_t unused1;
286*62c56f98SSadaf Ebrahimi psa_key_lifetime_t lifetime;
287*62c56f98SSadaf Ebrahimi psa_key_slot_number_t slot;
288*62c56f98SSadaf Ebrahimi mbedtls_svc_key_id_t id;
289*62c56f98SSadaf Ebrahimi } key;
290*62c56f98SSadaf Ebrahimi } psa_crypto_transaction_t;
291*62c56f98SSadaf Ebrahimi
292*62c56f98SSadaf Ebrahimi /** The single active transaction.
293*62c56f98SSadaf Ebrahimi */
294*62c56f98SSadaf Ebrahimi extern psa_crypto_transaction_t psa_crypto_transaction;
295*62c56f98SSadaf Ebrahimi
296*62c56f98SSadaf Ebrahimi /** Prepare for a transaction.
297*62c56f98SSadaf Ebrahimi *
298*62c56f98SSadaf Ebrahimi * There must not be an ongoing transaction.
299*62c56f98SSadaf Ebrahimi *
300*62c56f98SSadaf Ebrahimi * \param type The type of transaction to start.
301*62c56f98SSadaf Ebrahimi */
psa_crypto_prepare_transaction(psa_crypto_transaction_type_t type)302*62c56f98SSadaf Ebrahimi static inline void psa_crypto_prepare_transaction(
303*62c56f98SSadaf Ebrahimi psa_crypto_transaction_type_t type)
304*62c56f98SSadaf Ebrahimi {
305*62c56f98SSadaf Ebrahimi psa_crypto_transaction.unknown.type = type;
306*62c56f98SSadaf Ebrahimi }
307*62c56f98SSadaf Ebrahimi
308*62c56f98SSadaf Ebrahimi /** Save the transaction data to storage.
309*62c56f98SSadaf Ebrahimi *
310*62c56f98SSadaf Ebrahimi * You may call this function multiple times during a transaction to
311*62c56f98SSadaf Ebrahimi * atomically update the transaction state.
312*62c56f98SSadaf Ebrahimi *
313*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS \emptydescription
314*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_CORRUPT \emptydescription
315*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INSUFFICIENT_STORAGE \emptydescription
316*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_STORAGE_FAILURE \emptydescription
317*62c56f98SSadaf Ebrahimi */
318*62c56f98SSadaf Ebrahimi psa_status_t psa_crypto_save_transaction(void);
319*62c56f98SSadaf Ebrahimi
320*62c56f98SSadaf Ebrahimi /** Load the transaction data from storage, if any.
321*62c56f98SSadaf Ebrahimi *
322*62c56f98SSadaf Ebrahimi * This function is meant to be called from psa_crypto_init() to recover
323*62c56f98SSadaf Ebrahimi * in case a transaction was interrupted by a system crash.
324*62c56f98SSadaf Ebrahimi *
325*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS
326*62c56f98SSadaf Ebrahimi * The data about the ongoing transaction has been loaded to
327*62c56f98SSadaf Ebrahimi * #psa_crypto_transaction.
328*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DOES_NOT_EXIST
329*62c56f98SSadaf Ebrahimi * There is no ongoing transaction.
330*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_STORAGE_FAILURE \emptydescription
331*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_INVALID \emptydescription
332*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DATA_CORRUPT \emptydescription
333*62c56f98SSadaf Ebrahimi */
334*62c56f98SSadaf Ebrahimi psa_status_t psa_crypto_load_transaction(void);
335*62c56f98SSadaf Ebrahimi
336*62c56f98SSadaf Ebrahimi /** Indicate that the current transaction is finished.
337*62c56f98SSadaf Ebrahimi *
338*62c56f98SSadaf Ebrahimi * Call this function at the very end of transaction processing.
339*62c56f98SSadaf Ebrahimi * This function does not "commit" or "abort" the transaction: the storage
340*62c56f98SSadaf Ebrahimi * subsystem has no concept of "commit" and "abort", just saving and
341*62c56f98SSadaf Ebrahimi * removing the transaction information in storage.
342*62c56f98SSadaf Ebrahimi *
343*62c56f98SSadaf Ebrahimi * This function erases the transaction data in storage (if any) and
344*62c56f98SSadaf Ebrahimi * resets the transaction data in memory.
345*62c56f98SSadaf Ebrahimi *
346*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS
347*62c56f98SSadaf Ebrahimi * There was transaction data in storage.
348*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_DOES_NOT_EXIST
349*62c56f98SSadaf Ebrahimi * There was no transaction data in storage.
350*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_STORAGE_FAILURE
351*62c56f98SSadaf Ebrahimi * It was impossible to determine whether there was transaction data
352*62c56f98SSadaf Ebrahimi * in storage, or the transaction data could not be erased.
353*62c56f98SSadaf Ebrahimi */
354*62c56f98SSadaf Ebrahimi psa_status_t psa_crypto_stop_transaction(void);
355*62c56f98SSadaf Ebrahimi
356*62c56f98SSadaf Ebrahimi /** The ITS file identifier for the transaction data.
357*62c56f98SSadaf Ebrahimi *
358*62c56f98SSadaf Ebrahimi * 0xffffffNN = special file; 0x74 = 't' for transaction.
359*62c56f98SSadaf Ebrahimi */
360*62c56f98SSadaf Ebrahimi #define PSA_CRYPTO_ITS_TRANSACTION_UID ((psa_key_id_t) 0xffffff74)
361*62c56f98SSadaf Ebrahimi
362*62c56f98SSadaf Ebrahimi #endif /* PSA_CRYPTO_STORAGE_HAS_TRANSACTIONS */
363*62c56f98SSadaf Ebrahimi
364*62c56f98SSadaf Ebrahimi #if defined(MBEDTLS_PSA_INJECT_ENTROPY)
365*62c56f98SSadaf Ebrahimi /** Backend side of mbedtls_psa_inject_entropy().
366*62c56f98SSadaf Ebrahimi *
367*62c56f98SSadaf Ebrahimi * This function stores the supplied data into the entropy seed file.
368*62c56f98SSadaf Ebrahimi *
369*62c56f98SSadaf Ebrahimi * \retval #PSA_SUCCESS
370*62c56f98SSadaf Ebrahimi * Success
371*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_STORAGE_FAILURE \emptydescription
372*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_INSUFFICIENT_STORAGE \emptydescription
373*62c56f98SSadaf Ebrahimi * \retval #PSA_ERROR_NOT_PERMITTED
374*62c56f98SSadaf Ebrahimi * The entropy seed file already exists.
375*62c56f98SSadaf Ebrahimi */
376*62c56f98SSadaf Ebrahimi psa_status_t mbedtls_psa_storage_inject_entropy(const unsigned char *seed,
377*62c56f98SSadaf Ebrahimi size_t seed_size);
378*62c56f98SSadaf Ebrahimi #endif /* MBEDTLS_PSA_INJECT_ENTROPY */
379*62c56f98SSadaf Ebrahimi
380*62c56f98SSadaf Ebrahimi #ifdef __cplusplus
381*62c56f98SSadaf Ebrahimi }
382*62c56f98SSadaf Ebrahimi #endif
383*62c56f98SSadaf Ebrahimi
384*62c56f98SSadaf Ebrahimi #endif /* PSA_CRYPTO_STORAGE_H */
385