Secure element key registration

[gilles-peskine-arm]

Add an API method that allows applications to register a key in a secure element.

Successor of #202. The first new commit is "psa_start_key_creation: take the method as a parameter".

This PR has undergone significant rework. See #183 (comment) . Previous iterations are available as 1, 2, 3, 4.

[AndrzejKurek]

Typo in commit c3d4baa - "pplications"

[AndrzejKurek]

Unfinished sentence.

[AndrzejKurek]

Typo - thw -> the

[AndrzejKurek]

Typo - eleement -> element

[AndrzejKurek]

Typo - . ->

[AndrzejKurek]

Maybe a call to p_check_slot could be made here if the method is PSA_KEY_CREATION_REGISTER? Just to check that what the application is trying to register is sane.

[gilles-peskine-arm]

Yes, but not as is: p_check_slot might say “no, you can't create a key here because it's occupied”. I lean towards adding a psa_key_creation_method_t to p_allocate and p_check_slot, which would allow the driver to enforce constraints like “this slot is locked against import and can only contain internally-generated, non-exportable keys”.

[gilles-peskine-arm]

Done in the newest rebase. On a related note, I renamed p_check_slot to p_validate_slot_number in #202.

[AndrzejKurek]

This design looks promising. What part of the PSA depends on the key type being PSA_KEY_TYPE_RAW_DATA to work properly with secure elements, if any? I'm asking because I'm considering a case where you pass the exact key type that can/will be handled in a given slot during registration.

[gilles-peskine-arm]

What part of the PSA depends on the key type being PSA_KEY_TYPE_RAW_DATA to work properly with secure elements, if any?

I'm not sure I understand the question. A secure element doesn't have to support PSA_KEY_TYPE_RAW_DATA. I expect that most do: it's of very limited usefulness since the SE can't use that data, but it helps deployment to use a secure element slot to store a certificate for a private key that's in the secure element, and that slot would have the type PSA_KEY_TYPE_RAW_DATA.

[athoelke]

Not sure about the "unspecified/undefined" API behaviour if the key attributes has no valid key slot number? (see comments for further thoughts)

[athoelke]

Cut and paste bug - description copied from psa_get_key_policy

[athoelke]

Slightly 'euww!'

Can we define a symbolic name for PSA_KEY_SLOT_NUMBER_INVALID (or similar), and have the implementation define it as a constant value of type psa_key_slot_number_t? - this API will return that value if the key slot number is not set (or doesn't exist in this implementation).

That way we get implementation efficiency, precision in the spec, and still permit implementations to define the type of psa_key_slot_number_t and use 0 as a valid slot number.

[gilles-peskine-arm]

Right now, all 2^64 potential values for a slot number are considered valid. I'm not sure this is the best design. I'm sure every driver can afford one invalid value. For consistency with the rest of PSA crypto, 0 should be invalid. Making 0 invalid would also avoid the annoying extra has_slot_number bit. But typical secure elements number their slots from 0 to N-1, so it would require most drivers to do some shifting. So declare all-bits-one invalid (with a symbolic constant of course) and mandate implementations to return it when not applicable?

[gilles-peskine-arm]

I've changed psa_get_key_slot_number to return an error if there is no recorded slot number. See #201.

[athoelke]

Will compiler-error if MBEDTLS_PSA_CRYPTO_SE_C is not defined. Yes I know you say "undefined" but this is a painful way to inform developers that they misunderstand the API and how to fix their mistake.

[gilles-peskine-arm]

I'll fix such errors in a batch when I add a build with MBEDTLS_PSA_CRYPTO_SE_C not defined.

[athoelke]

Duplicate error code - this might be confusing in the API documentation? (or is this pattern used elsewhere)

[gilles-peskine-arm]

This pattern is used elsewhere: each \retval is an error reason, and some error reasons can map to the same error code. The alternative is something like

 * \retval #PSA_ERROR_INVALID_ARGUMENT
 *         \p attributes specifies a lifetime which is not located
 *         in a secure eleement.
 *
 *         Alternatively, …

I have no strong feelings either way, but I'd only change this if we change it elsewhere.

[athoelke]

Is it worth a comment to indicate that this type is also defined in crypto_types.h - and the definitions need to be identical?

[gilles-peskine-arm]

I'd prefer to create a new header file. I made this hack to avoid having to mess with build scripts (including the API build scripts).

[gilles-peskine-arm]

For the time being, I'm not adding a header file. I think I'll just wait until the header files are no longer used to generate the documentation so this becomes moot. But I did improve the comment.

[athoelke]

Should this also set has_slot_number?

[gilles-peskine-arm]

Yes. Fixed.

[gilles-peskine-arm]

Thanks for the reviews. I'll fix the documentation mistakes in a batch later, probably rebased against a new version of #157.

[gilles-peskine-arm]

I've rebased this work on top of the latest version of #157 . I also made significant changes to the history, to address review comments, to avoid breaking tests, and also to make some design changes.

@athoelke @AndrzejKurek As per our habit I marked the review comments that I've handled with 🚀. I'm still planning to make an improvement pass, but perhaps only after yet another rebase on top of #157 once I've addressed the review comments there.

[gilles-peskine-arm]

Now that #157 is merged, I've rebased on top of that and switched the target branch to psa-api-1.0-beta. I'm not planning any more rebases, but I am planning further changes to address review feedback.

[gilles-peskine-arm]

On second thoughts, I am planning to rebase and even split this PR. It does three four five things which would be better done separately and in the right sequence:

1. Store the bit size of a key in a secure element, and make sure that psa_get_key_attributes works for an SE key after a restart. → Secure element keys: save the key size #191
2. Clean up the code a bit. Much more in Tidy up attribute management inside psa_crypto #197
3. Report the slot number in key attributes. → Add slot number attribute #201
4. Allow applications to choose a slot number. → Let applications create a key in a specific secure element slot #202
5. Key registration. → this PR

[k-stachowiak]

I went through the changes and ran the test suites, and didn't find issues. I've only found two suspicious documentation changes, noted below.

[AndrzejKurek]

Why is this in the doxygen ifndef block?

[gilles-peskine-arm]

Because it's an Mbed Crypto extension, so it shouldn't be included in the PSA specification. We normally resolve this by using different files, but this is an enum so it can't be defined partly in one file and partly in another. __DOXYGEN_ONLY__ is not defined when generating the Mbed Crypto documentation.

[gilles-peskine-arm]

I rebased again to get rid of the commits from preceding PRs, to resolve a trivial conflict in crypto_se_driver.h due to the late changes of the documentation of psa_drv_se_allocate_key_t in #202, and also to reorder commits (I moved "Pass the key creation method to drivers" before "New function mbedtls_psa_register_se_key") to avoid having an unbuildable commit in the middle.