SE support: Use a transaction when registering a key When registering a key in a secure element, go through the transaction mechanism. This makes the code simpler, at the expense of a few extra storage operations. Given that registering a key is typically very rare over the lifetime of a device, this is an acceptable loss. Drivers must now have a p_validate_slot_number method, otherwise registering a key is not possible. This reduces the risk that due to a mistake during the integration of a device, an application might claim a slot in a way that is not supported by the driver.

commit: 3efcebbc5e9852082f06590f9325d53cf405e80f [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue Oct 01 14:18:35 2019 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue Oct 01 14:18:35 2019 +0200
tree: 6518520563d23d1f471ba1ccbfe9d99747b52595
parent: 37b5c831b41cd41456caa979f1444234c51e4c51 [diff] [blame]
diff --git a/library/psa_crypto_se.c b/library/psa_crypto_se.c
index 523c621..2cda4cc 100644
--- a/library/psa_crypto_se.c
+++ b/library/psa_crypto_se.c

@@ -225,6 +225,12 @@
                                          attributes, method,
                                          *slot_number );
     }
+    else if( method == PSA_KEY_CREATION_REGISTER )
+    {
+        /* The application didn't specify a slot number. This doesn't
+         * make sense when registering a slot. */
+        return( PSA_ERROR_INVALID_ARGUMENT );
+    }
     else
     {
         /* The application didn't tell us which slot to use. Let the driver
commit	3efcebbc5e9852082f06590f9325d53cf405e80f	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Oct 01 14:18:35 2019 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Oct 01 14:18:35 2019 +0200
tree	6518520563d23d1f471ba1ccbfe9d99747b52595
parent	37b5c831b41cd41456caa979f1444234c51e4c51 [diff] [blame]