Add hook for generating keys using secure element

dgreen-arm · dgreen-arm · commit 284eca2eca5b · 2019-07-23T15:31:22.000+01:00
diff --git a/library/psa_crypto.c b/library/psa_crypto.c
@@ -5330,15 +5330,34 @@ psa_status_t psa_generate_key( const psa_key_attributes_t *attributes,
     psa_status_t status;
     psa_key_slot_t *slot = NULL;
     const psa_se_drv_table_entry_t *driver = NULL;
+
     status = psa_start_key_creation( attributes, handle, &slot, &driver );
-    if( status == PSA_SUCCESS )
+    if( status != PSA_SUCCESS )
+        goto exit;
+#if defined(MBEDTLS_PSA_CRYPTO_SE_C)
+    if( driver != NULL )
+    {
+        const psa_drv_se_t *drv = psa_get_se_driver_methods( driver );
+        if( drv->key_management == NULL ||
+            drv->key_management->p_generate == NULL )
+        {
+            status = PSA_ERROR_NOT_SUPPORTED;
+            goto exit;
+        }
+        status = drv->key_management->p_generate(
+            slot->data.se.slot_number, slot->type, slot->policy.usage,
+            attributes->bits, NULL, 0, NULL);
+    }
+    else
+#endif /* MBEDTLS_PSA_CRYPTO_SE_C */
     {
         status = psa_generate_key_internal(
             slot, attributes->bits,
             attributes->domain_parameters, attributes->domain_parameters_size );
     }
     if( status == PSA_SUCCESS )
         status = psa_finish_key_creation( slot, driver );
+exit:
     if( status != PSA_SUCCESS )
     {
         psa_fail_key_creation( slot, driver );
