PSA Secure partition manager and services #8744

orenc17 · 2018-11-14T16:07:54Z

Description

Introduce PSA Secure partition manager (SPM) to mbed-os.
Add SPM tests (for PSA targets).
Add PSA SPM hal layer.
Add PSA PRoT internal trusted storage Secure implementation.
Integrate SPM into the boot proccess.
PSA manifest data generator.
Add PSA abstract targets to mbed-os targets.json.
Add artifact delivery to the tools ( by @theotherjimmy ).

Dependencies

The actual changes of this PR are in commit ad7876e0620531cadaad7502f27cdd5f4d8c814f

Pull request type

[ ] Fix
[ ] Refactor
[ ] Target update
[X] Functionality change
[ ] Docs update
[ ] Test update
[ ] Breaking change

theotherjimmy · 2018-11-14T16:34:05Z

Thanks for the credit!

theotherjimmy · 2018-11-14T16:35:23Z

It looks like I forgot to update the python tests to include the new Config attribute. I'll add that later today.

0xc0170 · 2018-11-19T09:42:03Z

@ARMmbed/mbed-os-tools Please review tools changes

dependencies

2 dependencies are still in progress:

#8667 - in progress
#8680 - merged
#8730 - depends on 8667

bulislaw

My comments can be found in the commit: ad7876e

mbed-ci · 2018-11-25T21:34:30Z

Test run: SUCCESS

Summary: 4 of 4 test jobs passed
Build number : 7
Build artifacts
Build logs

0xc0170 · 2018-11-26T10:39:02Z

We are waiting for the last dependency to land : #8730

0xc0170

I've just noticed I did not publish this on Friday, since I reviewed there were few comments so might be already addressed.

0xc0170 · 2018-11-23T13:53:37Z

TESTS/mbed_hal/spm/fault_functions.h

@@ -0,0 +1,48 @@
+/* mbed Microcontroller Library
+ * Copyright (c) 2017 ARM Limited


All new files should have 2018 year and using SPDX identifier

0xc0170 · 2018-11-23T13:56:49Z

tools/settings.py

@@ -27,6 +27,8 @@
 ##############################################################################
 BUILD_DIR = abspath(join(ROOT, "BUILD"))

+DELIVERY_DIR = abspath(join(ROOT, "DELIVERY"))


what does this do? Is it documented anywhere ( no comment here, cant find it in the commit msg neither)

Added comment

0xc0170 · 2018-11-23T13:58:20Z

hal/spm_api.h

+ *
+ * Wakeup the peer processor waiting on the mailbox driver event.
+ *
+ * @note The functions below should be implemented by target specific code.


quick question: these new docs were already reviewed by docs team or shall be done (within this pull request) ?

@danny4478 and @AnotherButler should know the aswer

@0xc0170 Which docs are you referring to?

The code (c and h files) was not reviewed by docs team. Once the cod is ready for merge, the docs team will generate the Doxygen for them.

Regarding docs, we have 3 documents (handbook) under review by the docs team.

Doxygen documentation (functionality docs) - they have to be reviewed by docs team.

Therefore if that is true, it would be helpful here provided what doxygen docs should be reviewed. I identified at least this header file

Doxygen headers for review are:
[ ] - components/TARGET_PSA/spm/spm_client.h
[ ] - components/TARGET_PSA/spm/COMPONENT_SPE/spm_server.h
[ ] - components/TARGET_PSA/spm/psa_defs.h
[ ] - hal/spm_api.h

Thankss, this is helpful !

@melwee01 @AnotherButler Please review these

mbed-ci · 2018-11-26T10:42:07Z

Test run: SUCCESS

Summary: 4 of 4 test jobs passed
Build number : 9
Build artifacts
Build logs

0xc0170 · 2018-11-26T10:55:03Z

All dependencies were integrated, please rebase (I reviewed astyle failures, rebase should take care of them as well?)

orenc17 · 2018-11-26T11:23:57Z

Branch rebased and ready to go

NirSonnenschein · 2018-11-26T11:45:25Z

@0xc0170 @bulislaw , fixes are in please take a look. I'll run this through CI in anticipation of review (previous version passed so hopefully this will not be an issue)

0xc0170

Few questions

0xc0170 · 2018-11-26T12:12:27Z

TESTS/mbed_hal/spm/main.cpp

+#endif
+
+#if (defined( __CC_ARM ) || defined(__ARMCC_VERSION) || defined( __ICCARM__ ))
+#error [NOT_SUPPORTED] this test is supported on GCC only


What limitations are here that only GCC ARM supported? ) ?

mainly assembly code included in the test

0xc0170 · 2018-11-26T12:26:23Z

components/TARGET_PSA/spm/spm_init.h

+
+#if defined(COMPONENT_SPE)
+
+void psa_spm_init(void);


why these do not have any documentation?

0xc0170 · 2018-11-26T12:32:00Z

components/TARGET_PSA/spm/COMPONENT_SPE/spm_internal.h

+    const uint32_t out_len
+);
+
+void channel_state_switch(uint8_t *current_state, uint8_t expected_state, uint8_t new_state);


these 2 functions do not have doxygen, the rest of the functions here have?

This is confusing.
This is an internal API.
AFAIU, it should not be Doxygen documented. Of course it should have normal code comments.
My bottom line is: This file comments should be be Doxygen style.

0xc0170 · 2018-11-26T12:32:40Z

components/TARGET_PSA/spm/COMPONENT_SPE/spm_main.c

+
+#else
+
+#error "Non dual-chip platforms are not yet supported"


Is this error correct ( this is else for COMPONENT_SPM_MAILBOX) ?

Yes, there should be another main function for secure-side on v8 systems.
as we are not yet supporting v8 with SPM, the compilation should fail

0xc0170 · 2018-11-26T12:34:53Z

@ARMmbed/mbed-os-tools Please review today

cmonr · 2018-11-26T14:23:55Z

Making a note here. This appears to be undergoing email discussion. Will update once resolved.

bulislaw · 2018-11-26T14:50:46Z

All the PRs need to be engineering ready (marked as "needs: CI") by the end of the day (Austin time). Otherwise it won't make 5.11 and will need to come in the next release (5.12 for features, 5.11.1 for fixes and new platforms).

Move function description to header files Note: it is not in Doxygen format since it is an internal module and Doxygen should not be generated for it

Make minor copy edits, mostly for punctuation and style.

Make minor edits, mostly for consistent capitalization and style.

Make minor edits, mostly for consistent abbreviations.

Edit file, mostly for minor grammar and style changes.

Co-Authored-By: orenc17 <[email protected]>

NirSonnenschein · 2018-11-27T07:26:01Z

CI restarted

melwee01 · 2018-11-27T08:26:38Z