Skip to content

Move psasim into framework #238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 146 commits into
base: main
Choose a base branch
from
Open

Move psasim into framework #238

wants to merge 146 commits into from

Conversation

@minosgalanakis
Copy link
Contributor

@minosgalanakis minosgalanakis commented Nov 17, 2025

Description

Part of the work required by Mbed-TLS/mbedtls#10487. Psasim was originally places in framework directory, but moved to mbedtls while we were workign on it. Now this PR is migrating it back, while preserving the history

  • TF-PSA-Crypto PR provided # | not required because:
  • development PR provided # | not required because:
  • 3.6 PR provided # | not required because:

valeriosetti and others added 30 commits May 3, 2024 17:28
@valeriosetti
psa-client-server: move psasim from framework repo to the mbedtls one
03e6d43 
This is a temporary fix that will be reverted once the framework
repository will have CI checks.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client test: add mechanism to build crypto library for client …
1d3db6b 
…and server

It includes changes to:
- tests/Makefile: build the library for client and server in different
  folders. It mimica the libtestdriver1 behavior (without functions
  renaming though).
- tests/scripts/all.sh: helper function to build for client and
  server with some default configuration for each of them.
- crypto_spe.h: this is dummy file taken from the already existing
  tests. It's just meant to pacify the compiler, not to provide
  something useful. It will likely be changed in the future.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client test: ensure that client/server are linked against prop…
527beec 
…er MbedTLS libraries

Ensure that both server and client can call mbedtls_version_get_string_full()
to verify that they are linked against proper libraries.

Note: each side (client/server) performs the call against its own
MbedTLS library. There is no IPC communication involved in this
test. Client/server communication will come later.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client test: implement the first IPC call for psa_crypto_init()
c71b396 
This commit implements the first useful IPC communication between
the client and the server. The implemented command is simple,
psa_crypto_init(), and its return value is sent back to the client.

Note: the newly added file psa_functions_codes.h is temporary
and it's probably the one that needs to be automatically
generated by a python script to support all crypto functions.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client: reorganize source files/folders
23ac8d9 
The goal is to keep psasim as simple as possible:

- do not build a separate lib for psa-ff; build those source
  files as part of server or client
- do not have lot of different makefiles: just 1 that does all
  we need
- do not have several subfolders for headers: only 1 is enough
  for this kind of project

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client: simplify build of mbedtls static libraries
7535106 
Instead of copying the entire library & include folders twice
to build libraries for client and server:

- change the main config file (mbedtls_config.h)
- build in the root library folder
- move the generated library in the psasim folder
- use those library for linking the client/server binaries

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client: fix the SID
36e4fa1 
Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client: remove log files on "make clean"
b20360b 
Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
crypto-client: allow debug build of libraries and test binaries
6e00ad7 
Add DEBUG=1 in test_psasim() to helpers and final make to build
the libraries and the final binaries with debug symbols
enabled.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
psa_ff_client: fix typos and useless blank lines
b98608c 
Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
psasim: create a seedfile to be used for the crypto server
cbc38ce 
This allows to re-enable MBEDTLS_ENTROPY_NV_SEED since the
seedfile is correctly found in the "test" folder at runtime.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
psa_autogen.py: improve management of output files
1812c84 
While at this, fix also Makefile so that "make clean" does not
complain if some of the files to be cancelled do not exist.

Signed-off-by: Valerio Setti <[email protected]>
@tom-cosgrove-arm
Replace final sprintf() with snprintf() in psa_ff_server.c
dceeb8b 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Fix psa_ff_server.c to calculate the amount of data from client corre…
f28d21e 
…ctly

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Fix PSA sim test awk script by removing extra $
3a197ac 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Fix sending a response of more than 184 bytes in psa_ff_server.c:psa_…
68acbc2 
…write()

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Only print PSA crypto sim server messages when DEBUG defined
9661c79 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Remove unnecessary blank lines at top of functions in psa_ff_server.c
74eb1b2 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Fix code style in psa_ff_server.c
1fc43f0 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Add PSA crypto sim serialisation functions for basic types
c490eb1 
Not hooked into the build yet

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Add PSA crypto sim serialisation functions for rest of types needed f…
857e390 
…or psa_hash_compute()

Still not used

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Add PSA crypto sim client and server implementations of psa_hash_comp…
418982e 
…ute()

A Perl script that creates them is also included as reference. This is not the
final script (that will be in Python) but a proof-of-concept to show that
creaation client and server wrappers can be scripted.

It is not hooked into the build: it must be run manually. It is not part of the
deliverables for this PR.

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
The PSA sim logs aren't very many lines, so show them during tests
0adb4f4 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Hook the new psa_sim_crypto_{client,server} into the build and tests
3f77a27 
- smoke test client.c becomes a trivial call to psa_crypto_init()
- server.c now uses psa_sim_crypto_server.c's psa_crypto_call()
- Makefile is updated to build all the modules, and allow a different MAIN
- all.sh's test_psasim now tests the simulation of psa_hash_compute() too

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Add PSA crypto sim serialisation functions needed for the remaining P…
f84634c 
…SA hash APIs

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Add the rest of the psa_hash_xxx() functions to the simulator
51f13be 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Extend PSA crypto simulator tests to run psa_hash.c under the simulator
a15ccb4 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Mark temporary PSA crypto sim Perl scripts as executable
3e1b2b1 
Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
PSA crypto sim's server wrappers need to free deseraliased buffers wh…
8296a8f 
…en they're no longer needed

Signed-off-by: Tom Cosgrove <[email protected]>
@tom-cosgrove-arm
Add missing licences
1e51646 
Signed-off-by: Tom Cosgrove <[email protected]>
paul-elliott-arm and others added 29 commits November 15, 2024 14:09
@paul-elliott-arm
Add required code to psa_sim_generate.pl
bf50529 
Non generated code was unfortnuately added to psa_sim_crypto_server.c,
fix that by adding it to the generation scripts.

Signed-off-by: Paul Elliott <[email protected]>
@paul-elliott-arm
Regenerate PSA Sim headers
e6cc207 
Signed-off-by: Paul Elliott <[email protected]>
@Harry-Ramsey
Fix paths for programs/psa
16603e9 
This commit fixes paths for programs/psa to tf-psa-crypto/programs/psa.

Signed-off-by: Harry Ramsey <[email protected]>
@Harry-Ramsey
Refactor tests and programs comment
2243e83 
This commit refactors comments refering to tf-psa-crypto for the
correct path upon repo split.

Signed-off-by: Harry Ramsey <[email protected]>
@valeriosetti
psasim: add support for psa_export_public_key_iop
543b5e3 
This commit also includes regenerated C and H files.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
psasim: add support for psa_can_do_hash()
fa00b06 
This commit also includes regenerated C and H files.

Signed-off-by: Valerio Setti <[email protected]>
@gilles-peskine-arm
Merge pull request #10027 from valeriosetti/md-psa-dispatch-development
d2aa0c8 
[development] md: allow dispatch to PSA whenever CRYPTO_CLIENT is enabled
@valeriosetti
psasim: update README file
ba28e95 
The README file content dates back to the early stages of PSASIM
development. Since then a lot of things have changed, so the README
file required a complete rewrite.

Signed-off-by: Valerio Setti <[email protected]>
@valeriosetti
tests: psasim: remove references to mbedtls_psa_register_se_key()
0ffdaff 
Signed-off-by: Valerio Setti <[email protected]>
@ronald-cron-arm
Merge pull request #10050 from valeriosetti/issue8151-development
c9e851f 
[development] Remove the dynamic SE interface in 4.0
@felixc-arm @ronald-cron-arm
[development] Remove code relating to MBEDTLS_PSA_INJECT_ENTROPY
5c17808 
Signed-off-by: Felix Conway <[email protected]>
@mpg
Merge pull request #10032 from valeriosetti/psasim-doc-update
7c03234 
psasim: update README file
@ronald-cron-arm
Merge pull request #10073 from felixc-arm/remove-inject-entropy
34f8851 
[development] Remove MBEDTLS_PSA_INJECT_ENTROPY
@valeriosetti
psasim: add timeout while waiting for psa_server to start
7282057 
Signed-off-by: Valerio Setti <[email protected]>
@felixc-arm
Add __attribute__ ((nonstring)) to remove unterminated-string-initial…
699f732 
…ization warning

Signed-off-by: Felix Conway <[email protected]>
@felixc-arm
Replace __attribute__((nonstring)) with macro MBEDTLS_ATTRIBUTE_UNTER…
70cf23a 
…MINATED_STRING

This macro applies __attribute__((nonstring)) when using a compiler that supports it

Signed-off-by: Felix Conway <[email protected]>
@felixc-arm
Add include so psasim files can find new macro
0197376 
Signed-off-by: Felix Conway <[email protected]>
Add explanatory comment above #include "../tf-psa-crypto/core/common.h"
9004f6e 
Signed-off-by: Ari Weiler-Ofek <[email protected]>
Remove trailing whitespace
ccd222a 
Signed-off-by: Ari Weiler-Ofek <[email protected]>
@mpg
Merge pull request #10216 from felixc-arm/gcc-15-warning-dev
ac22280 
[Development] Fix GCC 15 warning 'Wunterminated-string-initialization'
@bensze01
Update references to tf-psa-crypto/core/common.h
ad53a64 
This commit was generated using the following command:

sed -i 's/\(^\|[^_]\)common\.h/\1tf_psa_crypto_common.h/g' \
    $(git ls-files .                                       \
        ':!:programs/fuzz'                                 \
        ':!:tests/psa-client-server'                       \
        ':!:tf-psa-crypto'                                 \
        ':!:framework')                                    \
    $(git grep -l 'tf-psa-crypto/core/common.h')

Signed-off-by: Bence Szépkúti <[email protected]>
@bensze01
Merge pull request #10309 from bensze01/rename-tf-psa-crypto-common.h
e70bedf 
Rename tf-psa-crypto/core/common.h
@bensze01
Update PSASim tests to new call signature
8bfe08d 
Signed-off-by: Bence Szépkúti <[email protected]>
@amtkarm1
Include fixups (headers moves to private directory)
b78f810 
Signed-off-by: Anton Matkin <[email protected]>
@gilles-peskine-arm
Merge pull request #1426 from gilles-peskine-arm/restricted-mbedtls-m…
0380189 
…erge-public-20250916

mbedtls: : merge public into restricted 2025-09-16
@davidhorstmann-arm
Add missing include of stdio.h
624c8c4 
This is required in util.h in PSASIM as it uses fprintf. Previously
stdio was inadvertantly included via psa/crypto_struct.h (of all
places).

Signed-off-by: David Horstmann <[email protected]>
@minosgalanakis
Merge remote-tracking branch 'restricted/development-restricted' into…
965856f 
… mbedtls-4.0.0.rc

Signed-off-by: Minos Galanakis <[email protected]>
@minosgalanakis
Move psasim files into root
8c93b69 
Signed-off-by: Minos Galanakis <[email protected]>
@minosgalanakis
Import psasim from MbedTLS
e186662
@minosgalanakis minosgalanakis mentioned this pull request Nov 17, 2025
Open
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.