SiliconLabsSoftware
diff --git a/‎soc/silabs/silabs_siwx917/Kconfig‎
Lines changed: 5 additions & 0 deletions b/‎soc/silabs/silabs_siwx917/Kconfig‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎tests/crypto/psa_crypto/src/aead.c‎
Lines changed: 38 additions & 42 deletions b/‎tests/crypto/psa_crypto/src/aead.c‎
Lines changed: 38 additions & 42 deletions
diff --git a/‎tests/crypto/psa_crypto/src/cipher.c‎
Lines changed: 42 additions & 64 deletions b/‎tests/crypto/psa_crypto/src/cipher.c‎
Lines changed: 42 additions & 64 deletions
@@ -21,5 +21,10 @@ config MBEDTLS_USER_CONFIG_FILE
 	default "sl_mbedtls_config_zephyr.h" \
 		if PSA_CRYPTO_DRIVER_SILABS_SIWX91X
 
+if SOC_SERIES_SIWG917
+config TEST_WRAPPED_KEYS
+	bool "Enable Wrapper keys - specific to SiWG917"
+endif
+
 endif
 endif
@@ -1,27 +1,27 @@
 /*
- * Copyright (c) 2025 Silicon Laboratories Inc.
- *
- * SPDX-License-Identifier: Apache-2.0
- */
+* Copyright (c) 2025 Silicon Laboratories Inc.
+*
+* SPDX-License-Identifier: Apache-2.0
+*/
 
 #include <zephyr/ztest.h>
 #include <psa/crypto.h>
 
 const uint8_t aes_key_buf[] = {0xea, 0x4f, 0x6f, 0x3c, 0x2f, 0xed, 0x2b, 0x9d,
-			       0xd9, 0x70, 0x8c, 0x2e, 0x72, 0x1a, 0xe0, 0x0f};
+				0xd9, 0x70, 0x8c, 0x2e, 0x72, 0x1a, 0xe0, 0x0f};
 const uint8_t aes_nonce_buf[] = {0xf9, 0x75, 0x80, 0x9d, 0xdb, 0x51,
-				 0x72, 0x38, 0x27, 0x45, 0x63, 0x4f};
+				0x72, 0x38, 0x27, 0x45, 0x63, 0x4f};
 const uint8_t aes_ad_buf[] = {0x5c, 0x65, 0xd4, 0xf2, 0x61, 0xd2, 0xc5, 0x4f, 0xfe, 0x6a};
 const uint8_t aes_plaintext[] = {0x8d, 0x6c, 0x08, 0x44, 0x6c, 0xb1, 0x0d, 0x9a, 0x20, 0x75};
 
 const uint8_t chachapoly_key_buf[] = {0x80, 0x81, 0x82, 0x83, 0x84, 0x85, 0x86, 0x87,
-				      0x88, 0x89, 0x8a, 0x8b, 0x8c, 0x8d, 0x8e, 0x8f,
-				      0x90, 0x91, 0x92, 0x93, 0x94, 0x95, 0x96, 0x97,
-				      0x98, 0x99, 0x9a, 0x9b, 0x9c, 0x9d, 0x9e, 0x9f};
+					0x88, 0x89, 0x8a, 0x8b, 0x8c, 0x8d, 0x8e, 0x8f,
+					0x90, 0x91, 0x92, 0x93, 0x94, 0x95, 0x96, 0x97,
+					0x98, 0x99, 0x9a, 0x9b, 0x9c, 0x9d, 0x9e, 0x9f};
 const uint8_t chachapoly_nonce_buf[] = {0x07, 0x00, 0x00, 0x00, 0x40, 0x41,
 					0x42, 0x43, 0x44, 0x45, 0x46, 0x47};
 const uint8_t chachapoly_ad_buf[] = {0x50, 0x51, 0x52, 0x53, 0xc0, 0xc1,
-				     0xc2, 0xc3, 0xc4, 0xc5, 0xc6, 0xc7};
+					0xc2, 0xc3, 0xc4, 0xc5, 0xc6, 0xc7};
 const uint8_t chachapoly_plaintext[] = {
 	0x4c, 0x61, 0x64, 0x69, 0x65, 0x73, 0x20, 0x61, 0x6e, 0x64, 0x20, 0x47, 0x65, 0x6e, 0x74,
 	0x6c, 0x65, 0x6d, 0x65, 0x6e, 0x20, 0x6f, 0x66, 0x20, 0x74, 0x68, 0x65, 0x20, 0x63, 0x6c,
@@ -62,25 +62,23 @@ ZTEST(psa_crypto_test, test_aead_aes_ccm)
 	psa_set_key_algorithm(&attributes, alg);
 
 	zassert_equal(psa_import_key(&attributes, aes_key_buf, sizeof(aes_key_buf), &key_id),
-		      PSA_SUCCESS, "Failed to import key");
+			PSA_SUCCESS, "Failed to import key");
 
 	zassert_equal(psa_aead_encrypt(key_id, alg, aes_nonce_buf, sizeof(aes_nonce_buf),
-				       aes_ad_buf, sizeof(aes_ad_buf), aes_plaintext,
-				       sizeof(aes_plaintext), cipher_tag_buf,
-				       sizeof(cipher_tag_buf), &out_len),
-		      PSA_SUCCESS, "Failed to encrypt");
+					aes_ad_buf, sizeof(aes_ad_buf), aes_plaintext,
+					sizeof(aes_plaintext), cipher_tag_buf,
+					sizeof(cipher_tag_buf), &out_len),
+			PSA_SUCCESS, "Failed to encrypt");
 
 	zassert_equal(out_len, sizeof(expect_cipher_tag_buf));
 	zassert_mem_equal(cipher_tag_buf, expect_cipher_tag_buf, sizeof(expect_cipher_tag_buf));
-
 	zassert_equal(psa_aead_decrypt(key_id, alg, aes_nonce_buf, sizeof(aes_nonce_buf),
-				       aes_ad_buf, sizeof(aes_ad_buf), cipher_tag_buf, out_len,
-				       decrypted, sizeof(decrypted), &out_len),
-		      PSA_SUCCESS, "Failed to decrypt");
+					aes_ad_buf, sizeof(aes_ad_buf), cipher_tag_buf, out_len,
+					decrypted, sizeof(decrypted), &out_len),
+			PSA_SUCCESS, "Failed to decrypt");
 
 	zassert_equal(out_len, sizeof(aes_plaintext));
 	zassert_mem_equal(decrypted, aes_plaintext, sizeof(aes_plaintext));
-
 	zassert_equal(psa_destroy_key(key_id), PSA_SUCCESS, "Failed to destroy key");
 }
 
@@ -103,21 +101,21 @@ ZTEST(psa_crypto_test, test_aead_aes_gcm)
 	psa_set_key_algorithm(&attributes, alg);
 
 	zassert_equal(psa_import_key(&attributes, aes_key_buf, sizeof(aes_key_buf), &key_id),
-		      PSA_SUCCESS, "Failed to import key");
+			PSA_SUCCESS, "Failed to import key");
 
 	zassert_equal(psa_aead_encrypt(key_id, alg, aes_nonce_buf, sizeof(aes_nonce_buf),
-				       aes_ad_buf, sizeof(aes_ad_buf), aes_plaintext,
-				       sizeof(aes_plaintext), cipher_tag_buf,
-				       sizeof(cipher_tag_buf), &out_len),
-		      PSA_SUCCESS, "Failed to encrypt");
+					aes_ad_buf, sizeof(aes_ad_buf), aes_plaintext,
+					sizeof(aes_plaintext), cipher_tag_buf,
+					sizeof(cipher_tag_buf), &out_len),
+			PSA_SUCCESS, "Failed to encrypt");
 
 	zassert_equal(out_len, sizeof(expect_cipher_tag_buf));
 	zassert_mem_equal(cipher_tag_buf, expect_cipher_tag_buf, sizeof(expect_cipher_tag_buf));
 
 	zassert_equal(psa_aead_decrypt(key_id, alg, aes_nonce_buf, sizeof(aes_nonce_buf),
-				       aes_ad_buf, sizeof(aes_ad_buf), cipher_tag_buf, out_len,
-				       decrypted, sizeof(decrypted), &out_len),
-		      PSA_SUCCESS, "Failed to decrypt");
+					aes_ad_buf, sizeof(aes_ad_buf), cipher_tag_buf, out_len,
+					decrypted, sizeof(decrypted), &out_len),
+			PSA_SUCCESS, "Failed to decrypt");
 
 	zassert_equal(out_len, sizeof(aes_plaintext));
 	zassert_mem_equal(decrypted, aes_plaintext, sizeof(aes_plaintext));
@@ -130,7 +128,6 @@ ZTEST(psa_crypto_test, test_aead_chacha20_poly1305)
 	uint8_t cipher_tag_buf[130]; /* Ciphertext + Tag */
 	uint8_t decrypted[sizeof(chachapoly_plaintext)] = {0};
 	size_t out_len;
-
 	psa_key_id_t key_id;
 	psa_key_attributes_t attributes = PSA_KEY_ATTRIBUTES_INIT;
 	psa_algorithm_t alg = PSA_ALG_CHACHA20_POLY1305;
@@ -140,28 +137,27 @@ ZTEST(psa_crypto_test, test_aead_chacha20_poly1305)
 	psa_set_key_algorithm(&attributes, alg);
 
 	zassert_equal(psa_import_key(&attributes, chachapoly_key_buf, sizeof(chachapoly_key_buf),
-				     &key_id),
-		      PSA_SUCCESS, "Failed to import key");
+					&key_id),
+			PSA_SUCCESS, "Failed to import key");
 
 	zassert_equal(psa_aead_encrypt(key_id, alg, chachapoly_nonce_buf,
-				       sizeof(chachapoly_nonce_buf), chachapoly_ad_buf,
-				       sizeof(chachapoly_ad_buf), chachapoly_plaintext,
-				       sizeof(chachapoly_plaintext), cipher_tag_buf,
-				       sizeof(cipher_tag_buf), &out_len),
-		      PSA_SUCCESS, "Failed to encrypt");
+					sizeof(chachapoly_nonce_buf), chachapoly_ad_buf,
+					sizeof(chachapoly_ad_buf), chachapoly_plaintext,
+					sizeof(chachapoly_plaintext), cipher_tag_buf,
+					sizeof(cipher_tag_buf), &out_len),
+			PSA_SUCCESS, "Failed to encrypt");
 
 	zassert_equal(out_len, sizeof(chachapoly_expect_cipher_tag_buf));
 	zassert_mem_equal(cipher_tag_buf, chachapoly_expect_cipher_tag_buf,
-			  sizeof(chachapoly_expect_cipher_tag_buf));
+			sizeof(chachapoly_expect_cipher_tag_buf));
 
 	zassert_equal(psa_aead_decrypt(key_id, alg, chachapoly_nonce_buf,
-				       sizeof(chachapoly_nonce_buf), chachapoly_ad_buf,
-				       sizeof(chachapoly_ad_buf), cipher_tag_buf, out_len,
-				       decrypted, sizeof(decrypted), &out_len),
-		      PSA_SUCCESS, "Failed to decrypt");
+					sizeof(chachapoly_nonce_buf), chachapoly_ad_buf,
+					sizeof(chachapoly_ad_buf), cipher_tag_buf, out_len,
+					decrypted, sizeof(decrypted), &out_len),
+			PSA_SUCCESS, "Failed to decrypt");
 
 	zassert_equal(out_len, sizeof(chachapoly_plaintext));
 	zassert_mem_equal(decrypted, chachapoly_plaintext, sizeof(chachapoly_plaintext));
-
 	zassert_equal(psa_destroy_key(key_id), PSA_SUCCESS, "Failed to destroy key");
 }
@@ -1,8 +1,8 @@
 /*
- * Copyright (c) 2025 Silicon Laboratories Inc.
- *
- * SPDX-License-Identifier: Apache-2.0
- */
+* Copyright (c) 2025 Silicon Laboratories Inc.
+*
+* SPDX-License-Identifier: Apache-2.0
+*/
 
 #include <zephyr/ztest.h>
 #include <psa/crypto.h>
@@ -40,44 +40,43 @@ ZTEST(psa_crypto_test, test_cipher_aes_cbc_256_multipart)
 	psa_set_key_algorithm(&attributes, alg);
 	psa_set_key_type(&attributes, PSA_KEY_TYPE_AES);
 	psa_set_key_bits(&attributes, 256);
-	if (IS_ENABLED(TEST_WRAPPED_KEYS)) {
+	#if  (CONFIG_TEST_WRAPPED_KEYS)
 		psa_set_key_lifetime(&attributes, PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION(
-							  PSA_KEY_PERSISTENCE_VOLATILE, 1));
+							PSA_KEY_PERSISTENCE_VOLATILE, 0));
 		zassert_equal(psa_generate_key(&attributes, &key_id), PSA_SUCCESS,
-			      "Failed to generate key");
-	} else {
+				"Failed to generate key");
+	# else
 		zassert_equal(psa_import_key(&attributes, key_256, sizeof(key_256), &key_id),
-			      PSA_SUCCESS, "Failed to import key");
-	}
+				PSA_SUCCESS, "Failed to import key");
+	#endif
 	psa_reset_key_attributes(&attributes);
-
 	zassert_equal(psa_cipher_encrypt_setup(&operation, key_id, alg), PSA_SUCCESS,
-		      "Failed to begin encrypt operation");
+			"Failed to begin encrypt operation");
 	zassert_equal(psa_cipher_generate_iv(&operation, iv, sizeof(iv), &iv_len), PSA_SUCCESS,
-		      "Failed to generate IV");
+			"Failed to generate IV");
 	zassert_equal(psa_cipher_update(&operation, plaintext, sizeof(plaintext), ciphertext,
-					sizeof(ciphertext), &ciphertext_len),
-		      PSA_SUCCESS, "Failed to update encrypt operation");
+				sizeof(ciphertext), &ciphertext_len),
+			PSA_SUCCESS, "Failed to update encrypt operation");
 	zassert_equal(psa_cipher_finish(&operation, ciphertext + ciphertext_len,
-					sizeof(ciphertext) - ciphertext_len, &ciphertext_len),
-		      PSA_SUCCESS, "Failed to finish encrypt operation");
+				sizeof(ciphertext) - ciphertext_len, &ciphertext_len),
+			PSA_SUCCESS, "Failed to finish encrypt operation");
 
 	psa_cipher_abort(&operation);
 
 	zassert(memcmp(ciphertext, plaintext, sizeof(plaintext)) != 0,
 		"Ciphertext identical to plaintext");
 
 	zassert_equal(psa_cipher_decrypt_setup(&operation, key_id, alg), PSA_SUCCESS,
-		      "Failed to begin decrypt operation");
+			"Failed to begin decrypt operation");
 	zassert_equal(psa_cipher_set_iv(&operation, iv, sizeof(iv)), PSA_SUCCESS,
-		      "Failed to set IV");
+			"Failed to set IV");
 	zassert_equal(psa_cipher_update(&operation, ciphertext, sizeof(ciphertext), decrypted,
 					sizeof(decrypted), &decrypted_len),
-		      PSA_SUCCESS, "Failed to update decrypt operation");
+			PSA_SUCCESS, "Failed to update decrypt operation");
 	zassert_equal(decrypted_len, sizeof(decrypted), "Decrypted length mismatch");
 	zassert_equal(psa_cipher_finish(&operation, decrypted + decrypted_len,
 					sizeof(decrypted) - decrypted_len, &decrypted_len),
-		      PSA_SUCCESS, "Failed to finish decrypt operation");
+			PSA_SUCCESS, "Failed to finish decrypt operation");
 
 	psa_cipher_abort(&operation);
 
@@ -96,42 +95,31 @@ ZTEST(psa_crypto_test, test_cipher_aes_cbc_256_single)
 	psa_set_key_algorithm(&attributes, alg);
 	psa_set_key_type(&attributes, PSA_KEY_TYPE_AES);
 	psa_set_key_bits(&attributes, 256);
-	if (IS_ENABLED(TEST_WRAPPED_KEYS)) {
+	#if  (CONFIG_TEST_WRAPPED_KEYS)
 		psa_set_key_lifetime(&attributes, PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION(
-							  PSA_KEY_PERSISTENCE_VOLATILE, 1));
+							PSA_KEY_PERSISTENCE_VOLATILE, 1));
 		zassert_equal(psa_generate_key(&attributes, &key_id), PSA_SUCCESS,
-			      "Failed to generate key");
-	} else {
+				"Failed to generate key");
+	# else
 		zassert_equal(psa_import_key(&attributes, key_256, sizeof(key_256), &key_id),
-			      PSA_SUCCESS, "Failed to import key");
-	}
+				PSA_SUCCESS, "Failed to import key");
+	#endif
 	psa_reset_key_attributes(&attributes);
 
 	zassert_equal(psa_cipher_encrypt(key_id, alg, plaintext, sizeof(plaintext),
-					 ciphertext_buffer_256, sizeof(ciphertext_buffer_256),
-					 &ciphertext_len),
-		      PSA_SUCCESS, "Failed to perform one-shot encrypt operation");
+					ciphertext_buffer_256, sizeof(ciphertext_buffer_256),
+					&ciphertext_len),
+			PSA_SUCCESS, "Failed to perform one-shot encrypt operation");
 
 	zassert(memcmp(ciphertext_buffer_256, plaintext, sizeof(plaintext)) != 0,
 		"Ciphertext identical to plaintext");
 
 	zassert_equal(psa_cipher_decrypt(key_id, alg, ciphertext_buffer_256, ciphertext_len,
-					 decrypted, sizeof(decrypted), &decrypted_len),
-		      PSA_SUCCESS, "Failed to perform one-shot decrypt operation");
+					decrypted, sizeof(decrypted), &decrypted_len),
+			PSA_SUCCESS, "Failed to perform one-shot decrypt operation");
 
 	zassert_equal(decrypted_len, sizeof(decrypted), "Decrypted length mismatch");
 	zassert_mem_equal(decrypted, plaintext, sizeof(plaintext));
-
-	ciphertext_buffer_256[0] += 1;
-	zassert_equal(psa_cipher_decrypt(key_id, alg, ciphertext_buffer_256, ciphertext_len,
-					 decrypted, sizeof(decrypted), &decrypted_len),
-		      PSA_SUCCESS,
-		      "Failed to perform one-shot decrypt operation with modified ciphertext");
-
-	zassert_equal(decrypted_len, sizeof(decrypted), "Decrypted length mismatch");
-	zassert(memcmp(decrypted, plaintext, sizeof(plaintext)) != 0,
-		"Decrypted modified data identical to original plaintext");
-
 	psa_destroy_key(key_id);
 }
 
@@ -145,41 +133,31 @@ ZTEST(psa_crypto_test, test_cipher_aes_ecb_128_single)
 	psa_set_key_algorithm(&attributes, alg);
 	psa_set_key_type(&attributes, PSA_KEY_TYPE_AES);
 	psa_set_key_bits(&attributes, 128);
-	if (IS_ENABLED(TEST_WRAPPED_KEYS)) {
+	#if  (CONFIG_TEST_WRAPPED_KEYS)
 		psa_set_key_lifetime(&attributes, PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION(
-							  PSA_KEY_PERSISTENCE_VOLATILE, 1));
+							PSA_KEY_PERSISTENCE_VOLATILE, 1));
 
 		zassert_equal(psa_generate_key(&attributes, &key_id), PSA_SUCCESS,
-			      "Failed to generate key");
-	} else {
+				  "Failed to generate key");
+	# else
 		zassert_equal(psa_import_key(&attributes, key_128, sizeof(key_128), &key_id),
-			      PSA_SUCCESS, "Failed to import key");
-	}
+				  PSA_SUCCESS, "Failed to import key");
+	#endif
 	psa_reset_key_attributes(&attributes);
 
 	zassert_equal(psa_cipher_encrypt(key_id, alg, plaintext, sizeof(plaintext), ciphertext,
 					 sizeof(ciphertext), &ciphertext_len),
-		      PSA_SUCCESS, "Failed to perform one-shot encrypt operation");
+			  PSA_SUCCESS, "Failed to perform one-shot encrypt operation");
 
 	zassert(memcmp(ciphertext, plaintext, sizeof(plaintext)) != 0,
 		"Ciphertext identical to plaintext");
 
 	zassert_equal(psa_cipher_decrypt(key_id, alg, ciphertext, ciphertext_len, decrypted,
 					 sizeof(decrypted), &decrypted_len),
-		      PSA_SUCCESS, "Failed to perform one-shot decrypt operation");
+			  PSA_SUCCESS, "Failed to perform one-shot decrypt operation");
 	zassert_equal(decrypted_len, sizeof(decrypted), "Decrypted length mismatch");
 	zassert_mem_equal(decrypted, plaintext, sizeof(plaintext));
 
-	ciphertext[0] += 1;
-	zassert_equal(psa_cipher_decrypt(key_id, alg, ciphertext, ciphertext_len, decrypted,
-					 sizeof(decrypted), &decrypted_len),
-		      PSA_SUCCESS,
-		      "Failed to perform one-shot decrypt operation with modified ciphertext");
-
-	zassert_equal(decrypted_len, sizeof(decrypted), "Decrypted length mismatch");
-	zassert(memcmp(decrypted, plaintext, sizeof(plaintext)) != 0,
-		"Decrypted modified data identical to original plaintext");
-
 	psa_destroy_key(key_id);
 }
 
@@ -195,19 +173,19 @@ ZTEST(psa_crypto_test, test_cipher_chacha20_single)
 	psa_set_key_algorithm(&attributes, alg);
 
 	zassert_equal(psa_import_key(&attributes, key_256, sizeof(key_256), &key_id), PSA_SUCCESS,
-		      "Failed to import key");
+			  "Failed to import key");
 
 	zassert_equal(psa_cipher_encrypt(key_id, alg, plaintext, sizeof(plaintext),
 					 ciphertext_buffer_256, sizeof(ciphertext_buffer_256),
 					 &out_len),
-		      PSA_SUCCESS, "Failed to encrypt");
+			  PSA_SUCCESS, "Failed to encrypt");
 
 	zassert(memcmp(ciphertext_buffer_256, plaintext, sizeof(plaintext)) != 0,
 		"Ciphertext identical to plaintext");
 
 	zassert_equal(psa_cipher_decrypt(key_id, alg, ciphertext_buffer_256, out_len, decrypted,
 					 sizeof(decrypted), &out_len),
-		      PSA_SUCCESS, "Failed to decrypt");
+			  PSA_SUCCESS, "Failed to decrypt");
 
 	zassert_mem_equal(decrypted, plaintext, sizeof(plaintext));
 }