Merged PR 10172292: Add symcrypt build for optee env

## Description:

## Admin Checklist:
- [ ] You have updated documentation in symcrypt.h to reflect any changes in behavior
- [ ] You have updated CHANGELOG.md to reflect any changes in behavior
- [ ] You have updated symcryptunittest to exercise any new functionality
- [ ] If you have introduced any symbols in symcrypt.h you have updated production and test dynamic export symbols (exports.ver / exports.def / symcrypt.src) and tested the updated dynamic modules with symcryptunittest
- [ ] If you have introduced functionality that varies based on CPU features, you have manually tested with and without relevant features
- [ ] If you have made significant changes to a particular algorithm, you have checked that performance numbers reported by symcryptunittest are in line with expectations
- [ ] If you have added new algorithms/modes, you have updated the status indicator text for the associated modules if necessary

Add symcrypt build for optee env

Signed-off-by: v-shlevy <[email protected]>

Related work items: #49419416

Author: Shachar Levy

cmake-configs/SymCrypt-Platforms.cmake

@@ -3,7 +3,11 @@
 # Choose which environment to use based on the host platform
 # We don't support cross-compiling from one platform to another (e.g. compiling Windows binaries on Linux)
 if(CMAKE_SYSTEM_NAME MATCHES "Linux")
-    set(SYMCRYPT_TARGET_ENV "LinuxUserMode")
+    if(SYMCRYPT_OPTEE MATCHES "ON")
+        set(SYMCRYPT_TARGET_ENV "OPTEE")
+    else()
+        set(SYMCRYPT_TARGET_ENV "LinuxUserMode")
+    endif()
 elseif(CMAKE_SYSTEM_NAME MATCHES "Windows")
     set(SYMCRYPT_TARGET_ENV "WindowsUserMode")
 else()
@@ -51,6 +55,21 @@ if(CMAKE_SYSTEM_NAME MATCHES "Linux")
         # Enable a baseline of features for the compiler to support everywhere
         # Assumes that the compiler will not emit crypto instructions as a result of normal C code
         set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -march=armv8-a+simd+crypto")
+        
+        if(SYMCRYPT_TARGET_ENV MATCHES "OPTEE")
+            # TA DEV KIT is require for OPTEE TA compilation 
+            if(DEFINED TA_DEV_KIT_INC)
+                # Get the compiler toolchain include
+                execute_process(COMMAND ${CMAKE_C_COMPILER} -print-file-name=include OUTPUT_VARIABLE TOOLCHAIN_INCLUDE)
+                string(STRIP "${TOOLCHAIN_INCLUDE}" TOOLCHAIN_INCLUDE)
+                # OPTEE env has a different stdlib and doesn't support atomic operations or multithreading.
+                add_compile_options(-mno-outline-atomics -nostdinc -isystem ${TOOLCHAIN_INCLUDE})
+                include_directories(${TA_DEV_KIT_INC})
+            else()
+                message(FATAL_ERROR "TA_DEV_KIT_INC must be defined for OPTEE build")
+            endif()
+        endif()
+
         # GCC complains about implicit casting between ASIMD registers (i.e. uint8x16_t -> uint64x2_t) by default,
         # whereas clang and MSVC do not. Setting -flax-vector-conversions to build Arm64 intrinsics code with GCC.
         set(CMAKE_C_FLAGS "${CMAKE_C_FLAGS} -flax-vector-conversions")

inc/symcrypt.h

@@ -493,6 +493,8 @@ SymCryptUint64Bytesize( UINT64 value );
 //
 // SYMCRYPT_ENVIRONMENT_LINUX_USERMODE                      // use for Linux
 //
+// SYMCRYPT_ENVIRONMENT_OPTEE_TA                            // use for OPTEE
+//
 // SYMCRYPT_ENVIRONMENT_GENERIC                             // use for all other situations
 //
 

inc/symcrypt_internal.h

@@ -2884,6 +2884,7 @@ SYMCRYPT_EXTERN_C_END
 
 #define SYMCRYPT_ENVIRONMENT_WINDOWS_KERNELMODE_LEGACY          SYMCRYPT_ENVIRONMENT_GENERIC
 
+#ifdef NTDDI_VERSION
 #if (NTDDI_VERSION >= NTDDI_WIN7)
 #define SYMCRYPT_ENVIRONMENT_WINDOWS_KERNELMODE_WIN7_N_LATER    SYMCRYPT_ENVIRONMENT_DEFS( WindowsKernelmodeWin7nLater )
 #endif
@@ -2909,12 +2910,16 @@ SYMCRYPT_EXTERN_C_END
 #if (NTDDI_VERSION >= NTDDI_WIN10)
 #define SYMCRYPT_ENVIRONMENT_WINDOWS_USERMODE_WIN10_SGX         SYMCRYPT_ENVIRONMENT_DEFS( Win10Sgx )
 #endif
+#endif // NTDDI_VERSION
 
 #define SYMCRYPT_ENVIRONMENT_WINDOWS_USERMODE_LATEST            SYMCRYPT_ENVIRONMENT_WINDOWS_USERMODE_WIN8_1_N_LATER
 
 
 #define SYMCRYPT_ENVIRONMENT_LINUX_USERMODE                     SYMCRYPT_ENVIRONMENT_DEFS( LinuxUsermode )
 
+
+#define SYMCRYPT_ENVIRONMENT_OPTEE_TA                           SYMCRYPT_ENVIRONMENT_DEFS( OpteeTa )
+
 //////////////////////////////////////////////////////////
 //
 // SymCryptWipe & SymCryptWipeKnownSize

lib/CMakeLists.txt

@@ -393,9 +393,24 @@ if(NOT WIN32)
         endif()
     endif()
 
-    add_library(symcrypt_linuxusermode STATIC env_linuxUserMode.c)
-    set_target_properties(symcrypt_linuxusermode PROPERTIES PREFIX "")
-    target_link_libraries(symcrypt_linuxusermode symcrypt_common)
+    if(SYMCRYPT_TARGET_ENV MATCHES "LinuxUserMode")
+        add_library(symcrypt_linuxusermode STATIC env_linuxUserMode.c)
+        set_target_properties(symcrypt_linuxusermode PROPERTIES PREFIX "")
+        target_link_libraries(symcrypt_linuxusermode symcrypt_common)
+    elseif(SYMCRYPT_TARGET_ENV MATCHES "OPTEE")
+        # Remove files from symcrypt_common that are not supported in optee env.
+        # aes-asm.c - use SymCryptAesDecryptAsm which is not defined for ARM64
+        # cpuid_um.c - include auxv.h and use getauxval
+        # session.c - use atomic operations (__atomic_compare_exchange)
+        list(REMOVE_ITEM SOURCES_COMMON
+            aes-asm.c
+            cpuid_um.c
+            session.c)
+
+        add_library(symcrypt_envOpteeTa STATIC env_opteeTa.c)
+        set_target_properties(symcrypt_envOpteeTa PROPERTIES PREFIX "")
+        target_link_libraries(symcrypt_envOpteeTa symcrypt_common)
+    endif()
 endif()
 
 include_directories(${CMAKE_SOURCE_DIR}/inc)

lib/env_opteeTa.c

@@ -0,0 +1,80 @@
+//
+// env_opteeTa.c
+// Platform-specific code for OPTEE TA.
+//
+// Copyright (c) Microsoft Corporation. Licensed under the MIT license.
+//
+
+#include "precomp.h"
+
+// OPTEE TA specific data
+#define TEE_ERROR_BAD_STATE               0xFFFF0007
+
+typedef uint32_t TEE_Result;
+
+void TEE_Panic(TEE_Result panicCode);
+
+
+SYMCRYPT_CPU_FEATURES SYMCRYPT_CALL SymCryptCpuFeaturesNeverPresentEnvOpteeTa(void)
+{
+    return 0;
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptInitEnvOpteeTa( UINT32 version )
+{
+    if( g_SymCryptFlags & SYMCRYPT_FLAG_LIB_INITIALIZED )
+    {
+        return;
+    }
+    
+    // Optee module relies on the unconditional availability of certain CPU features (ASIMD, AES, PMULL, SHA256)
+    g_SymCryptCpuFeaturesNotPresent = (SYMCRYPT_CPU_FEATURES) ~(SYMCRYPT_CPU_FEATURE_NEON|SYMCRYPT_CPU_FEATURE_NEON_AES|SYMCRYPT_CPU_FEATURE_NEON_PMULL|SYMCRYPT_CPU_FEATURE_NEON_SHA256);
+
+    SymCryptInitEnvCommon( version );
+}
+
+_Analysis_noreturn_
+VOID
+SYMCRYPT_CALL
+SymCryptFatalEnvOpteeTa( ULONG fatalCode )
+{
+    UINT32 fatalCodeVar;
+
+    SymCryptFatalIntercept( fatalCode );
+
+    //
+    // Put the fatal code in a location where it shows up in the dump
+    //
+    SYMCRYPT_FORCE_WRITE32( &fatalCodeVar, fatalCode );
+
+    //
+    // Our first preference is to fastfail,
+    // the second to create an AV, which can trigger a core dump so that we get to
+    // see what is going wrong.
+    //
+    __fastfail( FAST_FAIL_CRYPTO_LIBRARY );
+
+    TEE_Panic(TEE_ERROR_BAD_STATE);
+    
+    //
+    // Next we write to the NULL pointer, this causes an AV
+    //
+    SYMCRYPT_FORCE_WRITE32( (volatile UINT32 *)NULL, fatalCode );
+
+    SymCryptFatalHang( fatalCode );
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptTestInjectErrorEnvOpteeTa( PBYTE pbBuf, SIZE_T cbBuf )
+{
+    //
+    // This feature is only used during testing. In production it is always
+    // an empty function that the compiler can optimize away.
+    //
+    UNREFERENCED_PARAMETER( pbBuf );
+    UNREFERENCED_PARAMETER( cbBuf );
+}
+

modules/linux/CMakeLists.txt

@@ -1,5 +1,12 @@
 add_subdirectory(common) # Common functionality for Linux modules
-add_subdirectory(generic) # Generic Linux module
-if(SYMCRYPT_USE_ASM AND SYMCRYPT_TARGET_ARCH MATCHES "AMD64")
-    add_subdirectory(oe_full) # OpenEnclave with all functionality
+
+if(SYMCRYPT_TARGET_ENV MATCHES "LinuxUserMode")
+
+    add_subdirectory(generic) # Generic Linux module
+    
+    if(SYMCRYPT_USE_ASM AND SYMCRYPT_TARGET_ARCH MATCHES "AMD64")
+        add_subdirectory(oe_full) # OpenEnclave with all functionality
+    endif()
+elseif(SYMCRYPT_TARGET_ENV MATCHES "OPTEE")
+    add_subdirectory(optee) # OPTEE module
 endif()

modules/linux/common/callbacks_pthread.c

@@ -0,0 +1,73 @@
+//
+// callbacks_pthread.c
+// Contains symcrypt call back functions for pthreads
+//
+// Copyright (c) Microsoft Corporation. Licensed under the MIT license.
+//
+
+#include <pthread.h>
+#include "precomp.h"
+
+PVOID
+SYMCRYPT_CALL
+SymCryptCallbackAlloc( SIZE_T nBytes )
+{
+    return aligned_alloc(SYMCRYPT_ASYM_ALIGN_VALUE, nBytes);
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackFree( VOID * pMem )
+{
+    free( pMem );
+}
+
+SYMCRYPT_ERROR
+SYMCRYPT_CALL
+SymCryptCallbackRandom( PBYTE pbBuffer, SIZE_T cbBuffer )
+{
+    SymCryptRandom( pbBuffer, cbBuffer );
+    return SYMCRYPT_NO_ERROR;
+}
+
+
+PVOID
+SYMCRYPT_CALL
+SymCryptCallbackAllocateMutexFastInproc(void)
+{
+    PVOID ptr = malloc(sizeof(pthread_mutex_t));
+
+    if( ptr )
+    {
+        if( pthread_mutex_init( (pthread_mutex_t *)ptr, NULL ) != 0 )
+        {
+            free(ptr);
+            ptr = NULL;
+        }
+    }
+    
+    return ptr;
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackFreeMutexFastInproc( PVOID pMutex )
+{
+    pthread_mutex_destroy( (pthread_mutex_t *)pMutex );
+
+    free(pMutex);
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackAcquireMutexFastInproc( PVOID pMutex )
+{
+    pthread_mutex_lock( (pthread_mutex_t *)pMutex );
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackReleaseMutexFastInproc( PVOID pMutex )
+{
+    pthread_mutex_unlock( (pthread_mutex_t *)pMutex );
+}

modules/linux/common/callbacks_singlethreaded.c

@@ -0,0 +1,52 @@
+//
+// callbacks_singlethreaded.c
+// Contains symcrypt call back functions for single threaded applications.
+//
+// Copyright (c) Microsoft Corporation. Licensed under the MIT license.
+//
+
+#include "precomp.h"
+
+PVOID
+SYMCRYPT_CALL
+SymCryptCallbackAlloc( SIZE_T nBytes )
+{
+    return aligned_alloc(SYMCRYPT_ASYM_ALIGN_VALUE, nBytes);;
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackFree( VOID * pMem )
+{
+    free( pMem );
+}
+
+SYMCRYPT_ERROR
+SYMCRYPT_CALL
+SymCryptCallbackRandom( PBYTE pbBuffer, SIZE_T cbBuffer )
+{
+    SymCryptRandom( pbBuffer, cbBuffer );
+    return SYMCRYPT_NO_ERROR;
+}
+
+PVOID
+SYMCRYPT_CALL
+SymCryptCallbackAllocateMutexFastInproc(void)
+{
+    static const BYTE byte = 0;
+
+    // we want to return a valid non-NULL address so caller can check for NULL
+    return (PVOID)&byte;
+}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackFreeMutexFastInproc( PVOID pMutex ) {}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackAcquireMutexFastInproc( PVOID pMutex ) {}
+
+VOID
+SYMCRYPT_CALL
+SymCryptCallbackReleaseMutexFastInproc( PVOID pMutex ) {}