suit: Pass manifest component ID through platform API

This commit adds the additional manifest component ID
to multiple functions in the platform API. This is an
enabler for such functionalities as validating the
KEY ID for decryption.

Signed-off-by: Artur Hadasz <[email protected]>

Author: ahasztag

subsys/suit/platform/app/src/suit_plat_copy.c

@@ -10,12 +10,14 @@
 LOG_MODULE_REGISTER(suit_plat_copy, CONFIG_SUIT_LOG_LEVEL);
 
 int suit_plat_check_copy(suit_component_t dst_handle, suit_component_t src_handle,
+			 struct zcbor_string *manifest_component_id,
 			 struct suit_encryption_info *enc_info)
 {
 	return SUIT_ERR_UNSUPPORTED_COMMAND;
 }
 
 int suit_plat_copy(suit_component_t dst_handle, suit_component_t src_handle,
+		   struct zcbor_string *manifest_component_id,
 		   struct suit_encryption_info *enc_info)
 {
 	return SUIT_ERR_UNSUPPORTED_COMMAND;

subsys/suit/platform/app/src/suit_plat_swap.c

@@ -7,12 +7,14 @@
 #include <suit_platform.h>
 
 int suit_plat_check_swap(suit_component_t dst_handle, suit_component_t src_handle,
+			 struct zcbor_string *manifest_component_id,
 			 struct suit_encryption_info *enc_info)
 {
 	return SUIT_ERR_UNSUPPORTED_COMMAND;
 }
 
 int suit_plat_swap(suit_component_t dst_handle, suit_component_t src_handle,
+		   struct zcbor_string *manifest_component_id,
 		   struct suit_encryption_info *enc_info)
 {
 	return SUIT_ERR_UNSUPPORTED_COMMAND;

subsys/suit/platform/app/src/suit_plat_write.c

@@ -10,13 +10,15 @@
 LOG_MODULE_REGISTER(suit_plat_write, CONFIG_SUIT_LOG_LEVEL);
 
 int suit_plat_check_write(suit_component_t dst_handle, struct zcbor_string *content,
+			  struct zcbor_string *manifest_component_id,
 			  struct suit_encryption_info *enc_info)
 {
 	LOG_ERR("SUIT directive write is not supported for app");
 	return SUIT_ERR_UNSUPPORTED_COMMAND;
 }
 
 int suit_plat_write(suit_component_t dst_handle, struct zcbor_string *content,
+		    struct zcbor_string *manifest_component_id,
 		    struct suit_encryption_info *enc_info)
 {
 	LOG_ERR("SUIT directive write is not supported for app");

subsys/suit/platform/sdfw/src/suit_plat_copy.c

@@ -36,6 +36,7 @@
 LOG_MODULE_REGISTER(suit_plat_copy, CONFIG_SUIT_LOG_LEVEL);
 
 int suit_plat_check_copy(suit_component_t dst_handle, suit_component_t src_handle,
+			 struct zcbor_string *manifest_component_id,
 			 struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
@@ -48,6 +49,7 @@ int suit_plat_check_copy(suit_component_t dst_handle, suit_component_t src_handl
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.
@@ -138,6 +140,7 @@ int suit_plat_check_copy(suit_component_t dst_handle, suit_component_t src_handl
 }
 
 int suit_plat_copy(suit_component_t dst_handle, suit_component_t src_handle,
+		   struct zcbor_string *manifest_component_id,
 		   struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
@@ -151,6 +154,7 @@ int suit_plat_copy(suit_component_t dst_handle, suit_component_t src_handle,
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.

subsys/suit/platform/sdfw/src/suit_plat_retrieve_manifest_sdfw_specific.c

@@ -27,8 +27,8 @@ int suit_plat_retrieve_manifest_domain_specific(struct zcbor_string *component_i
 	case SUIT_COMPONENT_TYPE_INSTLD_MFST: {
 		suit_manifest_class_id_t *class_id;
 
-		if (suit_plat_decode_manifest_class_id(component_id, &class_id)
-		    != SUIT_PLAT_SUCCESS) {
+		if (suit_plat_decode_manifest_class_id(component_id, &class_id) !=
+		    SUIT_PLAT_SUCCESS) {
 			LOG_ERR("Unable to decode manifest class ID");
 			ret = SUIT_ERR_UNSUPPORTED_COMPONENT_ID;
 			break;

subsys/suit/platform/sdfw/src/suit_plat_swap.c

@@ -7,12 +7,14 @@
 #include <suit_platform.h>
 
 int suit_plat_check_swap(suit_component_t dst_handle, suit_component_t src_handle,
+			 struct zcbor_string *manifest_component_id,
 			 struct suit_encryption_info *enc_info)
 {
 	return SUIT_ERR_UNSUPPORTED_COMMAND;
 }
 
 int suit_plat_swap(suit_component_t dst_handle, suit_component_t src_handle,
+		   struct zcbor_string *manifest_component_id,
 		   struct suit_encryption_info *enc_info)
 {
 	return SUIT_ERR_UNSUPPORTED_COMMAND;

subsys/suit/platform/sdfw/src/suit_plat_write.c

@@ -33,13 +33,15 @@
 LOG_MODULE_REGISTER(suit_plat_write, CONFIG_SUIT_LOG_LEVEL);
 
 int suit_plat_check_write(suit_component_t dst_handle, struct zcbor_string *content,
+			  struct zcbor_string *manifest_component_id,
 			  struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
 	struct stream_sink dst_sink;
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.
@@ -102,13 +104,15 @@ int suit_plat_check_write(suit_component_t dst_handle, struct zcbor_string *cont
 }
 
 int suit_plat_write(suit_component_t dst_handle, struct zcbor_string *content,
+		    struct zcbor_string *manifest_component_id,
 		    struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
 	struct stream_sink dst_sink;
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.

subsys/suit/platform/src/suit_plat_fetch.c

@@ -92,13 +92,15 @@ static int verify_and_get_sink(suit_component_t dst_handle, struct stream_sink *
 #endif /* CONFIG_SUIT_STREAM */
 
 int suit_plat_check_fetch(suit_component_t dst_handle, struct zcbor_string *uri,
+			  struct zcbor_string *manifest_component_id,
 			  struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	struct stream_sink dst_sink = {0};
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.
@@ -141,13 +143,15 @@ int suit_plat_check_fetch(suit_component_t dst_handle, struct zcbor_string *uri,
 }
 
 int suit_plat_fetch(suit_component_t dst_handle, struct zcbor_string *uri,
+		    struct zcbor_string *manifest_component_id,
 		    struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
 	struct stream_sink dst_sink = {0};
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.
@@ -222,13 +226,15 @@ int suit_plat_fetch(suit_component_t dst_handle, struct zcbor_string *uri,
 }
 
 int suit_plat_check_fetch_integrated(suit_component_t dst_handle, struct zcbor_string *payload,
+				     struct zcbor_string *manifest_component_id,
 				     struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
 	struct stream_sink dst_sink;
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.
@@ -289,13 +295,15 @@ int suit_plat_check_fetch_integrated(suit_component_t dst_handle, struct zcbor_s
 }
 
 int suit_plat_fetch_integrated(suit_component_t dst_handle, struct zcbor_string *payload,
+			       struct zcbor_string *manifest_component_id,
 			       struct suit_encryption_info *enc_info)
 {
 #ifdef CONFIG_SUIT_STREAM
 	struct stream_sink dst_sink;
 	suit_component_type_t dst_component_type = SUIT_COMPONENT_TYPE_UNSUPPORTED;
 	suit_plat_err_t plat_ret = SUIT_PLAT_SUCCESS;
 	int ret = SUIT_SUCCESS;
+	(void)manifest_component_id;
 
 	/*
 	 * Validate streaming operation.

tests/subsys/suit/cache_pool_digest/src/main.c

@@ -39,6 +39,11 @@ static struct zcbor_string unexp_digest = {
 	.len = sizeof(invalid_digest),
 };
 
+static struct zcbor_string valid_manifest_component_id = {
+	.value = (const uint8_t *)0x1234,
+	.len = 123,
+};
+
 /* Mocks of functions provided via SSF services */
 FAKE_VALUE_FUNC(int, suit_plat_component_compatibility_check, suit_manifest_class_id_t *,
 		struct zcbor_string *);
@@ -116,7 +121,7 @@ ZTEST(cache_pool_digest_tests, test_cache_get_slot_ok)
 		.len = sizeof(uri),
 	};
 
-	ret = suit_plat_fetch(dst_component, &src_uri, NULL);
+	ret = suit_plat_fetch(dst_component, &src_uri, &valid_manifest_component_id, NULL);
 	zassert_equal(ret, SUIT_SUCCESS, "suit_plat_fetch failed - error %i", ret);
 
 	ret = suit_plat_check_image_match(dst_component, suit_cose_sha256, &exp_digest);

tests/subsys/suit/copy/src/main.c

@@ -28,6 +28,11 @@ static void test_before(void *data)
 	FFF_RESET_HISTORY();
 }
 
+static struct zcbor_string valid_manifest_component_id = {
+	.value = (const uint8_t *)0x1234,
+	.len = 123,
+};
+
 ZTEST_SUITE(copy_tests, NULL, NULL, test_before, NULL, NULL);
 
 ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_OK)
@@ -49,7 +54,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_OK)
 
 	zassert_equal(ret, SUIT_SUCCESS, "create_component_handle failed - error %i", ret);
 
-	ret = suit_plat_fetch_integrated(src_handle, &source, NULL);
+	ret = suit_plat_fetch_integrated(src_handle, &source, &valid_manifest_component_id, NULL);
 	zassert_equal(ret, SUIT_SUCCESS, "suit_plat_fetch failed - error %i", ret);
 
 	ret = suit_plat_component_impl_data_get(src_handle, &handle);
@@ -89,7 +94,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_OK)
 	ret = suit_plat_ipuc_write(dst_handle, 0, (uintptr_t)test_data, sizeof(test_data), true);
 	zassert_equal(ret, SUIT_PLAT_SUCCESS, "cannot write to in-place updateable component");
 
-	ret = suit_plat_copy(dst_handle, src_handle, NULL);
+	ret = suit_plat_copy(dst_handle, src_handle, &valid_manifest_component_id, NULL);
 	zassert_equal(ret, SUIT_SUCCESS, "suit_plat_copy failed - error %i", ret);
 
 	ret = suit_plat_ipuc_write(dst_handle, 0, (uintptr_t)test_data, sizeof(test_data), true);
@@ -126,7 +131,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_NOK_dst_hand
 
 	zassert_equal(ret, SUIT_SUCCESS, "create_component_handle failed - error %i", ret);
 
-	ret = suit_plat_fetch_integrated(src_handle, &source, NULL);
+	ret = suit_plat_fetch_integrated(src_handle, &source, &valid_manifest_component_id, NULL);
 	zassert_equal(ret, SUIT_SUCCESS, "suit_plat_fetch failed - error %i", ret);
 
 	ret = suit_plat_component_impl_data_get(src_handle, &handle);
@@ -160,7 +165,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_NOK_dst_hand
 	ret = suit_plat_release_component_handle(dst_handle);
 	zassert_equal(ret, SUIT_SUCCESS, "dst_handle release failed - error %i", ret);
 
-	ret = suit_plat_copy(dst_handle, src_handle, NULL);
+	ret = suit_plat_copy(dst_handle, src_handle, &valid_manifest_component_id, NULL);
 	zassert_not_equal(ret, SUIT_SUCCESS,
 			  "suit_plat_copy should have failed - dst_handle released");
 
@@ -191,7 +196,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_NOK_src_hand
 
 	zassert_equal(ret, SUIT_SUCCESS, "create_component_handle failed - error %i", ret);
 
-	ret = suit_plat_fetch_integrated(src_handle, &source, NULL);
+	ret = suit_plat_fetch_integrated(src_handle, &source, &valid_manifest_component_id, NULL);
 	zassert_equal(ret, SUIT_SUCCESS, "suit_plat_fetch failed - error %i", ret);
 
 	ret = suit_plat_component_impl_data_get(src_handle, &handle);
@@ -225,7 +230,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_NOK_src_hand
 	ret = suit_plat_release_component_handle(src_handle);
 	zassert_equal(ret, SUIT_SUCCESS, "src_handle release failed - error %i", ret);
 
-	ret = suit_plat_copy(dst_handle, src_handle, NULL);
+	ret = suit_plat_copy(dst_handle, src_handle, &valid_manifest_component_id, NULL);
 	zassert_not_equal(ret, SUIT_SUCCESS,
 			  "suit_plat_copy should have failed - src_handle released");
 
@@ -267,7 +272,7 @@ ZTEST(copy_tests, test_integrated_fetch_to_memptr_and_copy_to_msink_NOK_memptr_e
 	ret = suit_plat_create_component_handle(&valid_dst_component_id, false, &dst_handle);
 	zassert_equal(ret, SUIT_SUCCESS, "create_component_handle failed - error %i", ret);
 
-	ret = suit_plat_copy(dst_handle, src_handle, NULL);
+	ret = suit_plat_copy(dst_handle, src_handle, &valid_manifest_component_id, NULL);
 	zassert_not_equal(ret, SUIT_SUCCESS, "suit_plat_copy should have failed - memptr empty");
 
 	ret = suit_plat_release_component_handle(dst_handle);