wolfHSM server support with X509 auth

Author: bigbrett

.github/workflows/test-configs.yml

@@ -474,7 +474,7 @@ jobs:
     uses: ./.github/workflows/test-build.yml
     with:
       arch: host
-      config-file: ./config/examples/sim-wolfHSM.config
+      config-file: ./config/examples/sim-wolfHSM-client.config
 
   rp2350_test:
     uses: ./.github/workflows/test-build-pico-sdk.yml

.github/workflows/test-wolfhsm-simulator.yml

@@ -15,11 +15,14 @@ jobs:
       matrix:
         config:
           - name: "Standard wolfHSM"
-            file: "config/examples/sim-wolfHSM.config"
+            file: "config/examples/sim-wolfHSM-client.config"
           - name: "wolfHSM ML-DSA"
-            file: "config/examples/sim-wolfHSM-mldsa.config"
+            file: "config/examples/sim-wolfHSM-client-mldsa.config"
           - name: "wolfHSM cert chain verify"
-            file: "config/examples/sim-wolfHSM-certchain.config"
+            file: "config/examples/sim-wolfHSM-client-certchain.config"
+          - name: "wolfHSM server cert chain verify"
+            file: "config/examples/sim-wolfHSM-server-certchain.config"
+
       fail-fast: false
 
     runs-on: ubuntu-latest
@@ -50,39 +53,42 @@ jobs:
         run: |
           make clean && make test-sim-internal-flash-with-update
 
-      # checkout and build wolfHSM examples repo
-      - name: Checkout wolfHSM-examples
-        uses: actions/checkout@v4
-        with:
-          repository: wolfssl/wolfHSM-examples
-          # Make sure to update this when the wolfHSM submodule is updated!
-          ref: wolfHSM-examples-v1.2.0
-          path: wolfHSM-examples
-
       - name: Build example POSIX TCP server
-        run: cd wolfHSM-examples/posix/tcp/wh_server_tcp && make WOLFSSL_DIR=../../../../lib/wolfssl WOLFHSM_DIR=../../../../lib/wolfHSM
+        if: matrix.config.name != 'wolfHSM server cert chain verify'
+        run: cd lib/wolfHSM/examples/posix/tcp/wh_server_tcp && make WOLFSSL_DIR=../../../../../wolfssl
 
       # Start the server in the background
       - name: Run POSIX TCP server
+        if: matrix.config.name != 'wolfHSM server cert chain verify'
         run: |
-          cd wolfHSM-examples/posix/tcp/wh_server_tcp
+          cd lib/wolfHSM/examples/posix/tcp/wh_server_tcp
           if [ "${{ matrix.config.name }}" = "wolfHSM cert chain verify" ]; then
             tmpfile=$(mktemp)
-            echo "obj 1 0xFFFF 0x0000 \"cert CA\" ../../../../test-dummy-ca/root-cert.der" >> $tmpfile
+            echo "obj 1 0xFFFF 0x0000 \"cert CA\" ../../../../../../test-dummy-ca/root-cert.der" >> $tmpfile
             ./Build/wh_server_tcp.elf --nvminit $tmpfile &
           else
-            ./Build/wh_server_tcp.elf --client 12 --id 255 --key ../../../../wolfboot_signing_private_key_pub.der &
+            ./Build/wh_server_tcp.elf --client 12 --id 255 --key ../../../../../../wolfboot_signing_private_key_pub.der &
           fi
           TCP_SERVER_PID=$!
           echo "TCP_SERVER_PID=$TCP_SERVER_PID" >> $GITHUB_ENV
 
+      # For testing the wolfHSM server cert chain verify feature, we need to create an NVM image containing our root CA that
+      # the internal wolfHSM server can load.
+      - name: Create NVM image for wolfHSM server cert chain verify
+        if: matrix.config.name == 'wolfHSM server cert chain verify'
+        run: |
+          make -C lib/wolfHSM/tools/whnvmtool
+          tmpfile=$(mktemp)
+          echo "obj 1 0xFFFF 0x0000 \"cert CA\" test-dummy-ca/root-cert.der" >> $tmpfile
+          ./lib/wolfHSM/tools/whnvmtool/whnvmtool --image=wolfBoot_wolfHSM_NVM.bin --size=16348 --invert-erased-byte $tmpfile
+
       # Run the sunny day update test against the server
       - name: Run sunny day update test
         run: |
           tools/scripts/sim-sunnyday-update.sh
 
       # Kill the server if it is still running
       - name: Kill POSIX TCP server
-        if: always()
+        if: always() && matrix.config.name != 'wolfHSM server cert chain verify'
         run: |
           kill $TCP_SERVER_PID || true

Makefile

@@ -54,7 +54,7 @@ endif
 WOLFCRYPT_OBJS:=
 SECURE_OBJS:=
 PUBLIC_KEY_OBJS:=
-WOLFHSM_CLIENT_OBJS:=
+WOLFHSM_OBJS:=
 ifneq ("$(NO_LOADER)","1")
   OBJS+=./src/loader.o
 endif
@@ -67,7 +67,7 @@ include options.mk
 
 OBJS+=$(WOLFCRYPT_OBJS)
 OBJS+=$(PUBLIC_KEY_OBJS)
-OBJS+=$(WOLFHSM_CLIENT_OBJS)
+OBJS+=$(WOLFHSM_OBJS)
 
 CFLAGS+= \
   -I"." -I"include/" -I"lib/wolfssl" \

arch.mk

@@ -1125,7 +1125,7 @@ ifeq ($(ARCH),sim)
     CFLAGS+=-DWOLFSSL_SP_DIV_WORD_HALF
   endif
   ifeq ($(WOLFHSM_CLIENT),1)
-    WOLFHSM_CLIENT_OBJS += $(LIBDIR)/wolfHSM/port/posix/posix_transport_tcp.o
+    WOLFHSM_OBJS += $(LIBDIR)/wolfHSM/port/posix/posix_transport_tcp.o
   endif
 endif
 

…ig/examples/sim-wolfHSM-certchain.config …ples/sim-wolfHSM-client-certchain.configconfig/examples/sim-wolfHSM-certchain.config renamed to config/examples/sim-wolfHSM-client-certchain.config config/examples/sim-wolfHSM-certchain.config renamed to config/examples/sim-wolfHSM-client-certchain.config

@@ -4,7 +4,8 @@ SIGN?=ECC256
 HASH?=SHA256
 WOLFBOOT_SMALL_STACK?=0
 SPI_FLASH=0
-DEBUG=1
+DEBUG=0
+SPMATH=1
 
 # Cert chain options
 CERT_CHAIN_VERIFY=1

config/examples/sim-wolfHSM-mldsa.config …examples/sim-wolfHSM-client-mldsa.configconfig/examples/sim-wolfHSM-mldsa.config renamed to config/examples/sim-wolfHSM-client-mldsa.config config/examples/sim-wolfHSM-mldsa.config renamed to config/examples/sim-wolfHSM-client-mldsa.config

@@ -4,7 +4,8 @@ SIGN?=ML_DSA
 HASH?=SHA256
 WOLFBOOT_SMALL_STACK?=0
 SPI_FLASH=0
-DEBUG=1
+DEBUG=0
+SPMATH=1
 
 #
 # ML-DSA config examples:

config/examples/sim-wolfHSM.config config/examples/sim-wolfHSM-client.configconfig/examples/sim-wolfHSM.config renamed to config/examples/sim-wolfHSM-client.config

@@ -5,6 +5,7 @@ HASH?=SHA256
 WOLFBOOT_SMALL_STACK?=0
 SPI_FLASH=0
 DEBUG=0
+SPMATH=1
 
 # sizes should be multiple of system page size
 WOLFBOOT_PARTITION_SIZE=0x100000

config/examples/sim-wolfHSM-server-certchain.config

@@ -0,0 +1,37 @@
+ARCH=sim
+TARGET=sim
+SIGN?=ECC256
+HASH?=SHA256
+WOLFBOOT_SMALL_STACK?=0
+SPI_FLASH=0
+DEBUG=0
+SPMATH=1
+
+# Cert chain options
+CERT_CHAIN_VERIFY=1
+CERT_CHAIN_GEN=1
+
+# Ensure header is large enough to hold the cert chain (check sign tool output)
+# for actual length
+IMAGE_HEADER_SIZE=2048
+
+# If SIGN=RSA4096, use the below options
+#WOLFBOOT_HUGE_STACK=1
+#IMAGE_HEADER_SIZE=4096
+
+# wolfHSM options
+WOLFHSM_SERVER=1
+
+# sizes should be multiple of system page size
+WOLFBOOT_PARTITION_SIZE=0x200000
+WOLFBOOT_SECTOR_SIZE=0x1000
+WOLFBOOT_PARTITION_BOOT_ADDRESS=0x80000
+# if on external flash, it should be multiple of system page size
+WOLFBOOT_PARTITION_UPDATE_ADDRESS=0x280000
+WOLFBOOT_PARTITION_SWAP_ADDRESS=0x480000
+
+# required for keytools
+WOLFBOOT_FIXED_PARTITIONS=1
+
+# For debugging XMALLOC/XFREE
+#CFLAGS_EXTRA+=-DWOLFBOOT_DEBUG_MALLOC

hal/sim.c

@@ -51,7 +51,15 @@
 #include "wolfhsm/wh_error.h"
 #include "wolfhsm/wh_client.h"
 #include "port/posix/posix_transport_tcp.h"
-#endif /* WOLFBOOT_ENABLE_WOLFHSM_CLIENT */
+#elif defined(WOLFBOOT_ENABLE_WOLFHSM_SERVER) /*WOLFBOOT_ENABLE_WOLFHSM_CLIENT*/
+#include "wolfhsm/wh_error.h"
+#include "wolfhsm/wh_server.h"
+#include "wolfhsm/wh_server_keystore.h"
+#include "wolfhsm/wh_nvm.h"
+#include "wolfhsm/wh_nvm_flash.h"
+#include "wolfhsm/wh_transport_mem.h"
+#include "port/posix/posix_flash_file.h"
+#endif /* WOLFBOOT_ENABLE_WOLFHSM_SERVER */
 
 /* Global pointer to the internal and external flash base */
 uint8_t *sim_ram_base;
@@ -107,7 +115,76 @@ const whNvmId hsmClientNvmIdCertRootCA = 1;
 int hal_hsm_init_connect(void);
 int hal_hsm_disconnect(void);
 
-#endif /* WOLFBOOT_ENABLE_WOLFHSM_CLIENT */
+#elif defined(WOLFBOOT_ENABLE_WOLFHSM_SERVER) /*WOLFBOOT_ENABLE_WOLFHSM_CLIENT*/
+
+/* HAL Flash state and configuration */
+const whFlashCb       fcb[1]     = {POSIX_FLASH_FILE_CB};
+posixFlashFileContext fc[1]      = {0};
+posixFlashFileConfig  fc_conf[1] = {{
+     .filename       = "wolfBoot_wolfHSM_NVM.bin",
+     .partition_size = 16384,
+     .erased_byte    = (uint8_t)0,
+}};
+/* NVM Configuration using PosixSim HAL Flash */
+whNvmFlashConfig  nf_conf[1] = {{
+     .cb      = fcb,
+     .context = fc,
+     .config  = fc_conf,
+}};
+whNvmFlashContext nfc[1]     = {0};
+whNvmCb           nfcb[1]    = {WH_NVM_FLASH_CB};
+
+whNvmConfig  n_conf[1] = {{
+     .cb      = nfcb,
+     .context = nfc,
+     .config  = nf_conf,
+}};
+whNvmContext nvm[1]    = {{0}};
+
+static uint8_t req[]  = {0};
+static uint8_t resp[] = {0};
+
+whTransportMemConfig tmcf[1] = {{
+   .req       = (whTransportMemCsr*)req,
+   .req_size  = sizeof(req),
+   .resp      = (whTransportMemCsr*)resp,
+   .resp_size = sizeof(resp),
+}};
+whTransportServerCb         tscb[1]    = {WH_TRANSPORT_MEM_SERVER_CB};
+whTransportMemServerContext tmsc[1]    = {0};
+/* Dummy comm server config */
+whCommServerConfig          cs_conf[1] = {{
+             .transport_cb      = tscb,
+             .transport_context = &tmsc,
+             .transport_config  = &tmcf,
+             .server_id         = 0,
+}};
+
+/* Crypto context */
+whServerCryptoContext crypto[1] = {{
+    .devId = INVALID_DEVID,
+}};
+
+#if defined(WOLFHSM_CFG_SHE_EXTENSION)
+whServerSheContext    she[1]    = {{0}};
+#endif
+
+whServerConfig s_conf[1] = {{
+    .comm_config = cs_conf,
+    .nvm         = nvm,
+    .crypto      = crypto,
+}};
+
+whServerContext hsmServerCtx = {0};
+
+const int hsmServerDevIdHash       = INVALID_DEVID;
+const int hsmServerDevIdPubKey     = INVALID_DEVID;
+const whNvmId   hsmServerNvmIdCertRootCA = 1;
+
+int hal_hsm_server_init(void);
+int hal_hsm_server_cleanup(void);
+
+#endif /* WOLFBOOT_ENABLE_WOLFHSM_SERVER*/
 
 static int mmap_file(const char *path, uint8_t *address, uint8_t** ret_address)
 {
@@ -410,7 +487,6 @@ int wolfBoot_dualboot_candidate(void)
 
 #ifdef WOLFBOOT_ENABLE_WOLFHSM_CLIENT
 
-
 int hal_hsm_init_connect(void)
 {
     int rc = 0;
@@ -449,4 +525,57 @@ int hal_hsm_disconnect(void)
     return rc;
 }
 
-#endif /* WOLFBOOT_ENABLE_WOLFHSM_CLIENT */
+#elif defined(WOLFBOOT_ENABLE_WOLFHSM_SERVER) /*WOLFBOOT_ENABLE_WOLFHSM_CLIENT*/
+
+int hal_hsm_server_init(void)
+{
+    int rc = 0;
+
+    rc = wh_Nvm_Init(nvm, n_conf);
+    if (rc != 0) {
+        fprintf(stderr, "Failed to initialize NVM: %d\n", rc);
+        exit(-1);
+    }
+
+    wolfCrypt_Init();
+
+    rc = wc_InitRng_ex(crypto->rng, NULL, INVALID_DEVID);
+    if (rc != 0) {
+        fprintf(stderr, "Failed to initialize RNG: %d\n", rc);
+        exit(-1);
+    }
+
+    rc = wh_Server_Init(&hsmServerCtx, s_conf);
+    if (rc != 0) {
+        fprintf(stderr, "Failed to initialize HSM server: %d\n", rc);
+        exit(-1);
+    }
+
+    return rc;
+}
+
+int hal_hsm_server_cleanup(void)
+{
+    int rc = 0;
+
+    rc = wh_Server_Cleanup(&hsmServerCtx);
+    if (rc != 0) {
+        fprintf(stderr, "Failed to cleanup HSM server: %d\n", rc);
+        exit(-1);
+    }
+
+    rc = wc_FreeRng(crypto->rng);
+    if (rc != 0) {
+        fprintf(stderr, "Failed to cleanup RNG: %d\n", rc);
+        exit(-1);
+    }
+
+    rc = wolfCrypt_Cleanup();
+    if (rc != 0) {
+        fprintf(stderr, "Failed to cleanup wolfCrypt: %d\n", rc);
+        exit(-1);
+    }
+
+    return rc;
+}
+#endif /* WOLFBOOT_ENABLE_WOLFHSM_SERVER */

include/hal.h

@@ -170,6 +170,32 @@ extern const whNvmId hsmClientNvmIdCertRootCA;
 /* Implementation of functions provided by HAL */
 int hal_hsm_init_connect(void);
 int hal_hsm_disconnect(void);
+
+#elif defined(WOLFBOOT_ENABLE_WOLFHSM_SERVER)
+
+#include "wolfhsm/wh_error.h"
+#include "wolfhsm/wh_server.h"
+#include "wolfhsm/wh_server_crypto.h"
+#include "wolfhsm/wh_server_keystore.h"
+#if defined(WOLFBOOT_CERT_CHAIN_VERIFY)
+#include "wolfhsm/wh_server_cert.h"
+#endif
+
+extern whServerContext hsmServerCtx; /* global wolfHSM server context */
+
+extern const int hsmServerDevIdHash;   /* devId for image digest */
+extern const int hsmServerDevIdPubKey; /* devId for signature verification */
+#ifdef EXT_ENCRYPTED
+extern const int hsmServerDevIdCrypt; /* devId for image (enc)decryption */
+#endif
+#ifdef WOLFBOOT_CERT_CHAIN_VERIFY
+/* NvmId for trusted root CA certificate */
+extern const whNvmId hsmServerNvmIdCertRootCA;
+#endif
+
+int hal_hsm_server_init(void);
+int hal_hsm_server_cleanup(void);
+
 #endif /* WOLFBOOT_ENABLE_WOLFHSM_CLIENT */
 
 #ifdef __cplusplus