2021-05-07 23:04:13 +08:00
|
|
|
/** @file
|
|
|
|
|
* @brief mbed TLS initialization
|
|
|
|
|
*
|
|
|
|
|
* Initialize the mbed TLS library like setup the heap etc.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Copyright (c) 2017 Intel Corporation
|
|
|
|
|
*
|
|
|
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
|
|
|
*/
|
|
|
|
|
|
2022-05-06 17:09:00 +08:00
|
|
|
#include <zephyr/init.h>
|
|
|
|
|
#include <zephyr/app_memory/app_memdomain.h>
|
2022-04-29 20:02:31 +08:00
|
|
|
#include <zephyr/drivers/entropy.h>
|
|
|
|
|
#include <zephyr/random/rand32.h>
|
|
|
|
|
#include <mbedtls/entropy.h>
|
2021-05-07 23:04:13 +08:00
|
|
|
|
2022-06-15 06:47:21 +08:00
|
|
|
#include <mbedtls/debug.h>
|
|
|
|
|
|
2021-05-07 23:04:13 +08:00
|
|
|
#if defined(CONFIG_MBEDTLS)
|
|
|
|
|
#if !defined(CONFIG_MBEDTLS_CFG_FILE)
|
|
|
|
|
#include "mbedtls/config.h"
|
|
|
|
|
#else
|
|
|
|
|
#include CONFIG_MBEDTLS_CFG_FILE
|
|
|
|
|
#endif /* CONFIG_MBEDTLS_CFG_FILE */
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
#if defined(CONFIG_MBEDTLS_ENABLE_HEAP) && \
|
|
|
|
|
defined(MBEDTLS_MEMORY_BUFFER_ALLOC_C)
|
|
|
|
|
#include <mbedtls/memory_buffer_alloc.h>
|
|
|
|
|
|
|
|
|
|
#if !defined(CONFIG_MBEDTLS_HEAP_SIZE)
|
|
|
|
|
#error "Please set heap size to be used. Set value to CONFIG_MBEDTLS_HEAP_SIZE \
|
|
|
|
|
option."
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
static unsigned char _mbedtls_heap[CONFIG_MBEDTLS_HEAP_SIZE];
|
|
|
|
|
|
|
|
|
|
static void init_heap(void)
|
|
|
|
|
{
|
|
|
|
|
mbedtls_memory_buffer_alloc_init(_mbedtls_heap, sizeof(_mbedtls_heap));
|
|
|
|
|
}
|
|
|
|
|
#else
|
|
|
|
|
#define init_heap(...)
|
|
|
|
|
#endif /* CONFIG_MBEDTLS_ENABLE_HEAP && MBEDTLS_MEMORY_BUFFER_ALLOC_C */
|
|
|
|
|
|
2022-10-18 15:12:26 +08:00
|
|
|
#if defined(CONFIG_MBEDTLS_ZEPHYR_ENTROPY)
|
2022-04-29 20:02:31 +08:00
|
|
|
static const struct device *const entropy_dev =
|
|
|
|
|
DEVICE_DT_GET_OR_NULL(DT_CHOSEN(zephyr_entropy));
|
|
|
|
|
|
|
|
|
|
int mbedtls_hardware_poll(void *data, unsigned char *output, size_t len,
|
|
|
|
|
size_t *olen)
|
|
|
|
|
{
|
|
|
|
|
int ret;
|
|
|
|
|
uint16_t request_len = len > UINT16_MAX ? UINT16_MAX : len;
|
|
|
|
|
|
|
|
|
|
ARG_UNUSED(data);
|
|
|
|
|
|
|
|
|
|
if (output == NULL || olen == NULL || len == 0) {
|
|
|
|
|
return MBEDTLS_ERR_ENTROPY_SOURCE_FAILED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!IS_ENABLED(CONFIG_ENTROPY_HAS_DRIVER)) {
|
|
|
|
|
sys_rand_get(output, len);
|
|
|
|
|
*olen = len;
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!device_is_ready(entropy_dev)) {
|
|
|
|
|
return MBEDTLS_ERR_ENTROPY_SOURCE_FAILED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ret = entropy_get_entropy(entropy_dev, (uint8_t *)output, request_len);
|
|
|
|
|
if (ret < 0) {
|
|
|
|
|
return MBEDTLS_ERR_ENTROPY_SOURCE_FAILED;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
*olen = request_len;
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
2022-10-18 15:12:26 +08:00
|
|
|
#endif /* CONFIG_MBEDTLS_ZEPHYR_ENTROPY */
|
2022-04-29 20:02:31 +08:00
|
|
|
|
init: remove the need for a dummy device pointer in SYS_INIT functions
The init infrastructure, found in `init.h`, is currently used by:
- `SYS_INIT`: to call functions before `main`
- `DEVICE_*`: to initialize devices
They are all sorted according to an initialization level + a priority.
`SYS_INIT` calls are really orthogonal to devices, however, the required
function signature requires a `const struct device *dev` as a first
argument. The only reason for that is because the same init machinery is
used by devices, so we have something like:
```c
struct init_entry {
int (*init)(const struct device *dev);
/* only set by DEVICE_*, otherwise NULL */
const struct device *dev;
}
```
As a result, we end up with such weird/ugly pattern:
```c
static int my_init(const struct device *dev)
{
/* always NULL! add ARG_UNUSED to avoid compiler warning */
ARG_UNUSED(dev);
...
}
```
This is really a result of poor internals isolation. This patch proposes
a to make init entries more flexible so that they can accept sytem
initialization calls like this:
```c
static int my_init(void)
{
...
}
```
This is achieved using a union:
```c
union init_function {
/* for SYS_INIT, used when init_entry.dev == NULL */
int (*sys)(void);
/* for DEVICE*, used when init_entry.dev != NULL */
int (*dev)(const struct device *dev);
};
struct init_entry {
/* stores init function (either for SYS_INIT or DEVICE*)
union init_function init_fn;
/* stores device pointer for DEVICE*, NULL for SYS_INIT. Allows
* to know which union entry to call.
*/
const struct device *dev;
}
```
This solution **does not increase ROM usage**, and allows to offer clean
public APIs for both SYS_INIT and DEVICE*. Note that however, init
machinery keeps a coupling with devices.
**NOTE**: This is a breaking change! All `SYS_INIT` functions will need
to be converted to the new signature. See the script offered in the
following commit.
Signed-off-by: Gerard Marull-Paretas <gerard.marull@nordicsemi.no>
init: convert SYS_INIT functions to the new signature
Conversion scripted using scripts/utils/migrate_sys_init.py.
Signed-off-by: Gerard Marull-Paretas <gerard.marull@nordicsemi.no>
manifest: update projects for SYS_INIT changes
Update modules with updated SYS_INIT calls:
- hal_ti
- lvgl
- sof
- TraceRecorderSource
Signed-off-by: Gerard Marull-Paretas <gerard.marull@nordicsemi.no>
tests: devicetree: devices: adjust test
Adjust test according to the recently introduced SYS_INIT
infrastructure.
Signed-off-by: Gerard Marull-Paretas <gerard.marull@nordicsemi.no>
tests: kernel: threads: adjust SYS_INIT call
Adjust to the new signature: int (*init_fn)(void);
Signed-off-by: Gerard Marull-Paretas <gerard.marull@nordicsemi.no>
2022-10-19 15:33:44 +08:00
|
|
|
static int _mbedtls_init(void)
|
2021-05-07 23:04:13 +08:00
|
|
|
{
|
|
|
|
|
|
|
|
|
|
init_heap();
|
|
|
|
|
|
2022-06-15 06:47:21 +08:00
|
|
|
#if defined(CONFIG_MBEDTLS_DEBUG_LEVEL)
|
|
|
|
|
mbedtls_debug_set_threshold(CONFIG_MBEDTLS_DEBUG_LEVEL);
|
|
|
|
|
#endif
|
|
|
|
|
|
2021-05-07 23:04:13 +08:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
SYS_INIT(_mbedtls_init, POST_KERNEL, 0);
|