Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

kv_config: create an internal TDB to store DeviceKey Root of Trust #13986

Closed
wants to merge 1 commit into from
Closed

kv_config: create an internal TDB to store DeviceKey Root of Trust #13986

wants to merge 1 commit into from

Conversation

LDong-Arm
Copy link
Contributor

Summary of changes

Fixes: #11788

Without this PR, an internal TDBStore is created for the use of KV Global API only when Rollback Protection (RBP) is enabled, to store CMAC data used for Rollback checks. It's not created when Rollback Protection is disabled, but we still need one in order to store the DeviceKey Root of Trust (RoT) for SecureStore's basic encryption. The lack of an internal TDBStore leads to DEVICEKEY_SAVE_FAILED error in DeviceKey::write_key_to_kvstore():

mbed-os/drivers/device_key/source/DeviceKey.cpp

Lines 127 to 131 in 33a7e66

KVMap &kv_map = KVMap::get_instance();
KVStore *inner_store = kv_map.get_internal_kv_instance(NULL);
if (inner_store == NULL) {
return DEVICEKEY_SAVE_FAILED;
}

This happens when storage.storage_type is configured to TDB_EXTERNAL_NO_RBP or FILESYSTEM_NO_RBP, both of which are based on SecureStore. To fix the issue, this PR creates an internal TDBStore of the default/auto-calculated size.

Impact of changes

With storage.storage_type configured to TDB_EXTERNAL_NO_RBP or FILESYSTEM_NO_RBP, generated DeviceKey RoT can now be stored successfully, allowing KV global API (e.g. kv_set()) to function properly.

Migration actions required

None.

Documentation

None.

Pull request type 

[x] Patch update (Bug fix / Target update / Docs update / Test update / Refactor)
[] Feature update (New feature / Functionality change / New API)
[] Major update (Breaking change E.g. Return code change / API behaviour change)

Test results 

[] No Tests required for this change (E.g docs only update)
[x] Covered by existing mbed-os tests (Greentea or Unittest)
[] Tests / results supplied as part of this PR

Reviewers

@ARMmbed/mbed-os-core

@mergify mergify bot added the needs: work label Nov 30, 2020
@LDong-Arm LDong-Arm mentioned this pull request Nov 30, 2020
Closed
@ciarmcom ciarmcom added the release-type: patch Indentifies a PR as containing just a patch label Nov 30, 2020
@ciarmcom ciarmcom requested review from a team November 30, 2020 15:30
@ciarmcom
Copy link
Member

@LDong-Arm, thank you for your changes.
@ARMmbed/mbed-os-core @ARMmbed/mbed-os-maintainers please review.

evedon
evedon requested changes Dec 1, 2020
View reviewed changes
Copy link
Contributor

@evedon evedon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is a major breaking change.
I think it should be possible to use direct_access_to_devicekey instead of creating an internal TDBStore, see #11788 (comment)

@mergify mergify bot removed the needs: review label Dec 1, 2020
@LDong-Arm
Copy link
Contributor Author

This is a major breaking change.
I think it should be possible to use direct_access_to_devicekey instead of creating an internal TDBStore, see #11788 (comment)

Please see my comment in #11788. I think the PR doesn't break/alter any behaviours, and direct_access_to_devicekey is only for reading a key, which is still stored in the internal TDB which this PR creates.

@evedon
Copy link
Contributor

evedon commented Dec 2, 2020

Indeed direct_access_to_devicekey is only for reading a key and I was wondering if, similarly, we could have a simple API to directly write device key in internal Flash. It does not feel right to create an internal TDBStore purely for the purpose of storing the device key in kvstore.

We need to fully understand all the dependencies between SecureStore, internal TDBStore and DeviceKey before we propose a solution.

@LDong-Arm
Copy link
Contributor Author

Closing this PR in favour of deprecating the broken configurations

@LDong-Arm LDong-Arm closed this Dec 15, 2020
@mergify mergify bot removed needs: work release-type: patch Indentifies a PR as containing just a patch labels Dec 15, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@evedon evedon evedon requested changes

@Jaco-Liebenberg Jaco-Liebenberg Jaco-Liebenberg approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

No internal kv store for storing Root Of Trust key when using TDB_EXTERNAL_NO_RBP
4 participants
@LDong-Arm @ciarmcom @evedon @Jaco-Liebenberg