xref: /optee_os/core/crypto.mk (revision f7492391a90d5fa10df014c1cf54a4308a6e9a2a) 
1CFG_CRYPTO ?= y
2# Select small code size in the crypto library if applicable (for instance
3# LibTomCrypt has -DLTC_SMALL_CODE)
4# Note: the compiler flag -Os is not set here but by CFG_CC_OPTIMIZE_FOR_SIZE
5CFG_CRYPTO_SIZE_OPTIMIZATION ?= y
6
7ifeq (y,$(CFG_CRYPTO))
8
9# Ciphers
10CFG_CRYPTO_AES ?= y
11CFG_CRYPTO_DES ?= y
12
13# Cipher block modes
14CFG_CRYPTO_ECB ?= y
15CFG_CRYPTO_CBC ?= y
16CFG_CRYPTO_CTR ?= y
17CFG_CRYPTO_CTS ?= y
18CFG_CRYPTO_XTS ?= y
19
20# Message authentication codes
21CFG_CRYPTO_HMAC ?= y
22CFG_CRYPTO_CMAC ?= y
23CFG_CRYPTO_CBC_MAC ?= y
24
25# Hashes
26CFG_CRYPTO_MD5 ?= y
27CFG_CRYPTO_SHA1 ?= y
28CFG_CRYPTO_SHA224 ?= y
29CFG_CRYPTO_SHA256 ?= y
30CFG_CRYPTO_SHA384 ?= y
31CFG_CRYPTO_SHA512 ?= y
32CFG_CRYPTO_SHA512_256 ?= y
33
34# Asymmetric ciphers
35CFG_CRYPTO_DSA ?= y
36CFG_CRYPTO_RSA ?= y
37CFG_CRYPTO_DH ?= y
38CFG_CRYPTO_ECC ?= y
39
40# Authenticated encryption
41CFG_CRYPTO_CCM ?= y
42CFG_CRYPTO_GCM ?= y
43# Default uses the OP-TEE internal AES-GCM implementation
44CFG_CRYPTO_AES_GCM_FROM_CRYPTOLIB ?= n
45
46endif
47
48ifeq ($(CFG_WITH_PAGER),y)
49ifneq ($(CFG_CRYPTO_SHA256),y)
50$(warning Warning: Enabling CFG_CRYPTO_SHA256 [required by CFG_WITH_PAGER])
51CFG_CRYPTO_SHA256:=y
52endif
53endif
54
55$(eval $(call cryp-enable-all-depends,CFG_WITH_SOFTWARE_PRNG, AES ECB SHA256))
56
57ifeq ($(CFG_CRYPTO_WITH_CE),y)
58
59$(call force,CFG_AES_GCM_TABLE_BASED,n,conflicts with CFG_CRYPTO_WITH_CE)
60
61# CFG_HWSUPP_PMULT_64 defines whether the CPU supports polynomial multiplies
62# of 64-bit values (Aarch64: PMULL/PMULL2 with the 1Q specifier; Aarch32:
63# VMULL.P64). These operations are part of the Cryptographic Extensions, so
64# assume they are implicitly contained in CFG_CRYPTO_WITH_CE=y.
65CFG_HWSUPP_PMULT_64 ?= y
66
67ifeq ($(CFG_ARM32_core),y)
68CFG_CRYPTO_AES_ARM32_CE ?= $(CFG_CRYPTO_AES)
69CFG_CRYPTO_SHA1_ARM32_CE ?= $(CFG_CRYPTO_SHA1)
70CFG_CRYPTO_SHA256_ARM32_CE ?= $(CFG_CRYPTO_SHA256)
71endif
72
73ifeq ($(CFG_ARM64_core),y)
74CFG_CRYPTO_AES_ARM64_CE ?= $(CFG_CRYPTO_AES)
75CFG_CRYPTO_SHA1_ARM64_CE ?= $(CFG_CRYPTO_SHA1)
76CFG_CRYPTO_SHA256_ARM64_CE ?= $(CFG_CRYPTO_SHA256)
77endif
78
79else #CFG_CRYPTO_WITH_CE
80
81CFG_AES_GCM_TABLE_BASED ?= y
82
83endif #!CFG_CRYPTO_WITH_CE
84
85
86# Cryptographic extensions can only be used safely when OP-TEE knows how to
87# preserve the VFP context
88ifeq ($(CFG_CRYPTO_SHA256_ARM32_CE),y)
89$(call force,CFG_WITH_VFP,y,required by CFG_CRYPTO_SHA256_ARM32_CE)
90endif
91ifeq ($(CFG_CRYPTO_SHA256_ARM64_CE),y)
92$(call force,CFG_WITH_VFP,y,required by CFG_CRYPTO_SHA256_ARM64_CE)
93endif
94ifeq ($(CFG_CRYPTO_SHA1_ARM32_CE),y)
95$(call force,CFG_WITH_VFP,y,required by CFG_CRYPTO_SHA1_ARM32_CE)
96endif
97ifeq ($(CFG_CRYPTO_SHA1_ARM64_CE),y)
98$(call force,CFG_WITH_VFP,y,required by CFG_CRYPTO_SHA1_ARM64_CE)
99endif
100ifeq ($(CFG_CRYPTO_AES_ARM64_CE),y)
101$(call force,CFG_WITH_VFP,y,required by CFG_CRYPTO_AES_ARM64_CE)
102endif
103
104cryp-enable-all-depends = $(call cfg-enable-all-depends,$(strip $(1)),$(foreach v,$(2),CFG_CRYPTO_$(v)))
105$(eval $(call cryp-enable-all-depends,CFG_REE_FS, AES ECB CTR HMAC SHA256 GCM))
106$(eval $(call cryp-enable-all-depends,CFG_RPMB_FS, AES ECB CTR HMAC SHA256 GCM))
107
108# Dependency checks: warn and disable some features if dependencies are not met
109
110cryp-dep-one = $(call cfg-depends-one,CFG_CRYPTO_$(strip $(1)),$(patsubst %, CFG_CRYPTO_%,$(strip $(2))))
111cryp-dep-all = $(call cfg-depends-all,CFG_CRYPTO_$(strip $(1)),$(patsubst %, CFG_CRYPTO_%,$(strip $(2))))
112
113$(eval $(call cryp-dep-one, ECB, AES DES))
114$(eval $(call cryp-dep-one, CBC, AES DES))
115$(eval $(call cryp-dep-one, CTR, AES))
116# CTS is implemented with ECB and CBC
117$(eval $(call cryp-dep-all, CTS, AES ECB CBC))
118$(eval $(call cryp-dep-one, XTS, AES))
119$(eval $(call cryp-dep-one, HMAC, AES DES))
120$(eval $(call cryp-dep-one, HMAC, MD5 SHA1 SHA224 SHA256 SHA384 SHA512))
121$(eval $(call cryp-dep-one, CMAC, AES))
122$(eval $(call cryp-dep-one, CBC_MAC, AES DES))
123$(eval $(call cryp-dep-one, CCM, AES))
124$(eval $(call cryp-dep-one, GCM, AES))
125# If no AES cipher mode is left, disable AES
126$(eval $(call cryp-dep-one, AES, ECB CBC CTR CTS XTS))
127# If no DES cipher mode is left, disable DES
128$(eval $(call cryp-dep-one, DES, ECB CBC))
129
130###############################################################
131# libtomcrypt (LTC) specifics, phase #1
132# LTC is only configured via _CFG_CORE_LTC_ prefixed variables
133#
134# _CFG_CORE_LTC_xxx_DESC means that LTC will only register the
135# descriptor of the algorithm, not provide a
136# crypt_xxx_alloc_ctx() function.
137###############################################################
138
139# If LTC is the cryptolib, pull configuration from CFG_CRYPTO_xxx
140ifeq ($(CFG_CRYPTOLIB_NAME),tomcrypt)
141# dsa_make_params() needs all three SHA-2 algorithms.
142# Disable DSA if any is missing.
143$(eval $(call cryp-dep-all, DSA, SHA256 SHA384 SHA512))
144
145# Assign _CFG_CORE_LTC_xxx based on CFG_CRYPTO_yyy
146core-ltc-vars = AES DES
147core-ltc-vars += ECB CBC CTR CTS XTS
148core-ltc-vars += MD5 SHA1 SHA224 SHA256 SHA384 SHA512 SHA512_256
149core-ltc-vars += HMAC CMAC CBC_MAC
150core-ltc-vars += CCM
151ifeq ($(CFG_CRYPTO_AES_GCM_FROM_CRYPTOLIB),y)
152core-ltc-vars += GCM
153endif
154core-ltc-vars += RSA DSA DH ECC
155core-ltc-vars += AES_ARM64_CE AES_ARM32_CE
156core-ltc-vars += SHA1_ARM32_CE SHA1_ARM64_CE
157core-ltc-vars += SHA256_ARM32_CE SHA256_ARM64_CE
158core-ltc-vars += SIZE_OPTIMIZATION
159# Assigned selected CFG_CRYPTO_xxx as _CFG_CORE_LTC_xxx
160$(foreach v, $(core-ltc-vars), $(eval _CFG_CORE_LTC_$(v) := $(CFG_CRYPTO_$(v))))
161_CFG_CORE_LTC_MPI := $(CFG_CORE_MBEDTLS_MPI)
162endif
163
164###############################################################
165# mbedtls specifics
166###############################################################
167
168ifeq ($(CFG_CRYPTOLIB_NAME),mbedtls)
169# mbedtls has to be complemented with some algorithms by LTC
170# Specify the algorithms here
171_CFG_CORE_LTC_DSA := $(CFG_CRYPTO_DSA)
172_CFG_CORE_LTC_MPI := $(CFG_CRYPTO_DSA)
173_CFG_CORE_LTC_SHA256_DESC := $(CFG_CRYPTO_DSA)
174_CFG_CORE_LTC_SHA384_DESC := $(CFG_CRYPTO_DSA)
175_CFG_CORE_LTC_SHA512_DESC := $(CFG_CRYPTO_DSA)
176_CFG_CORE_LTC_XTS := $(CFG_CRYPTO_XTS)
177_CFG_CORE_LTC_CCM := $(CFG_CRYPTO_CCM)
178_CFG_CORE_LTC_AES_DESC := $(call cfg-one-enabled, CFG_CRYPTO_XTS CFG_CRYPTO_CCM)
179endif
180
181###############################################################
182# libtomcrypt (LTC) specifics, phase #2
183###############################################################
184
185# Assign system variables
186_CFG_CORE_LTC_CE := $(CFG_CRYPTO_WITH_CE)
187_CFG_CORE_LTC_VFP := $(CFG_WITH_VFP)
188_CFG_CORE_LTC_BIGNUM_MAX_BITS := $(CFG_CORE_BIGNUM_MAX_BITS)
189_CFG_CORE_LTC_PAGER := $(CFG_WITH_PAGER)
190_CFG_CORE_LTC_OPTEE_THREAD := $(CFG_LTC_OPTEE_THREAD)
191_CFG_CORE_LTC_HWSUPP_PMULL := $(CFG_HWSUPP_PMULL)
192
193# Assign aggregated variables
194ltc-one-enabled = $(call cfg-one-enabled,$(foreach v,$(1),_CFG_CORE_LTC_$(v)))
195_CFG_CORE_LTC_ACIPHER := $(call ltc-one-enabled, RSA DSA DH ECC)
196_CFG_CORE_LTC_AUTHENC := $(and $(filter y,$(_CFG_CORE_LTC_AES) \
197					  $(_CFG_CORE_LTC_AES_DESC)), \
198			       $(call ltc-one-enabled, CCM GCM))
199_CFG_CORE_LTC_CIPHER := $(call ltc-one-enabled, AES AES_DESC DES)
200_CFG_CORE_LTC_HASH := $(call ltc-one-enabled, MD5 SHA1 SHA224 SHA256 SHA384 \
201					      SHA512)
202_CFG_CORE_LTC_MAC := $(call ltc-one-enabled, HMAC CMAC CBC_MAC)
203_CFG_CORE_LTC_CBC := $(call ltc-one-enabled, CBC CBC_MAC)
204_CFG_CORE_LTC_ASN1 := $(call ltc-one-enabled, RSA DSA ECC)
205