-
Notifications
You must be signed in to change notification settings - Fork 196
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
xtest: regression 41xx target Secure Key Services tests #281
Conversation
comments addressed. |
rebased. |
1fc6476
to
e9dc8f8
Compare
Updated according to recent changes (library renaming) in OP-TEE/optee_client#121. |
06ca19b
to
29d4db1
Compare
Rebase on latest master. This P-R is still a first step for libsks to propose a PKCS#11 client API. This P-R introduces a regression test series. The sole test done here is calling the library initialization; |
host/xtest/Makefile
Outdated
@@ -77,6 +77,14 @@ ifeq ($(CFG_SECURE_DATA_PATH),y) | |||
srcs += sdp_basic.c | |||
endif | |||
|
|||
ifeq ($(CFG_SECURE_KEY_SERVICES),y) | |||
srcs += regression_4200.c | |||
OPTEE_SKS_HEADERS ?= ../../../optee_client/libsks/include |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please don't reach outside of this git into some other git for internal .h files. Whatever .h files are needed should be installed somewhere where we can find them.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
ok. I will remove this line and CFLAGS += -I$(OPTEE_SKS_HEADERS)
below.
The lib headers are already exported in $(OPTEE_CLIENT_EXPORT)/include
.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, but add a test for SKS_CMD_PING
.
Please replace the SKS acronym and Secure Key Services with pkcs11 since that's what it's about. |
a1d7342
to
155f942
Compare
With this latest update, pkcs11 TA tests are no more in the regression tests and the TA is no more default embedded within Qemu OP-TEE core.
|
For info, IBART fails because it needs
|
Let me know if I need to update the build config in IBART ... add flags etc. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed-by: Jens Wiklander <[email protected]>
Do you want IBART always run the pkcs11 tests ? now and in the future? |
For info, the pkcs11 TA gets pinged when client opens (initializes) the cryptoki library, i.e. from test |
Introduce pkcs11 tests for PKCS#11 services through the PKCS11 TA. Signed-off-by: Etienne Carriere <[email protected]> Signed-off-by: Victor Chong <[email protected]> Reviewed-by: Jens Wiklander <[email protected]>
155f942
to
b1d9077
Compare
R-B tag applied. Maybe add the pkcs11 to IBART. |
Maybe? Give me a 'yes' or 'no' instead and I'll do what you think makes sense :) |
😄 I have just merged the optee_client and optee_os PRs, so we're good from a dependency point of view. And I agree it would be nice to have this checked by IBART. Edit: I see IBART is failing with |
@jbech-linaro, yes, add to IBART please. |
That was clear! 😄 So, I'll add make ... CFG_PKCS11_TA=y CFG_IN_TREE_EARLY_TAS="avb/023f8f1a-292a-432b-8fc4-de8471358067 pkcs11/fd02c9da-306c-48c7-a49c-bbd827ae86ee" and we're good to go? |
Should be, yes. |
thanks |
Introduce regression test 41xx for PKCS#11 and SKS TA testing.
edited: this P-R depends on RFCs OP-TEE/optee_os#2732 and OP-TEE/optee_client#138.