[REVIEW] remove crypto prefix update TA and host as per review

amey-raghatate · Akshay-Belsare · commit 175cf4852f3b · 2025-10-08T20:12:15.000+05:30
Remove the prefix TA_ALGO_* and instead use the actual name.
Below are the changes:
&lt;algo_name&gt;: algorithm name. Supported values are:
HMAC_SHA1
HMAC_SHA224
HMAC_SHA256
HMAC_SHA384
HMAC_SHA512
AES_CMAC
SHA1
SHA224
SHA256
SHA384
SHA512
SHA3_224
SHA3_256
SHA3_384
SHA3_512
SHAKE128
SHAKE256

Signed-off-by: Amey Avinash Raghatate &lt;ameyavinash.raghatate@amd.com&gt;
diff --git a/sha/host/main.c b/sha/host/main.c
@@ -25,7 +25,7 @@ struct test_ctx {
 	uint32_t algo_num;
 };
 
-void prepare_tee_session(struct test_ctx *ctx)
+static void prepare_tee_session(struct test_ctx *ctx)
 {
 	TEEC_UUID uuid = TA_SHA_UUID;
 	uint32_t origin;
@@ -44,7 +44,7 @@ void prepare_tee_session(struct test_ctx *ctx)
 			res, origin);
 }
 
-void terminate_tee_session(struct test_ctx *ctx)
+static void terminate_tee_session(struct test_ctx *ctx)
 {
 	TEEC_CloseSession(&ctx->sess);
 	TEEC_FinalizeContext(&ctx->ctx);
@@ -57,30 +57,18 @@ static void usage(int argc, char *argv[])
 	if (argc)
 		pname = argv[0];
 
-	fprintf(stderr, "%s: %s <string to encrypt> <algo name>\n",
+	fprintf(stderr, "%s: %s <string to process> <algo name>\n",
 		__func__, pname);
 	fprintf(stderr, "<algo_name>: algorithm name. Supported values are:\n");
-	fprintf(stderr, "TA_ALGO_HMAC_SHA1\n");
-	fprintf(stderr, "TA_ALGO_HMAC_SHA224\n");
-	fprintf(stderr, "TA_ALGO_HMAC_SHA256\n");
-	fprintf(stderr, "TA_ALGO_HMAC_SHA384\n");
-	fprintf(stderr, "TA_ALGO_HMAC_SHA512\n");
-	fprintf(stderr, "TA_ALG_AES_CMAC\n");
-	fprintf(stderr, "TA_ALG_SHA1\n");
-	fprintf(stderr, "TA_ALG_SHA224\n");
-	fprintf(stderr, "TA_ALG_SHA256\n");
-	fprintf(stderr, "TA_ALG_SHA384\n");
-	fprintf(stderr, "TA_ALG_SHA512\n");
-	fprintf(stderr, "TA_ALG_SHA3_224\n");
-	fprintf(stderr, "TA_ALG_SHA3_256\n");
-	fprintf(stderr, "TA_ALG_SHA3_384\n");
-	fprintf(stderr, "TA_ALG_SHA3_512\n");
-	fprintf(stderr, "TA_ALG_SHAKE128\n");
-	fprintf(stderr, "TA_ALG_SHAKE256\n");
+	fprintf(stderr, "HMAC_SHA1, HMAC_SHA224, HMAC_SHA256, HMAC_SHA384, HMAC_SHA512\n");
+	fprintf(stderr, "AES_CMAC\n");
+	fprintf(stderr, "SHA1, SHA224, SHA256, SHA384, SHA512\n");
+	fprintf(stderr, "SHA3_224, SHA3_256, SHA3_384, SHA3_512\n");
+	fprintf(stderr, "SHAKE128, SHAKE256\n");
 	exit(1);
 }
 
-void compute_digest(struct test_ctx *ctx, void *message, size_t msg_len,
+static void compute_digest(struct test_ctx *ctx, void *message, size_t msg_len,
 		    void *digest, size_t *digest_len)
 {
 	TEEC_Operation op = {0};
@@ -109,7 +97,7 @@ void compute_digest(struct test_ctx *ctx, void *message, size_t msg_len,
 	}
 }
 
-void prepare_hmac_sha(struct test_ctx *ctx, size_t key_size,
+static void prepare_hmac_sha(struct test_ctx *ctx, size_t key_size,
 		      enum ta_sha_object_type obj_type)
 {
 	TEEC_Operation op = {0};
@@ -132,7 +120,7 @@ void prepare_hmac_sha(struct test_ctx *ctx, size_t key_size,
 			res, origin);
 }
 
-void set_key(struct test_ctx *ctx, char *key, size_t key_sz)
+static void set_key(struct test_ctx *ctx, char *key, size_t key_sz)
 {
 	TEEC_Operation op = {0};
 	uint32_t origin = 0;
@@ -151,7 +139,7 @@ void set_key(struct test_ctx *ctx, char *key, size_t key_sz)
 			res, origin);
 }
 
-void set_iv(struct test_ctx *ctx, char *iv, size_t iv_sz)
+static void set_iv(struct test_ctx *ctx, char *iv, size_t iv_sz)
 {
 	TEEC_Operation op = {0};
 	uint32_t origin = 0;
@@ -169,7 +157,7 @@ void set_iv(struct test_ctx *ctx, char *iv, size_t iv_sz)
 			res, origin);
 }
 
-void sha_update_ops(struct test_ctx *ctx, void *message, size_t message_sz,
+static void sha_update_ops(struct test_ctx *ctx, void *message, size_t message_sz,
 		    void *hmac_buff, size_t *hmac_sz)
 {
 	TEEC_Operation op = {0};
@@ -196,8 +184,9 @@ void sha_update_ops(struct test_ctx *ctx, void *message, size_t message_sz,
 	}
 }
 
-TEEC_Result compare_hmac_sha(struct test_ctx *ctx, void *message, size_t message_sz,
-		      void *hmac_buff, size_t *hmac_sz)
+static TEEC_Result compare_hmac_sha(struct test_ctx *ctx, void *message,
+				    size_t message_sz, void *hmac_buff,
+				    size_t *hmac_sz)
 {
 	TEEC_Operation op = {0};
 	uint32_t origin = 0;
@@ -240,75 +229,75 @@ int main(int argc, char *argv[])
 	if (argc > 2) {
 		algo = argv[2];
 		printf("%s algo selected\n", algo);
-		if (strcmp(algo, "TA_ALGO_HMAC_SHA256") == 0) {
+		if (strcmp(algo, "HMAC_SHA256") == 0) {
 			ctx.algo_num = TEE_ALG_HMAC_SHA256;
 			obj_type = TA_SHA_OBJ_TYPE_HMAC_SHA256;
 			key_size = 128; /* 128 bytes */
 			algo_type = SHA_HMAC;
-		} else if (strcmp(algo, "TA_ALGO_HMAC_SHA1") == 0) {
+		} else if (strcmp(algo, "HMAC_SHA1") == 0) {
 			ctx.algo_num = TEE_ALG_HMAC_SHA1;
 			obj_type = TA_SHA_OBJ_TYPE_HMAC_SHA1;
 			key_size = 64; /* 64 bytes */
 			algo_type = SHA_HMAC;
-		} else if (strcmp(algo, "TA_ALGO_HMAC_SHA224") == 0) {
+		} else if (strcmp(algo, "HMAC_SHA224") == 0) {
 			ctx.algo_num = TEE_ALG_HMAC_SHA224;
 			obj_type = TA_SHA_OBJ_TYPE_HMAC_SHA224;
 			key_size = 64; /* 64 bytes */
 			algo_type = SHA_HMAC;
-		} else if (strcmp(algo, "TA_ALGO_HMAC_SHA384") == 0) {
+		} else if (strcmp(algo, "HMAC_SHA384") == 0) {
 			ctx.algo_num = TEE_ALG_HMAC_SHA384;
 			obj_type = TA_SHA_OBJ_TYPE_HMAC_SHA384;
 			key_size = 128; /* 128 bytes */
 			algo_type = SHA_HMAC;
-		} else if (strcmp(algo, "TA_ALGO_HMAC_SHA512") == 0) {
+		} else if (strcmp(algo, "HMAC_SHA512") == 0) {
 			ctx.algo_num = TEE_ALG_HMAC_SHA512;
 			obj_type = TA_SHA_OBJ_TYPE_HMAC_SHA512;
 			key_size = 128; /* 128 bytes */
 			algo_type = SHA_HMAC;
-		} else if (strcmp(algo, "TA_ALG_AES_CMAC") == 0) {
+		} else if (strcmp(algo, "AES_CMAC") == 0) {
 			ctx.algo_num = TEE_ALG_AES_CMAC;
 			obj_type = TA_SHA_OBJ_TYPE_AES;
 			key_size = 16; /* 16 bytes */
 			algo_type = SHA_HMAC;
-		} else if (strcmp(algo, "TA_ALG_SHA1") == 0) {
+		} else if (strcmp(algo, "SHA1") == 0) {
 			ctx.algo_num = TEE_ALG_SHA1;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA224") == 0) {
+		} else if (strcmp(algo, "SHA224") == 0) {
 			ctx.algo_num = TEE_ALG_SHA224;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA256") == 0) {
+		} else if (strcmp(algo, "SHA256") == 0) {
 			ctx.algo_num = TEE_ALG_SHA256;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA384") == 0) {
+		} else if (strcmp(algo, "SHA384") == 0) {
 			ctx.algo_num = TEE_ALG_SHA384;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA512") == 0) {
+		} else if (strcmp(algo, "SHA512") == 0) {
 			ctx.algo_num = TEE_ALG_SHA512;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA3_224") == 0) {
+		} else if (strcmp(algo, "SHA3_224") == 0) {
 			ctx.algo_num = TEE_ALG_SHA3_224;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA3_256") == 0) {
+		} else if (strcmp(algo, "SHA3_256") == 0) {
 			ctx.algo_num = TEE_ALG_SHA3_256;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA3_384") == 0) {
+		} else if (strcmp(algo, "SHA3_384") == 0) {
 			ctx.algo_num = TEE_ALG_SHA3_384;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHA3_512") == 0) {
+		} else if (strcmp(algo, "SHA3_512") == 0) {
 			ctx.algo_num = TEE_ALG_SHA3_512;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHAKE128") == 0) {
+		} else if (strcmp(algo, "SHAKE128") == 0) {
 			ctx.algo_num = TEE_ALG_SHAKE128;
 			algo_type = BASE_SHA;
-		} else if (strcmp(algo, "TA_ALG_SHAKE256") == 0) {
+		} else if (strcmp(algo, "SHAKE256") == 0) {
 			ctx.algo_num = TEE_ALG_SHAKE256;
 			algo_type = BASE_SHA;
 		} else {
 			printf("%s algo is invalid\n", algo);
 			usage(argc, argv);
 		}
 	} else {
-		printf("TA_ALGO_HMAC_SHA256 algo selected\n");
+		printf("HMAC_SHA256 algo selected\n");
 		ctx.algo_num = TEE_ALG_HMAC_SHA256;
 		key_size = 128; /* 128 bytes */
 		obj_type = TA_SHA_OBJ_TYPE_HMAC_SHA256;
diff --git a/sha/ta/include/sha_ta.h b/sha/ta/include/sha_ta.h
@@ -12,8 +12,8 @@
 		{ 0x95, 0x19, 0xea, 0x8a, 0x6c, 0x8c, 0x16, 0xe5 } }
 
 /*
- * TA_SHA_CMD_PREPARE - Allocate resources for the SHA operation
- * param[0] (value) a: TA_ALGO_HMAC_xxx, b: unused
+ * TA_SHA_CMD_PREPARE - Allocate resources for the MAC operation
+ * param[0] (value) a: TEE ID of the algo to use (TEE_ALG_xxx), b: unused
  * param[1] (value) a: key size in bytes, b: unused
  * param[2] (value) a: obj_type, b: unused
  * param[3] unused
@@ -51,7 +51,7 @@ enum ta_sha_object_type {
 };
 
 /*
- * TA_SHA_CMD_SET_KEY - Allocate resources for the SHA operation
+ * TA_SHA_CMD_SET_KEY - Allocate resources for the MAC operation
  * param[0] (memref) key data, size shall equal key length
  * param[1] unused
  * param[2] unused
@@ -69,7 +69,7 @@ enum ta_sha_object_type {
 #define TA_SHA_CMD_SET_IV		2
 
 /*
- * TA_CMD_SHA_INIT - sha_update_ops
+ * TA_SHA_CMD_INIT - Process MAC operation
  * param[0] (memref) message, message size
  * param[1] (memref) MAC buffer, buffer size
  * param[2] unused
@@ -78,7 +78,7 @@ enum ta_sha_object_type {
 #define TA_SHA_CMD_INIT			3
 
 /*
- * TA_CMD_SHA_CMPR - compare MAC
+ * TA_SHA_CMD_COMPARE_MAC - compare MAC values
  * param[0] (memref) message, message size
  * param[1] (memref) MAC buffer, buffer size
  * param[2] unused
@@ -87,7 +87,7 @@ enum ta_sha_object_type {
 #define TA_SHA_CMD_COMPARE_MAC		4
 
 /*
- * CMD_COMPUTE_DIGEST - Computing the digest
+ * TA_SHA_CMD_COMPUTE_DIGEST - Computing the digest
  * param[0] (memref) message, message size
  * param[1] (memref) digest buffer, buffer size
  * param[2] (value) a:TA_ALG_SHA*, b: unused
diff --git a/sha/ta/sha_ta.c b/sha/ta/sha_ta.c
@@ -133,8 +133,10 @@ static TEE_Result alloc_resources(void *session, uint32_t param_types,
 	sess->mode = TEE_MODE_MAC;
 
 	/* Free potential previous operation */
-	if (sess->op_handle != TEE_HANDLE_NULL)
+	if (sess->op_handle != TEE_HANDLE_NULL) {
 		TEE_FreeOperation(sess->op_handle);
+		sess->op_handle = TEE_HANDLE_NULL;
+	}
 
 	/* Allocate operation: SHA, mode and size from params */
 	res = TEE_AllocateOperation(&sess->op_handle,
@@ -147,8 +149,10 @@ static TEE_Result alloc_resources(void *session, uint32_t param_types,
 	}
 
 	/* Free potential previous transient object */
-	if (sess->key_handle != TEE_HANDLE_NULL)
+	if (sess->key_handle != TEE_HANDLE_NULL) {
 		TEE_FreeTransientObject(sess->key_handle);
+		sess->key_handle = TEE_HANDLE_NULL;
+	}
 
 	/* Allocate transient object according to target key size */
 	res = TEE_AllocateTransientObject(tee_obj_type,
