PSOC6: add Cypress target to mbedtls

Provide alternate mbedtls implementations for AES, ECDSA, ECP
targeting PSoC 6 crypto hardware accelerator.
Also add alternate implementations for SHA1, SHA256 and SHA512:
disabled in mbedtld_device.h due to limitations with concurrent
operation of AES and SHA accelerators.

Update targets.json to enable MBEDTLS_CONFIG_HW_SUPPORT for Cypress
PSoC6 boards. Disable the macro for FUTURE_SEQUANA port that doesn't
yet support the TRNG and CRC HAL implementation.

Author: vmedcy

features/mbedtls/targets/TARGET_Cypress/TARGET_PSOC6/aes_alt.c

@@ -0,0 +1,80 @@
+/*
+ *  Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
+ *  Copyright (C) 2019 Cypress Semiconductor Corporation
+ *  SPDX-License-Identifier: Apache-2.0
+ *
+ *  Licensed under the Apache License, Version 2.0 (the "License"); you may
+ *  not use this file except in compliance with the License.
+ *  You may obtain a copy of the License at
+ *
+ *  http://www.apache.org/licenses/LICENSE-2.0
+ *
+ *  Unless required by applicable law or agreed to in writing, software
+ *  distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ *  WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *  See the License for the specific language governing permissions and
+ *  limitations under the License.
+ */
+
+/**
+ * \file aes_alt.h
+ *
+ * \brief   This file contains AES definitions and functions.
+ *
+ *          The Advanced Encryption Standard (AES) specifies a FIPS-approved
+ *          cryptographic algorithm that can be used to protect electronic
+ *          data.
+ *
+ *          The AES algorithm is a symmetric block cipher that can
+ *          encrypt and decrypt information. For more information, see
+ *          <em>FIPS Publication 197: Advanced Encryption Standard</em> and
+ *          <em>ISO/IEC 18033-2:2006: Information technology -- Security
+ *          techniques -- Encryption algorithms -- Part 2: Asymmetric
+ *          ciphers</em>.
+ *
+ *          The AES-XTS block mode is standardized by NIST SP 800-38E
+ *          <https://nvlpubs.nist.gov/nistpubs/legacy/sp/nistspecialpublication800-38e.pdf>
+ *          and described in detail by IEEE P1619
+ *          <https://ieeexplore.ieee.org/servlet/opac?punumber=4375278>.
+ */
+
+#ifndef AES_ALT_H
+#define AES_ALT_H
+
+#if defined(MBEDTLS_AES_ALT)
+// Regular implementation
+
+#define CY_CIPHER_MODE_CBC_ALT
+
+#include <cy_crypto_common.h>
+#include <cy_crypto_core_aes.h>
+#include "cy_syslib.h"
+
+/**
+ * \brief The AES context-type definition.
+ */
+typedef struct mbedtls_aes_context
+{
+    cy_stc_crypto_aes_state_t aes_state;
+    cy_stc_crypto_aes_buffers_t aes_buffers;
+}
+mbedtls_aes_context;
+
+#if defined(MBEDTLS_CIPHER_MODE_XTS)
+
+/**
+ * \brief The AES XTS context-type definition.
+ */
+typedef struct mbedtls_aes_xts_context
+{
+    mbedtls_aes_context crypt; /*!< The AES context to use for AES block
+                                        encryption or decryption. */
+    mbedtls_aes_context tweak; /*!< The AES context used for tweak
+                                        computation. */
+} mbedtls_aes_xts_context;
+
+#endif /* MBEDTLS_CIPHER_MODE_XTS */
+
+#endif /* MBEDTLS_AES_ALT */
+
+#endif /* aes_alt.h */

features/mbedtls/targets/TARGET_Cypress/TARGET_PSOC6/aes_alt.h

@@ -0,0 +1,160 @@
+/*
+ * mbed Microcontroller Library
+ * Copyright (c) 2019 Cypress Semiconductor Corporation
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/**
+ * \file    crypto_common.c
+ *
+ * \brief   Source file for common mbedtls acceleration functions
+ *
+ */
+
+#include <string.h>
+
+#include "psoc6_utils.h"
+
+#include "crypto_common.h"
+#include "cy_crypto_common.h"
+#include "cy_crypto_core_hw.h"
+
+int cy_hw_sha_start(uint32_t *currBlockLen, cy_stc_crypto_sha_state_t *hashState, cy_en_crypto_sha_mode_t shaMode, void *shaBuffers)
+{
+    if ((hashState == NULL) || (shaBuffers == NULL) || (currBlockLen == 0))
+        return (-1);
+
+    *currBlockLen = 0;
+
+    if (cy_reserve_crypto(CY_CRYPTO_COMMON_HW) != 0)
+    {
+        return (-1);
+    }
+
+    Cy_Crypto_Core_Sha_Init (CRYPTO, hashState, shaMode, shaBuffers);
+    Cy_Crypto_Core_Sha_Start(CRYPTO, hashState);
+
+    return (0);
+}
+
+int cy_hw_sha_update(uint32_t *currBlockLen,
+                     cy_stc_crypto_sha_state_t *hashState,
+                     const uint8_t *in, uint32_t inlen,
+                     uint8_t *shaTempBlock)
+{
+    uint32_t tmpBlockSize;
+	uint32_t shaUpdateLen;
+    uint32_t n;
+
+    if ((hashState == NULL) || (in == NULL) || (shaTempBlock == NULL) ||
+        (currBlockLen == 0))
+        return (-1);
+
+    if (hashState->blockSize == 0)
+        return (-1);
+
+    tmpBlockSize = hashState->blockSize;
+
+    while (inlen > 0)
+    {
+        if (*currBlockLen == 0 && inlen >= tmpBlockSize)
+        {
+        	shaUpdateLen = (inlen / tmpBlockSize) * tmpBlockSize;
+
+            Cy_Crypto_Core_Sha_Update(CRYPTO, hashState, in, shaUpdateLen);
+
+            inlen -= shaUpdateLen;
+            in += shaUpdateLen;
+        } else {
+            n = inlen;
+
+            if (n > (tmpBlockSize - *currBlockLen))
+            {
+                n = (tmpBlockSize - *currBlockLen);
+            }
+
+            memcpy(shaTempBlock + *currBlockLen, in, n);
+
+    	    *currBlockLen += n;
+            in += n;
+            inlen -= n;
+
+            if (*currBlockLen == tmpBlockSize)
+            {
+                Cy_Crypto_Core_Sha_Update(CRYPTO, hashState, shaTempBlock, tmpBlockSize);
+
+                *currBlockLen = 0;
+            }
+        }
+    }
+
+    return (0);
+}
+
+int cy_hw_sha_finish(cy_stc_crypto_sha_state_t *hashState,
+                     uint8_t *output,
+                     uint8_t *shaTempBlock, uint32_t currBlockLen)
+{
+    if ((hashState == NULL) || (output == NULL) || (shaTempBlock == NULL))
+        return (-1);
+
+    if (hashState->blockSize == 0)
+        return (-1);
+
+    Cy_Crypto_Core_Sha_Update(CRYPTO, hashState, shaTempBlock, currBlockLen);
+    Cy_Crypto_Core_Sha_Finish(CRYPTO, hashState, output);
+    Cy_Crypto_Core_Sha_Free  (CRYPTO, hashState);
+
+    cy_free_crypto(CY_CRYPTO_COMMON_HW);
+
+    return (0);
+}
+
+int cy_hw_sha_process(cy_stc_crypto_sha_state_t *hashState, const uint8_t *in)
+{
+	Cy_Crypto_Core_Sha_Update(CRYPTO, hashState, in, hashState->blockSize);
+
+    return (0);
+}
+
+cy_en_crypto_ecc_curve_id_t get_dp_idx(mbedtls_ecp_group_id gid)
+{
+    cy_en_crypto_ecc_curve_id_t dp_idx;
+
+    switch( gid )
+    {
+        case MBEDTLS_ECP_DP_SECP192R1:
+            dp_idx = CY_CRYPTO_ECC_ECP_SECP192R1;
+            break;
+        case MBEDTLS_ECP_DP_SECP224R1:
+            dp_idx = CY_CRYPTO_ECC_ECP_SECP224R1;
+            break;
+        case MBEDTLS_ECP_DP_SECP256R1:
+            dp_idx = CY_CRYPTO_ECC_ECP_SECP256R1;
+            break;
+        case MBEDTLS_ECP_DP_SECP384R1:
+            dp_idx = CY_CRYPTO_ECC_ECP_SECP384R1;
+            break;
+        case MBEDTLS_ECP_DP_SECP521R1:
+            dp_idx = CY_CRYPTO_ECC_ECP_SECP521R1;
+            break;
+
+        default:
+            dp_idx = CY_CRYPTO_ECC_ECP_NONE;
+            break;
+    }
+
+    return dp_idx;
+}
+

features/mbedtls/targets/TARGET_Cypress/TARGET_PSOC6/crypto_common.c

@@ -0,0 +1,52 @@
+/*
+ * mbed Microcontroller Library
+ * Copyright (c) 2019 Cypress Semiconductor Corporation
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/**
+ * \file    crypto_common.h
+ *
+ * \brief   Header file for common mbedtls acceleration functions
+ *
+ */
+
+#if !defined(CRYPTO_COMMON_H)
+#define CRYPTO_COMMON_H
+
+#if !defined(MBEDTLS_CONFIG_FILE)
+#include "mbedtls/config.h"
+#else
+#include MBEDTLS_CONFIG_FILE
+#endif
+
+#include "mbedtls/ecp.h"
+
+#include "cy_crypto_core_sha.h"
+#include "cy_crypto_core_ecc.h"
+
+int cy_hw_sha_start (uint32_t *currBlockLen, cy_stc_crypto_sha_state_t *hashState,
+					 cy_en_crypto_sha_mode_t shaMode, void *shaBuffers);
+
+int cy_hw_sha_update(uint32_t *currBlockLen, cy_stc_crypto_sha_state_t *hashState,
+				     const uint8_t *in, uint32_t inlen, uint8_t *shaTempBlock);
+
+int cy_hw_sha_finish(cy_stc_crypto_sha_state_t *hashState, uint8_t *output,
+                     uint8_t *shaTempBlock, uint32_t currBlockLen);
+
+int cy_hw_sha_process(cy_stc_crypto_sha_state_t *hashState, const uint8_t *in);
+
+cy_en_crypto_ecc_curve_id_t get_dp_idx(mbedtls_ecp_group_id gid);
+
+#endif /* (CRYPTO_COMMON_H) */