Add support of xip encryption mode for swap

Signed-off-by: INFINEON\DovhalA <artem.dovhal@infineon.com>

Author: DOAR-Infineon

.github/workflows/sim.yaml

@@ -44,6 +44,8 @@ jobs:
         - "sig-rsa validate-primary-slot ram-load multiimage"
         - "sig-rsa validate-primary-slot direct-xip multiimage"
         - "sig-ecdsa hw-rollback-protection multiimage"
+        - "enc-xip-ec256,enc-xip-ec256 swap-move,enc-xip-ec256 swap-offset"
+        - "sig-ecdsa enc-xip-ec256 validate-primary-slot,enc-xip-ec256 overwrite-only"
         - "sig-ecdsa-psa,sig-ecdsa-psa sig-p384,sig-ecdsa-psa swap-move bootstrap max-align-16"
         - "sig-ecdsa-psa enc-ec256 max-align-16, sig-ecdsa-psa enc-ec256 swap-offset validate-primary-slot max-align-16"
         - "ram-load enc-aes256-kw multiimage"

boot/boot_serial/src/boot_serial.c

@@ -352,7 +352,7 @@ bs_list(struct boot_loader_state *state, char *buf, int len)
             {
                 BOOT_HOOK_CALL_FIH(boot_image_check_hook,
                                    FIH_BOOT_HOOK_REGULAR,
-                                   fih_rc, image_index, slot);
+                                   fih_rc, NULL, image_index, slot);
                 if (FIH_EQ(fih_rc, FIH_BOOT_HOOK_REGULAR))
                 {
 #if defined(MCUBOOT_ENC_IMAGES)
@@ -574,7 +574,7 @@ bs_set(struct boot_loader_state *state, char *buf, int len)
 
                     BOOT_HOOK_CALL_FIH(boot_image_check_hook,
                                        FIH_BOOT_HOOK_REGULAR,
-                                       fih_rc, image_index, slot);
+                                       fih_rc, NULL, image_index, slot);
                     if (FIH_EQ(fih_rc, FIH_BOOT_HOOK_REGULAR))
                     {
 #ifdef MCUBOOT_ENC_IMAGES

boot/bootutil/include/bootutil/boot_hooks.h

@@ -127,14 +127,29 @@ int boot_read_image_header_hook(int img_index, int slot,
  * This Hook may be used to overide image validation procedure or doing
  * a custom action before.
  *
+ * @param state boot loader state (may be NULL when called outside
+ *              the normal boot flow, e.g. serial recovery)
  * @param img_index the index of the image pair
  * @param slot slot number
- * 
+ *
  * @retval FIH_SUCCESS: image is valid, skip direct validation
  *         FIH_FAILURE: image is invalid, skip direct validation
  *         FIH_BOOT_HOOK_REGULAR: follow the normal execution path.
  */
-fih_ret boot_image_check_hook(int img_index, int slot);
+fih_ret boot_image_check_hook(struct boot_loader_state *state,
+                              int img_index, int slot);
+
+#if defined(MCUBOOT_ENC_IMAGES_XIP)
+/** Hook for populating XIP encryption key/IV in boot response.
+ *
+ * Called after fill_rsp() to copy the image's encryption key and IV
+ * into boot_rsp for post-boot hardware crypto region setup.
+ *
+ * @param img_index the index of the current image
+ * @param rsp the boot response struct to populate
+ */
+void boot_xip_populate_rsp(int img_index, struct boot_rsp *rsp);
+#endif
 
 /** Hook for implement image update
  *

boot/bootutil/include/bootutil/bootutil.h

@@ -59,6 +59,12 @@ struct boot_rsp {
      */
     uint8_t br_flash_dev_id;
     uint32_t br_image_off;
+#if defined(MCUBOOT_ENC_IMAGES_XIP)
+    /** AES-128 key for post-boot XIP hardware crypto setup. */
+    uint32_t br_xip_key[4];
+    /** IV/nonce for post-boot XIP hardware crypto setup. */
+    uint32_t br_xip_iv[4];
+#endif
 };
 
 /* This is not actually used by mcuboot's code but can be used by apps

boot/bootutil/include/bootutil/caps.h

@@ -54,6 +54,7 @@ uint32_t bootutil_get_caps(void);
 #define BOOTUTIL_CAP_HW_ROLLBACK_PROT       (1<<18)
 #define BOOTUTIL_CAP_ECDSA_P384             (1<<19)
 #define BOOTUTIL_CAP_SWAP_USING_OFFSET      (1<<20)
+#define BOOTUTIL_CAP_ENC_XIP_EC256          (1<<21)
 
 /*
  * Query the number of images this bootloader is configured for.  This

boot/bootutil/src/bootutil_loader.c

@@ -99,7 +99,7 @@ boot_check_header_valid(struct boot_loader_state *state, int slot)
         return false;
     }
 
-#if !defined(MCUBOOT_ENC_IMAGES)
+#if !defined(MCUBOOT_ENC_IMAGES) && !defined(MCUBOOT_ENC_IMAGES_XIP)
     if (IS_ENCRYPTED(hdr)) {
         return false;
     }

boot/bootutil/src/bootutil_priv.h

@@ -197,6 +197,12 @@ _Static_assert(sizeof(boot_img_magic) == BOOT_MAGIC_SZ, "Invalid size for image
 #endif /* MCUBOOT_DIRECT_XIP && MCUBOOT_ENC_IMAGES */
 #endif /* MCUBOOT_DIRECT_XIP || MCUBOOT_RAM_LOAD */
 
+#if defined(MCUBOOT_ENC_IMAGES) && defined(MCUBOOT_ENC_IMAGES_XIP)
+#error "MCUBOOT_ENC_IMAGES and MCUBOOT_ENC_IMAGES_XIP are mutually exclusive. " \
+       "XIP encryption keeps images encrypted in both slots and does not use " \
+       "the standard encrypt/decrypt-during-swap mechanism."
+#endif
+
 #define BOOT_LOG_IMAGE_INFO(slot, hdr)                                    \
     BOOT_LOG_INF("%-9s slot: version=%u.%u.%u+%u",                        \
                  ((slot) == BOOT_SLOT_PRIMARY) ? "Primary" : "Secondary", \

boot/bootutil/src/caps.c

@@ -83,6 +83,9 @@ uint32_t bootutil_get_caps(void)
 #if defined(MCUBOOT_HW_ROLLBACK_PROT)
     res |= BOOTUTIL_CAP_HW_ROLLBACK_PROT;
 #endif
+#if defined(MCUBOOT_ENC_IMAGES_XIP)
+    res |= BOOTUTIL_CAP_ENC_XIP_EC256;
+#endif
 
     return res;
 }

boot/bootutil/src/loader.c

@@ -55,6 +55,10 @@
 #include "bootutil/enc_key.h"
 #endif
 
+#if defined(MCUBOOT_ENC_IMAGES_XIP)
+#include "xip_enc/xip_enc.h"
+#endif
+
 #if !defined(MCUBOOT_DIRECT_XIP) && !defined(MCUBOOT_RAM_LOAD)
 #include <os/os_malloc.h>
 #endif
@@ -636,7 +640,7 @@ boot_validate_slot(struct boot_loader_state *state, int slot,
         fih_rc = FIH_FAILURE;
     } else {
         BOOT_HOOK_CALL_FIH(boot_image_check_hook, FIH_BOOT_HOOK_REGULAR,
-                           fih_rc, BOOT_CURR_IMG(state), slot);
+                           fih_rc, state, BOOT_CURR_IMG(state), slot);
         if (FIH_EQ(fih_rc, FIH_BOOT_HOOK_REGULAR)) {
             FIH_CALL(boot_check_image, fih_rc, state, bs, slot);
         }
@@ -1970,6 +1974,11 @@ context_boot_go(struct boot_loader_state *state, struct boot_rsp *rsp)
 
     fill_rsp(state, rsp);
 
+#if defined(MCUBOOT_ENC_IMAGES_XIP)
+    boot_xip_populate_rsp(BOOT_CURR_IMG(state), rsp);
+    xip_enc_clear_keys();
+#endif
+
     fih_rc = FIH_SUCCESS;
 out:
     /*
@@ -2454,6 +2463,11 @@ context_boot_go(struct boot_loader_state *state, struct boot_rsp *rsp)
 
     fill_rsp(state, rsp);
 
+#if defined(MCUBOOT_ENC_IMAGES_XIP)
+    boot_xip_populate_rsp(BOOT_CURR_IMG(state), rsp);
+    xip_enc_clear_keys();
+#endif
+
 close:
     boot_close_all_flash_areas(state);
 

boot/bootutil/src/xip_enc/xip_enc.h

@@ -0,0 +1,113 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ *
+ * XIP Multi-Key Encryption Library
+ * Self-contained library for XIP encryption support in MCUBoot.
+ * Interfaces with MCUBoot via boot_image_check_hook (existing hook).
+ */
+#ifndef XIP_ENC_H
+#define XIP_ENC_H
+
+#include <stdint.h>
+#include <stdbool.h>
+#include <string.h>
+#include "bootutil/bootutil.h"
+#include "bootutil/image.h"
+#include "flash_map_backend/flash_map_backend.h"
+#include "mcuboot_config/mcuboot_config.h"
+
+#if defined(MCUBOOT_ENC_IMAGES) && defined(MCUBOOT_ENC_IMAGES_XIP)
+#error "MCUBOOT_ENC_IMAGES and MCUBOOT_ENC_IMAGES_XIP are mutually exclusive."
+#endif
+
+/**
+ * Secure zeroization -- uses volatile pointer to prevent compiler optimization.
+ */
+static inline void xip_enc_zeroize(void *p, size_t n)
+{
+    volatile unsigned char *v = (volatile unsigned char *)p;
+    for (size_t i = 0; i < n; i++) {
+        v[i] = 0;
+    }
+}
+
+/**
+ * Constant-time comparison to avoid timing side-channels.
+ * Returns 0 if equal, non-zero otherwise.
+ */
+static inline int xip_enc_ct_compare(const uint8_t *a, const uint8_t *b,
+                                     size_t size)
+{
+    uint8_t result = 0;
+    for (size_t i = 0; i < size; i++) {
+        result |= a[i] ^ b[i];
+    }
+    return (int)result;
+}
+
+#define XIP_ENC_KEY_SIZE   16u
+#define XIP_ENC_IV_SIZE    16u
+#define XIP_ENC_MAX_IMAGES 3u
+
+/*
+ * boot_image_check_hook() is declared in bootutil/boot_hooks.h (upstream).
+ * The library provides the implementation in xip_enc_validate.c.
+ * Do NOT redeclare here.
+ */
+
+/**
+ * Called by MCUBoot after fill_rsp() to populate xip_key/xip_iv in boot_rsp.
+ * Copies key/IV from library-internal storage for the specified image.
+ *
+ * @param img_index  Image index (passed via BOOT_CURR_IMG from MCUBoot)
+ * @param rsp        Boot response to populate
+ */
+void boot_xip_populate_rsp(int img_index, struct boot_rsp *rsp);
+
+/**
+ * Platform-provided: decrypt image payload using SMIF hardware.
+ * Used during hash computation to decrypt AES-CTR encrypted payload.
+ *
+ * @param image_index  Current image index
+ * @param fap          Flash area of the image
+ * @param off          Offset within flash area
+ * @param sz           Size of data to decrypt
+ * @param buf          Buffer with data to decrypt (in-place)
+ *
+ * @return 0 on success, negative on error
+ */
+int boot_decrypt_xip(int image_index, const struct flash_area *fap,
+                     uint32_t off, uint32_t sz, uint8_t *buf);
+
+/**
+ * Store key/IV for an image (called by validation hook after ECIES unwrap).
+ */
+void xip_enc_store_key(int img_index, const uint8_t *key, const uint8_t *iv);
+
+/**
+ * Retrieve stored key/IV for an image.
+ *
+ * @return 0 on success, -1 if not valid
+ */
+int xip_enc_get_key(int img_index, uint8_t *key, uint8_t *iv);
+
+/**
+ * Zeroize all stored keys. Call before launching application.
+ */
+void xip_enc_clear_keys(void);
+
+/**
+ * ECIES-P256 key unwrap with extended TLV support.
+ * Extracts AES key and XIP IV from ECIES envelope.
+ *
+ * @param tlv_buf   ECIES TLV data read from image
+ * @param tlv_len   Length of TLV data (113 standard, up to 177 extended)
+ * @param out_key   Output: 16-byte AES key
+ * @param out_iv    Output: 16-byte XIP IV
+ *
+ * @return 0 on success, negative on error
+ */
+int xip_enc_ecies_unwrap(const uint8_t *tlv_buf, uint16_t tlv_len,
+                         uint8_t *out_key, uint8_t *out_iv);
+
+#endif /* XIP_ENC_H */