Hi,
I have successfully cross-compiled the Secure Enclave userspace library for the ELE-HSM platform targeting the i.MX93 evk board, following the build steps provided in the official documentation.
imx-secure-enclave/README at lf-6.12.20_2.0.0 · nxp-imx/imx-secure-enclave · GitHub
I also compiled and ran the ELE-HSM test application (hsm_test.c) as outlined in the test source
imx-secure-enclave/test/hsm/hsm_test.c at lf-6.12.20_2.0.0 · nxp-imx/imx-secure-enclave · GitHub
We aim to import key buffer into HSM module, I have reviewed the test_import_key(...) function in the following file
To test the import, I'm calling the test_import_key() function from the hsm_test.c application with the flag value HSM_OP_IMPORT_KEY_INPUT_ELE_TLV, as shown below:
import_key_id = test_key_import(key_mgmt_hdl, key_store_hdl, HSM_OP_IMPORT_KEY_INPUT_ELE_TLV);
According to the test_import_key function definition, when the flag HSM_OP_IMPORT_KEY_INPUT_ELE_TLV is set, the function reads data from the file /usr/share/se/test_vectors/psa/ele_aes_test.blob and imports that data into the HSM. However, the operation fails with the following error:
SAB Error: SAB CMD [0x4f] Resp [0x429] - MU sanity check failed / Invalid parameters.
Failure[04] in HSM Import Key API.
Tried, HSM_OP_IMPORT_KEY_FLAGS_STRICT_OPERATION flag also, still facing same issue.
We have not modified the test_import_key() function or its associated files. We are simply calling this function to import the key, but the operation fails. please find attached file for more logs.
Question 1: Could you help identify the exact cause of the above failure when calling the hsm_import_key API?
Question 2: Has anyone successfully verified the functionality of the hsm_import_key API? If so, could you provide a step-by-step guide on importing the key buffer into the HSM, particularly focusing on which variables in the op_import_key_args_t structure need to be set for a successful import?
