 |
Software APIs
|
|
Software APIs
|
P-256 elliptic curve operations for OpenTitan cryptography library. More...
#include "datatypes.h"Go to the source code of this file.
P-256 elliptic curve operations for OpenTitan cryptography library.
Includes ECDSA and ECDH.
Definition in file ecc_p256.h.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdh_p256 | ( | const otcrypto_blinded_key_t * | private_key, |
| const otcrypto_unblinded_key_t * | public_key, | ||
| otcrypto_blinded_key_t * | shared_secret | ||
| ) |
Elliptic Curve Diffie Hellman shared secret generation with curve P-256.
| private_key | Pointer to the blinded private key (d) struct. | |
| public_key | Pointer to the unblinded public key (Q) struct. | |
| [out] | shared_secret | Pointer to generated blinded shared key struct. |
Definition at line 49 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdh_p256_async_finalize | ( | otcrypto_blinded_key_t * | shared_secret | ) |
Finalizes asynchronous shared secret generation for ECDH/P-256.
See otcrypto_ecdh_p256 for requirements on input values.
May block until the operation is complete.
| [out] | shared_secret | Pointer to generated blinded shared key struct. |
Definition at line 451 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdh_p256_async_start | ( | const otcrypto_blinded_key_t * | private_key, |
| const otcrypto_unblinded_key_t * | public_key | ||
| ) |
Starts asynchronous shared secret generation for ECDH/P-256.
See otcrypto_ecdh_p256 for requirements on input values.
| private_key | Pointer to the blinded private key (d) struct. |
| public_key | Pointer to the unblinded public key (Q) struct. |
Definition at line 404 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdh_p256_keygen | ( | otcrypto_blinded_key_t * | private_key, |
| otcrypto_unblinded_key_t * | public_key | ||
| ) |
Generates a key pair for ECDH with curve P-256.
The caller should allocate and partially populate the blinded key struct, including populating the key configuration and allocating space for the keyblob. For a hardware-backed key, use the private key handle returned by otcrypto_hw_backed_key. Otherwise, the mode should indicate ECDH with P-256 and the keyblob should be 80 bytes. The value in the checksum field of the blinded key struct will be populated by the key generation function.
| [out] | private_key | Pointer to the blinded private key (d) struct. |
| [out] | public_key | Pointer to the unblinded public key (Q) struct. |
Definition at line 43 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdh_p256_keygen_async_finalize | ( | otcrypto_blinded_key_t * | private_key, |
| otcrypto_unblinded_key_t * | public_key | ||
| ) |
Finalizes asynchronous key generation for ECDH/P-256.
See otcrypto_ecdh_p256_keygen for requirements on input values.
May block until the operation is complete.
The caller should ensure that the private key configuration matches that passed to the _start function.
| [out] | private_key | Pointer to the blinded private key (d) struct. |
| [out] | public_key | Pointer to the unblinded public key (Q) struct. |
Definition at line 387 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdh_p256_keygen_async_start | ( | const otcrypto_blinded_key_t * | private_key | ) |
Starts asynchronous key generation for ECDH/P-256.
See otcrypto_ecdh_p256_keygen for requirements on input values.
| private_key | Destination structure for private key, or key handle. |
Definition at line 374 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_keygen | ( | otcrypto_blinded_key_t * | private_key, |
| otcrypto_unblinded_key_t * | public_key | ||
| ) |
Generates a key pair for ECDSA with curve P-256.
The caller should allocate and partially populate the blinded key struct, including populating the key configuration and allocating space for the keyblob. For a hardware-backed key, use the private key handle returned by otcrypto_hw_backed_key. Otherwise, the mode should indicate ECDSA with P-256 and the keyblob should be 80 bytes. The value in the checksum field of the blinded key struct will be populated by the key generation function.
| [out] | private_key | Pointer to the blinded private key (d) struct. |
| [out] | public_key | Pointer to the unblinded public key (Q) struct. |
Definition at line 17 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_keygen_async_finalize | ( | otcrypto_blinded_key_t * | private_key, |
| otcrypto_unblinded_key_t * | public_key | ||
| ) |
Finalizes asynchronous key generation for ECDSA/P-256.
See otcrypto_ecdsa_p256_keygen for requirements on input values.
May block until the operation is complete.
The caller should ensure that the private key configuration matches that passed to the _start function.
| [out] | private_key | Pointer to the blinded private key (d) struct. |
| [out] | public_key | Pointer to the unblinded public key (Q) struct. |
Definition at line 216 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_keygen_async_start | ( | const otcrypto_blinded_key_t * | private_key | ) |
Starts asynchronous key generation for ECDSA/P-256.
See otcrypto_ecdsa_p256_keygen for requirements on input values.
| private_key | Destination structure for private key, or key handle. |
Definition at line 84 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_sign | ( | const otcrypto_blinded_key_t * | private_key, |
| const otcrypto_hash_digest_t | message_digest, | ||
| otcrypto_word32_buf_t | signature | ||
| ) |
Generates an ECDSA signature with curve P-256.
The message digest must be exactly 256 bits (32 bytes) long, but may use any hash mode. The caller is responsible for ensuring that the security strength of the hash function is at least equal to the security strength of the curve, but in some cases it may be truncated. See FIPS 186-5 for details.
| private_key | Pointer to the blinded private key (d) struct. | |
| message_digest | Message digest to be signed (pre-hashed). | |
| [out] | signature | Pointer to the signature struct with (r,s) values. |
Definition at line 23 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_sign_async_finalize | ( | otcrypto_word32_buf_t | signature | ) |
Finalizes asynchronous signature generation for ECDSA/P-256.
See otcrypto_ecdsa_p256_sign for requirements on input values.
May block until the operation is complete.
| [out] | signature | Pointer to the signature struct with (r,s) values. |
Definition at line 304 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_sign_async_start | ( | const otcrypto_blinded_key_t * | private_key, |
| const otcrypto_hash_digest_t | message_digest | ||
| ) |
Starts asynchronous signature generation for ECDSA/P-256.
See otcrypto_ecdsa_p256_sign for requirements on input values.
| private_key | Pointer to the blinded private key (d) struct. |
| message_digest | Message digest to be signed (pre-hashed). |
Definition at line 235 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_verify | ( | const otcrypto_unblinded_key_t * | public_key, |
| const otcrypto_hash_digest_t | message_digest, | ||
| otcrypto_const_word32_buf_t | signature, | ||
| hardened_bool_t * | verification_result | ||
| ) |
Verifies an ECDSA/P-256 signature.
The message digest must be exactly 256 bits (32 bytes) long, but may use any hash mode. The caller is responsible for ensuring that the security strength of the hash function is at least equal to the security strength of the curve, but in some cases it may be truncated. See FIPS 186-5 for details.
The caller must check the verification_result parameter, NOT only the returned status code, to know if the signature passed verification. The status code, as for other operations, only indicates whether errors were encountered, and may return OK even when the signature is invalid.
| public_key | Pointer to the unblinded public key (Q) struct. | |
| message_digest | Message digest to be verified (pre-hashed). | |
| signature | Pointer to the signature to be verified. | |
| [out] | verification_result | Whether the signature passed verification. |
Definition at line 32 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_verify_async_finalize | ( | otcrypto_const_word32_buf_t | signature, |
| hardened_bool_t * | verification_result | ||
| ) |
Finalizes asynchronous signature verification for ECDSA/P-256.
See otcrypto_ecdsa_p256_verify for requirements on input values.
May block until the operation is complete.
The caller must check the verification_result parameter, NOT only the returned status code, to know if the signature passed verification. The status code, as for other operations, only indicates whether errors were encountered, and may return OK even when the signature is invalid.
| [out] | verification_result | Whether the signature passed verification. |
Definition at line 362 of file ecc_p256.c.
| OT_WARN_UNUSED_RESULT otcrypto_status_t otcrypto_ecdsa_p256_verify_async_start | ( | const otcrypto_unblinded_key_t * | public_key, |
| const otcrypto_hash_digest_t | message_digest, | ||
| otcrypto_const_word32_buf_t | signature | ||
| ) |
Starts asynchronous signature verification for ECDSA/P-256.
See otcrypto_ecdsa_p256_verify for requirements on input values.
| public_key | Pointer to the unblinded public key (Q) struct. |
| message_digest | Message digest to be verified (pre-hashed). |
| signature | Pointer to the signature to be verified. |
Definition at line 321 of file ecc_p256.c.