Home Explore Help
Sign In
torambo.com
/
Momentum-Apps
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 47e2f0dc76
Branches Tags
Momentum-Apps
/
totp
/
lib
/
wolfssl
/
wolfssl
/
wolfcrypt
/
eccsi.h

eccsi.h 6.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176 
  1. /* eccsi.h
    2. 

  2.  *
    3. 

  3.  * Copyright (C) 2006-2023 wolfSSL Inc.
    4. 

  4.  *
    5. 

  5.  * This file is part of wolfSSL.
    6. 

  6.  *
    7. 

  7.  * wolfSSL is free software; you can redistribute it and/or modify
    8. 

  8.  * it under the terms of the GNU General Public License as published by
    9. 

  9.  * the Free Software Foundation; either version 2 of the License, or
    10. 

  10.  * (at your option) any later version.
    11. 

  11.  *
    12. 

  12.  * wolfSSL is distributed in the hope that it will be useful,
    13. 

  13.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    14. 

  14.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    15. 

  15.  * GNU General Public License for more details.
    16. 

  16.  *
    17. 

  17.  * You should have received a copy of the GNU General Public License
    18. 

  18.  * along with this program; if not, write to the Free Software
    19. 

  19.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1335, USA
    20. 

  20.  */
    21. 

  21. 

  22. /*!
    23. 

  23.     \file wolfssl/wolfcrypt/eccsi.h
    24. 

  24. */
    25. 

  25. 

  26. 

  27. #ifndef WOLF_CRYPT_ECCSI_H
    28. 

  28. #define WOLF_CRYPT_ECCSI_H
    29. 

  29. 

  30. #include <wolfssl/wolfcrypt/types.h>
    31. 

  31. 

  32. #ifdef WOLFCRYPT_HAVE_ECCSI
    33. 

  33. 

  34. #include <wolfssl/wolfcrypt/wolfmath.h>
    35. 

  35. #include <wolfssl/wolfcrypt/ecc.h>
    36. 

  36. #include <wolfssl/wolfcrypt/hash.h>
    37. 

  37. #include <wolfssl/wolfcrypt/hmac.h>
    38. 

  38. 

  39. #define WOLFCRYPT_ECCSI_KMS
    40. 

  40. #define WOLFCRYPT_ECCSI_CLIENT
    41. 

  41. 

  42. #define MAX_ECCSI_BYTES  (256 / 8)
    43. 

  43. 

  44. /* Maximum number of loops of attempting to generate key pairs and signatures.
    45. 

  45.  */
    46. 

  46. #ifndef ECCSI_MAX_GEN_COUNT
    47. 

  47.     #define ECCSI_MAX_GEN_COUNT     10
    48. 

  48. #endif
    49. 

  49. 

  50. typedef struct EccsiKeyParams {
    51. 

  51.     /** Order (q) of elliptic curve as an MP integer. */
    52. 

  52.     mp_int order;
    53. 

  53. #ifdef WOLFCRYPT_ECCSI_CLIENT
    54. 

  54.     /** A parameter of elliptic curve as an MP integer. */
    55. 

  55.     mp_int a;
    56. 

  56.     /** P parameter of elliptic curve as an MP integer. */
    57. 

  57.     mp_int b;
    58. 

  58.     /** Prime of elliptic curve as an MP integer. */
    59. 

  59.     mp_int prime;
    60. 

  60. #endif
    61. 

  61.     /** Base point for elliptic curve operations as an ECC point. */
    62. 

  62.     ecc_point* base;
    63. 

  63. 

  64.     /** Bit indicates order (q) is set as an MP integer in ECCSI key. */
    65. 

  65.     byte haveOrder:1;
    66. 

  66.     /** Bit indicates A is set as an MP integer in ECCSI key. */
    67. 

  67.     byte haveA:1;
    68. 

  68.     /** Bit indicates B is set as an MP integer in ECCSI key. */
    69. 

  69.     byte haveB:1;
    70. 

  70.     /** Bit indicates prime is set as an MP integer in ECCSI key. */
    71. 

  71.     byte havePrime:1;
    72. 

  72.     /** Bit indicates base point is set as an MP integer in ECCSI key. */
    73. 

  73.     byte haveBase:1;
    74. 

  74. } EccsiKeyParams;
    75. 

  75. 

  76. /**
    77. 

  77.  * ECCSI key.
    78. 

  78.  */
    79. 

  79. typedef struct EccsiKey {
    80. 

  80.     /** ECC key to perform elliptic curve operations with. */
    81. 

  81.     ecc_key ecc;
    82. 

  82.     /** ECC key to perform public key elliptic curve operations with. */
    83. 

  83.     ecc_key pubkey;
    84. 

  84.     /** ECC parameter in forms that can be used in computation. */
    85. 

  85.     EccsiKeyParams params;
    86. 

  86. #ifdef WOLFCRYPT_ECCSI_CLIENT
    87. 

  87.     /** Temporary MP integer used during operations.. */
    88. 

  88.     mp_int tmp;
    89. 

  89.     /** Secret Signing Key */
    90. 

  90.     mp_int ssk;
    91. 

  91.     /** Public Validation Token (PVT) */
    92. 

  92.     ecc_point* pvt;
    93. 

  93. #endif
    94. 

  94.     /** Generic hash algorithm object. */
    95. 

  95.     wc_HashAlg hash;
    96. 

  96.     /** Temporary buffer for use in operations. */
    97. 

  97.     byte data[(MAX_ECCSI_BYTES * 2) + 1];
    98. 

  98. #ifdef WOLFCRYPT_ECCSI_CLIENT
    99. 

  99.     /** Hash of identity - used in signing/verification. */
    100. 

  100.     byte idHash[WC_MAX_DIGEST_SIZE];
    101. 

  101.     /** Size of hash of identity in bytes. */
    102. 

  102.     byte idHashSz;
    103. 

  103. #endif
    104. 

  104.     /** Heap hint for dynamic memory allocation. */
    105. 

  105.     void* heap;
    106. 

  106.     /** Bit indicates KPAK (public key) is in montgomery form. */
    107. 

  107.     word16 kpakMont:1;
    108. 

  108. } EccsiKey;
    109. 

  109. 

  110. #ifdef __cplusplus
    111. 

  111.     extern "C" {
    112. 

  112. #endif
    113. 

  113. 

  114. WOLFSSL_API int wc_InitEccsiKey(EccsiKey* key, void* heap, int devId);
    115. 

  115. WOLFSSL_API int wc_InitEccsiKey_ex(EccsiKey* key, int keySz, int curveId,
    116. 

  116.         void* heap, int devId);
    117. 

  117. WOLFSSL_API void wc_FreeEccsiKey(EccsiKey* key);
    118. 

  118. 

  119. WOLFSSL_API int wc_MakeEccsiKey(EccsiKey* key, WC_RNG* rng);
    120. 

  120. 

  121. WOLFSSL_API int wc_MakeEccsiPair(EccsiKey* key, WC_RNG* rng,
    122. 

  122.         enum wc_HashType hashType, const byte* id, word32 idSz, mp_int* ssk,
    123. 

  123.         ecc_point* pvt);
    124. 

  124. WOLFSSL_API int wc_ValidateEccsiPair(EccsiKey* key, enum wc_HashType hashType,
    125. 

  125.         const byte* id, word32 idSz, const mp_int* ssk, ecc_point* pvt,
    126. 

  126.         int* valid);
    127. 

  127. WOLFSSL_API int wc_ValidateEccsiPvt(EccsiKey* key, const ecc_point* pvt,
    128. 

  128.         int* valid);
    129. 

  129. WOLFSSL_API int wc_EncodeEccsiPair(const EccsiKey* key, mp_int* ssk,
    130. 

  130.         ecc_point* pvt, byte* data, word32* sz);
    131. 

  131. WOLFSSL_API int wc_EncodeEccsiSsk(const EccsiKey* key, mp_int* ssk, byte* data,
    132. 

  132.         word32* sz);
    133. 

  133. WOLFSSL_API int wc_EncodeEccsiPvt(const EccsiKey* key, ecc_point* pvt,
    134. 

  134.         byte* data, word32* sz, int raw);
    135. 

  135. WOLFSSL_API int wc_DecodeEccsiPair(const EccsiKey* key, const byte* data,
    136. 

  136.         word32 sz, mp_int* ssk, ecc_point* pvt);
    137. 

  137. WOLFSSL_API int wc_DecodeEccsiSsk(const EccsiKey* key, const byte* data,
    138. 

  138.         word32 sz, mp_int* ssk);
    139. 

  139. WOLFSSL_API int wc_DecodeEccsiPvt(const EccsiKey* key, const byte* data,
    140. 

  140.         word32 sz, ecc_point* pvt);
    141. 

  141. WOLFSSL_API int wc_DecodeEccsiPvtFromSig(const EccsiKey* key, const byte* sig,
    142. 

  142.         word32 sz, ecc_point* pvt);
    143. 

  143. 

  144. WOLFSSL_API int wc_ExportEccsiKey(EccsiKey* key, byte* data, word32* sz);
    145. 

  145. WOLFSSL_API int wc_ImportEccsiKey(EccsiKey* key, const byte* data, word32 sz);
    146. 

  146. 

  147. WOLFSSL_API int wc_ExportEccsiPrivateKey(EccsiKey* key, byte* data, word32* sz);
    148. 

  148. WOLFSSL_API int wc_ImportEccsiPrivateKey(EccsiKey* key, const byte* data,
    149. 

  149.         word32 sz);
    150. 

  150. 

  151. WOLFSSL_API int wc_ExportEccsiPublicKey(EccsiKey* key, byte* data, word32* sz,
    152. 

  152.         int raw);
    153. 

  153. WOLFSSL_API int wc_ImportEccsiPublicKey(EccsiKey* key, const byte* data,
    154. 

  154.         word32 sz, int trusted);
    155. 

  155. 

  156. WOLFSSL_API int wc_HashEccsiId(EccsiKey* key, enum wc_HashType hashType,
    157. 

  157.         const byte* id, word32 idSz, ecc_point* pvt, byte* hash, byte* hashSz);
    158. 

  158. WOLFSSL_API int wc_SetEccsiHash(EccsiKey* key, const byte* hash, byte hashSz);
    159. 

  159. WOLFSSL_API int wc_SetEccsiPair(EccsiKey* key, const mp_int* ssk,
    160. 

  160.         const ecc_point* pvt);
    161. 

  161. 

  162. WOLFSSL_API int wc_SignEccsiHash(EccsiKey* key, WC_RNG* rng,
    163. 

  163.         enum wc_HashType hashType, const byte* msg, word32 msgSz, byte* sig,
    164. 

  164.         word32* sigSz);
    165. 

  165. WOLFSSL_API int wc_VerifyEccsiHash(EccsiKey* key, enum wc_HashType hashType,
    166. 

  166.         const byte* msg, word32 msgSz, const byte* sig, word32 sigSz,
    167. 

  167.         int* verified);
    168. 

  168. 

  169. #ifdef __cplusplus
    170. 

  170.     } /* extern "C" */
    171. 

  171. #endif
    172. 

  172. 

  173. #endif /* WOLFCRYPT_HAVE_ECCSI */
    174. 

  174. 

  175. #endif /* WOLF_CRYPT_ECCSI_H */
    176. 

  176.