| // Copyright 2020 The Fuchsia Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| library fuchsia.weave; |
| |
| using fuchsia.mem; |
| |
| /// This protocol is used for signing operations with the factory-provisioned |
| /// Weave key. |
| [Discoverable] |
| protocol Signer { |
| /// Sign the provided |hash| with the factory provisioned key. On success |
| /// the result is returned in |signature|. The signature must be of a type |
| /// that is supported by Weave, and must take the standard form of an ASN.1 |
| /// DER SEQUENCE. This operation must support SHA1 and SHA256 hash values. |
| /// |
| /// Currently, Weave only supports ECDSA signatures using the P224 curve, |
| /// however, to allow this protocol to support future changes to supported |
| /// Weave signatures the maximum size of the returned signature is set to |
| /// 139 bytes which is the largest amount of space needed to return an |
| /// encoded ECDSA P521 signature. |
| SignHash(bytes:32 hash) -> (bytes:139 signature) error ErrorCode; |
| }; |
| |
| /// This protocol is used to retrieve factory data that may be encrypted at |
| /// rest. |
| [Discoverable] |
| protocol FactoryDataManager { |
| /// Return the device |pairing_code| on success. |
| GetPairingCode() -> (bytes:16 pairing_code) error ErrorCode; |
| |
| /// Returns the factory provisioned Weave certificate in PEM format. |
| GetWeaveCertificate() -> (fuchsia.mem.Buffer certificate) error ErrorCode; |
| }; |