| /************************************************************************************** |
| * Copyright (c) 2016-2017, ARM Limited or its affiliates. All rights reserved * |
| * * |
| * This file and the related binary are licensed under the following license: * |
| * * |
| * ARM Object Code and Header Files License, v1.0 Redistribution. * |
| * * |
| * Redistribution and use of object code, header files, and documentation, without * |
| * modification, are permitted provided that the following conditions are met: * |
| * * |
| * 1) Redistributions must reproduce the above copyright notice and the * |
| * following disclaimer in the documentation and/or other materials * |
| * provided with the distribution. * |
| * * |
| * 2) Unless to the extent explicitly permitted by law, no reverse * |
| * engineering, decompilation, or disassembly of is permitted. * |
| * * |
| * 3) Redistribution and use is permitted solely for the purpose of * |
| * developing or executing applications that are targeted for use * |
| * on an ARM-based product. * |
| * * |
| * DISCLAIMER. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND * |
| * CONTRIBUTORS "AS IS." ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT * |
| * NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY, NON-INFRINGEMENT, * |
| * AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE * |
| * COPYRIGHT HOLDERS OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * |
| * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED * |
| * TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR * |
| * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF * |
| * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING * |
| * NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS * |
| * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. * |
| **************************************************************************************/ |
| |
| |
| #ifndef _SSI_UTIL_KEY_DERIVATION_H |
| #define _SSI_UTIL_KEY_DERIVATION_H |
| |
| /*! |
| @file |
| @brief This module defines the API that supports Key derivation function as specified |
| in [SP800-108] in section "KDF in Counter Mode". |
| @defgroup ssi_utils_key_derivation CryptoCell utility key derivation APIs |
| @{ |
| @ingroup ssi_utils |
| |
| */ |
| |
| #ifdef __cplusplus |
| extern "C" |
| { |
| #endif |
| |
| #include "ssi_util_defs.h" |
| #include "ssi_util_key_derivation_defs.h" |
| #include "ssi_aes.h" |
| |
| /****************************************************************************** |
| * DEFINITIONS |
| ******************************************************************************/ |
| |
| /*! Input key derivation type. */ |
| typedef enum { |
| /*! User's key.*/ |
| SASI_UTIL_USER_KEY = 0, |
| /*! Root key (Kdr).*/ |
| SASI_UTIL_ROOT_KEY = 1, |
| /*! Reserved.*/ |
| SASI_UTIL_END_OF_KEY_TYPE = 0x7FFFFFFF |
| }SaSiUtilKeyType_t; |
| |
| |
| /*! |
| @brief The key derivation function is as specified in [SP800-108] in section "KDF in Counter Mode". |
| The derivation is based on length l, label L, context C and derivation key Ki. |
| AES-CMAC is used as the pseudorandom function (PRF). |
| |
| @return SASI_UTIL_OK on success. |
| @return A non-zero value from ssi_util_error.h on failure. |
| */ |
| |
| /* A key derivation functions can iterates n times until l bits of keying material are generated. |
| For each of the iteration of the PRF, i=1 to n, do: |
| result(0) = 0; |
| K(i) = PRF (Ki, [i] || Label || 0x00 || Context || length); |
| results(i) = result(i-1) || K(i); |
| |
| concisely, result(i) = K(i) || k(i-1) || .... || k(0)*/ |
| SaSiUtilError_t SaSi_UtilKeyDerivation( |
| SaSiUtilKeyType_t keyType, /*!< [in] The key type that is used as an input to a key derivation function. |
| Can be one of: SASI_UTIL_USER_KEY or SASI_UTIL_ROOT_KEY. */ |
| SaSiAesUserKeyData_t *pUserKey, /*!< [in] A pointer to the user's key buffer (in case of SASI_UTIL_USER_KEY). */ |
| const uint8_t *pLabel, /*!< [in] A string that identifies the purpose for the derived keying material.*/ |
| size_t labelSize, /*!< [in] The label size should be in range of 1 to 64 bytes length. */ |
| const uint8_t *pContextData, /*!< [in] A binary string containing the information related to the derived keying material. */ |
| size_t contextSize, /*!< [in] The context size should be in range of 1 to 64 bytes length. */ |
| uint8_t *pDerivedKey, /*!< [out] Keying material output (MUST be atleast the size of derivedKeySize). */ |
| size_t derivedKeySize /*!< [in] Size of the derived keying material in bytes (limited to 4080 bytes). */ |
| ); |
| |
| #ifdef __cplusplus |
| } |
| #endif |
| /** |
| @} |
| */ |
| #endif /*_SSI_UTIL_KEY_DERIVATION_H*/ |