mirror of
https://github.com/CovidBraceletPrj/CovidBracelet.git
synced 2025-01-24 20:07:13 +01:00
398 lines
15 KiB
C
398 lines
15 KiB
C
/*
|
|
* Copyright (c) 2001-2019, Arm Limited and Contributors. All rights reserved.
|
|
*
|
|
* SPDX-License-Identifier: BSD-3-Clause
|
|
*/
|
|
|
|
/*!
|
|
@addtogroup cc_srp
|
|
@{
|
|
*/
|
|
|
|
/*!
|
|
@file
|
|
@brief This file contains all of the CryptoCell SRP APIs, their enums and
|
|
definitions.
|
|
*/
|
|
|
|
#ifndef _MBEDTLS_CC_SRP_H
|
|
#define _MBEDTLS_CC_SRP_H
|
|
|
|
#include "cc_pal_types.h"
|
|
#include "cc_error.h"
|
|
#include "cc_pka_defs_hw.h"
|
|
#include "cc_hash_defs.h"
|
|
#include "cc_rnd_common.h"
|
|
|
|
|
|
#ifdef __cplusplus
|
|
extern "C"
|
|
{
|
|
#endif
|
|
|
|
/*!\internal The following describes the SRP APIs usage for the Device and the Accessory :*
|
|
|
|
Device (User) Accessory (Host)
|
|
* -------------- -----------------
|
|
|
|
1. CC_SRP_HK_INIT(CC_SRP_USER, .......) CC_SRP_HK_INIT(CC_SRP_HOST, .....)
|
|
|
|
2. CC_SrpPwdVerCreate(..)
|
|
|
|
3. CC_SrpUserPubKeyCreate(..) CC_SrpHostPubKeyCreate(..)
|
|
|
|
4. CC_SrpUserProofCalc(..)
|
|
|
|
5. CC_SrpHostProofVerifyAndCalc(..)
|
|
|
|
6. CC_SrpUserProofVerify(..)
|
|
|
|
7. CC_SrpClear(..) CC_SrpClear(..)
|
|
|
|
*/
|
|
|
|
/************************ Defines ******************************/
|
|
/* The SRP modulus sizes. */
|
|
/*! SRP modulus size of 1024 bits. */
|
|
#define CC_SRP_MODULUS_SIZE_1024_BITS 1024
|
|
/*! SRP modulus size of 1536 bits. */
|
|
#define CC_SRP_MODULUS_SIZE_1536_BITS 1536
|
|
/*! SRP modulus size of 2048 bits. */
|
|
#define CC_SRP_MODULUS_SIZE_2048_BITS 2048
|
|
/*! SRP modulus size of 3072 bits. */
|
|
#define CC_SRP_MODULUS_SIZE_3072_BITS 3072
|
|
|
|
/*! The maximal size of the SRP modulus in bits. */
|
|
#define CC_SRP_MAX_MODULUS_IN_BITS CC_SRP_MODULUS_SIZE_3072_BITS
|
|
/*! The maximal size of the SRP modulus in bytes. */
|
|
#define CC_SRP_MAX_MODULUS (CC_SRP_MAX_MODULUS_IN_BITS/CC_BITS_IN_BYTE)
|
|
/*! The maximal size of the SRP modulus in words. */
|
|
#define CC_SRP_MAX_MODULUS_IN_WORDS (CC_SRP_MAX_MODULUS_IN_BITS/CC_BITS_IN_32BIT_WORD)
|
|
|
|
/* SRP private number size range. */
|
|
/*! The minimal size of the SRP private number in bits. */
|
|
#define CC_SRP_PRIV_NUM_MIN_SIZE_IN_BITS (256)
|
|
/*! The minimal size of the SRP private number in bytes. */
|
|
#define CC_SRP_PRIV_NUM_MIN_SIZE (CC_SRP_PRIV_NUM_MIN_SIZE_IN_BITS/CC_BITS_IN_BYTE)
|
|
/*! The minimal size of the SRP private number in words. */
|
|
#define CC_SRP_PRIV_NUM_MIN_SIZE_IN_WORDS (CC_SRP_PRIV_NUM_MIN_SIZE_IN_BITS/CC_BITS_IN_32BIT_WORD)
|
|
/*! The maximal size of the SRP private number in bits. */
|
|
#define CC_SRP_PRIV_NUM_MAX_SIZE_IN_BITS (CC_SRP_MAX_MODULUS_IN_BITS)
|
|
/*! The maximal size of the SRP private number in bytes. */
|
|
#define CC_SRP_PRIV_NUM_MAX_SIZE (CC_SRP_PRIV_NUM_MAX_SIZE_IN_BITS/CC_BITS_IN_BYTE)
|
|
/*! The maximal size of the SRP private number in words. */
|
|
#define CC_SRP_PRIV_NUM_MAX_SIZE_IN_WORDS (CC_SRP_PRIV_NUM_MAX_SIZE_IN_BITS/CC_BITS_IN_32BIT_WORD)
|
|
|
|
/*! The maximal size of the SRP hash digest in words. */
|
|
#define CC_SRP_MAX_DIGEST_IN_WORDS CC_HASH_RESULT_SIZE_IN_WORDS
|
|
/*! The maximal size of the SRP hash digest in bytes. */
|
|
#define CC_SRP_MAX_DIGEST (CC_SRP_MAX_DIGEST_IN_WORDS*CC_32BIT_WORD_SIZE)
|
|
|
|
/*! The minimal size of the salt in bytes. */
|
|
#define CC_SRP_MIN_SALT_SIZE (8)
|
|
/*! The minimal size of the salt in words. */
|
|
#define CC_SRP_MIN_SALT_SIZE_IN_WORDS (CC_SRP_MIN_SALT_SIZE/CC_32BIT_WORD_SIZE)
|
|
/*! The maximal size of the salt in bytes. */
|
|
#define CC_SRP_MAX_SALT_SIZE (64)
|
|
/*! The maximal size of the salt in words. */
|
|
#define CC_SRP_MAX_SALT_SIZE_IN_WORDS (CC_SRP_MAX_SALT_SIZE/CC_32BIT_WORD_SIZE)
|
|
|
|
/************************ Typedefs ****************************/
|
|
/*! The definition of the SRP modulus buffer. */
|
|
typedef uint8_t mbedtls_srp_modulus[CC_SRP_MAX_MODULUS];
|
|
|
|
/*! The definition of the SRP digest buffer. */
|
|
typedef uint8_t mbedtls_srp_digest[CC_SRP_MAX_DIGEST];
|
|
|
|
/*! The definition of the SRP session key. */
|
|
typedef uint8_t mbedtls_srp_sessionKey[2*CC_SRP_MAX_DIGEST];
|
|
|
|
/************************ Enums ********************************/
|
|
|
|
/*! Supported SRP versions. */
|
|
typedef enum {
|
|
/*! SRP version 3. */
|
|
CC_SRP_VER_3 = 0,
|
|
/*! SRP version 6. */
|
|
CC_SRP_VER_6 = 1,
|
|
/*! SRP version 6A. */
|
|
CC_SRP_VER_6A = 2,
|
|
/*! SRP version HK. */
|
|
CC_SRP_VER_HK = 3,
|
|
/*! The maximal number of supported versions. */
|
|
CC_SRP_NumOfVersions,
|
|
/*! Reserved.*/
|
|
CC_SRP_VersionLast= 0x7FFFFFFF,
|
|
}mbedtls_srp_version_t;
|
|
|
|
/*! SRP entity types. */
|
|
typedef enum {
|
|
/*! The host entity, also known as server, verifier, or accessory. */
|
|
CC_SRP_HOST = 1,
|
|
/*! The user entity, also known as client, or device. */
|
|
CC_SRP_USER = 2,
|
|
/*! The maximal number of entities types. */
|
|
CC_SRP_NumOfEntityType,
|
|
/*! Reserved. */
|
|
CC_SRP_EntityLast= 0x7FFFFFFF,
|
|
}mbedtls_srp_entity_t;
|
|
|
|
/************************ Structs ******************************/
|
|
|
|
/*!
|
|
@brief Group parameters for the SRP.
|
|
|
|
Defines the modulus and the generator used.
|
|
*/
|
|
typedef struct mbedtls_srp_group_param {
|
|
/*! The SRP modulus. */
|
|
mbedtls_srp_modulus modulus;
|
|
/*! The SRP generator. */
|
|
uint8_t gen;
|
|
/*! The size of the SRP modulus in bits. */
|
|
size_t modSizeInBits;
|
|
/*! The valid SRP Np. */
|
|
uint32_t validNp;
|
|
/*! The SRP Np buffer. */
|
|
uint32_t Np[CC_PKA_BARRETT_MOD_TAG_BUFF_SIZE_IN_WORDS];
|
|
}mbedtls_srp_group_param;
|
|
|
|
/************************ context Structs ******************************/
|
|
/*! The SRP context prototype */
|
|
typedef struct mbedtls_srp_context {
|
|
/*! The SRP entitiy type. */
|
|
mbedtls_srp_entity_t srpType;
|
|
/*! The SRP version. */
|
|
mbedtls_srp_version_t srpVer;
|
|
/*! The group parameter including the modulus information. */// N, g, Np
|
|
mbedtls_srp_group_param groupParam;
|
|
/*! The hash mode. */
|
|
CCHashOperationMode_t hashMode;
|
|
/*! The hash digest size. */
|
|
size_t hashDigestSize;
|
|
/*! The session key size. */
|
|
size_t sessionKeySize;
|
|
/*! A pointer to the RND context. */
|
|
CCRndContext_t *pRndCtx;
|
|
/*! The modulus. */ // a or b
|
|
mbedtls_srp_modulus ephemPriv;
|
|
/*! The modulus size. */
|
|
size_t ephemPrivSize;
|
|
/*! The user-name digest. */// M
|
|
mbedtls_srp_digest userNameDigest;
|
|
/*! The cred digest. */ // p
|
|
mbedtls_srp_digest credDigest;
|
|
/*! The SRP K multiplier. */ // k multiplier
|
|
mbedtls_srp_digest kMult;
|
|
}mbedtls_srp_context;
|
|
|
|
|
|
/************************ SRP common Functions **********************/
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function initiates the SRP context.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure as defined in mbedtls_cc_srp_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_init(
|
|
/*! [in] The SRP entity type. */
|
|
mbedtls_srp_entity_t srpType,
|
|
/*! [in] The SRP version. */
|
|
mbedtls_srp_version_t srpVer,
|
|
/*! [in] A pointer to the SRP modulus, BE Byte buffer. */
|
|
mbedtls_srp_modulus srpModulus,
|
|
/*! [in] The SRP generator param. */
|
|
uint8_t srpGen,
|
|
/*! [in] The size of the SRP modulus in bits. Valid values are: 1024
|
|
bits, 1536 bits, 2048 bits, or 3072 bits. */
|
|
size_t modSizeInBits,
|
|
/*! [in] The hash mode. */
|
|
CCHashOperationMode_t hashMode,
|
|
/*! [in] A pointer to the username. */
|
|
uint8_t *pUserName,
|
|
/*! [in] The size of the username buffer. Must be larger than 0. */
|
|
size_t userNameSize,
|
|
/*! [in] A pointer to the user password. */
|
|
uint8_t *pPwd,
|
|
/*! [in] The size of the user-password buffer. Must be larger than 0
|
|
if \p pPwd is valid. */
|
|
size_t pwdSize,
|
|
/*! [in] A pointer to the RND context. */
|
|
CCRndContext_t *pRndCtx,
|
|
/*! [out] A pointer to the SRP host context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
/*! Macro definition for a specific SRP-initialization function. */
|
|
#define CC_SRP_HK_INIT(srpType, srpModulus, srpGen, modSizeInBits, pUserName, userNameSize, pPwd, pwdSize, pRndCtx, pCtx) \
|
|
mbedtls_srp_init(srpType, CC_SRP_VER_HK, srpModulus, srpGen, modSizeInBits, CC_HASH_SHA512_mode, pUserName, userNameSize, pPwd, pwdSize, pRndCtx, pCtx)
|
|
|
|
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function calculates \p pSalt and \p pwdVerifier.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h,
|
|
cc_rnd_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_pwd_ver_create(
|
|
/*! [in] The size of the random salt to generate. The range is between
|
|
#CC_SRP_MIN_SALT_SIZE and #CC_SRP_MAX_SALT_SIZE. */
|
|
size_t saltSize,
|
|
/*! [out] A pointer to the \p pSalt number (s). */
|
|
uint8_t *pSalt,
|
|
/*! [out] A pointer to the password verifier (v). */
|
|
mbedtls_srp_modulus pwdVerifier,
|
|
/*! [out] A pointer to the SRP context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function clears the SRP context.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_clear(
|
|
/*! [in/out] A pointer to the SRP context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
|
|
/************************ SRP Host Functions **********************/
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function generates the public and private host ephemeral keys,
|
|
known as B and b in <em>RFC 5054 Using the Secure Remote Password (SRP)
|
|
Protocol for TLS Authentication</em>.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h or
|
|
cc_rnd_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_host_pub_key_create(
|
|
/*! [in] The size of the generated ephemeral private key (b). The range
|
|
is between #CC_SRP_PRIV_NUM_MIN_SIZE and #CC_SRP_PRIV_NUM_MAX_SIZE */
|
|
size_t ephemPrivSize,
|
|
/*! [in] A pointer to the verifier (v). */
|
|
mbedtls_srp_modulus pwdVerifier,
|
|
/*! [out] A pointer to the host ephemeral public key (B). */
|
|
mbedtls_srp_modulus hostPubKeyB,
|
|
/*! [in/out] A pointer to the SRP context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
|
|
/*!
|
|
@brief This function verifies the user proof, and calculates the host-message
|
|
proof.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_host_proof_verify_and_calc(
|
|
/*! [in] The size of the random salt. The range is between
|
|
#CC_SRP_MIN_SALT_SIZE and #CC_SRP_MAX_SALT_SIZE. */
|
|
size_t saltSize,
|
|
/*! [in] A pointer to the pSalt number. */
|
|
uint8_t *pSalt,
|
|
/*! [in] A pointer to the password verifier (v). */
|
|
mbedtls_srp_modulus pwdVerifier,
|
|
/*! [in] A pointer to the ephemeral public key of the user (A). */
|
|
mbedtls_srp_modulus userPubKeyA,
|
|
/*! [in] A pointer to the ephemeral public key of the host (B). */
|
|
mbedtls_srp_modulus hostPubKeyB,
|
|
/*! [in] A pointer to the SRP user-proof buffer (M1). */
|
|
mbedtls_srp_digest userProof,
|
|
/*! [out] A pointer to the SRP host-proof buffer (M2). */
|
|
mbedtls_srp_digest hostProof,
|
|
/*! [out] A pointer to the SRP session key (K). */
|
|
mbedtls_srp_sessionKey sessionKey,
|
|
/*! [in] A pointer to the SRP context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
|
|
|
|
/************************ SRP User Functions **********************/
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function generates public and private user ephemeral keys, known
|
|
as A and a in <em>RFC 5054 Using the Secure Remote Password (SRP) Protocol
|
|
for TLS Authentication</em>.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h or
|
|
cc_rnd_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_user_pub_key_create(
|
|
/*! [in] The size of the generated ephemeral private key (a). The range
|
|
is between #CC_SRP_PRIV_NUM_MIN_SIZE and #CC_SRP_PRIV_NUM_MAX_SIZE.
|
|
The size must be 32 bit aligned */
|
|
size_t ephemPrivSize,
|
|
/*! [out] A pointer to the user ephemeral public key (A). */
|
|
mbedtls_srp_modulus userPubKeyA,
|
|
/*! [in/out] A pointer to the SRP context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function calculates the user proof.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_user_proof_calc(
|
|
/*! [in] The size of the random salt. The range is between
|
|
#CC_SRP_MIN_SALT_SIZE and #CC_SRP_MAX_SALT_SIZE. */
|
|
size_t saltSize,
|
|
/*! [in] A pointer to the pSalt number. */
|
|
uint8_t *pSalt,
|
|
/*! [in] A pointer to the public ephmeral key of the user (A). */
|
|
mbedtls_srp_modulus userPubKeyA,
|
|
/*! [in] A pointer to the public ephmeral key of the host (B). */
|
|
mbedtls_srp_modulus hostPubKeyB,
|
|
/*! [out] A pointer to the SRP user proof buffer (M1). */
|
|
mbedtls_srp_digest userProof,
|
|
/*! [out] A pointer to the SRP session key (K). */
|
|
mbedtls_srp_sessionKey sessionKey,
|
|
/*! [out] A pointer to the SRP context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
/*****************************************************************************/
|
|
/*!
|
|
@brief This function verifies the host proof.
|
|
|
|
@return \c CC_OK on success.
|
|
@return A non-zero value on failure, as defined in mbedtls_cc_srp_error.h.
|
|
*/
|
|
CIMPORT_C CCError_t mbedtls_srp_user_proof_verify(
|
|
/*! [in] A pointer to the SRP session key (K). */
|
|
mbedtls_srp_sessionKey sessionKey,
|
|
/*! [in] A pointer to the public ephmeral key of the user (A). */
|
|
mbedtls_srp_modulus userPubKeyA,
|
|
/*! [in] A pointer to the SRP user proof buffer (M1). */
|
|
mbedtls_srp_digest userProof,
|
|
/*! [in] A pointer to the SRP host proof buffer (M2). */
|
|
mbedtls_srp_digest hostProof,
|
|
/*! [out] A pointer to the SRP user context. */
|
|
mbedtls_srp_context *pCtx
|
|
);
|
|
|
|
|
|
#ifdef __cplusplus
|
|
}
|
|
#endif
|
|
|
|
/*!
|
|
@}
|
|
*/
|
|
#endif /* #ifndef _MBEDTLS_CC_SRP_H */
|