GitBucket
Newer
/***************************************************************************//**
* \file cy_crypto_core_ecc_key_gen.c
* \version 2.40
*
* \brief
* This file provides constant and parameters for the API for the ECC key
* generations in the Crypto driver.
*
********************************************************************************
* Copyright 2016-2020 Cypress Semiconductor Corporation
* SPDX-License-Identifier: Apache-2.0
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*******************************************************************************/
#include "cy_device.h"
#if defined (CY_IP_MXCRYPTO)
#include "cy_crypto_core_ecc.h"
#if defined(__cplusplus)
extern "C" {
#endif
#include "cy_crypto_core_ecc_nist_p.h"
#include "cy_crypto_core_vu.h"
#include "cy_crypto_core_trng.h"
#define CY_ECC_CONFIG_TR_GARO_CTL 0x6C740B8DuL
#define CY_ECC_CONFIG_TR_FIRO_CTL 0x52D246E1uL
/*******************************************************************************
* Function Name: Cy_Crypto_Core_ECC_MakeKeyPair
****************************************************************************//**
*
* Make a new ECC key pair.
*
* \param base
* The pointer to a Crypto instance.
*
* \param curveID
* See \ref cy_en_crypto_ecc_curve_id_t.
*
* \param key
* [out] Destination of the newly created key. See \ref cy_stc_crypto_ecc_key.
*
* \param GetRandomDataFunc
* See \ref cy_func_get_random_data_t.
*
* \param randomDataInfo
*
* \return status code. See \ref cy_en_crypto_status_t.
*
*******************************************************************************/
cy_en_crypto_status_t Cy_Crypto_Core_ECC_MakeKeyPair(CRYPTO_Type *base,
cy_en_crypto_ecc_curve_id_t curveID,
cy_stc_crypto_ecc_key *key,
cy_func_get_random_data_t GetRandomDataFunc,
void *randomDataInfo)
{
cy_en_crypto_status_t tmpResult = CY_CRYPTO_BAD_PARAMS;
if ((key != NULL) && (key->k != NULL) && (key->pubkey.x != NULL) && (key->pubkey.y != NULL))
{
tmpResult = Cy_Crypto_Core_ECC_MakePrivateKey(base, curveID, key->k, GetRandomDataFunc, randomDataInfo);
}
if (CY_CRYPTO_SUCCESS == tmpResult)
{
tmpResult = Cy_Crypto_Core_ECC_MakePublicKey(base, curveID, key->k, key);
key->type = PK_PRIVATE;
}
return (tmpResult);
}
/*******************************************************************************
* Function Name: Cy_Crypto_Core_ECC_MakePrivateKey
****************************************************************************//**
*
* Make a new ECC private key
*
* \param base
* The pointer to a Crypto instance.
*
* \param curveID
* See \ref cy_en_crypto_ecc_curve_id_t.
*
* \param key
* [out] Destination of the newly created key.
*
* \param GetRandomDataFunc
* See \ref cy_func_get_random_data_t.
*
* \param randomDataInfo
*
* \return status code. See \ref cy_en_crypto_status_t.
*
*******************************************************************************/
cy_en_crypto_status_t Cy_Crypto_Core_ECC_MakePrivateKey(CRYPTO_Type *base,
cy_en_crypto_ecc_curve_id_t curveID,
uint8_t *key,
cy_func_get_random_data_t GetRandomDataFunc, void *randomDataInfo)
{
cy_en_crypto_status_t tmpResult = CY_CRYPTO_BAD_PARAMS;
const cy_stc_crypto_ecc_dp_type *eccDp = Cy_Crypto_Core_ECC_GetCurveParams(curveID);
if ((eccDp != NULL) && (key != NULL))
{
tmpResult = CY_CRYPTO_SUCCESS;
uint32_t bitsize = eccDp->size;
uint32_t bytesize = CY_CRYPTO_BYTE_SIZE_OF_BITS(bitsize);
uint32_t p_temp = 8u; /* temporal values */
uint32_t p_key = 9u; /* private key */
/* Load random data into VU */
CY_CRYPTO_VU_ALLOC_MEM(base, VR_D, bitsize);
CY_CRYPTO_VU_ALLOC_MEM(base, p_key, bytesize * 8u);
/* generate random string */
uint32_t *keyRegPtr = Cy_Crypto_Core_Vu_RegMemPointer(base, p_key);
if (GetRandomDataFunc != NULL)
{
if (GetRandomDataFunc( randomDataInfo, (uint8_t *)keyRegPtr, bytesize ) != 0)
{
tmpResult = CY_CRYPTO_HW_ERROR;
}
}
else
{
uint32_t i = 0U;
int32_t randomsize = (int32_t)bitsize;
cy_en_crypto_status_t status = CY_CRYPTO_SUCCESS;
while ((randomsize > 0) && (CY_CRYPTO_SUCCESS == status))
{
uint32_t randombits = (uint32_t)CY_CRYPTO_MIN(randomsize, (int32_t)CY_CRYPTO_HW_REGS_WIDTH);
status = Cy_Crypto_Core_Trng(base, CY_ECC_CONFIG_TR_GARO_CTL, CY_ECC_CONFIG_TR_FIRO_CTL,
randombits, &(keyRegPtr)[i]);
randomsize -= (int32_t)CY_CRYPTO_HW_REGS_WIDTH;
i++;
if (CY_CRYPTO_SUCCESS != status)
{
tmpResult = CY_CRYPTO_HW_ERROR;
}
}
}
if (CY_CRYPTO_SUCCESS == tmpResult)
{
Cy_Crypto_Core_VU_RegInvertEndianness(base, p_key);
if ((bytesize * 8u) > bitsize)
{
/* Shift random data right */
CY_CRYPTO_VU_SET_REG(base, p_temp, (bytesize * 8u) - bitsize, 1u);
CY_CRYPTO_VU_LSR(base, p_key, p_key, p_temp);
}
CY_CRYPTO_VU_MOV(base, VR_D, p_key);
Cy_Crypto_Core_Vu_WaitForComplete(base);
/* load prime and order defining the curve as well as the barrett coefficient. */
/* P and BARRETT_U are "globally" defined in cy_crypto_core_ecc.h */
CY_CRYPTO_VU_ALLOC_MEM(base, VR_P, bitsize);
Cy_Crypto_Core_Vu_SetMemValue (base, VR_P, eccDp->order, bitsize);
/* check that key is smaller than the order of the base point */
if (!Cy_Crypto_Core_Vu_IsRegLess(base, VR_D, VR_P))
{
/* private key (random data) >= order, needs reduction */
CY_CRYPTO_VU_ALLOC_MEM(base, VR_BARRETT, bitsize + 1u);
Cy_Crypto_Core_Vu_SetMemValue (base, VR_BARRETT, eccDp->barrett_o, bitsize + 1u);
CY_CRYPTO_VU_ALLOC_MEM(base, p_temp, bitsize);
CY_CRYPTO_VU_MOV(base, p_temp, VR_D);
/* use Barrett reduction algorithm for operations modulo n (order of the base point) */
Cy_Crypto_Core_EC_NistP_SetRedAlg(eccDp->algo);
Cy_Crypto_Core_EC_NistP_SetMode(bitsize);
/* z = x % mod */
Cy_Crypto_Core_EC_Bar_MulRed(base, VR_D, p_temp, bitsize);
CY_CRYPTO_VU_FREE_MEM(base, CY_CRYPTO_VU_REG_BIT(VR_BARRETT) |
CY_CRYPTO_VU_REG_BIT(p_temp));
}
CY_CRYPTO_VU_FREE_MEM(base, CY_CRYPTO_VU_REG_BIT(VR_P));
Cy_Crypto_Core_Vu_GetMemValue(base, (uint8_t *)key, VR_D, bitsize);
tmpResult = CY_CRYPTO_SUCCESS;
}
CY_CRYPTO_VU_FREE_MEM(base, CY_CRYPTO_VU_REG_BIT(VR_D) | CY_CRYPTO_VU_REG_BIT(p_key));
}
return (tmpResult);
}
/*******************************************************************************
* Function Name: Cy_Crypto_Core_ECC_MakePublicKey
****************************************************************************//**
*
* Make a new ECC public key
*
* \param base
* The pointer to a Crypto instance.
*
* \param curveID
* See \ref cy_en_crypto_ecc_curve_id_t.
*
* \param privateKey
* [out] Destination of the newly created key.
*
* \param publicKey
* See \ref cy_stc_crypto_ecc_key.
*
* \return status code. See \ref cy_en_crypto_status_t.
*
*******************************************************************************/
cy_en_crypto_status_t Cy_Crypto_Core_ECC_MakePublicKey(CRYPTO_Type *base,
cy_en_crypto_ecc_curve_id_t curveID,
const uint8_t *privateKey,
cy_stc_crypto_ecc_key *publicKey)
{
cy_en_crypto_status_t tmpResult = CY_CRYPTO_BAD_PARAMS;
cy_stc_crypto_ecc_dp_type *eccDp = Cy_Crypto_Core_ECC_GetCurveParams(curveID);
if ((eccDp != NULL) && (privateKey != NULL) && (publicKey != NULL) &&
(publicKey->pubkey.x != NULL) && (publicKey->pubkey.y != NULL))
{
uint32_t bitsize = eccDp->size;
uint32_t p_order = 9u; /* order of the curve */
uint32_t p_d = 10u; /* private key */
uint32_t p_x = 11u; /* x coordinate */
uint32_t p_y = 12u; /* y coordinate */
/* make the public key
* EC scalar multiplication - X,Y-only co-Z arithmetic
*/
CY_CRYPTO_VU_ALLOC_MEM(base, VR_P, bitsize);
CY_CRYPTO_VU_ALLOC_MEM(base, p_order, bitsize);
CY_CRYPTO_VU_ALLOC_MEM(base, VR_BARRETT, bitsize + 1u);
CY_CRYPTO_VU_ALLOC_MEM(base, p_x, bitsize);
CY_CRYPTO_VU_ALLOC_MEM(base, p_y, bitsize);
/* Apply domain parameters */
/* load prime and order defining the curve as well as the barrett coefficient. */
/* P and BARRETT_U are "globally" defined in cy_crypto_core_ecc.h */
Cy_Crypto_Core_Vu_SetMemValue (base, VR_P, eccDp->prime, bitsize);
Cy_Crypto_Core_Vu_SetMemValue (base, p_order, eccDp->order, bitsize);
Cy_Crypto_Core_Vu_SetMemValue (base, VR_BARRETT, eccDp->barrett_p, bitsize + 1u);
/*Base Point, G = (p_x, p_y) */
Cy_Crypto_Core_Vu_SetMemValue (base, p_x, eccDp->Gx, bitsize);
Cy_Crypto_Core_Vu_SetMemValue (base, p_y, eccDp->Gy, bitsize);
Cy_Crypto_Core_EC_NistP_SetMode(bitsize);
Cy_Crypto_Core_EC_NistP_SetRedAlg(eccDp->algo);
/* Load private key */
CY_CRYPTO_VU_ALLOC_MEM(base, p_d, bitsize);
Cy_Crypto_Core_Vu_SetMemValue(base, p_d, (uint8_t *)privateKey, bitsize);
Cy_Crypto_Core_EC_NistP_PointMul(base, p_x, p_y, p_d, p_order, bitsize);
Cy_Crypto_Core_Vu_GetMemValue(base, (uint8_t *)publicKey->pubkey.x, p_x, bitsize);
Cy_Crypto_Core_Vu_GetMemValue(base, (uint8_t *)publicKey->pubkey.y, p_y, bitsize);
publicKey->type = PK_PUBLIC;
publicKey->curveID = curveID;
CY_CRYPTO_VU_FREE_MEM(base, CY_CRYPTO_VU_REG_BIT(VR_P) |
CY_CRYPTO_VU_REG_BIT(p_order) | CY_CRYPTO_VU_REG_BIT(VR_BARRETT) |
CY_CRYPTO_VU_REG_BIT(p_x) | CY_CRYPTO_VU_REG_BIT(p_y) |
CY_CRYPTO_VU_REG_BIT(p_d));
tmpResult = CY_CRYPTO_SUCCESS;
}
return (tmpResult);
}
#if defined(__cplusplus)
}
#endif
#endif /* CY_IP_MXCRYPTO */
/* [] END OF FILE */