Gitiles
Code Review Sign In
git01.mediatek.com / filogic / atf / fa2fd897f06fa0bad2af76d39951bde0877e2d57 / . / tools / cert_create / include / key.h
blob: 312575b44aef480c77d7a4b73a595065857f442e [file] [log] [blame]
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]1/*
Juan Pablo Conde3539c742022-10-25 19:41:02 -0400[diff] [blame]2 * Copyright (c) 2015-2022, Arm Limited and Contributors. All rights reserved.
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]3 *
dp-armfa3cf0b2017-05-03 09:38:09 +0100[diff] [blame]4 * SPDX-License-Identifier: BSD-3-Clause
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]5 */
6
Antonio Nino Diaz5eb88372018-11-08 10:20:19 +0000[diff] [blame]7#ifndef KEY_H
8#define KEY_H
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]9
10#include <openssl/ossl_typ.h>
11
Juan Castillof9f39c32015-06-01 16:34:23 +0100[diff] [blame]12/* Error codes */
13enum {
14 KEY_ERR_NONE,
15 KEY_ERR_MALLOC,
16 KEY_ERR_FILENAME,
17 KEY_ERR_OPEN,
18 KEY_ERR_LOAD
19};
20
21/* Supported key algorithms */
22enum {
Soby Mathew2fd70f62017-08-31 11:50:29 +0100[diff] [blame]23 KEY_ALG_RSA, /* RSA PSS as defined by PKCS#1 v2.1 (default) */
Juan Castilloa2224ab2015-06-30 13:36:57 +0100[diff] [blame]24#ifndef OPENSSL_NO_EC
Lionel Debievefefeffb2022-11-14 11:03:42 +0100[diff] [blame]25 KEY_ALG_ECDSA_NIST,
26 KEY_ALG_ECDSA_BRAINPOOL_R,
27 KEY_ALG_ECDSA_BRAINPOOL_T,
Juan Castilloa2224ab2015-06-30 13:36:57 +0100[diff] [blame]28#endif /* OPENSSL_NO_EC */
29 KEY_ALG_MAX_NUM
Juan Castillof9f39c32015-06-01 16:34:23 +0100[diff] [blame]30};
31
Justin Chadwellfebe86c2019-07-29 17:13:45 +0100[diff] [blame]32/* Maximum number of valid key sizes per algorithm */
33#define KEY_SIZE_MAX_NUM 4
34
Qixiang Xu76a5a9b2017-11-09 13:51:58 +0800[diff] [blame]35/* Supported hash algorithms */
36enum{
37 HASH_ALG_SHA256,
38 HASH_ALG_SHA384,
39 HASH_ALG_SHA512,
40};
41
Justin Chadwellfebe86c2019-07-29 17:13:45 +0100[diff] [blame]42/* Supported key sizes */
43/* NOTE: the first item in each array is the default key size */
44static const unsigned int KEY_SIZES[KEY_ALG_MAX_NUM][KEY_SIZE_MAX_NUM] = {
45 { 2048, 1024, 3072, 4096 }, /* KEY_ALG_RSA */
Justin Chadwellfebe86c2019-07-29 17:13:45 +0100[diff] [blame]46#ifndef OPENSSL_NO_EC
Lionel Debievefefeffb2022-11-14 11:03:42 +0100[diff] [blame]47 {}, /* KEY_ALG_ECDSA_NIST */
48 {}, /* KEY_ALG_ECDSA_BRAINPOOL_R */
49 {} /* KEY_ALG_ECDSA_BRAINPOOL_T */
Justin Chadwellfebe86c2019-07-29 17:13:45 +0100[diff] [blame]50#endif /* OPENSSL_NO_EC */
51};
52
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]53/*
54 * This structure contains the relevant information to create the keys
55 * required to sign the certificates.
56 *
57 * One instance of this structure must be created for each key, usually in an
58 * array fashion. The filename is obtained at run time from the command line
59 * parameters
60 */
61typedef struct key_s {
62 int id; /* Key id */
Juan Castillo1218dd52015-07-03 16:23:16 +0100[diff] [blame]63 const char *opt; /* Command line option to specify a key */
Juan Castillo212f7382015-12-15 16:37:57 +0000[diff] [blame]64 const char *help_msg; /* Help message */
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]65 const char *desc; /* Key description (debug purposes) */
66 char *fn; /* Filename to load/store the key */
67 EVP_PKEY *key; /* Key container */
68} key_t;
69
Juan Castilloe6d30e92015-06-12 11:27:59 +0100[diff] [blame]70/* Exported API */
Juan Castillo1218dd52015-07-03 16:23:16 +0100[diff] [blame]71int key_init(void);
72key_t *key_get_by_opt(const char *opt);
Juan Pablo Conde3539c742022-10-25 19:41:02 -0400[diff] [blame]73#if !USING_OPENSSL3
Masahiro Yamadabccb1092017-02-06 21:15:01 +0900[diff] [blame]74int key_new(key_t *key);
Juan Pablo Conde3539c742022-10-25 19:41:02 -0400[diff] [blame]75#endif
Justin Chadwellfebe86c2019-07-29 17:13:45 +0100[diff] [blame]76int key_create(key_t *key, int type, int key_bits);
Juan Castillof9f39c32015-06-01 16:34:23 +0100[diff] [blame]77int key_load(key_t *key, unsigned int *err_code);
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]78int key_store(key_t *key);
Juan Pablo Conde3539c742022-10-25 19:41:02 -0400[diff] [blame]79void key_cleanup(void);
Juan Castillo11abdcd2014-10-21 11:30:42 +0100[diff] [blame]80
Juan Castilloe6d30e92015-06-12 11:27:59 +0100[diff] [blame]81/* Macro to register the keys used in the CoT */
82#define REGISTER_KEYS(_keys) \
Pankaj Guptadd906e62020-12-09 14:02:38 +0530[diff] [blame]83 key_t *def_keys = &_keys[0]; \
84 const unsigned int num_def_keys = sizeof(_keys)/sizeof(_keys[0])
85
86/* Macro to register the platform defined keys used in the CoT */
87#define PLAT_REGISTER_KEYS(_pdef_keys) \
88 key_t *pdef_keys = &_pdef_keys[0]; \
89 const unsigned int num_pdef_keys = sizeof(_pdef_keys)/sizeof(_pdef_keys[0])
Juan Castilloe6d30e92015-06-12 11:27:59 +0100[diff] [blame]90
91/* Exported variables */
Pankaj Guptadd906e62020-12-09 14:02:38 +0530[diff] [blame]92extern key_t *def_keys;
93extern const unsigned int num_def_keys;
94extern key_t *pdef_keys;
95extern const unsigned int num_pdef_keys;
Juan Castilloe6d30e92015-06-12 11:27:59 +0100[diff] [blame]96
Pankaj Guptadd906e62020-12-09 14:02:38 +0530[diff] [blame]97extern key_t *keys;
98extern unsigned int num_keys;
Antonio Nino Diaz5eb88372018-11-08 10:20:19 +0000[diff] [blame]99#endif /* KEY_H */