include/lac/cpa_cy_key.h

78ee8d1cSJulian Grajkowski/***************************************************************************
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *   BSD LICENSE
78ee8d1cSJulian Grajkowski *
266b0663SKrzysztof Zdziarski *   Copyright(c) 2007-2023 Intel Corporation. All rights reserved.
78ee8d1cSJulian Grajkowski *   All rights reserved.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *   Redistribution and use in source and binary forms, with or without
78ee8d1cSJulian Grajkowski *   modification, are permitted provided that the following conditions
78ee8d1cSJulian Grajkowski *   are met:
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *     * Redistributions of source code must retain the above copyright
78ee8d1cSJulian Grajkowski *       notice, this list of conditions and the following disclaimer.
78ee8d1cSJulian Grajkowski *     * Redistributions in binary form must reproduce the above copyright
78ee8d1cSJulian Grajkowski *       notice, this list of conditions and the following disclaimer in
78ee8d1cSJulian Grajkowski *       the documentation and/or other materials provided with the
78ee8d1cSJulian Grajkowski *       distribution.
78ee8d1cSJulian Grajkowski *     * Neither the name of Intel Corporation nor the names of its
78ee8d1cSJulian Grajkowski *       contributors may be used to endorse or promote products derived
78ee8d1cSJulian Grajkowski *       from this software without specific prior written permission.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *   THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
78ee8d1cSJulian Grajkowski *   "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
78ee8d1cSJulian Grajkowski *   LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
78ee8d1cSJulian Grajkowski *   A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
78ee8d1cSJulian Grajkowski *   OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
78ee8d1cSJulian Grajkowski *   SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
78ee8d1cSJulian Grajkowski *   LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
78ee8d1cSJulian Grajkowski *   DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
78ee8d1cSJulian Grajkowski *   THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
78ee8d1cSJulian Grajkowski *   (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
78ee8d1cSJulian Grajkowski *   OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ***************************************************************************/
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/*
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * Doxygen group definitions
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @file cpa_cy_key.h
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @defgroup cpaCyKeyGen Cryptographic Key and Mask Generation API
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @ingroup cpaCy
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      These functions specify the API for key and mask generation
78ee8d1cSJulian Grajkowski *      operations.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski#ifndef CPA_CY_KEY_H
78ee8d1cSJulian Grajkowski#define CPA_CY_KEY_H
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski#ifdef __cplusplus
78ee8d1cSJulian Grajkowskiextern "C" {
78ee8d1cSJulian Grajkowski#endif
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski#include "cpa_cy_common.h"
78ee8d1cSJulian Grajkowski#include "cpa_cy_sym.h" /* needed for hash algorithm, for MGF */
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      SSL or TLS key generation random number length.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      Defines the permitted SSL or TLS random number length in bytes that
78ee8d1cSJulian Grajkowski *      may be used with the functions @ref cpaCyKeyGenSsl and @ref
78ee8d1cSJulian Grajkowski *      cpaCyKeyGenTls.   This is the length of the client or server random
78ee8d1cSJulian Grajkowski *      number values.
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowski#define CPA_CY_KEY_GEN_SSL_TLS_RANDOM_LEN_IN_BYTES   (32)
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      SSL Operation Types
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      Enumeration of the different SSL operations that can be specified in
78ee8d1cSJulian Grajkowski *      the struct @ref CpaCyKeyGenSslOpData.  It identifies the label.
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef enum _CpaCyKeySslOp
78ee8d1cSJulian Grajkowski{
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_SSL_OP_MASTER_SECRET_DERIVE = 1,
78ee8d1cSJulian Grajkowski    /**< Derive the master secret */
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_SSL_OP_KEY_MATERIAL_DERIVE,
78ee8d1cSJulian Grajkowski    /**< Derive the key material */
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_SSL_OP_USER_DEFINED
78ee8d1cSJulian Grajkowski    /**< User Defined Operation for custom labels*/
78ee8d1cSJulian Grajkowski} CpaCyKeySslOp;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      SSL data for key generation functions
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains data for use in key generation operations for
78ee8d1cSJulian Grajkowski *      SSL. For specific SSL key generation operations, the structure fields
78ee8d1cSJulian Grajkowski *      MUST be set as follows:
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par SSL Master-Secret Derivation:
78ee8d1cSJulian Grajkowski *          <br> sslOp = CPA_CY_KEY_SSL_OP_MASTER_SECRET_DERIVE
78ee8d1cSJulian Grajkowski *          <br> secret = pre-master secret key
78ee8d1cSJulian Grajkowski *          <br> seed = client_random + server_random
78ee8d1cSJulian Grajkowski *          <br> userLabel = NULL
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par SSL Key-Material Derivation:
78ee8d1cSJulian Grajkowski *          <br> sslOp = CPA_CY_KEY_SSL_OP_KEY_MATERIAL_DERIVE
78ee8d1cSJulian Grajkowski *          <br> secret = master secret key
78ee8d1cSJulian Grajkowski *          <br> seed = server_random + client_random
78ee8d1cSJulian Grajkowski *          <br> userLabel = NULL
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *          <br> Note that the client/server random order is reversed from that
78ee8d1cSJulian Grajkowski *          used for master-secret derivation.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @note Each of the client and server random numbers need to be of
78ee8d1cSJulian Grajkowski *      length CPA_CY_KEY_GEN_SSL_TLS_RANDOM_LEN_IN_BYTES.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @note In each of the above descriptions, + indicates concatenation.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @note The label used is predetermined by the SSL operation in line
78ee8d1cSJulian Grajkowski *      with the SSL 3.0 specification, and can be overridden by using
78ee8d1cSJulian Grajkowski *      a user defined operation CPA_CY_KEY_SSL_OP_USER_DEFINED and
78ee8d1cSJulian Grajkowski *      associated userLabel.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenSslOpData {
78ee8d1cSJulian Grajkowski    CpaCyKeySslOp sslOp;
78ee8d1cSJulian Grajkowski    /**< Indicate the SSL operation to be performed */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer secret;
78ee8d1cSJulian Grajkowski    /**<  Flat buffer containing a pointer to either the master or pre-master
78ee8d1cSJulian Grajkowski     * secret key. The length field indicates the length of the secret key in
78ee8d1cSJulian Grajkowski     * bytes. Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer seed;
78ee8d1cSJulian Grajkowski    /**<  Flat buffer containing a pointer to the seed data.
78ee8d1cSJulian Grajkowski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer info;
78ee8d1cSJulian Grajkowski    /**<  Flat buffer containing a pointer to the info data.
78ee8d1cSJulian Grajkowski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    Cpa32U generatedKeyLenInBytes;
78ee8d1cSJulian Grajkowski    /**< The requested length of the generated key in bytes.
78ee8d1cSJulian Grajkowski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer userLabel;
78ee8d1cSJulian Grajkowski    /**<  Optional flat buffer containing a pointer to a user defined label.
78ee8d1cSJulian Grajkowski     * The length field indicates the length of the label in bytes. To use this
78ee8d1cSJulian Grajkowski     * field, the sslOp must be CPA_CY_KEY_SSL_OP_USER_DEFINED,
78ee8d1cSJulian Grajkowski     * or otherwise it is ignored and can be set to NULL.
266b0663SKrzysztof Zdziarski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenSslOpData;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Operation Types
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      Enumeration of the different TLS operations that can be specified in
78ee8d1cSJulian Grajkowski *      the CpaCyKeyGenTlsOpData.  It identifies the label.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The functions @ref cpaCyKeyGenTls and @ref cpaCyKeyGenTls2
78ee8d1cSJulian Grajkowski *      accelerate the TLS PRF, which is defined as part of RFC2246 (TLS
78ee8d1cSJulian Grajkowski *      v1.0), RFC4346 (TLS v1.1), and RFC5246 (TLS v1.2).
78ee8d1cSJulian Grajkowski *      One of the inputs to each of these functions is a label.
78ee8d1cSJulian Grajkowski *      This enumerated type defines values that correspond to some of
78ee8d1cSJulian Grajkowski *      the required labels.
78ee8d1cSJulian Grajkowski *      However, for some of the operations/labels required by these RFCs,
78ee8d1cSJulian Grajkowski *      no values are specified.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      In such cases, a user-defined value must be provided.  The client
78ee8d1cSJulian Grajkowski *      should use the enum value @ref CPA_CY_KEY_TLS_OP_USER_DEFINED, and
78ee8d1cSJulian Grajkowski *      pass the label using the userLabel field of the @ref
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenTlsOpData data structure.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef enum _CpaCyKeyTlsOp
78ee8d1cSJulian Grajkowski{
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_TLS_OP_MASTER_SECRET_DERIVE = 1,
78ee8d1cSJulian Grajkowski    /**< Derive the master secret using the TLS PRF.
78ee8d1cSJulian Grajkowski     * Corresponds to RFC2246/5246 section 8.1, operation "Computing the
78ee8d1cSJulian Grajkowski     * master secret", label "master secret". */
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_TLS_OP_KEY_MATERIAL_DERIVE,
78ee8d1cSJulian Grajkowski    /**< Derive the key material using the TLS PRF.
78ee8d1cSJulian Grajkowski     * Corresponds to RFC2246/5246 section 6.3, operation "Derive the key
78ee8d1cSJulian Grajkowski     * material", label "key expansion". */
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_TLS_OP_CLIENT_FINISHED_DERIVE,
78ee8d1cSJulian Grajkowski    /**< Derive the client finished tag using the TLS PRF.
78ee8d1cSJulian Grajkowski     * Corresponds to RFC2246/5246 section 7.4.9, operation "Client finished",
78ee8d1cSJulian Grajkowski     * label "client finished". */
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_TLS_OP_SERVER_FINISHED_DERIVE,
78ee8d1cSJulian Grajkowski    /**< Derive the server finished tag using the TLS PRF.
78ee8d1cSJulian Grajkowski     * Corresponds to RFC2246/5246 section 7.4.9, operation "Server finished",
78ee8d1cSJulian Grajkowski     * label "server finished". */
78ee8d1cSJulian Grajkowski    CPA_CY_KEY_TLS_OP_USER_DEFINED
78ee8d1cSJulian Grajkowski    /**< User Defined Operation for custom labels. */
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski} CpaCyKeyTlsOp;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @file cpa_cy_key.h
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Operation Types
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      Enumeration of the different TLS operations that can be specified in
78ee8d1cSJulian Grajkowski *      the CpaCyKeyGenHKDFOpData.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The function @ref cpaCyKeyGenTls3
78ee8d1cSJulian Grajkowski *      accelerates the TLS HKDF, which is defined as part of RFC5869 (HKDF)
78ee8d1cSJulian Grajkowski *      and RFC8446 (TLS v1.3).
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      This enumerated type defines the support HKDF operations for
78ee8d1cSJulian Grajkowski *      extraction and expansion of keying material.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef enum _CpaCyKeyHKDFOp
78ee8d1cSJulian Grajkowski{
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_KEY_EXTRACT = 12,
78ee8d1cSJulian Grajkowski    /**< HKDF Extract operation
78ee8d1cSJulian Grajkowski     * Corresponds to RFC5869 section 2.2, step 1 "Extract" */
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_KEY_EXPAND,
78ee8d1cSJulian Grajkowski    /**< HKDF Expand operation
78ee8d1cSJulian Grajkowski     * Corresponds to RFC5869 section 2.3, step 2 "Expand" */
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_KEY_EXTRACT_EXPAND,
78ee8d1cSJulian Grajkowski    /**< HKDF operation
78ee8d1cSJulian Grajkowski     * This performs HKDF_EXTRACT and HKDF_EXPAND in a single
78ee8d1cSJulian Grajkowski     * API invocation. */
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_KEY_EXPAND_LABEL ,
78ee8d1cSJulian Grajkowski    /**< HKDF Expand label operation for TLS 1.3
78ee8d1cSJulian Grajkowski     * Corresponds to RFC8446 section 7.1 Key Schedule definition for
78ee8d1cSJulian Grajkowski     * HKDF-Expand-Label, which refers to HKDF-Expand defined in RFC5869. */
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_KEY_EXTRACT_EXPAND_LABEL
78ee8d1cSJulian Grajkowski    /**< HKDF Extract plus Expand label operation for TLS 1.3
78ee8d1cSJulian Grajkowski     * Corresponds to  RFC5869 section 2.2, step 1 "Extract" followed by
78ee8d1cSJulian Grajkowski     * RFC8446 section 7.1 Key Schedule definition for
78ee8d1cSJulian Grajkowski     * HKDF-Expand-Label, which refers to HKDF-Expand defined in RFC5869. */
78ee8d1cSJulian Grajkowski} CpaCyKeyHKDFOp;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @file cpa_cy_key.h
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Operation Types
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      Enumeration of the different cipher suites that may be used in a TLS
78ee8d1cSJulian Grajkowski *      v1.3 operation.  This value is used to infer the sizes of the key
78ee8d1cSJulian Grajkowski *      and iv sublabel.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The function @ref cpaCyKeyGenTls3
78ee8d1cSJulian Grajkowski *      accelerates the TLS HKDF, which is defined as part of RFC5869 (HKDF)
78ee8d1cSJulian Grajkowski *      and RFC8446 (TLS v1.3).
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      This enumerated type defines the supported cipher suites in the
78ee8d1cSJulian Grajkowski *      TLS operation that require HKDF key operations.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef enum _CpaCyKeyHKDFCipherSuite
78ee8d1cSJulian Grajkowski{
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_TLS_AES_128_GCM_SHA256 = 1,
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_TLS_AES_256_GCM_SHA384,
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_TLS_CHACHA20_POLY1305_SHA256 ,
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_TLS_AES_128_CCM_SHA256,
78ee8d1cSJulian Grajkowski    CPA_CY_HKDF_TLS_AES_128_CCM_8_SHA256
78ee8d1cSJulian Grajkowski} CpaCyKeyHKDFCipherSuite;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @file cpa_cy_key.h
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Operation Types
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      Bitwise constants for HKDF sublabels
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      These definitions provide bit settings for sublabels for
78ee8d1cSJulian Grajkowski *      HKDF-ExpandLabel operations.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      <br> key             sublabel to generate "key" keying material
78ee8d1cSJulian Grajkowski *      <br> iv              sublabel to generate "iv" keying material
78ee8d1cSJulian Grajkowski *      <br> resumption      sublabel to generate "resumption" keying material
78ee8d1cSJulian Grajkowski *      <br> finished        sublabel to generate "finished" keying material
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski#define    CPA_CY_HKDF_SUBLABEL_KEY                   ((Cpa16U)0x0001)
78ee8d1cSJulian Grajkowski        /**< Bit for creation of key material for 'key' sublabel */
78ee8d1cSJulian Grajkowski#define    CPA_CY_HKDF_SUBLABEL_IV                    ((Cpa16U)0x0002)
78ee8d1cSJulian Grajkowski        /**< Bit for creation of key material for 'iv' sublabel */
78ee8d1cSJulian Grajkowski#define    CPA_CY_HKDF_SUBLABEL_RESUMPTION            ((Cpa16U)0x0004)
78ee8d1cSJulian Grajkowski        /**< Bit for creation of key material for 'resumption' sublabel */
78ee8d1cSJulian Grajkowski#define    CPA_CY_HKDF_SUBLABEL_FINISHED              ((Cpa16U)0x0008)
78ee8d1cSJulian Grajkowski        /**< Bit for creation of key material for 'finished' sublabel */
78ee8d1cSJulian Grajkowski
266b0663SKrzysztof Zdziarski#define CPA_CY_HKDF_KEY_MAX_SECRET_SZ   ((Cpa8U)80)
78ee8d1cSJulian Grajkowski        /** space in bytes PSK or (EC)DH */
78ee8d1cSJulian Grajkowski#define CPA_CY_HKDF_KEY_MAX_HMAC_SZ     ((Cpa8U)48)
78ee8d1cSJulian Grajkowski        /** space in bytes of CPA_CY_SYM_HASH_SHA384 result */
78ee8d1cSJulian Grajkowski#define CPA_CY_HKDF_KEY_MAX_INFO_SZ     ((Cpa8U)80)
78ee8d1cSJulian Grajkowski        /** space in bytes of largest info needed for TLS 1.3,
78ee8d1cSJulian Grajkowski          * rounded up to multiple of 8 */
78ee8d1cSJulian Grajkowski#define CPA_CY_HKDF_KEY_MAX_LABEL_SZ    ((Cpa8U)78)
78ee8d1cSJulian Grajkowski        /** space in bytes of largest label for TLS 1.3 */
78ee8d1cSJulian Grajkowski#define CPA_CY_HKDF_KEY_MAX_LABEL_COUNT ((Cpa8U)4)
78ee8d1cSJulian Grajkowski        /** Maximum number of labels in op structure */
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @file cpa_cy_key.h
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS data for key generation functions
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains data for describing label for the
78ee8d1cSJulian Grajkowski *      HKDF Extract Label function
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par Extract Label Function
78ee8d1cSJulian Grajkowski *          <br> labelLen = length of the label field
78ee8d1cSJulian Grajkowski *          <br> contextLen = length of the context field
78ee8d1cSJulian Grajkowski *          <br> sublabelFlag = Mask of sub labels required for this label.
78ee8d1cSJulian Grajkowski *          <br> label = label as defined in RFC8446
78ee8d1cSJulian Grajkowski *          <br> context = context as defined in RFC8446
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenHKDFExpandLabel
78ee8d1cSJulian Grajkowski{
78ee8d1cSJulian Grajkowski    Cpa8U label[CPA_CY_HKDF_KEY_MAX_LABEL_SZ];
78ee8d1cSJulian Grajkowski    /**< HKDFLabel field as defined in RFC8446 sec 7.1.
78ee8d1cSJulian Grajkowski      */
78ee8d1cSJulian Grajkowski    Cpa8U   labelLen;
78ee8d1cSJulian Grajkowski    /**< The length, in bytes of the label */
78ee8d1cSJulian Grajkowski    Cpa8U   sublabelFlag;
78ee8d1cSJulian Grajkowski    /**< mask of sublabels to be generated.
78ee8d1cSJulian Grajkowski      *  This flag is composed of zero or more of:
78ee8d1cSJulian Grajkowski      *    CPA_CY_HKDF_SUBLABEL_KEY
78ee8d1cSJulian Grajkowski      *    CPA_CY_HKDF_SUBLABEL_IV
78ee8d1cSJulian Grajkowski      *    CPA_CY_HKDF_SUBLABEL_RESUMPTION
78ee8d1cSJulian Grajkowski      *    CPA_CY_HKDF_SUBLABEL_FINISHED
78ee8d1cSJulian Grajkowski      */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenHKDFExpandLabel;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS data for key generation functions
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains data for all HKDF operations:
78ee8d1cSJulian Grajkowski *          <br> HKDF Extract
78ee8d1cSJulian Grajkowski *          <br> HKDF Expand
78ee8d1cSJulian Grajkowski *          <br> HKDF Expand Label
78ee8d1cSJulian Grajkowski *          <br> HKDF Extract and Expand
78ee8d1cSJulian Grajkowski *          <br> HKDF Extract and Expand Label
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par HKDF Map Structure Elements
78ee8d1cSJulian Grajkowski *          <br> secret - IKM value for extract operations or PRK for expand
78ee8d1cSJulian Grajkowski *                        or expand operations.
78ee8d1cSJulian Grajkowski *          <br> seed -   contains the salt for extract
78ee8d1cSJulian Grajkowski *                        operations
78ee8d1cSJulian Grajkowski *          <br> info -   contains the info data for extract operations
78ee8d1cSJulian Grajkowski *          <br> labels - See notes above
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenHKDFOpData
78ee8d1cSJulian Grajkowski{
78ee8d1cSJulian Grajkowski    CpaCyKeyHKDFOp hkdfKeyOp;
78ee8d1cSJulian Grajkowski    /**< Keying operation to be performed. */
78ee8d1cSJulian Grajkowski    Cpa8U secretLen;
78ee8d1cSJulian Grajkowski    /**< Length of secret field */
78ee8d1cSJulian Grajkowski    Cpa16U seedLen;
78ee8d1cSJulian Grajkowski    /**< Length of seed field */
78ee8d1cSJulian Grajkowski    Cpa16U infoLen;
78ee8d1cSJulian Grajkowski    /**< Length of info field */
78ee8d1cSJulian Grajkowski    Cpa16U numLabels;
78ee8d1cSJulian Grajkowski    /**< Number of filled CpaCyKeyGenHKDFExpandLabel elements */
78ee8d1cSJulian Grajkowski    Cpa8U secret[CPA_CY_HKDF_KEY_MAX_SECRET_SZ];
78ee8d1cSJulian Grajkowski    /**< Input Key Material or PRK */
78ee8d1cSJulian Grajkowski    Cpa8U seed[CPA_CY_HKDF_KEY_MAX_HMAC_SZ];
78ee8d1cSJulian Grajkowski    /**< Input salt */
78ee8d1cSJulian Grajkowski    Cpa8U info[CPA_CY_HKDF_KEY_MAX_INFO_SZ];
78ee8d1cSJulian Grajkowski    /**< info field */
78ee8d1cSJulian Grajkowski    CpaCyKeyGenHKDFExpandLabel label[CPA_CY_HKDF_KEY_MAX_LABEL_COUNT];
78ee8d1cSJulian Grajkowski    /**< array of Expand Label structures */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenHKDFOpData;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS data for key generation functions
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains data for use in key generation operations for
78ee8d1cSJulian Grajkowski *      TLS. For specific TLS key generation operations, the structure fields
78ee8d1cSJulian Grajkowski *      MUST be set as follows:
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par TLS Master-Secret Derivation:
78ee8d1cSJulian Grajkowski *          <br> tlsOp = CPA_CY_KEY_TLS_OP_MASTER_SECRET_DERIVE
78ee8d1cSJulian Grajkowski *          <br> secret = pre-master secret key
78ee8d1cSJulian Grajkowski *          <br> seed = client_random + server_random
78ee8d1cSJulian Grajkowski *          <br> userLabel = NULL
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par TLS Key-Material Derivation:
78ee8d1cSJulian Grajkowski *          <br> tlsOp = CPA_CY_KEY_TLS_OP_KEY_MATERIAL_DERIVE
78ee8d1cSJulian Grajkowski *          <br> secret = master secret key
78ee8d1cSJulian Grajkowski *          <br> seed = server_random + client_random
78ee8d1cSJulian Grajkowski *          <br> userLabel = NULL
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *          <br> Note that the client/server random order is reversed from
78ee8d1cSJulian Grajkowski *          that used for Master-Secret Derivation.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @par TLS Client finished/Server finished tag Derivation:
78ee8d1cSJulian Grajkowski *          <br> tlsOp = CPA_CY_KEY_TLS_OP_CLIENT_FINISHED_DERIVE  (client)
78ee8d1cSJulian Grajkowski *          <br>      or CPA_CY_KEY_TLS_OP_SERVER_FINISHED_DERIVE  (server)
78ee8d1cSJulian Grajkowski *          <br> secret = master secret key
78ee8d1cSJulian Grajkowski *          <br> seed = MD5(handshake_messages) + SHA-1(handshake_messages)
78ee8d1cSJulian Grajkowski *          <br> userLabel = NULL
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @note Each of the client and server random seeds need to be of
78ee8d1cSJulian Grajkowski *      length CPA_CY_KEY_GEN_SSL_TLS_RANDOM_LEN_IN_BYTES.
78ee8d1cSJulian Grajkowski *      @note In each of the above descriptions, + indicates concatenation.
78ee8d1cSJulian Grajkowski *      @note The label used is predetermined by the TLS operation in line
78ee8d1cSJulian Grajkowski *      with the TLS specifications, and can be overridden by using
78ee8d1cSJulian Grajkowski *      a user defined operation CPA_CY_KEY_TLS_OP_USER_DEFINED
78ee8d1cSJulian Grajkowski *      and associated userLabel.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenTlsOpData {
78ee8d1cSJulian Grajkowski    CpaCyKeyTlsOp tlsOp;
78ee8d1cSJulian Grajkowski    /**< TLS operation to be performed */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer secret;
78ee8d1cSJulian Grajkowski    /**< Flat buffer containing a pointer to either the master or pre-master
78ee8d1cSJulian Grajkowski     * secret key. The length field indicates the length of the secret in
78ee8d1cSJulian Grajkowski     * bytes.  */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer seed;
78ee8d1cSJulian Grajkowski    /**< Flat buffer containing a pointer to the seed data.
78ee8d1cSJulian Grajkowski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    Cpa32U generatedKeyLenInBytes;
78ee8d1cSJulian Grajkowski    /**< The requested length of the generated key in bytes.
78ee8d1cSJulian Grajkowski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    CpaFlatBuffer userLabel;
78ee8d1cSJulian Grajkowski    /**< Optional flat buffer containing a pointer to a user defined label.
78ee8d1cSJulian Grajkowski     * The length field indicates the length of the label in bytes. To use this
78ee8d1cSJulian Grajkowski     * field, the tlsOp must be CPA_CY_KEY_TLS_OP_USER_DEFINED.
78ee8d1cSJulian Grajkowski         * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenTlsOpData;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Key Generation Mask Generation Function (MGF) Data
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains data relating to Mask Generation Function
78ee8d1cSJulian Grajkowski *      key generation operations.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @note The default hash algorithm used by the MGF is SHA-1.  If a
78ee8d1cSJulian Grajkowski *      different hash algorithm is preferred, then see the extended
78ee8d1cSJulian Grajkowski *      version of this structure, @ref CpaCyKeyGenMgfOpDataExt.
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *        cpaCyKeyGenMgf
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenMgfOpData {
78ee8d1cSJulian Grajkowski    CpaFlatBuffer seedBuffer;
78ee8d1cSJulian Grajkowski    /**<  Caller MUST allocate a buffer and populate with the input seed
78ee8d1cSJulian Grajkowski     * data. For optimal performance the start of the seed SHOULD be allocated
78ee8d1cSJulian Grajkowski     * on an 8-byte boundary. The length field represents the seed length in
78ee8d1cSJulian Grajkowski     * bytes.  Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski    Cpa32U maskLenInBytes;
78ee8d1cSJulian Grajkowski    /**< The requested length of the generated mask in bytes.
78ee8d1cSJulian Grajkowski     * Implementation-specific limits may apply to this length. */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenMgfOpData;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Extension to the original Key Generation Mask Generation Function
78ee8d1cSJulian Grajkowski *      (MGF) Data
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure is an extension to the original MGF data structure.
78ee8d1cSJulian Grajkowski *      The extension allows the hash function to be specified.
78ee8d1cSJulian Grajkowski * @note
78ee8d1cSJulian Grajkowski *      This structure is separate from the base @ref CpaCyKeyGenMgfOpData
78ee8d1cSJulian Grajkowski *      structure in order to retain backwards compatibility with the
78ee8d1cSJulian Grajkowski *      original version of the API.
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *        cpaCyKeyGenMgfExt
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenMgfOpDataExt {
78ee8d1cSJulian Grajkowski    CpaCyKeyGenMgfOpData baseOpData;
78ee8d1cSJulian Grajkowski    /**<  "Base" operational data for MGF generation */
78ee8d1cSJulian Grajkowski    CpaCySymHashAlgorithm hashAlgorithm;
78ee8d1cSJulian Grajkowski    /**< Specifies the hash algorithm to be used by the Mask Generation
78ee8d1cSJulian Grajkowski     * Function */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenMgfOpDataExt;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Key Generation Statistics.
78ee8d1cSJulian Grajkowski * @deprecated
78ee8d1cSJulian Grajkowski *      As of v1.3 of the Crypto API, this structure has been deprecated,
78ee8d1cSJulian Grajkowski *      replaced by @ref CpaCyKeyGenStats64.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains statistics on the key and mask generation
78ee8d1cSJulian Grajkowski *      operations. Statistics are set to zero when the component is
78ee8d1cSJulian Grajkowski *      initialized, and are collected per instance.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenStats {
78ee8d1cSJulian Grajkowski    Cpa32U numSslKeyGenRequests;
78ee8d1cSJulian Grajkowski    /**< Total number of successful SSL key generation requests. */
78ee8d1cSJulian Grajkowski    Cpa32U numSslKeyGenRequestErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of SSL key generation requests that had an error and
78ee8d1cSJulian Grajkowski     *   could not be processed. */
78ee8d1cSJulian Grajkowski    Cpa32U numSslKeyGenCompleted;
78ee8d1cSJulian Grajkowski    /**< Total number of SSL key generation operations that completed
78ee8d1cSJulian Grajkowski     *   successfully. */
78ee8d1cSJulian Grajkowski    Cpa32U numSslKeyGenCompletedErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of SSL key generation operations that could not be
78ee8d1cSJulian Grajkowski     *   completed successfully due to errors. */
78ee8d1cSJulian Grajkowski    Cpa32U numTlsKeyGenRequests;
78ee8d1cSJulian Grajkowski    /**< Total number of successful TLS key generation requests. */
78ee8d1cSJulian Grajkowski    Cpa32U numTlsKeyGenRequestErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of TLS key generation requests that had an error and
78ee8d1cSJulian Grajkowski     *   could not be processed. */
78ee8d1cSJulian Grajkowski    Cpa32U numTlsKeyGenCompleted;
78ee8d1cSJulian Grajkowski    /**< Total number of TLS key generation operations that completed
78ee8d1cSJulian Grajkowski     *   successfully. */
78ee8d1cSJulian Grajkowski    Cpa32U numTlsKeyGenCompletedErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of TLS key generation operations that could not be
78ee8d1cSJulian Grajkowski     *   completed successfully due to errors. */
78ee8d1cSJulian Grajkowski    Cpa32U numMgfKeyGenRequests;
78ee8d1cSJulian Grajkowski    /**< Total number of successful MGF key generation requests (including
78ee8d1cSJulian Grajkowski     *   "extended" MGF requests). */
78ee8d1cSJulian Grajkowski    Cpa32U numMgfKeyGenRequestErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of MGF key generation requests that had an error and
78ee8d1cSJulian Grajkowski     *   could not be processed. */
78ee8d1cSJulian Grajkowski    Cpa32U numMgfKeyGenCompleted;
78ee8d1cSJulian Grajkowski    /**< Total number of MGF key generation operations that completed
78ee8d1cSJulian Grajkowski     *   successfully. */
78ee8d1cSJulian Grajkowski    Cpa32U numMgfKeyGenCompletedErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of MGF key generation operations that could not be
78ee8d1cSJulian Grajkowski     *   completed successfully due to errors. */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenStats CPA_DEPRECATED;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Key Generation Statistics (64-bit version).
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This structure contains the 64-bit version of the statistics
78ee8d1cSJulian Grajkowski *      on the key and mask generation operations.
78ee8d1cSJulian Grajkowski *      Statistics are set to zero when the component is
78ee8d1cSJulian Grajkowski *      initialized, and are collected per instance.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski ****************************************************************************/
78ee8d1cSJulian Grajkowskitypedef struct _CpaCyKeyGenStats64 {
78ee8d1cSJulian Grajkowski    Cpa64U numSslKeyGenRequests;
78ee8d1cSJulian Grajkowski    /**< Total number of successful SSL key generation requests. */
78ee8d1cSJulian Grajkowski    Cpa64U numSslKeyGenRequestErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of SSL key generation requests that had an error and
78ee8d1cSJulian Grajkowski     *   could not be processed. */
78ee8d1cSJulian Grajkowski    Cpa64U numSslKeyGenCompleted;
78ee8d1cSJulian Grajkowski    /**< Total number of SSL key generation operations that completed
78ee8d1cSJulian Grajkowski     *   successfully. */
78ee8d1cSJulian Grajkowski    Cpa64U numSslKeyGenCompletedErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of SSL key generation operations that could not be
78ee8d1cSJulian Grajkowski     *   completed successfully due to errors. */
78ee8d1cSJulian Grajkowski    Cpa64U numTlsKeyGenRequests;
78ee8d1cSJulian Grajkowski    /**< Total number of successful TLS key generation requests. */
78ee8d1cSJulian Grajkowski    Cpa64U numTlsKeyGenRequestErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of TLS key generation requests that had an error and
78ee8d1cSJulian Grajkowski     *   could not be processed. */
78ee8d1cSJulian Grajkowski    Cpa64U numTlsKeyGenCompleted;
78ee8d1cSJulian Grajkowski    /**< Total number of TLS key generation operations that completed
78ee8d1cSJulian Grajkowski     *   successfully. */
78ee8d1cSJulian Grajkowski    Cpa64U numTlsKeyGenCompletedErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of TLS key generation operations that could not be
78ee8d1cSJulian Grajkowski     *   completed successfully due to errors. */
78ee8d1cSJulian Grajkowski    Cpa64U numMgfKeyGenRequests;
78ee8d1cSJulian Grajkowski    /**< Total number of successful MGF key generation requests (including
78ee8d1cSJulian Grajkowski     *   "extended" MGF requests). */
78ee8d1cSJulian Grajkowski    Cpa64U numMgfKeyGenRequestErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of MGF key generation requests that had an error and
78ee8d1cSJulian Grajkowski     *   could not be processed. */
78ee8d1cSJulian Grajkowski    Cpa64U numMgfKeyGenCompleted;
78ee8d1cSJulian Grajkowski    /**< Total number of MGF key generation operations that completed
78ee8d1cSJulian Grajkowski     *   successfully. */
78ee8d1cSJulian Grajkowski    Cpa64U numMgfKeyGenCompletedErrors;
78ee8d1cSJulian Grajkowski    /**< Total number of MGF key generation operations that could not be
78ee8d1cSJulian Grajkowski     *   completed successfully due to errors. */
78ee8d1cSJulian Grajkowski} CpaCyKeyGenStats64;
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      SSL Key Generation Function.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function is used for SSL key generation.  It implements the key
78ee8d1cSJulian Grajkowski *      generation function defined in section 6.2.2 of the SSL 3.0
78ee8d1cSJulian Grajkowski *      specification as described in
78ee8d1cSJulian Grajkowski *      http://www.mozilla.org/projects/security/pki/nss/ssl/draft302.txt.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The input seed is taken as a flat buffer and the generated key is
78ee8d1cSJulian Grajkowski *      returned to caller in a flat destination data buffer.
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      When called as an asynchronous function it cannot sleep. It can be
78ee8d1cSJulian Grajkowski *      executed in a context that does not permit sleeping.
78ee8d1cSJulian Grajkowski *      When called as a synchronous function it may sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      Yes when configured to operate in synchronous mode.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in] instanceHandle             Instance handle.
78ee8d1cSJulian Grajkowski * @param[in] pKeyGenCb                  Pointer to callback function to be
78ee8d1cSJulian Grajkowski *                                       invoked when the operation is complete.
78ee8d1cSJulian Grajkowski *                                       If this is set to a NULL value the
78ee8d1cSJulian Grajkowski *                                       function will operate synchronously.
78ee8d1cSJulian Grajkowski * @param[in] pCallbackTag               Opaque User Data for this specific
78ee8d1cSJulian Grajkowski *                                       call. Will be returned unchanged in the
78ee8d1cSJulian Grajkowski *                                       callback.
78ee8d1cSJulian Grajkowski * @param[in] pKeyGenSslOpData           Structure containing all the data
78ee8d1cSJulian Grajkowski *                                       needed to perform the SSL key
78ee8d1cSJulian Grajkowski *                                       generation operation. The client code
78ee8d1cSJulian Grajkowski *                                       allocates the memory for this
78ee8d1cSJulian Grajkowski *                                       structure. This component takes
78ee8d1cSJulian Grajkowski *                                       ownership of the memory until it is
78ee8d1cSJulian Grajkowski *                                       returned in the callback.
78ee8d1cSJulian Grajkowski * @param[out] pGeneratedKeyBuffer       Caller MUST allocate a sufficient
78ee8d1cSJulian Grajkowski *                                       buffer to hold the key generation
78ee8d1cSJulian Grajkowski *                                       output. The data pointer SHOULD be
78ee8d1cSJulian Grajkowski *                                       aligned on an 8-byte boundary. The
78ee8d1cSJulian Grajkowski *                                       length field passed in represents the
78ee8d1cSJulian Grajkowski *                                       size of the buffer in bytes. The value
78ee8d1cSJulian Grajkowski *                                       that is returned is the size of the
78ee8d1cSJulian Grajkowski *                                       result key in bytes.
78ee8d1cSJulian Grajkowski *                                       On invocation the callback function
78ee8d1cSJulian Grajkowski *                                       will contain this parameter in the
78ee8d1cSJulian Grajkowski *                                       pOut parameter.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS            Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL               Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RETRY              Resubmit the request.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM      Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE           Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING         API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                       Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      The component has been initialized via cpaCyStartInstance function.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenSslOpData,
78ee8d1cSJulian Grajkowski *      CpaCyGenFlatBufCbFunc
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenSsl(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        const CpaCyGenFlatBufCbFunc pKeyGenCb,
78ee8d1cSJulian Grajkowski        void *pCallbackTag,
78ee8d1cSJulian Grajkowski        const CpaCyKeyGenSslOpData *pKeyGenSslOpData,
78ee8d1cSJulian Grajkowski        CpaFlatBuffer *pGeneratedKeyBuffer);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Key Generation Function.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function is used for TLS key generation.  It implements the
78ee8d1cSJulian Grajkowski *      TLS PRF (Pseudo Random Function) as defined by RFC2246 (TLS v1.0)
78ee8d1cSJulian Grajkowski *      and RFC4346 (TLS v1.1).
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The input seed is taken as a flat buffer and the generated key is
78ee8d1cSJulian Grajkowski *      returned to caller in a flat destination data buffer.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      When called as an asynchronous function it cannot sleep. It can be
78ee8d1cSJulian Grajkowski *      executed in a context that does not permit sleeping.
78ee8d1cSJulian Grajkowski *      When called as a synchronous function it may sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      Yes when configured to operate in synchronous mode.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle            Instance handle.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenCb                 Pointer to callback function to be
78ee8d1cSJulian Grajkowski *                                       invoked when the operation is complete.
78ee8d1cSJulian Grajkowski *                                       If this is set to a NULL value the
78ee8d1cSJulian Grajkowski *                                       function will operate synchronously.
78ee8d1cSJulian Grajkowski * @param[in]  pCallbackTag              Opaque User Data for this specific
78ee8d1cSJulian Grajkowski *                                       call. Will be returned unchanged in the
78ee8d1cSJulian Grajkowski *                                       callback.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenTlsOpData          Structure containing all the data
78ee8d1cSJulian Grajkowski *                                       needed to perform the TLS key
78ee8d1cSJulian Grajkowski *                                       generation operation. The client code
78ee8d1cSJulian Grajkowski *                                       allocates the memory for this
78ee8d1cSJulian Grajkowski *                                       structure. This component takes
78ee8d1cSJulian Grajkowski *                                       ownership of the memory until it is
78ee8d1cSJulian Grajkowski *                                       returned in the callback.
78ee8d1cSJulian Grajkowski * @param[out] pGeneratedKeyBuffer       Caller MUST allocate a sufficient
78ee8d1cSJulian Grajkowski *                                       buffer to hold the key generation
78ee8d1cSJulian Grajkowski *                                       output. The data pointer SHOULD be
78ee8d1cSJulian Grajkowski *                                       aligned on an 8-byte boundary. The
78ee8d1cSJulian Grajkowski *                                       length field passed in represents the
78ee8d1cSJulian Grajkowski *                                       size of the buffer in bytes. The value
78ee8d1cSJulian Grajkowski *                                       that is returned is the size of the
78ee8d1cSJulian Grajkowski *                                       result key in bytes.
78ee8d1cSJulian Grajkowski *                                       On invocation the callback function
78ee8d1cSJulian Grajkowski *                                       will contain this parameter in the
78ee8d1cSJulian Grajkowski *                                       pOut parameter.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS            Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL               Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RETRY              Resubmit the request.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM      Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE           Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING         API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                       Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      The component has been initialized via cpaCyStartInstance function.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenTlsOpData,
78ee8d1cSJulian Grajkowski *      CpaCyGenFlatBufCbFunc
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenTls(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        const CpaCyGenFlatBufCbFunc pKeyGenCb,
78ee8d1cSJulian Grajkowski        void *pCallbackTag,
78ee8d1cSJulian Grajkowski        const CpaCyKeyGenTlsOpData *pKeyGenTlsOpData,
78ee8d1cSJulian Grajkowski        CpaFlatBuffer *pGeneratedKeyBuffer);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Key Generation Function version 2.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function is used for TLS key generation.  It implements the
78ee8d1cSJulian Grajkowski *      TLS PRF (Pseudo Random Function) as defined by RFC5246 (TLS v1.2).
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The input seed is taken as a flat buffer and the generated key is
78ee8d1cSJulian Grajkowski *      returned to caller in a flat destination data buffer.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      When called as an asynchronous function it cannot sleep. It can be
78ee8d1cSJulian Grajkowski *      executed in a context that does not permit sleeping.
78ee8d1cSJulian Grajkowski *      When called as a synchronous function it may sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      Yes when configured to operate in synchronous mode.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle            Instance handle.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenCb                 Pointer to callback function to be
78ee8d1cSJulian Grajkowski *                                       invoked when the operation is complete.
78ee8d1cSJulian Grajkowski *                                       If this is set to a NULL value the
78ee8d1cSJulian Grajkowski *                                       function will operate synchronously.
78ee8d1cSJulian Grajkowski * @param[in]  pCallbackTag              Opaque User Data for this specific
78ee8d1cSJulian Grajkowski *                                       call. Will be returned unchanged in the
78ee8d1cSJulian Grajkowski *                                       callback.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenTlsOpData          Structure containing all the data
78ee8d1cSJulian Grajkowski *                                       needed to perform the TLS key
78ee8d1cSJulian Grajkowski *                                       generation operation. The client code
78ee8d1cSJulian Grajkowski *                                       allocates the memory for this
78ee8d1cSJulian Grajkowski *                                       structure. This component takes
78ee8d1cSJulian Grajkowski *                                       ownership of the memory until it is
78ee8d1cSJulian Grajkowski *                                       returned in the callback.
78ee8d1cSJulian Grajkowski * @param[in]  hashAlgorithm             Specifies the hash algorithm to use.
78ee8d1cSJulian Grajkowski *                                       According to RFC5246, this should be
78ee8d1cSJulian Grajkowski *                                       "SHA-256 or a stronger standard hash
78ee8d1cSJulian Grajkowski *                                       function."
78ee8d1cSJulian Grajkowski * @param[out] pGeneratedKeyBuffer       Caller MUST allocate a sufficient
78ee8d1cSJulian Grajkowski *                                       buffer to hold the key generation
78ee8d1cSJulian Grajkowski *                                       output. The data pointer SHOULD be
78ee8d1cSJulian Grajkowski *                                       aligned on an 8-byte boundary. The
78ee8d1cSJulian Grajkowski *                                       length field passed in represents the
78ee8d1cSJulian Grajkowski *                                       size of the buffer in bytes. The value
78ee8d1cSJulian Grajkowski *                                       that is returned is the size of the
78ee8d1cSJulian Grajkowski *                                       result key in bytes.
78ee8d1cSJulian Grajkowski *                                       On invocation the callback function
78ee8d1cSJulian Grajkowski *                                       will contain this parameter in the
78ee8d1cSJulian Grajkowski *                                       pOut parameter.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS            Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL               Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RETRY              Resubmit the request.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM      Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE           Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING         API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                       Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      The component has been initialized via cpaCyStartInstance function.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenTlsOpData,
78ee8d1cSJulian Grajkowski *      CpaCyGenFlatBufCbFunc
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenTls2(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        const CpaCyGenFlatBufCbFunc pKeyGenCb,
78ee8d1cSJulian Grajkowski        void *pCallbackTag,
78ee8d1cSJulian Grajkowski        const CpaCyKeyGenTlsOpData *pKeyGenTlsOpData,
78ee8d1cSJulian Grajkowski        CpaCySymHashAlgorithm hashAlgorithm,
78ee8d1cSJulian Grajkowski        CpaFlatBuffer *pGeneratedKeyBuffer);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      TLS Key Generation Function version 3.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function is used for TLS key generation.  It implements the
78ee8d1cSJulian Grajkowski *      TLS HKDF (HMAC Key Derivation Function) as defined by
78ee8d1cSJulian Grajkowski *      RFC5689 (HKDF) and RFC8446 (TLS 1.3).
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      The input seed is taken as a flat buffer and the generated key is
78ee8d1cSJulian Grajkowski *      returned to caller in a flat destination data buffer.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      When called as an asynchronous function it cannot sleep. It can be
78ee8d1cSJulian Grajkowski *      executed in a context that does not permit sleeping.
78ee8d1cSJulian Grajkowski *      When called as a synchronous function it may sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      Yes when configured to operate in synchronous mode.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle            Instance handle.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenCb                 Pointer to callback function to be
78ee8d1cSJulian Grajkowski *                                       invoked when the operation is complete.
78ee8d1cSJulian Grajkowski *                                       If this is set to a NULL value the
78ee8d1cSJulian Grajkowski *                                       function will operate synchronously.
78ee8d1cSJulian Grajkowski * @param[in]  pCallbackTag              Opaque User Data for this specific
78ee8d1cSJulian Grajkowski *                                       call. Will be returned unchanged in the
78ee8d1cSJulian Grajkowski *                                       callback.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenTlsOpData          Structure containing all the data
78ee8d1cSJulian Grajkowski *                                       needed to perform the TLS key
78ee8d1cSJulian Grajkowski *                                       generation operation. The client code
78ee8d1cSJulian Grajkowski *                                       allocates the memory for this
78ee8d1cSJulian Grajkowski *                                       structure. This component takes
78ee8d1cSJulian Grajkowski *                                       ownership of the memory until it is
78ee8d1cSJulian Grajkowski *                                       returned in the callback. The memory
78ee8d1cSJulian Grajkowski *                                       must be pinned and contiguous, suitable
78ee8d1cSJulian Grajkowski *                                       for DMA operations.
78ee8d1cSJulian Grajkowski * @param[in]  hashAlgorithm             Specifies the hash algorithm to use.
78ee8d1cSJulian Grajkowski *                                       According to RFC5246, this should be
78ee8d1cSJulian Grajkowski *                                       "SHA-256 or a stronger standard hash
78ee8d1cSJulian Grajkowski *                                       function."
78ee8d1cSJulian Grajkowski * @param[out] pGeneratedKeyBuffer       Caller MUST allocate a sufficient
78ee8d1cSJulian Grajkowski *                                       buffer to hold the key generation
78ee8d1cSJulian Grajkowski *                                       output. The data pointer SHOULD be
78ee8d1cSJulian Grajkowski *                                       aligned on an 8-byte boundary. The
78ee8d1cSJulian Grajkowski *                                       length field passed in represents the
78ee8d1cSJulian Grajkowski *                                       size of the buffer in bytes. The value
78ee8d1cSJulian Grajkowski *                                       that is returned is the size of the
78ee8d1cSJulian Grajkowski *                                       result key in bytes.
78ee8d1cSJulian Grajkowski *                                       On invocation the callback function
78ee8d1cSJulian Grajkowski *                                       will contain this parameter in the
78ee8d1cSJulian Grajkowski *                                       pOut parameter.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS            Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL               Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RETRY              Resubmit the request.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM      Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE           Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING         API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                       Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      The component has been initialized via cpaCyStartInstance function.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyGenFlatBufCbFunc
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenHKDFOpData
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenTls3(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        const CpaCyGenFlatBufCbFunc pKeyGenCb,
78ee8d1cSJulian Grajkowski        void *pCallbackTag,
78ee8d1cSJulian Grajkowski        const CpaCyKeyGenHKDFOpData *pKeyGenTlsOpData,
78ee8d1cSJulian Grajkowski        CpaCyKeyHKDFCipherSuite cipherSuite,
78ee8d1cSJulian Grajkowski        CpaFlatBuffer *pGeneratedKeyBuffer);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Mask Generation Function.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function implements the mask generation function MGF1 as
78ee8d1cSJulian Grajkowski *      defined by PKCS#1 v2.1, and RFC3447.  The input seed is taken
78ee8d1cSJulian Grajkowski *      as a flat buffer and the generated mask is returned to caller in a
78ee8d1cSJulian Grajkowski *      flat destination data buffer.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      @note The default hash algorithm used by the MGF is SHA-1.  If a
78ee8d1cSJulian Grajkowski *      different hash algorithm is preferred, then see the "extended"
78ee8d1cSJulian Grajkowski *      version of this function, @ref cpaCyKeyGenMgfExt.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      When called as an asynchronous function it cannot sleep. It can be
78ee8d1cSJulian Grajkowski *      executed in a context that does not permit sleeping.
78ee8d1cSJulian Grajkowski *      When called as a synchronous function it may sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      Yes when configured to operate in synchronous mode.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle        Instance handle.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenCb             Pointer to callback function to be
78ee8d1cSJulian Grajkowski *                                   invoked when the operation is complete.
78ee8d1cSJulian Grajkowski *                                   If this is set to a NULL value the
78ee8d1cSJulian Grajkowski *                                   function will operate synchronously.
78ee8d1cSJulian Grajkowski * @param[in]  pCallbackTag          Opaque User Data for this specific call.
78ee8d1cSJulian Grajkowski *                                   Will be returned unchanged in the
78ee8d1cSJulian Grajkowski *                                   callback.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenMgfOpData      Structure containing all the data needed
78ee8d1cSJulian Grajkowski *                                   to perform the MGF key generation
78ee8d1cSJulian Grajkowski *                                   operation. The client code allocates the
78ee8d1cSJulian Grajkowski *                                   memory for this structure. This
78ee8d1cSJulian Grajkowski *                                   component takes ownership of the memory
78ee8d1cSJulian Grajkowski *                                   until it is returned in the callback.
78ee8d1cSJulian Grajkowski * @param[out] pGeneratedMaskBuffer  Caller MUST allocate a sufficient buffer
78ee8d1cSJulian Grajkowski *                                   to hold the generated mask. The data
78ee8d1cSJulian Grajkowski *                                   pointer SHOULD be aligned on an 8-byte
78ee8d1cSJulian Grajkowski *                                   boundary. The length field passed in
78ee8d1cSJulian Grajkowski *                                   represents the size of the buffer in
78ee8d1cSJulian Grajkowski *                                   bytes. The value that is returned is the
78ee8d1cSJulian Grajkowski *                                   size of the generated mask in bytes.
78ee8d1cSJulian Grajkowski *                                   On invocation the callback function
78ee8d1cSJulian Grajkowski *                                   will contain this parameter in the
78ee8d1cSJulian Grajkowski *                                   pOut parameter.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS           Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL              Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RETRY             Resubmit the request.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM     Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE          Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING        API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                      Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      The component has been initialized via cpaCyStartInstance function.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenMgfOpData,
78ee8d1cSJulian Grajkowski *      CpaCyGenFlatBufCbFunc
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenMgf(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        const CpaCyGenFlatBufCbFunc pKeyGenCb,
78ee8d1cSJulian Grajkowski        void *pCallbackTag,
78ee8d1cSJulian Grajkowski        const CpaCyKeyGenMgfOpData *pKeyGenMgfOpData,
78ee8d1cSJulian Grajkowski        CpaFlatBuffer *pGeneratedMaskBuffer);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Extended Mask Generation Function.
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function is used for mask generation. It differs from the "base"
78ee8d1cSJulian Grajkowski *      version of the function (@ref cpaCyKeyGenMgf) in that it allows
78ee8d1cSJulian Grajkowski *      the hash function used by the Mask Generation Function to be
78ee8d1cSJulian Grajkowski *      specified.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      When called as an asynchronous function it cannot sleep. It can be
78ee8d1cSJulian Grajkowski *      executed in a context that does not permit sleeping.
78ee8d1cSJulian Grajkowski *      When called as a synchronous function it may sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      Yes when configured to operate in synchronous mode.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle        Instance handle.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenCb             Pointer to callback function to be
78ee8d1cSJulian Grajkowski *                                   invoked when the operation is complete.
78ee8d1cSJulian Grajkowski *                                   If this is set to a NULL value the
78ee8d1cSJulian Grajkowski *                                   function will operate synchronously.
78ee8d1cSJulian Grajkowski * @param[in]  pCallbackTag          Opaque User Data for this specific call.
78ee8d1cSJulian Grajkowski *                                   Will be returned unchanged in the
78ee8d1cSJulian Grajkowski *                                   callback.
78ee8d1cSJulian Grajkowski * @param[in]  pKeyGenMgfOpDataExt   Structure containing all the data needed
78ee8d1cSJulian Grajkowski *                                   to perform the extended MGF key generation
78ee8d1cSJulian Grajkowski *                                   operation. The client code allocates the
78ee8d1cSJulian Grajkowski *                                   memory for this structure. This
78ee8d1cSJulian Grajkowski *                                   component takes ownership of the memory
78ee8d1cSJulian Grajkowski *                                   until it is returned in the callback.
78ee8d1cSJulian Grajkowski * @param[out] pGeneratedMaskBuffer  Caller MUST allocate a sufficient buffer
78ee8d1cSJulian Grajkowski *                                   to hold the generated mask. The data
78ee8d1cSJulian Grajkowski *                                   pointer SHOULD be aligned on an 8-byte
78ee8d1cSJulian Grajkowski *                                   boundary. The length field passed in
78ee8d1cSJulian Grajkowski *                                   represents the size of the buffer in
78ee8d1cSJulian Grajkowski *                                   bytes. The value that is returned is the
78ee8d1cSJulian Grajkowski *                                   size of the generated mask in bytes.
78ee8d1cSJulian Grajkowski *                                   On invocation the callback function
78ee8d1cSJulian Grajkowski *                                   will contain this parameter in the
78ee8d1cSJulian Grajkowski *                                   pOut parameter.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS           Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL              Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RETRY             Resubmit the request.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM     Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE          Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING        API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                      Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      The component has been initialized via cpaCyStartInstance function.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @note
78ee8d1cSJulian Grajkowski *      This function is only used to generate a mask keys from seed
78ee8d1cSJulian Grajkowski *      material.
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenMgfOpData,
78ee8d1cSJulian Grajkowski *      CpaCyGenFlatBufCbFunc
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenMgfExt(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        const CpaCyGenFlatBufCbFunc pKeyGenCb,
78ee8d1cSJulian Grajkowski        void *pCallbackTag,
78ee8d1cSJulian Grajkowski        const CpaCyKeyGenMgfOpDataExt *pKeyGenMgfOpDataExt,
78ee8d1cSJulian Grajkowski        CpaFlatBuffer *pGeneratedMaskBuffer);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Queries the Key and Mask generation statistics specific to
78ee8d1cSJulian Grajkowski *      an instance.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @deprecated
78ee8d1cSJulian Grajkowski *      As of v1.3 of the Crypto API, this function has been deprecated,
78ee8d1cSJulian Grajkowski *      replaced by @ref cpaCyKeyGenQueryStats64().
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function will query a specific instance for key and mask
78ee8d1cSJulian Grajkowski *      generation statistics. The user MUST allocate the CpaCyKeyGenStats
78ee8d1cSJulian Grajkowski *      structure and pass the reference to that into this function call. This
78ee8d1cSJulian Grajkowski *      function will write the statistic results into the passed in
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenStats structure.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      Note: statistics returned by this function do not interrupt current data
78ee8d1cSJulian Grajkowski *      processing and as such can be slightly out of sync with operations that
78ee8d1cSJulian Grajkowski *      are in progress during the statistics retrieval process.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      This is a synchronous function and it can sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      This function is synchronous and blocking.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle       Instance handle.
78ee8d1cSJulian Grajkowski * @param[out] pKeyGenStats         Pointer to memory into which the statistics
78ee8d1cSJulian Grajkowski *                                  will be written.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS        Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL           Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM  Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE       Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING     API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                   Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      Component has been initialized.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @note
78ee8d1cSJulian Grajkowski *      This function operates in a synchronous manner and no asynchronous
78ee8d1cSJulian Grajkowski *      callback will be generated.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenStats
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus CPA_DEPRECATED
78ee8d1cSJulian GrajkowskicpaCyKeyGenQueryStats(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        struct _CpaCyKeyGenStats *pKeyGenStats);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski/**
78ee8d1cSJulian Grajkowski *****************************************************************************
78ee8d1cSJulian Grajkowski * @ingroup cpaCyKeyGen
78ee8d1cSJulian Grajkowski *      Queries the Key and Mask generation statistics (64-bit version)
78ee8d1cSJulian Grajkowski *      specific to an instance.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @description
78ee8d1cSJulian Grajkowski *      This function will query a specific instance for key and mask
78ee8d1cSJulian Grajkowski *      generation statistics. The user MUST allocate the CpaCyKeyGenStats64
78ee8d1cSJulian Grajkowski *      structure and pass the reference to that into this function call. This
78ee8d1cSJulian Grajkowski *      function will write the statistic results into the passed in
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenStats64 structure.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski *      Note: statistics returned by this function do not interrupt current data
78ee8d1cSJulian Grajkowski *      processing and as such can be slightly out of sync with operations that
78ee8d1cSJulian Grajkowski *      are in progress during the statistics retrieval process.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @context
78ee8d1cSJulian Grajkowski *      This is a synchronous function and it can sleep. It MUST NOT be
78ee8d1cSJulian Grajkowski *      executed in a context that DOES NOT permit sleeping.
78ee8d1cSJulian Grajkowski * @assumptions
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @sideEffects
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @blocking
78ee8d1cSJulian Grajkowski *      This function is synchronous and blocking.
78ee8d1cSJulian Grajkowski * @reentrant
78ee8d1cSJulian Grajkowski *      No
78ee8d1cSJulian Grajkowski * @threadSafe
78ee8d1cSJulian Grajkowski *      Yes
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @param[in]  instanceHandle       Instance handle.
78ee8d1cSJulian Grajkowski * @param[out] pKeyGenStats         Pointer to memory into which the statistics
78ee8d1cSJulian Grajkowski *                                  will be written.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_SUCCESS        Function executed successfully.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_FAIL           Function failed.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_INVALID_PARAM  Invalid parameter passed in.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESOURCE       Error related to system resources.
78ee8d1cSJulian Grajkowski * @retval CPA_STATUS_RESTARTING     API implementation is restarting.
78ee8d1cSJulian Grajkowski *                                   Resubmit the request.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @pre
78ee8d1cSJulian Grajkowski *      Component has been initialized.
78ee8d1cSJulian Grajkowski * @post
78ee8d1cSJulian Grajkowski *      None
78ee8d1cSJulian Grajkowski * @note
78ee8d1cSJulian Grajkowski *      This function operates in a synchronous manner and no asynchronous
78ee8d1cSJulian Grajkowski *      callback will be generated.
78ee8d1cSJulian Grajkowski *
78ee8d1cSJulian Grajkowski * @see
78ee8d1cSJulian Grajkowski *      CpaCyKeyGenStats64
78ee8d1cSJulian Grajkowski *****************************************************************************/
78ee8d1cSJulian GrajkowskiCpaStatus
78ee8d1cSJulian GrajkowskicpaCyKeyGenQueryStats64(const CpaInstanceHandle instanceHandle,
78ee8d1cSJulian Grajkowski        CpaCyKeyGenStats64 *pKeyGenStats);
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski#ifdef __cplusplus
78ee8d1cSJulian Grajkowski} /* close the extern "C" { */
78ee8d1cSJulian Grajkowski#endif
78ee8d1cSJulian Grajkowski
78ee8d1cSJulian Grajkowski#endif /* CPA_CY_KEY_H */