mbedtls/include/psa
Gilles Peskine 224b0d656a Key derivation: allow both keys and direct inputs
Allow a direct input as the SECRET input step in a key derivation, in
addition to allowing DERIVE keys. This makes it easier for
applications to run a key derivation where the "secret" input is
obtained from somewhere else. This makes it possible for the "secret"
input to be empty (keys cannot be empty), which some protocols do (for
example the IV derivation in EAP-TLS).

Conversely, allow a RAW_DATA key as the INFO/LABEL/SALT/SEED input to a key
derivation, in addition to allowing direct inputs. This doesn't
improve security, but removes a step when a personalization parameter
is stored in the key store, and allows this personalization parameter
to remain opaque.

Add test cases that explore step/key-type-and-keyhood combinations.
2019-09-24 18:39:03 +02:00
..
crypto.h Key derivation: allow both keys and direct inputs 2019-09-24 18:39:03 +02:00
crypto_accel_driver.h Pacify check-names.sh 2019-03-06 18:29:57 +01:00
crypto_driver_common.h Split crypto_driver.h into one for each driver type 2018-12-21 18:17:10 +01:00
crypto_entropy_driver.h Doxygen changes to match the code changes. clarifications. 2019-02-15 17:23:42 -06:00
crypto_extra.h Add backward compatibility alias for PSA_ERROR_CORRUPTION_DETECTED 2019-09-06 17:48:56 +02:00
crypto_platform.h Merge pull request #139 from Patater/des-faster-and-typo-fix 2019-09-04 12:18:39 +01:00
crypto_se_driver.h Update import_key and generate_key SE methods to the current API 2019-08-09 16:43:35 +02:00
crypto_sizes.h Merge remote-tracking branch 'upstream-crypto/development' into psa-api-1.0-beta-merge_development_20190801 2019-07-31 17:47:49 +02:00
crypto_struct.h Merge pull request #232 from Patater/psa-crypto-api-1.0b3 2019-08-29 13:50:10 +01:00
crypto_types.h Clarify how key creation functions use attributes and what 0 means 2019-09-12 17:38:19 +02:00
crypto_values.h Key derivation: allow both keys and direct inputs 2019-09-24 18:39:03 +02:00