ledger-secure-sdk/cx__pbkdf2_8h_source.html

 /*******************************************************************************

  *   Ledger Nano S - Secure firmware

  *   (c) 2022 Ledger

  *

  *  Licensed under the Apache License, Version 2.0 (the "License");

  *  you may not use this file except in compliance with the License.

  *  You may obtain a copy of the License at

  *

  *      http://www.apache.org/licenses/LICENSE-2.0

  *

  *  Unless required by applicable law or agreed to in writing, software

  *  distributed under the License is distributed on an "AS IS" BASIS,

  *  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  *  See the License for the specific language governing permissions and

  *  limitations under the License.

  ********************************************************************************/


 #ifndef CX_PBKDF2_H

 #define CX_PBKDF2_H


 #ifdef HAVE_PBKDF2


 #include "lcx_hmac.h"


 #include <stddef.h>

 #include <stdint.h>


 #define PBKDF2_BUFFER_LENGTH 64


 /* ========= PBKDF2 ========= */

 struct cx_pbkdf2_s {

     // salt buffer used to initialize each pbkdf2 turn.

     uint8_t salt[384];

     uint8_t sha512out[64];  // avoid stack usage in derive_and_set_seed


     uint8_t work[PBKDF2_BUFFER_LENGTH];

     uint8_t md1[PBKDF2_BUFFER_LENGTH];

     union {

 #if !defined(HAVE_SHA512) && !defined(HAVE_SHA384) && !defined(HAVE_SHA256) && !defined(HAVE_SHA224)

 #error No hmac defined for pbkdf2 support

 #endif


         cx_hmac_t hmac_ctx;


 #if defined(HAVE_HMAC) && (defined(HAVE_SHA512) || defined(HAVE_SHA384))

         cx_hmac_sha512_t hmac_sha512;

 #endif


 #if defined(HAVE_HMAC) && (defined(HAVE_SHA256) || defined(HAVE_SHA224))

         cx_hmac_sha256_t hmac_sha256;

 #endif

     };

 };

 typedef struct cx_pbkdf2_s cx_pbkdf2_t;


 WARN_UNUSED_RESULT cx_err_t cx_pbkdf2_hmac(cx_md_t        md_type,

                                            const uint8_t *password,

                                            size_t         password_len,

                                            const uint8_t *salt,

                                            size_t         salt_len,

                                            uint32_t       iterations,

                                            uint8_t       *key,

                                            size_t         key_len);


 #endif  // HAVE_PBKDF2


 #endif  // CX_PBKDF2_H

lcx_hmac.h
HMAC (Keyed-Hash Message Authentication Code)

uint8_t
unsigned char uint8_t
Definition: usbd_conf.h:53