blob: 0f064c093d41a762c5d726cc2c15e0804652d890 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
|
/* SPDX-License-Identifier: BSD-2-Clause */
/*
* Copyright (c) 2014, Linaro Limited
* All rights reserved.
*/
#ifndef TEE_API_DEFINES_EXTENSIONS_H
#define TEE_API_DEFINES_EXTENSIONS_H
/*
* HMAC-based Extract-and-Expand Key Derivation Function (HKDF)
*/
#define TEE_ALG_HKDF_MD5_DERIVE_KEY 0x800010C0
#define TEE_ALG_HKDF_SHA1_DERIVE_KEY 0x800020C0
#define TEE_ALG_HKDF_SHA224_DERIVE_KEY 0x800030C0
#define TEE_ALG_HKDF_SHA256_DERIVE_KEY 0x800040C0
#define TEE_ALG_HKDF_SHA384_DERIVE_KEY 0x800050C0
#define TEE_ALG_HKDF_SHA512_DERIVE_KEY 0x800060C0
#define TEE_TYPE_HKDF_IKM 0xA10000C0
#define TEE_ATTR_HKDF_IKM 0xC00001C0
#define TEE_ATTR_HKDF_SALT 0xD00002C0
#define TEE_ATTR_HKDF_INFO 0xD00003C0
#define TEE_ATTR_HKDF_OKM_LENGTH 0xF00004C0
/*
* Concatenation Key Derivation Function (Concat KDF)
* NIST SP 800-56A section 5.8.1
*/
#define TEE_ALG_CONCAT_KDF_SHA1_DERIVE_KEY 0x800020C1
#define TEE_ALG_CONCAT_KDF_SHA224_DERIVE_KEY 0x800030C1
#define TEE_ALG_CONCAT_KDF_SHA256_DERIVE_KEY 0x800040C1
#define TEE_ALG_CONCAT_KDF_SHA384_DERIVE_KEY 0x800050C1
#define TEE_ALG_CONCAT_KDF_SHA512_DERIVE_KEY 0x800060C1
#define TEE_TYPE_CONCAT_KDF_Z 0xA10000C1
#define TEE_ATTR_CONCAT_KDF_Z 0xC00001C1
#define TEE_ATTR_CONCAT_KDF_OTHER_INFO 0xD00002C1
#define TEE_ATTR_CONCAT_KDF_DKM_LENGTH 0xF00003C1
/*
* PKCS #5 v2.0 Key Derivation Function 2 (PBKDF2)
* RFC 2898 section 5.2
* https://www.ietf.org/rfc/rfc2898.txt
*/
#define TEE_ALG_PBKDF2_HMAC_SHA1_DERIVE_KEY 0x800020C2
#define TEE_TYPE_PBKDF2_PASSWORD 0xA10000C2
#define TEE_ATTR_PBKDF2_PASSWORD 0xC00001C2
#define TEE_ATTR_PBKDF2_SALT 0xD00002C2
#define TEE_ATTR_PBKDF2_ITERATION_COUNT 0xF00003C2
#define TEE_ATTR_PBKDF2_DKM_LENGTH 0xF00004C2
/*
* Implementation-specific object storage constants
*/
/* Storage is provided by the Rich Execution Environment (REE) */
#define TEE_STORAGE_PRIVATE_REE 0x80000000
/* Storage is the Replay Protected Memory Block partition of an eMMC device */
#define TEE_STORAGE_PRIVATE_RPMB 0x80000100
/* Was TEE_STORAGE_PRIVATE_SQL, which isn't supported any longer */
#define TEE_STORAGE_PRIVATE_SQL_RESERVED 0x80000200
/*
* Extension of "Memory Access Rights Constants"
* #define TEE_MEMORY_ACCESS_READ 0x00000001
* #define TEE_MEMORY_ACCESS_WRITE 0x00000002
* #define TEE_MEMORY_ACCESS_ANY_OWNER 0x00000004
*
* TEE_MEMORY_ACCESS_NONSECURE : if set TEE_CheckMemoryAccessRights()
* successfully returns only if target vmem range is mapped non-secure.
*
* TEE_MEMORY_ACCESS_SECURE : if set TEE_CheckMemoryAccessRights()
* successfully returns only if target vmem range is mapped secure.
*/
#define TEE_MEMORY_ACCESS_NONSECURE 0x10000000
#define TEE_MEMORY_ACCESS_SECURE 0x20000000
#endif /* TEE_API_DEFINES_EXTENSIONS_H */
|
