security.h

Go to the documentation of this file.

 
#ifndef INFUSE_SDK_INCLUDE_INFUSE_SECURITY_H_
#define INFUSE_SDK_INCLUDE_INFUSE_SECURITY_H_
 
#include <stdint.h>
#include <stdbool.h>
 
#include <zephyr/net/tls_credentials.h>
 
#include <psa/crypto_types.h>
 
#ifdef __cplusplus
extern "C" {
#endif
 
int infuse_security_init(void);
 
void infuse_security_disable_dap(void);
 
psa_key_attributes_t infuse_security_hkdf_attributes(void);
 
void infuse_security_cloud_public_key(uint8_t public_key[32]);
 
void infuse_security_device_public_key(uint8_t public_key[32]);
 
psa_key_id_t infuse_security_device_root_key(void);
 
psa_key_id_t infuse_security_device_sign_key(void);
 
psa_key_id_t infuse_security_network_root_key(void);
 
psa_key_id_t infuse_security_secondary_network_root_key(void);
 
sec_tag_t infuse_security_coap_dtls_tag(void);
 
struct infuse_security_key_params {
        psa_key_id_t base_key;
        psa_algorithm_t algorithm;
        psa_key_type_t key_type;
        size_t key_bits;
        psa_key_usage_t key_usage;
        const void *salt;
        size_t salt_len;
        const void *info;
        size_t info_len;
        bool force_export;
};
 
psa_key_id_t infuse_security_derive_key(const struct infuse_security_key_params *params);
 
psa_key_id_t infuse_security_derive_chacha_key(psa_key_id_t base_key, const void *salt,
                                               size_t salt_len, const void *info, size_t info_len,
                                               bool force_export);
 
uint32_t infuse_security_device_key_identifier(void);
 
uint32_t infuse_security_network_key_identifier(void);
 
uint32_t infuse_security_secondary_network_key_identifier(void);
 
#ifdef __cplusplus
}
#endif
 
#endif /* INFUSE_SDK_INCLUDE_INFUSE_SECURITY_H_ */