dearsky/pico-hsm
1
0
Fork 0
Code Issues 17 Pull Requests 4 Actions Packages Projects Releases 26 Wiki Activity

Added key domains for device initialization and dkek import.

Browse Source 
Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
This commit is contained in:
Pol Henarejos
2022-05-23 20:06:06 +02:00
parent 7de0121db5
commit 7b5cb48dcc
5 changed files with 54 additions and 35 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/hsm/dkek.c
View File

@@ -37,7 +37,7 @@ extern uint8_t session_pin[32];
int load_dkek() {
if (has_session_pin == false)
return CCID_NO_LOGIN;
file_t *tf = search_by_fid(EF_DKEK, NULL, SPECIFY_EF);
file_t *tf = search_dynamic_file(EF_DKEK);
if (!tf)
return CCID_ERR_FILE_NOT_FOUND;
memcpy(dkek, file_read(tf->data+sizeof(uint16_t)), IV_SIZE+32);
@@ -58,7 +58,7 @@ void init_dkek() {
int store_dkek_key() {
aes_encrypt_cfb_256(session_pin, dkek, dkek+IV_SIZE, 32);
file_t *tf = search_by_fid(EF_DKEK, NULL, SPECIFY_EF);
file_t *tf = search_dynamic_file(EF_DKEK);
if (!tf)
return CCID_ERR_FILE_NOT_FOUND;
flash_write_data_to_file(tf, dkek, sizeof(dkek));