/src/tpm2/ECDH_KeyGen.c

Source
// This file was extracted from the TCG Published
// Trusted Platform Module Library
// Part 3: Commands
// Family "2.0"
// Level 00 Revision 01.16
// October 30, 2014

#include "InternalRoutines.h"
#include "ECDH_KeyGen_fp.h"
#ifdef TPM_ALG_ECC
//
//
//     Error Returns                     Meaning
//
//     TPM_RC_ATTRIBUTES                 If the key is restricted or the key is not a decryption key
//     TPM_RC_KEY                        keyHandle does not reference a non-restricted decryption ECC key
//
TPM_RC
TPM2_ECDH_KeyGen(
   ECDH_KeyGen_In        *in,                 // IN: input parameter list
   ECDH_KeyGen_Out       *out                 // OUT: output parameter list
   )
{
   OBJECT                    *eccKey;
   TPM2B_ECC_PARAMETER        sensitive;
   TPM_RC                     result;

// Input Validation

   eccKey = ObjectGet(in->keyHandle);

   // Input key must be a non-restricted, decrypt ECC key
   if(   eccKey->publicArea.type != TPM_ALG_ECC)
       return TPM_RC_KEY + RC_ECDH_KeyGen_keyHandle;

   if(     eccKey->publicArea.objectAttributes.restricted == SET
      ||   eccKey->publicArea.objectAttributes.decrypt != SET
     )
       return TPM_RC_ATTRIBUTES + RC_ECDH_KeyGen_keyHandle;

// Command Output
   do
   {
       // Create ephemeral ECC key
       CryptNewEccKey(eccKey->publicArea.parameters.eccDetail.curveID,
                      &out->pubPoint.t.point, &sensitive);

       out->pubPoint.t.size = TPMS_ECC_POINT_Marshal(&out->pubPoint.t.point,
                              NULL, NULL);

       // Compute Z
       result = CryptEccPointMultiply(&out->zPoint.t.point,
                                  eccKey->publicArea.parameters.eccDetail.curveID,
                                  &sensitive, &eccKey->publicArea.unique.ecc);
       // The point in the key is not on the curve. Indicate that the key is bad.
       if(result == TPM_RC_ECC_POINT)
           return TPM_RC_KEY + RC_ECDH_KeyGen_keyHandle;
       // The other possible error is TPM_RC_NO_RESULT indicating that the
       // multiplication resulted in the point at infinity, so get a new
       // random key and start over (hardly ever happens).
   }
   while(result == TPM_RC_NO_RESULT);

   if(result == TPM_RC_SUCCESS)
       // Marshal the values to generate the point.
       out->zPoint.t.size = TPMS_ECC_POINT_Marshal(&out->zPoint.t.point,
                                                   NULL, NULL);

   return result;
}
#endif

Coverage Report

Created: 2025-10-10 06:20

Line	Count	Source
1		// This file was extracted from the TCG Published
2		// Trusted Platform Module Library
3		// Part 3: Commands
4		// Family "2.0"
5		// Level 00 Revision 01.16
6		// October 30, 2014
7
8		#include "InternalRoutines.h"
9		#include "ECDH_KeyGen_fp.h"
10		#ifdef TPM_ALG_ECC
11		//
12		//
13		// Error Returns Meaning
14		//
15		// TPM_RC_ATTRIBUTES If the key is restricted or the key is not a decryption key
16		// TPM_RC_KEY keyHandle does not reference a non-restricted decryption ECC key
17		//
18		TPM_RC
19		TPM2_ECDH_KeyGen(
20		ECDH_KeyGen_In *in, // IN: input parameter list
21		ECDH_KeyGen_Out *out // OUT: output parameter list
22		)
23	0	{
24	0	OBJECT *eccKey;
25	0	TPM2B_ECC_PARAMETER sensitive;
26	0	TPM_RC result;
27
28		// Input Validation
29
30	0	eccKey = ObjectGet(in->keyHandle);
31
32		// Input key must be a non-restricted, decrypt ECC key
33	0	if( eccKey->publicArea.type != TPM_ALG_ECC)
34	0	return TPM_RC_KEY + RC_ECDH_KeyGen_keyHandle;
35
36	0	if( eccKey->publicArea.objectAttributes.restricted == SET
37	0	\|\| eccKey->publicArea.objectAttributes.decrypt != SET
38	0	)
39	0	return TPM_RC_ATTRIBUTES + RC_ECDH_KeyGen_keyHandle;
40
41		// Command Output
42	0	do
43	0	{
44		// Create ephemeral ECC key
45	0	CryptNewEccKey(eccKey->publicArea.parameters.eccDetail.curveID,
46	0	&out->pubPoint.t.point, &sensitive);
47
48	0	out->pubPoint.t.size = TPMS_ECC_POINT_Marshal(&out->pubPoint.t.point,
49	0	NULL, NULL);
50
51		// Compute Z
52	0	result = CryptEccPointMultiply(&out->zPoint.t.point,
53	0	eccKey->publicArea.parameters.eccDetail.curveID,
54	0	&sensitive, &eccKey->publicArea.unique.ecc);
55		// The point in the key is not on the curve. Indicate that the key is bad.
56	0	if(result == TPM_RC_ECC_POINT)
57	0	return TPM_RC_KEY + RC_ECDH_KeyGen_keyHandle;
58		// The other possible error is TPM_RC_NO_RESULT indicating that the
59		// multiplication resulted in the point at infinity, so get a new
60		// random key and start over (hardly ever happens).
61	0	}
62	0	while(result == TPM_RC_NO_RESULT);
63
64	0	if(result == TPM_RC_SUCCESS)
65		// Marshal the values to generate the point.
66	0	out->zPoint.t.size = TPMS_ECC_POINT_Marshal(&out->zPoint.t.point,
67	0	NULL, NULL);
68
69	0	return result;
70	0	}
71		#endif