Add public function generating private keys We need to separate the uses of the RNG for blinding and for key generation for the sake of an upcoming security fix in deterministic ECDSA.

commit: c80555d8359c736e01f9bd24ce37d4704f11950b [log] [tgz]
author: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Thu Apr 20 15:37:46 2017 +0200
committer: Janos Follath <janos.follath@arm.com> Wed Jan 16 15:47:26 2019 +0000
tree: 9e4cb9e3886ca1f11076252574d3fced74dc0b44
parent: 78f040cf333e8f2938b4581f11a015e474a4a250 [diff] [blame]
diff --git a/include/mbedtls/ecp.h b/include/mbedtls/ecp.h
index 7b8ffff..9c6db19 100644
--- a/include/mbedtls/ecp.h
+++ b/include/mbedtls/ecp.h

@@ -596,6 +596,22 @@
 int mbedtls_ecp_check_privkey( const mbedtls_ecp_group *grp, const mbedtls_mpi *d );
 
 /**
+ * \brief           Generate a private key
+ *
+ * \param grp       ECP group
+ * \param d         Destination MPI (secret part)
+ * \param f_rng     RNG function
+ * \param p_rng     RNG parameter
+ *
+ * \return          0 if successful,
+ *                  or a MBEDTLS_ERR_ECP_XXX or MBEDTLS_MPI_XXX error code
+ */
+int mbedtls_ecp_gen_privkey( const mbedtls_ecp_group *grp,
+                     mbedtls_mpi *d,
+                     int (*f_rng)(void *, unsigned char *, size_t),
+                     void *p_rng );
+
+/**
  * \brief           Generate a keypair with configurable base point
  *
  * \param grp       ECP group
commit	c80555d8359c736e01f9bd24ce37d4704f11950b	[log] [tgz]
author	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Thu Apr 20 15:37:46 2017 +0200
committer	Janos Follath <janos.follath@arm.com>	Wed Jan 16 15:47:26 2019 +0000
tree	9e4cb9e3886ca1f11076252574d3fced74dc0b44
parent	78f040cf333e8f2938b4581f11a015e474a4a250 [diff] [blame]