When a key is generated and stored, it creates its PRKD.

Signed-off-by: Pol Henarejos <pol.henarejos@cttc.es>
2026-01-17 09:28:05 +00:00 · 2023-11-13 15:33:27 +01:00 · 2023-11-13 15:33:27 +01:00 · e96e1d0097
commit e96e1d0097
parent 4d47f0224e
2 changed files with 21 additions and 0 deletions
--- a/src/hsm/cvc.h
+++ b/src/hsm/cvc.h
@ -94,4 +94,12 @@ extern size_t asn1_build_prkd_aes(const uint8_t *label,
                                  size_t keysize,
                                  uint8_t *buf,
                                  size_t buf_len);
+extern size_t asn1_build_prkd_generic(const uint8_t *label,
+                                  size_t label_len,
+                                  const uint8_t *keyid,
+                                  size_t keyid_len,
+                                  size_t keysize,
+                                  int key_tpe,
+                                  uint8_t *buf,
+                                  size_t buf_len);
 #endif
--- a/src/hsm/sc_hsm.c
+++ b/src/hsm/sc_hsm.c
@ -539,6 +539,19 @@ int store_keys(void *key_ctx, int type, uint8_t key_id) {
    if (r != CCID_OK) {
        return r;
    }
+    char key_id_str[4] = {0};
+    sprintf(key_id_str, "%u", key_id);
+    if (type & PICO_KEYS_KEY_EC) {
+        key_size--;
+    }
+    size_t prkd_len = asn1_build_prkd_generic(NULL, 0, (uint8_t *)key_id_str, strlen(key_id_str), key_size * 8, type, kdata, sizeof(kdata));
+    if (prkd_len > 0) {
+        fpk = file_new((PRKD_PREFIX << 8) | key_id);
+        r = flash_write_data_to_file(fpk, kdata, prkd_len);
+        if (r != 0) {
+            return SW_EXEC_ERROR();
+        }
+    }
    low_flash_available();
    return CCID_OK;
 }