55 crypto-callback device. After registering at WC_DHUK_DEVID, bind an object
66 to the device by setting its devId at init (wc_AesInit / wc_ecc_init_ex) and
77 supply the per-key 256-bit seed as the key (wc_AesGcmSetKey) or via
8- wc_ecc_import_wrapped_private; normal wolfCrypt AES / GMAC / ECDSA calls then
9- run transparently with the working key derived inside the SAES. Available on
10- STM32 builds with WOLFSSL_DHUK, WOLF_CRYPTO_CB, and a DHUK-capable SAES
11- (WC_STM32_HAS_DHUK); on the CubeMX path it is also provided for CCB ECDSA.
8+ wc_ecc_import_wrapped_private; normal wolfCrypt AES / GMAC / ECDSA calls
9+ then run transparently with the working key derived inside the SAES.
10+ Available on STM32 builds with WOLFSSL_DHUK, WOLF_CRYPTO_CB, and a
11+ DHUK-capable SAES (WC_STM32_HAS_DHUK); on the CubeMX path it is also
12+ provided for CCB ECDSA.
1213
1314 \return 0 Returned on success.
1415 \return <0 A negative error code is returned if device registration fails.
@@ -35,8 +36,8 @@ int wc_Stm32_DhukRegister(int devId);
3536 \ingroup STM32
3637
3738 \brief This function unregisters the STM32 DHUK crypto-callback device that
38- was registered with wc_Stm32_DhukRegister. Call it once transparent DHUK / CCB
39- operations are complete.
39+ was registered with wc_Stm32_DhukRegister. Call it once transparent
40+ DHUK / CCB operations are complete.
4041
4142 \return none No return value.
4243
@@ -62,9 +63,9 @@ void wc_Stm32_DhukUnRegister(int devId);
6263 builds with WOLFSSL_DHUK and a DHUK-capable SAES.
6364
6465 \return 0 Returned on success.
65- \return BAD_FUNC_ARG Returned if a required pointer is NULL, if inSz is not a
66- supported block size, if the iv is non-NULL with ivSz != 16, or (software-key
67- path) if the wrapping key length is not 16 or 32.
66+ \return BAD_FUNC_ARG Returned if a required pointer is NULL, if inSz is
67+ not a supported block size, if the iv is non-NULL with ivSz != 16, or
68+ (software-key path) if the wrapping key length is not 16 or 32.
6869 \return <0 A negative error code may be returned on a hardware error.
6970
7071 \param aes pointer to an initialized Aes; aes->devId selects the wrap key.
@@ -86,10 +87,10 @@ int wc_Stm32_Aes_Wrap(struct Aes* aes, const byte* in, word32 inSz, byte* out,
8687 \brief This function brings up the STM32 CCB (Coupling and Chaining Bridge)
8788 peripheral and reports whether it is usable: it enables the CCB / PKA / SAES
8889 / RNG clocks, pulse-resets the engines, waits for BUSY to clear, and checks
89- for an operation error. Bare-metal only (WOLFSSL_STM32_BARE). The transparent
90- CCB sign path calls this internally, so most callers do not invoke it
91- directly. Available on STM32 builds with WOLFSSL_STM32_CCB on CCB silicon
92- (STM32U3 or STM32C5).
90+ for an operation error. Bare-metal only (WOLFSSL_STM32_BARE). The
91+ transparent CCB sign path calls this internally, so most callers do not
92+ invoke it directly. Available on STM32 builds with WOLFSSL_STM32_CCB on
93+ CCB silicon (STM32U3 or STM32C5).
9394
9495 \return 0 Returned when the CCB is up and usable.
9596 \return WC_TIMEOUT_E Returned if BUSY does not clear within the timeout.
@@ -115,7 +116,8 @@ int wc_Stm32_CcbInit(void);
115116
116117 \return 0 Returned on success.
117118 \return NOT_COMPILED_IN Returned if curveId is an unsupported curve.
118- \return BAD_FUNC_ARG Returned if a required pointer is NULL or dLen is wrong.
119+ \return BAD_FUNC_ARG Returned if a required pointer is NULL or dLen is
120+ wrong.
119121 \return WC_TIMEOUT_E Returned if a hardware step times out.
120122
121123 \param curveId the ECC curve id; currently ECC_SECP256R1.
0 commit comments