From d416838ffd590563e819e7a1fac8f4389b216b3c Mon Sep 17 00:00:00 2001
From: Janos Follath <janos.follath@arm.com>
Date: Mon, 24 May 2021 12:20:12 +0100
Subject: [PATCH] Rename psa_pake_set_password_mhf()
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This step is not necessarily a memory-hard function. Memory-hard
functions are the best of the breed at the moment, but that's due to
current hardware designs, and CPU-hard-but-not-memory-hard functions
like PBKDF2 are acceptable as well. We're using “key stretching” as the
generic term for such functions.

Signed-off-by: Janos Follath <janos.follath@arm.com>
---
 include/psa/crypto.h | 20 +++++++++++---------
 1 file changed, 11 insertions(+), 9 deletions(-)

diff --git a/include/psa/crypto.h b/include/psa/crypto.h
index 02ed57557..abf3da0df 100644
--- a/include/psa/crypto.h
+++ b/include/psa/crypto.h
@@ -4328,7 +4328,7 @@ psa_status_t psa_pake_setup(psa_pake_operation_t *operation,
  *                              psa_pake_input() has been called yet). It must
  *                              be on operation for which the password hasn't
  *                              been set yet (neither
- *                              psa_pake_set_password_mhf() nor
+ *                              psa_pake_set_password_stretch() nor
  *                              psa_pake_set_password_key() has been called
  *                              yet).
  * \param password              Identifier of the key holding the password or a
@@ -4359,11 +4359,11 @@ psa_status_t psa_pake_setup(psa_pake_operation_t *operation,
 psa_status_t psa_pake_set_password_key(psa_pake_operation_t *operation,
                                        mbedtls_svc_key_id_t password);
 
-/** Set the password for a password-authenticated key exchange via a memory hard
- * function.
+/** Set the password for a password-authenticated key exchange via a key
+ * stretching function.
  *
- * Some protocols require using values derived from passwords via memory hard
- * functions to mitigate dictionary attacks. Memory hard functions can be
+ * Some protocols use values derived from passwords via key stretching
+ * functions to mitigate dictionary attacks. Key stretching functions can be
  * accessed through the key derivation interface and the result can be supplied
  * to the PAKE operation in the form of a key derivation object.
  *
@@ -4383,7 +4383,7 @@ psa_status_t psa_pake_set_password_key(psa_pake_operation_t *operation,
  *                                nor psa_pake_input() has been called yet). It
  *                                must be on operation for which the password
  *                                hasn't been set yet (neither
- *                                psa_pake_set_password_mhf() nor
+ *                                psa_pake_set_password_stretch() nor
  *                                psa_pake_set_password_key() has been called
  *                                yet).
  * \param[in,out] key_derivation  An ongoing key derivation operation set up
@@ -4412,9 +4412,11 @@ psa_status_t psa_pake_set_password_key(psa_pake_operation_t *operation,
  *         It is implementation-dependent whether a failure to initialize
  *         results in this error code.
  */
-psa_status_t psa_pake_set_password_mhf(psa_pake_operation_t *operation,
-                                       psa_key_derivation_operation_t *key_derivation,
-                                       size_t input_length);
+psa_status_t psa_pake_set_password_stretch(
+        psa_pake_operation_t *operation,
+        psa_key_derivation_operation_t *key_derivation,
+        size_t input_length
+        );
 
 /** Set the user ID for a password-authenticated key exchange.
  *