14#ifndef MBEDTLS_PSA_UTIL_H
15#define MBEDTLS_PSA_UTIL_H
17#if !defined(MBEDTLS_CONFIG_FILE)
20#include MBEDTLS_CONFIG_FILE
23#if defined(MBEDTLS_USE_PSA_CRYPTO)
110#if defined(MBEDTLS_MD2_C)
114#if defined(MBEDTLS_MD4_C)
118#if defined(MBEDTLS_MD5_C)
122#if defined(MBEDTLS_SHA1_C)
126#if defined(MBEDTLS_SHA256_C)
132#if defined(MBEDTLS_SHA512_C)
138#if defined(MBEDTLS_RIPEMD160_C)
151static inline int mbedtls_psa_get_ecc_oid_from_id(
153 char const **oid,
size_t *oid_len)
158#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
164#if defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED)
170#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED)
176#if defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED)
182#if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED)
192#if defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED)
198#if defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED)
204#if defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED)
214#if defined(MBEDTLS_ECP_DP_BP256R1_ENABLED)
220#if defined(MBEDTLS_ECP_DP_BP384R1_ENABLED)
226#if defined(MBEDTLS_ECP_DP_BP512R1_ENABLED)
240#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH 1
242#if defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
243#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((192 + 7) / 8) + 1)
244#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
245#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((192 + 7) / 8) + 1)
249#if defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED)
250#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((224 + 7) / 8) + 1)
251#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
252#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((224 + 7) / 8) + 1)
256#if defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED)
257#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((256 + 7) / 8) + 1)
258#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
259#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((256 + 7) / 8) + 1)
263#if defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED)
264#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((384 + 7) / 8) + 1)
265#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
266#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((384 + 7) / 8) + 1)
270#if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED)
271#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((521 + 7) / 8) + 1)
272#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
273#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((521 + 7) / 8) + 1)
277#if defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED)
278#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((192 + 7) / 8) + 1)
279#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
280#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((192 + 7) / 8) + 1)
284#if defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED)
285#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((224 + 7) / 8) + 1)
286#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
287#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((224 + 7) / 8) + 1)
291#if defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED)
292#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((256 + 7) / 8) + 1)
293#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
294#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((256 + 7) / 8) + 1)
298#if defined(MBEDTLS_ECP_DP_BP256R1_ENABLED)
299#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((256 + 7) / 8) + 1)
300#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
301#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((256 + 7) / 8) + 1)
305#if defined(MBEDTLS_ECP_DP_BP384R1_ENABLED)
306#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((384 + 7) / 8) + 1)
307#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
308#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((384 + 7) / 8) + 1)
312#if defined(MBEDTLS_ECP_DP_BP512R1_ENABLED)
313#if MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH < (2 * ((512 + 7) / 8) + 1)
314#undef MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH
315#define MBEDTLS_PSA_MAX_EC_PUBKEY_LENGTH (2 * ((512 + 7) / 8) + 1)
322static inline int mbedtls_psa_err_translate_pk(
psa_status_t status)
352#if defined(MBEDTLS_ECP_C)
354 uint16_t tls_ecc_grp_reg_id,
size_t *bits)
358 if (curve_info == NULL) {
376static inline int mbedtls_psa_tls_psa_ec_to_ecpoint(
unsigned char *src,
391static inline int mbedtls_psa_tls_ecpoint_to_psa_ec(
unsigned char const *src,
397 if (srclen > dstlen) {
401 memcpy(dst, src, srclen);
412#if defined(MBEDTLS_PSA_CRYPTO_C)
422#if defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG)
460 unsigned char *output,
473#define MBEDTLS_PSA_RANDOM_STATE NULL
477#if defined(MBEDTLS_CTR_DRBG_C)
481#elif defined(MBEDTLS_HMAC_DRBG_C)
488#define MBEDTLS_PSA_RANDOM_STATE mbedtls_psa_random_state
mbedtls_cipher_type_t
Supported {cipher type, cipher mode} pairs.
@ MBEDTLS_CIPHER_AES_128_ECB
@ MBEDTLS_CIPHER_AES_128_CBC
@ MBEDTLS_CIPHER_AES_192_GCM
@ MBEDTLS_CIPHER_AES_256_ECB
@ MBEDTLS_CIPHER_AES_192_CCM
@ MBEDTLS_CIPHER_AES_256_GCM
@ MBEDTLS_CIPHER_AES_256_CCM
@ MBEDTLS_CIPHER_AES_128_GCM
@ MBEDTLS_CIPHER_AES_192_CBC
@ MBEDTLS_CIPHER_AES_128_CCM
@ MBEDTLS_CIPHER_AES_256_CBC
@ MBEDTLS_CIPHER_AES_192_ECB
Configuration options (set of defines)
Platform Security Architecture cryptography module.
This file contains definitions and functions for the CTR_DRBG pseudorandom generator.
int mbedtls_ctr_drbg_random(void *p_rng, unsigned char *output, size_t output_len)
This function uses CTR_DRBG to generate random data.
This file provides an API for Elliptic Curves over GF(P) (ECP).
#define MBEDTLS_ERR_ECP_BUFFER_TOO_SMALL
#define MBEDTLS_ERR_ECP_RANDOM_FAILED
const mbedtls_ecp_curve_info * mbedtls_ecp_curve_info_from_tls_id(uint16_t tls_id)
This function retrieves curve information from a TLS NamedCurve value.
#define MBEDTLS_OID_SIZE(x)
#define PSA_KEY_TYPE_ECC_KEY_PAIR(curve)
#define PSA_ECC_FAMILY_SECP_R1
#define PSA_ECC_FAMILY_SECP_K1
uint16_t psa_key_type_t
Encoding of a key type.
#define PSA_ALG_RIPEMD160
#define PSA_ALG_ECB_NO_PADDING
#define PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, tag_length)
#define PSA_ECC_FAMILY_BRAINPOOL_P_R1
uint32_t psa_algorithm_t
Encoding of a cryptographic algorithm.
#define PSA_ALG_CBC_NO_PADDING
int32_t psa_status_t
Function return status.
#define PSA_ERROR_HARDWARE_FAILURE
#define PSA_ERROR_CORRUPTION_DETECTED
#define PSA_ERROR_NOT_SUPPORTED
#define PSA_ERROR_INSUFFICIENT_ENTROPY
#define PSA_ERROR_COMMUNICATION_FAILURE
#define PSA_ERROR_INSUFFICIENT_MEMORY
#define PSA_ERROR_BAD_STATE
#define PSA_KEY_USAGE_ENCRYPT
uint32_t psa_key_usage_t
Encoding of permitted usage on a key.
#define PSA_KEY_USAGE_DECRYPT
static psa_ecc_family_t mbedtls_ecc_group_to_psa(mbedtls_ecp_group_id grpid, size_t *bits)
The HMAC_DRBG pseudorandom generator.
int mbedtls_hmac_drbg_random(void *p_rng, unsigned char *output, size_t out_len)
This function uses HMAC_DRBG to generate random data.
This file contains the generic message-digest wrapper.
mbedtls_md_type_t
Supported message digests.
Object Identifier (OID) database.
#define MBEDTLS_OID_EC_GRP_SECP521R1
#define MBEDTLS_OID_EC_GRP_SECP224R1
#define MBEDTLS_OID_EC_GRP_SECP256K1
#define MBEDTLS_OID_EC_GRP_SECP384R1
#define MBEDTLS_OID_EC_GRP_SECP192K1
#define MBEDTLS_OID_EC_GRP_BP384R1
#define MBEDTLS_OID_EC_GRP_SECP224K1
#define MBEDTLS_OID_EC_GRP_BP512R1
#define MBEDTLS_OID_EC_GRP_SECP256R1
#define MBEDTLS_OID_EC_GRP_SECP192R1
#define MBEDTLS_OID_EC_GRP_BP256R1
Public Key abstraction layer.
#define MBEDTLS_ERR_PK_HW_ACCEL_FAILED
#define MBEDTLS_ERR_PK_BAD_INPUT_DATA
#define MBEDTLS_ERR_PK_ALLOC_FAILED
#define MBEDTLS_ERR_PK_FEATURE_UNAVAILABLE
mbedtls_ctr_drbg_context mbedtls_psa_drbg_context_t
static mbedtls_f_rng_t *const mbedtls_psa_get_random
mbedtls_psa_drbg_context_t *const mbedtls_psa_random_state
int mbedtls_f_rng_t(void *p_rng, unsigned char *output, size_t output_size)
The CTR_DRBG context structure.
mbedtls_ecp_group_id grp_id