Mbed TLS v3.6.1
crypto_extra.h
Go to the documentation of this file.
1 
11 /*
12  * Copyright The Mbed TLS Contributors
13  * SPDX-License-Identifier: Apache-2.0 OR GPL-2.0-or-later
14  */
15 
16 #ifndef PSA_CRYPTO_EXTRA_H
17 #define PSA_CRYPTO_EXTRA_H
18 #include "mbedtls/private_access.h"
19 
20 #include "crypto_types.h"
21 #include "crypto_compat.h"
22 
23 #ifdef __cplusplus
24 extern "C" {
25 #endif
26 
27 /* UID for secure storage seed */
28 #define PSA_CRYPTO_ITS_RANDOM_SEED_UID 0xFFFFFF52
29 
30 /* See mbedtls_config.h for definition */
31 #if !defined(MBEDTLS_PSA_KEY_SLOT_COUNT)
32 #define MBEDTLS_PSA_KEY_SLOT_COUNT 32
33 #endif
34 
59  psa_key_attributes_t *attributes,
60  psa_algorithm_t alg2)
61 {
62  attributes->MBEDTLS_PRIVATE(policy).MBEDTLS_PRIVATE(alg2) = alg2;
63 }
64 
72  const psa_key_attributes_t *attributes)
73 {
74  return attributes->MBEDTLS_PRIVATE(policy).MBEDTLS_PRIVATE(alg2);
75 }
76 
77 #if defined(MBEDTLS_PSA_CRYPTO_SE_C)
78 
101 psa_status_t psa_get_key_slot_number(
102  const psa_key_attributes_t *attributes,
103  psa_key_slot_number_t *slot_number);
104 
128 static inline void psa_set_key_slot_number(
129  psa_key_attributes_t *attributes,
130  psa_key_slot_number_t slot_number)
131 {
132  attributes->MBEDTLS_PRIVATE(has_slot_number) = 1;
133  attributes->MBEDTLS_PRIVATE(slot_number) = slot_number;
134 }
135 
142 static inline void psa_clear_key_slot_number(
143  psa_key_attributes_t *attributes)
144 {
145  attributes->MBEDTLS_PRIVATE(has_slot_number) = 0;
146 }
147 
196 psa_status_t mbedtls_psa_register_se_key(
197  const psa_key_attributes_t *attributes);
198 
199 #endif /* MBEDTLS_PSA_CRYPTO_SE_C */
200 
214 
221 typedef struct mbedtls_psa_stats_s {
223  size_t MBEDTLS_PRIVATE(volatile_slots);
226  size_t MBEDTLS_PRIVATE(persistent_slots);
229  size_t MBEDTLS_PRIVATE(external_slots);
232  size_t MBEDTLS_PRIVATE(half_filled_slots);
234  size_t MBEDTLS_PRIVATE(cache_slots);
236  size_t MBEDTLS_PRIVATE(empty_slots);
238  size_t MBEDTLS_PRIVATE(locked_slots);
240  psa_key_id_t MBEDTLS_PRIVATE(max_open_internal_key_id);
242  psa_key_id_t MBEDTLS_PRIVATE(max_open_external_key_id);
244 
253 
324  size_t seed_size);
325 
337 #define PSA_KEY_TYPE_DSA_PUBLIC_KEY ((psa_key_type_t) 0x4002)
338 
355 #define PSA_KEY_TYPE_DSA_KEY_PAIR ((psa_key_type_t) 0x7002)
356 
358 #define PSA_KEY_TYPE_IS_DSA(type) \
359  (PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) == PSA_KEY_TYPE_DSA_PUBLIC_KEY)
360 
361 #define PSA_ALG_DSA_BASE ((psa_algorithm_t) 0x06000400)
376 #define PSA_ALG_DSA(hash_alg) \
377  (PSA_ALG_DSA_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
378 #define PSA_ALG_DETERMINISTIC_DSA_BASE ((psa_algorithm_t) 0x06000500)
379 #define PSA_ALG_DSA_DETERMINISTIC_FLAG PSA_ALG_ECDSA_DETERMINISTIC_FLAG
394 #define PSA_ALG_DETERMINISTIC_DSA(hash_alg) \
395  (PSA_ALG_DETERMINISTIC_DSA_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
396 #define PSA_ALG_IS_DSA(alg) \
397  (((alg) & ~PSA_ALG_HASH_MASK & ~PSA_ALG_DSA_DETERMINISTIC_FLAG) == \
398  PSA_ALG_DSA_BASE)
399 #define PSA_ALG_DSA_IS_DETERMINISTIC(alg) \
400  (((alg) & PSA_ALG_DSA_DETERMINISTIC_FLAG) != 0)
401 #define PSA_ALG_IS_DETERMINISTIC_DSA(alg) \
402  (PSA_ALG_IS_DSA(alg) && PSA_ALG_DSA_IS_DETERMINISTIC(alg))
403 #define PSA_ALG_IS_RANDOMIZED_DSA(alg) \
404  (PSA_ALG_IS_DSA(alg) && !PSA_ALG_DSA_IS_DETERMINISTIC(alg))
405 
406 
407 /* We need to expand the sample definition of this macro from
408  * the API definition. */
409 #undef PSA_ALG_IS_VENDOR_HASH_AND_SIGN
410 #define PSA_ALG_IS_VENDOR_HASH_AND_SIGN(alg) \
411  PSA_ALG_IS_DSA(alg)
412 
420 #define PSA_PAKE_OPERATION_STAGE_SETUP 0
421 #define PSA_PAKE_OPERATION_STAGE_COLLECT_INPUTS 1
422 #define PSA_PAKE_OPERATION_STAGE_COMPUTATION 2
423 
431 #if defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG)
471 psa_status_t mbedtls_psa_external_get_random(
472  mbedtls_psa_external_random_context_t *context,
473  uint8_t *output, size_t output_size, size_t *output_length);
474 #endif /* MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG */
475 
493 #define MBEDTLS_PSA_KEY_ID_BUILTIN_MIN ((psa_key_id_t) 0x7fff0000)
494 
500 #define MBEDTLS_PSA_KEY_ID_BUILTIN_MAX ((psa_key_id_t) 0x7fffefff)
501 
506 typedef uint64_t psa_drv_slot_number_t;
507 
508 #if defined(MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS)
518 static inline int psa_key_id_is_builtin(psa_key_id_t key_id)
519 {
520  return (key_id >= MBEDTLS_PSA_KEY_ID_BUILTIN_MIN) &&
521  (key_id <= MBEDTLS_PSA_KEY_ID_BUILTIN_MAX);
522 }
523 
568 psa_status_t mbedtls_psa_platform_get_builtin_key(
569  mbedtls_svc_key_id_t key_id,
570  psa_key_lifetime_t *lifetime,
571  psa_drv_slot_number_t *slot_number);
572 #endif /* MBEDTLS_PSA_CRYPTO_BUILTIN_KEYS */
573 
580 #define PSA_ALG_CATEGORY_PAKE ((psa_algorithm_t) 0x0a000000)
581 
591 #define PSA_ALG_IS_PAKE(alg) \
592  (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_PAKE)
593 
709 #define PSA_ALG_JPAKE ((psa_algorithm_t) 0x0a000100)
710 
731 typedef uint8_t psa_pake_role_t;
732 
739 typedef uint8_t psa_pake_step_t;
740 
750 
756 typedef uint8_t psa_pake_family_t;
757 
762 typedef uint32_t psa_pake_primitive_t;
763 
768 #define PSA_PAKE_ROLE_NONE ((psa_pake_role_t) 0x00)
769 
777 #define PSA_PAKE_ROLE_FIRST ((psa_pake_role_t) 0x01)
778 
786 #define PSA_PAKE_ROLE_SECOND ((psa_pake_role_t) 0x02)
787 
792 #define PSA_PAKE_ROLE_CLIENT ((psa_pake_role_t) 0x11)
793 
798 #define PSA_PAKE_ROLE_SERVER ((psa_pake_role_t) 0x12)
799 
818 #define PSA_PAKE_PRIMITIVE_TYPE_ECC ((psa_pake_primitive_type_t) 0x01)
819 
838 #define PSA_PAKE_PRIMITIVE_TYPE_DH ((psa_pake_primitive_type_t) 0x02)
839 
859 #define PSA_PAKE_PRIMITIVE(pake_type, pake_family, pake_bits) \
860  ((pake_bits & 0xFFFF) != pake_bits) ? 0 : \
861  ((psa_pake_primitive_t) (((pake_type) << 24 | \
862  (pake_family) << 16) | (pake_bits)))
863 
876 #define PSA_PAKE_STEP_KEY_SHARE ((psa_pake_step_t) 0x01)
877 
893 #define PSA_PAKE_STEP_ZK_PUBLIC ((psa_pake_step_t) 0x02)
894 
914 #define PSA_PAKE_STEP_ZK_PROOF ((psa_pake_step_t) 0x03)
915 
923 
927 
935  const psa_pake_cipher_suite_t *cipher_suite);
936 
949 static void psa_pake_cs_set_algorithm(psa_pake_cipher_suite_t *cipher_suite,
951 
959  const psa_pake_cipher_suite_t *cipher_suite);
960 
970 static void psa_pake_cs_set_primitive(psa_pake_cipher_suite_t *cipher_suite,
971  psa_pake_primitive_t primitive);
972 
980  const psa_pake_cipher_suite_t *cipher_suite);
981 
988 static uint16_t psa_pake_cs_get_bits(
989  const psa_pake_cipher_suite_t *cipher_suite);
990 
1000  const psa_pake_cipher_suite_t *cipher_suite);
1001 
1020 
1050 
1053 
1056 
1060 
1072  const psa_crypto_driver_pake_inputs_t *inputs,
1073  size_t *password_len);
1074 
1088  const psa_crypto_driver_pake_inputs_t *inputs,
1089  uint8_t *buffer, size_t buffer_size, size_t *buffer_length);
1090 
1102  const psa_crypto_driver_pake_inputs_t *inputs,
1103  size_t *user_len);
1104 
1116  const psa_crypto_driver_pake_inputs_t *inputs,
1117  size_t *peer_len);
1118 
1134  const psa_crypto_driver_pake_inputs_t *inputs,
1135  uint8_t *user_id, size_t user_id_size, size_t *user_id_len);
1136 
1152  const psa_crypto_driver_pake_inputs_t *inputs,
1153  uint8_t *peer_id, size_t peer_id_size, size_t *peer_id_length);
1154 
1166  const psa_crypto_driver_pake_inputs_t *inputs,
1167  psa_pake_cipher_suite_t *cipher_suite);
1168 
1240  const psa_pake_cipher_suite_t *cipher_suite);
1241 
1288  mbedtls_svc_key_id_t password);
1289 
1328  const uint8_t *user_id,
1329  size_t user_id_len);
1330 
1370  const uint8_t *peer_id,
1371  size_t peer_id_len);
1372 
1412  psa_pake_role_t role);
1413 
1470  psa_pake_step_t step,
1471  uint8_t *output,
1472  size_t output_size,
1473  size_t *output_length);
1474 
1525  psa_pake_step_t step,
1526  const uint8_t *input,
1527  size_t input_length);
1528 
1589 
1615 
1638 #define PSA_PAKE_OUTPUT_SIZE(alg, primitive, output_step) \
1639  (alg == PSA_ALG_JPAKE && \
1640  primitive == PSA_PAKE_PRIMITIVE(PSA_PAKE_PRIMITIVE_TYPE_ECC, \
1641  PSA_ECC_FAMILY_SECP_R1, 256) ? \
1642  ( \
1643  output_step == PSA_PAKE_STEP_KEY_SHARE ? 65 : \
1644  output_step == PSA_PAKE_STEP_ZK_PUBLIC ? 65 : \
1645  32 \
1646  ) : \
1647  0)
1648 
1668 #define PSA_PAKE_INPUT_SIZE(alg, primitive, input_step) \
1669  (alg == PSA_ALG_JPAKE && \
1670  primitive == PSA_PAKE_PRIMITIVE(PSA_PAKE_PRIMITIVE_TYPE_ECC, \
1671  PSA_ECC_FAMILY_SECP_R1, 256) ? \
1672  ( \
1673  input_step == PSA_PAKE_STEP_KEY_SHARE ? 65 : \
1674  input_step == PSA_PAKE_STEP_ZK_PUBLIC ? 65 : \
1675  32 \
1676  ) : \
1677  0)
1678 
1689 #define PSA_PAKE_OUTPUT_MAX_SIZE 65
1690 
1701 #define PSA_PAKE_INPUT_MAX_SIZE 65
1702 
1706 #define PSA_PAKE_CIPHER_SUITE_INIT { PSA_ALG_NONE, 0, 0, 0, PSA_ALG_NONE }
1707 
1711 #if defined(MBEDTLS_PSA_CRYPTO_CLIENT) && !defined(MBEDTLS_PSA_CRYPTO_C)
1712 #define PSA_PAKE_OPERATION_INIT { 0 }
1713 #else
1714 #define PSA_PAKE_OPERATION_INIT { 0, PSA_ALG_NONE, 0, PSA_PAKE_OPERATION_STAGE_SETUP, \
1715  { 0 }, { { 0 } } }
1716 #endif
1717 
1722  uint16_t bits;
1724 };
1725 
1727  const psa_pake_cipher_suite_t *cipher_suite)
1728 {
1729  return cipher_suite->algorithm;
1730 }
1731 
1732 static inline void psa_pake_cs_set_algorithm(
1733  psa_pake_cipher_suite_t *cipher_suite,
1734  psa_algorithm_t algorithm)
1735 {
1736  if (!PSA_ALG_IS_PAKE(algorithm)) {
1737  cipher_suite->algorithm = 0;
1738  } else {
1739  cipher_suite->algorithm = algorithm;
1740  }
1741 }
1742 
1744  const psa_pake_cipher_suite_t *cipher_suite)
1745 {
1746  return PSA_PAKE_PRIMITIVE(cipher_suite->type, cipher_suite->family,
1747  cipher_suite->bits);
1748 }
1749 
1750 static inline void psa_pake_cs_set_primitive(
1751  psa_pake_cipher_suite_t *cipher_suite,
1752  psa_pake_primitive_t primitive)
1753 {
1754  cipher_suite->type = (psa_pake_primitive_type_t) (primitive >> 24);
1755  cipher_suite->family = (psa_pake_family_t) (0xFF & (primitive >> 16));
1756  cipher_suite->bits = (uint16_t) (0xFFFF & primitive);
1757 }
1758 
1760  const psa_pake_cipher_suite_t *cipher_suite)
1761 {
1762  return cipher_suite->family;
1763 }
1764 
1765 static inline uint16_t psa_pake_cs_get_bits(
1766  const psa_pake_cipher_suite_t *cipher_suite)
1767 {
1768  return cipher_suite->bits;
1769 }
1770 
1772  const psa_pake_cipher_suite_t *cipher_suite)
1773 {
1774  return cipher_suite->hash;
1775 }
1776 
1777 static inline void psa_pake_cs_set_hash(psa_pake_cipher_suite_t *cipher_suite,
1778  psa_algorithm_t hash)
1779 {
1780  if (!PSA_ALG_IS_HASH(hash)) {
1781  cipher_suite->hash = 0;
1782  } else {
1783  cipher_suite->hash = hash;
1784  }
1785 }
1786 
1788  uint8_t *MBEDTLS_PRIVATE(password);
1789  size_t MBEDTLS_PRIVATE(password_len);
1790  uint8_t *MBEDTLS_PRIVATE(user);
1791  size_t MBEDTLS_PRIVATE(user_len);
1792  uint8_t *MBEDTLS_PRIVATE(peer);
1793  size_t MBEDTLS_PRIVATE(peer_len);
1796 };
1797 
1799  PSA_JPAKE_STEP_INVALID = 0, /* Invalid step */
1800  PSA_JPAKE_X1_STEP_KEY_SHARE = 1, /* Round 1: input/output key share (for ephemeral private key X1).*/
1801  PSA_JPAKE_X1_STEP_ZK_PUBLIC = 2, /* Round 1: input/output Schnorr NIZKP public key for the X1 key */
1802  PSA_JPAKE_X1_STEP_ZK_PROOF = 3, /* Round 1: input/output Schnorr NIZKP proof for the X1 key */
1803  PSA_JPAKE_X2_STEP_KEY_SHARE = 4, /* Round 1: input/output key share (for ephemeral private key X2).*/
1804  PSA_JPAKE_X2_STEP_ZK_PUBLIC = 5, /* Round 1: input/output Schnorr NIZKP public key for the X2 key */
1805  PSA_JPAKE_X2_STEP_ZK_PROOF = 6, /* Round 1: input/output Schnorr NIZKP proof for the X2 key */
1806  PSA_JPAKE_X2S_STEP_KEY_SHARE = 7, /* Round 2: output X2S key (our key) */
1807  PSA_JPAKE_X2S_STEP_ZK_PUBLIC = 8, /* Round 2: output Schnorr NIZKP public key for the X2S key (our key) */
1808  PSA_JPAKE_X2S_STEP_ZK_PROOF = 9, /* Round 2: output Schnorr NIZKP proof for the X2S key (our key) */
1809  PSA_JPAKE_X4S_STEP_KEY_SHARE = 10, /* Round 2: input X4S key (from peer) */
1810  PSA_JPAKE_X4S_STEP_ZK_PUBLIC = 11, /* Round 2: input Schnorr NIZKP public key for the X4S key (from peer) */
1811  PSA_JPAKE_X4S_STEP_ZK_PROOF = 12 /* Round 2: input Schnorr NIZKP proof for the X4S key (from peer) */
1813 
1814 typedef enum psa_jpake_round {
1817  PSA_JPAKE_FINISHED = 2
1819 
1820 typedef enum psa_jpake_io_mode {
1822  PSA_JPAKE_OUTPUT = 1
1824 
1826  /* The J-PAKE round we are currently on */
1828  /* The 'mode' we are currently in (inputting or outputting) */
1830  /* The number of completed inputs so far this round */
1831  uint8_t MBEDTLS_PRIVATE(inputs);
1832  /* The number of completed outputs so far this round */
1833  uint8_t MBEDTLS_PRIVATE(outputs);
1834  /* The next expected step (KEY_SHARE, ZK_PUBLIC or ZK_PROOF) */
1836 };
1837 
1838 #define PSA_JPAKE_EXPECTED_INPUTS(round) ((round) == PSA_JPAKE_FINISHED ? 0 : \
1839  ((round) == PSA_JPAKE_FIRST ? 2 : 1))
1840 #define PSA_JPAKE_EXPECTED_OUTPUTS(round) ((round) == PSA_JPAKE_FINISHED ? 0 : \
1841  ((round) == PSA_JPAKE_FIRST ? 2 : 1))
1842 
1844 #if defined(MBEDTLS_PSA_CRYPTO_CLIENT) && !defined(MBEDTLS_PSA_CRYPTO_C)
1845  mbedtls_psa_client_handle_t handle;
1846 #else
1853  unsigned int MBEDTLS_PRIVATE(id);
1854  /* Algorithm of the PAKE operation */
1856  /* A primitive of type compatible with algorithm */
1858  /* Stage of the PAKE operation: waiting for the setup, collecting inputs
1859  * or computing. */
1860  uint8_t MBEDTLS_PRIVATE(stage);
1861  /* Holds computation stage of the PAKE algorithms. */
1862  union {
1863  uint8_t MBEDTLS_PRIVATE(dummy);
1864 #if defined(PSA_WANT_ALG_JPAKE)
1866 #endif
1867  } MBEDTLS_PRIVATE(computation_stage);
1868  union {
1872 #endif
1873 };
1874 
1875 static inline struct psa_pake_cipher_suite_s psa_pake_cipher_suite_init(void)
1876 {
1878  return v;
1879 }
1880 
1881 static inline struct psa_pake_operation_s psa_pake_operation_init(void)
1882 {
1884  return v;
1885 }
1886 
1887 #ifdef __cplusplus
1888 }
1889 #endif
1890 
1891 #endif /* PSA_CRYPTO_EXTRA_H */
PSA cryptography module: Backward compatibility aliases.
void mbedtls_psa_crypto_free(void)
Library deinitialization.
#define PSA_PAKE_OPERATION_INIT
psa_crypto_driver_pake_step
@ PSA_JPAKE_X2_STEP_KEY_SHARE
@ PSA_JPAKE_X2S_STEP_KEY_SHARE
@ PSA_JPAKE_X1_STEP_ZK_PUBLIC
@ PSA_JPAKE_STEP_INVALID
@ PSA_JPAKE_X4S_STEP_KEY_SHARE
@ PSA_JPAKE_X2S_STEP_ZK_PROOF
@ PSA_JPAKE_X2_STEP_ZK_PUBLIC
@ PSA_JPAKE_X4S_STEP_ZK_PROOF
@ PSA_JPAKE_X2_STEP_ZK_PROOF
@ PSA_JPAKE_X4S_STEP_ZK_PUBLIC
@ PSA_JPAKE_X1_STEP_KEY_SHARE
@ PSA_JPAKE_X2S_STEP_ZK_PUBLIC
@ PSA_JPAKE_X1_STEP_ZK_PROOF
psa_jpake_io_mode
@ PSA_JPAKE_OUTPUT
@ PSA_JPAKE_INPUT
enum psa_crypto_driver_pake_step psa_crypto_driver_pake_step_t
psa_jpake_round
@ PSA_JPAKE_FINISHED
@ PSA_JPAKE_FIRST
@ PSA_JPAKE_SECOND
#define PSA_PAKE_CIPHER_SUITE_INIT
enum psa_jpake_io_mode psa_jpake_io_mode_t
enum psa_jpake_round psa_jpake_round_t
void mbedtls_psa_get_stats(mbedtls_psa_stats_t *stats)
Get statistics about resource consumption related to the PSA keystore.
struct mbedtls_psa_stats_s mbedtls_psa_stats_t
Statistics about resource consumption related to the PSA keystore.
psa_status_t mbedtls_psa_inject_entropy(const uint8_t *seed, size_t seed_size)
Inject an initial entropy seed for the random generator into secure storage.
PSA cryptography module: type aliases.
static psa_algorithm_t psa_get_key_enrollment_algorithm(const psa_key_attributes_t *attributes)
Definition: crypto_extra.h:71
static void psa_set_key_enrollment_algorithm(psa_key_attributes_t *attributes, psa_algorithm_t alg2)
Declare the enrollment algorithm for a key.
Definition: crypto_extra.h:58
#define PSA_ALG_IS_PAKE(alg)
Definition: crypto_extra.h:591
uint32_t psa_algorithm_t
Encoding of a cryptographic algorithm.
Definition: crypto_types.h:134
#define PSA_ALG_IS_HASH(alg)
int32_t psa_status_t
Function return status.
Definition: crypto_types.h:59
uint32_t psa_key_id_t
Definition: crypto_types.h:275
uint32_t psa_key_lifetime_t
Definition: crypto_types.h:183
psa_key_id_t mbedtls_svc_key_id_t
Definition: crypto_types.h:292
static uint16_t psa_pake_cs_get_bits(const psa_pake_cipher_suite_t *cipher_suite)
psa_status_t psa_pake_set_password_key(psa_pake_operation_t *operation, mbedtls_svc_key_id_t password)
static psa_pake_primitive_t psa_pake_cs_get_primitive(const psa_pake_cipher_suite_t *cipher_suite)
psa_status_t psa_pake_abort(psa_pake_operation_t *operation)
psa_status_t psa_crypto_driver_pake_get_password(const psa_crypto_driver_pake_inputs_t *inputs, uint8_t *buffer, size_t buffer_size, size_t *buffer_length)
psa_status_t psa_pake_input(psa_pake_operation_t *operation, psa_pake_step_t step, const uint8_t *input, size_t input_length)
uint32_t psa_pake_primitive_t
Encoding of the primitive associated with the PAKE.
Definition: crypto_extra.h:762
static void psa_pake_cs_set_hash(psa_pake_cipher_suite_t *cipher_suite, psa_algorithm_t hash)
psa_status_t psa_pake_setup(psa_pake_operation_t *operation, const psa_pake_cipher_suite_t *cipher_suite)
psa_status_t psa_pake_output(psa_pake_operation_t *operation, psa_pake_step_t step, uint8_t *output, size_t output_size, size_t *output_length)
psa_status_t psa_pake_set_user(psa_pake_operation_t *operation, const uint8_t *user_id, size_t user_id_len)
static void psa_pake_cs_set_primitive(psa_pake_cipher_suite_t *cipher_suite, psa_pake_primitive_t primitive)
static psa_pake_cipher_suite_t psa_pake_cipher_suite_init(void)
psa_status_t psa_crypto_driver_pake_get_password_len(const psa_crypto_driver_pake_inputs_t *inputs, size_t *password_len)
static void psa_pake_cs_set_algorithm(psa_pake_cipher_suite_t *cipher_suite, psa_algorithm_t algorithm)
uint8_t psa_pake_role_t
Encoding of the application role of PAKE.
Definition: crypto_extra.h:731
static psa_pake_family_t psa_pake_cs_get_family(const psa_pake_cipher_suite_t *cipher_suite)
psa_status_t psa_pake_set_peer(psa_pake_operation_t *operation, const uint8_t *peer_id, size_t peer_id_len)
static psa_pake_operation_t psa_pake_operation_init(void)
uint8_t psa_pake_step_t
Definition: crypto_extra.h:739
psa_status_t psa_crypto_driver_pake_get_peer(const psa_crypto_driver_pake_inputs_t *inputs, uint8_t *peer_id, size_t peer_id_size, size_t *peer_id_length)
uint8_t psa_pake_primitive_type_t
Definition: crypto_extra.h:749
psa_status_t psa_crypto_driver_pake_get_peer_len(const psa_crypto_driver_pake_inputs_t *inputs, size_t *peer_len)
psa_status_t psa_crypto_driver_pake_get_user_len(const psa_crypto_driver_pake_inputs_t *inputs, size_t *user_len)
psa_status_t psa_pake_get_implicit_key(psa_pake_operation_t *operation, psa_key_derivation_operation_t *output)
uint8_t psa_pake_family_t
Encoding of the family of the primitive associated with the PAKE.
Definition: crypto_extra.h:756
psa_status_t psa_crypto_driver_pake_get_user(const psa_crypto_driver_pake_inputs_t *inputs, uint8_t *user_id, size_t user_id_size, size_t *user_id_len)
static psa_algorithm_t psa_pake_cs_get_algorithm(const psa_pake_cipher_suite_t *cipher_suite)
#define PSA_PAKE_PRIMITIVE(pake_type, pake_family, pake_bits)
Definition: crypto_extra.h:859
psa_status_t psa_pake_set_role(psa_pake_operation_t *operation, psa_pake_role_t role)
psa_status_t psa_crypto_driver_pake_get_cipher_suite(const psa_crypto_driver_pake_inputs_t *inputs, psa_pake_cipher_suite_t *cipher_suite)
static psa_algorithm_t psa_pake_cs_get_hash(const psa_pake_cipher_suite_t *cipher_suite)
#define MBEDTLS_PSA_KEY_ID_BUILTIN_MAX
Definition: crypto_extra.h:500
uint64_t psa_drv_slot_number_t
Definition: crypto_extra.h:506
#define MBEDTLS_PSA_KEY_ID_BUILTIN_MIN
Definition: crypto_extra.h:493
uint64_t psa_key_slot_number_t
Macro wrapper for struct's members.
#define MBEDTLS_PRIVATE(member)
Statistics about resource consumption related to the PSA keystore.
Definition: crypto_extra.h:221
psa_algorithm_t hash
psa_algorithm_t algorithm
psa_pake_primitive_type_t type
psa_pake_family_t family