39 #ifndef PSA_CRYPTO_VALUES_H 40 #define PSA_CRYPTO_VALUES_H 68 #define PSA_SUCCESS ((psa_status_t)0) 75 #define PSA_ERROR_GENERIC_ERROR ((psa_status_t)-132) 84 #define PSA_ERROR_NOT_SUPPORTED ((psa_status_t)-134) 97 #define PSA_ERROR_NOT_PERMITTED ((psa_status_t)-133) 109 #define PSA_ERROR_BUFFER_TOO_SMALL ((psa_status_t)-138) 115 #define PSA_ERROR_ALREADY_EXISTS ((psa_status_t)-139) 121 #define PSA_ERROR_DOES_NOT_EXIST ((psa_status_t)-140) 137 #define PSA_ERROR_BAD_STATE ((psa_status_t)-137) 148 #define PSA_ERROR_INVALID_ARGUMENT ((psa_status_t)-135) 154 #define PSA_ERROR_INSUFFICIENT_MEMORY ((psa_status_t)-141) 163 #define PSA_ERROR_INSUFFICIENT_STORAGE ((psa_status_t)-142) 180 #define PSA_ERROR_COMMUNICATION_FAILURE ((psa_status_t)-145) 205 #define PSA_ERROR_STORAGE_FAILURE ((psa_status_t)-146) 211 #define PSA_ERROR_HARDWARE_FAILURE ((psa_status_t)-147) 242 #define PSA_ERROR_CORRUPTION_DETECTED ((psa_status_t)-151) 261 #define PSA_ERROR_INSUFFICIENT_ENTROPY ((psa_status_t)-148) 271 #define PSA_ERROR_INVALID_SIGNATURE ((psa_status_t)-149) 287 #define PSA_ERROR_INVALID_PADDING ((psa_status_t)-150) 291 #define PSA_ERROR_INSUFFICIENT_DATA ((psa_status_t)-143) 295 #define PSA_ERROR_INVALID_HANDLE ((psa_status_t)-136) 319 #define PSA_ERROR_DATA_CORRUPT ((psa_status_t)-152) 335 #define PSA_ERROR_DATA_INVALID ((psa_status_t)-153) 355 #define PSA_KEY_TYPE_NONE ((psa_key_type_t) 0x0000) 364 #define PSA_KEY_TYPE_VENDOR_FLAG ((psa_key_type_t) 0x8000) 366 #define PSA_KEY_TYPE_CATEGORY_MASK ((psa_key_type_t) 0x7000) 367 #define PSA_KEY_TYPE_CATEGORY_RAW ((psa_key_type_t) 0x1000) 368 #define PSA_KEY_TYPE_CATEGORY_SYMMETRIC ((psa_key_type_t) 0x2000) 369 #define PSA_KEY_TYPE_CATEGORY_PUBLIC_KEY ((psa_key_type_t) 0x4000) 370 #define PSA_KEY_TYPE_CATEGORY_KEY_PAIR ((psa_key_type_t) 0x7000) 372 #define PSA_KEY_TYPE_CATEGORY_FLAG_PAIR ((psa_key_type_t) 0x3000) 378 #define PSA_KEY_TYPE_IS_VENDOR_DEFINED(type) \ 379 (((type) & PSA_KEY_TYPE_VENDOR_FLAG) != 0) 385 #define PSA_KEY_TYPE_IS_UNSTRUCTURED(type) \ 386 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_RAW || \ 387 ((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC) 390 #define PSA_KEY_TYPE_IS_ASYMMETRIC(type) \ 391 (((type) & PSA_KEY_TYPE_CATEGORY_MASK \ 392 & ~PSA_KEY_TYPE_CATEGORY_FLAG_PAIR) == \ 393 PSA_KEY_TYPE_CATEGORY_PUBLIC_KEY) 395 #define PSA_KEY_TYPE_IS_PUBLIC_KEY(type) \ 396 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_PUBLIC_KEY) 399 #define PSA_KEY_TYPE_IS_KEY_PAIR(type) \ 400 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_KEY_PAIR) 411 #define PSA_KEY_TYPE_KEY_PAIR_OF_PUBLIC_KEY(type) \ 412 ((type) | PSA_KEY_TYPE_CATEGORY_FLAG_PAIR) 423 #define PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) \ 424 ((type) & ~PSA_KEY_TYPE_CATEGORY_FLAG_PAIR) 430 #define PSA_KEY_TYPE_RAW_DATA ((psa_key_type_t) 0x1001) 440 #define PSA_KEY_TYPE_HMAC ((psa_key_type_t) 0x1100) 447 #define PSA_KEY_TYPE_DERIVE ((psa_key_type_t) 0x1200) 454 #define PSA_KEY_TYPE_AES ((psa_key_type_t) 0x2400) 458 #define PSA_KEY_TYPE_ARIA ((psa_key_type_t) 0x2406) 469 #define PSA_KEY_TYPE_DES ((psa_key_type_t) 0x2301) 473 #define PSA_KEY_TYPE_CAMELLIA ((psa_key_type_t) 0x2403) 479 #define PSA_KEY_TYPE_ARC4 ((psa_key_type_t) 0x2002) 488 #define PSA_KEY_TYPE_CHACHA20 ((psa_key_type_t) 0x2004) 494 #define PSA_KEY_TYPE_RSA_PUBLIC_KEY ((psa_key_type_t) 0x4001) 499 #define PSA_KEY_TYPE_RSA_KEY_PAIR ((psa_key_type_t) 0x7001) 501 #define PSA_KEY_TYPE_IS_RSA(type) \ 502 (PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY) 504 #define PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE ((psa_key_type_t) 0x4100) 505 #define PSA_KEY_TYPE_ECC_KEY_PAIR_BASE ((psa_key_type_t) 0x7100) 506 #define PSA_KEY_TYPE_ECC_CURVE_MASK ((psa_key_type_t) 0x00ff) 516 #define PSA_KEY_TYPE_ECC_KEY_PAIR(curve) \ 517 (PSA_KEY_TYPE_ECC_KEY_PAIR_BASE | (curve)) 527 #define PSA_KEY_TYPE_ECC_PUBLIC_KEY(curve) \ 528 (PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE | (curve)) 531 #define PSA_KEY_TYPE_IS_ECC(type) \ 532 ((PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) & \ 533 ~PSA_KEY_TYPE_ECC_CURVE_MASK) == PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE) 535 #define PSA_KEY_TYPE_IS_ECC_KEY_PAIR(type) \ 536 (((type) & ~PSA_KEY_TYPE_ECC_CURVE_MASK) == \ 537 PSA_KEY_TYPE_ECC_KEY_PAIR_BASE) 539 #define PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(type) \ 540 (((type) & ~PSA_KEY_TYPE_ECC_CURVE_MASK) == \ 541 PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE) 544 #define PSA_KEY_TYPE_ECC_GET_FAMILY(type) \ 545 ((psa_ecc_family_t) (PSA_KEY_TYPE_IS_ECC(type) ? \ 546 ((type) & PSA_KEY_TYPE_ECC_CURVE_MASK) : \ 557 #define PSA_ECC_FAMILY_SECP_K1 ((psa_ecc_family_t) 0x17) 567 #define PSA_ECC_FAMILY_SECP_R1 ((psa_ecc_family_t) 0x12) 569 #define PSA_ECC_FAMILY_SECP_R2 ((psa_ecc_family_t) 0x1b) 579 #define PSA_ECC_FAMILY_SECT_K1 ((psa_ecc_family_t) 0x27) 589 #define PSA_ECC_FAMILY_SECT_R1 ((psa_ecc_family_t) 0x22) 599 #define PSA_ECC_FAMILY_SECT_R2 ((psa_ecc_family_t) 0x2b) 608 #define PSA_ECC_FAMILY_BRAINPOOL_P_R1 ((psa_ecc_family_t) 0x30) 620 #define PSA_ECC_FAMILY_MONTGOMERY ((psa_ecc_family_t) 0x41) 636 #define PSA_ECC_FAMILY_TWISTED_EDWARDS ((psa_ecc_family_t) 0x42) 638 #define PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE ((psa_key_type_t) 0x4200) 639 #define PSA_KEY_TYPE_DH_KEY_PAIR_BASE ((psa_key_type_t) 0x7200) 640 #define PSA_KEY_TYPE_DH_GROUP_MASK ((psa_key_type_t) 0x00ff) 646 #define PSA_KEY_TYPE_DH_KEY_PAIR(group) \ 647 (PSA_KEY_TYPE_DH_KEY_PAIR_BASE | (group)) 653 #define PSA_KEY_TYPE_DH_PUBLIC_KEY(group) \ 654 (PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE | (group)) 657 #define PSA_KEY_TYPE_IS_DH(type) \ 658 ((PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) & \ 659 ~PSA_KEY_TYPE_DH_GROUP_MASK) == PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE) 661 #define PSA_KEY_TYPE_IS_DH_KEY_PAIR(type) \ 662 (((type) & ~PSA_KEY_TYPE_DH_GROUP_MASK) == \ 663 PSA_KEY_TYPE_DH_KEY_PAIR_BASE) 665 #define PSA_KEY_TYPE_IS_DH_PUBLIC_KEY(type) \ 666 (((type) & ~PSA_KEY_TYPE_DH_GROUP_MASK) == \ 667 PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE) 670 #define PSA_KEY_TYPE_DH_GET_FAMILY(type) \ 671 ((psa_dh_family_t) (PSA_KEY_TYPE_IS_DH(type) ? \ 672 ((type) & PSA_KEY_TYPE_DH_GROUP_MASK) : \ 681 #define PSA_DH_FAMILY_RFC7919 ((psa_dh_family_t) 0x03) 683 #define PSA_GET_KEY_TYPE_BLOCK_SIZE_EXPONENT(type) \ 703 #define PSA_BLOCK_CIPHER_BLOCK_LENGTH(type) \ 704 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \ 705 1u << PSA_GET_KEY_TYPE_BLOCK_SIZE_EXPONENT(type) : \ 720 #define PSA_ALG_VENDOR_FLAG ((psa_algorithm_t) 0x80000000) 722 #define PSA_ALG_CATEGORY_MASK ((psa_algorithm_t) 0x7f000000) 723 #define PSA_ALG_CATEGORY_HASH ((psa_algorithm_t) 0x02000000) 724 #define PSA_ALG_CATEGORY_MAC ((psa_algorithm_t) 0x03000000) 725 #define PSA_ALG_CATEGORY_CIPHER ((psa_algorithm_t) 0x04000000) 726 #define PSA_ALG_CATEGORY_AEAD ((psa_algorithm_t) 0x05000000) 727 #define PSA_ALG_CATEGORY_SIGN ((psa_algorithm_t) 0x06000000) 728 #define PSA_ALG_CATEGORY_ASYMMETRIC_ENCRYPTION ((psa_algorithm_t) 0x07000000) 729 #define PSA_ALG_CATEGORY_KEY_DERIVATION ((psa_algorithm_t) 0x08000000) 730 #define PSA_ALG_CATEGORY_KEY_AGREEMENT ((psa_algorithm_t) 0x09000000) 736 #define PSA_ALG_IS_VENDOR_DEFINED(alg) \ 737 (((alg) & PSA_ALG_VENDOR_FLAG) != 0) 747 #define PSA_ALG_IS_HASH(alg) \ 748 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_HASH) 758 #define PSA_ALG_IS_MAC(alg) \ 759 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_MAC) 769 #define PSA_ALG_IS_CIPHER(alg) \ 770 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_CIPHER) 781 #define PSA_ALG_IS_AEAD(alg) \ 782 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_AEAD) 793 #define PSA_ALG_IS_SIGN(alg) \ 794 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_SIGN) 805 #define PSA_ALG_IS_ASYMMETRIC_ENCRYPTION(alg) \ 806 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_ASYMMETRIC_ENCRYPTION) 816 #define PSA_ALG_IS_KEY_AGREEMENT(alg) \ 817 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_KEY_AGREEMENT) 827 #define PSA_ALG_IS_KEY_DERIVATION(alg) \ 828 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_KEY_DERIVATION) 832 #define PSA_ALG_NONE ((psa_algorithm_t)0) 835 #define PSA_ALG_HASH_MASK ((psa_algorithm_t) 0x000000ff) 837 #define PSA_ALG_MD2 ((psa_algorithm_t) 0x02000001) 839 #define PSA_ALG_MD4 ((psa_algorithm_t) 0x02000002) 841 #define PSA_ALG_MD5 ((psa_algorithm_t) 0x02000003) 843 #define PSA_ALG_RIPEMD160 ((psa_algorithm_t) 0x02000004) 845 #define PSA_ALG_SHA_1 ((psa_algorithm_t) 0x02000005) 847 #define PSA_ALG_SHA_224 ((psa_algorithm_t) 0x02000008) 849 #define PSA_ALG_SHA_256 ((psa_algorithm_t) 0x02000009) 851 #define PSA_ALG_SHA_384 ((psa_algorithm_t) 0x0200000a) 853 #define PSA_ALG_SHA_512 ((psa_algorithm_t) 0x0200000b) 855 #define PSA_ALG_SHA_512_224 ((psa_algorithm_t) 0x0200000c) 857 #define PSA_ALG_SHA_512_256 ((psa_algorithm_t) 0x0200000d) 859 #define PSA_ALG_SHA3_224 ((psa_algorithm_t) 0x02000010) 861 #define PSA_ALG_SHA3_256 ((psa_algorithm_t) 0x02000011) 863 #define PSA_ALG_SHA3_384 ((psa_algorithm_t) 0x02000012) 865 #define PSA_ALG_SHA3_512 ((psa_algorithm_t) 0x02000013) 872 #define PSA_ALG_SHAKE256_512 ((psa_algorithm_t) 0x02000015) 907 #define PSA_ALG_ANY_HASH ((psa_algorithm_t) 0x020000ff) 909 #define PSA_ALG_MAC_SUBCATEGORY_MASK ((psa_algorithm_t) 0x00c00000) 910 #define PSA_ALG_HMAC_BASE ((psa_algorithm_t) 0x03800000) 922 #define PSA_ALG_HMAC(hash_alg) \ 923 (PSA_ALG_HMAC_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 925 #define PSA_ALG_HMAC_GET_HASH(hmac_alg) \ 926 (PSA_ALG_CATEGORY_HASH | ((hmac_alg) & PSA_ALG_HASH_MASK)) 938 #define PSA_ALG_IS_HMAC(alg) \ 939 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_MAC_SUBCATEGORY_MASK)) == \ 949 #define PSA_ALG_MAC_TRUNCATION_MASK ((psa_algorithm_t) 0x003f0000) 950 #define PSA_MAC_TRUNCATION_OFFSET 16 958 #define PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG ((psa_algorithm_t) 0x00008000) 993 #define PSA_ALG_TRUNCATED_MAC(mac_alg, mac_length) \ 994 (((mac_alg) & ~(PSA_ALG_MAC_TRUNCATION_MASK | \ 995 PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG)) | \ 996 ((mac_length) << PSA_MAC_TRUNCATION_OFFSET & PSA_ALG_MAC_TRUNCATION_MASK)) 1010 #define PSA_ALG_FULL_LENGTH_MAC(mac_alg) \ 1011 ((mac_alg) & ~(PSA_ALG_MAC_TRUNCATION_MASK | \ 1012 PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG)) 1025 #define PSA_MAC_TRUNCATED_LENGTH(mac_alg) \ 1026 (((mac_alg) & PSA_ALG_MAC_TRUNCATION_MASK) >> PSA_MAC_TRUNCATION_OFFSET) 1052 #define PSA_ALG_AT_LEAST_THIS_LENGTH_MAC(mac_alg, min_mac_length) \ 1053 (PSA_ALG_TRUNCATED_MAC(mac_alg, min_mac_length) | \ 1054 PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG) 1056 #define PSA_ALG_CIPHER_MAC_BASE ((psa_algorithm_t) 0x03c00000) 1062 #define PSA_ALG_CBC_MAC ((psa_algorithm_t) 0x03c00100) 1064 #define PSA_ALG_CMAC ((psa_algorithm_t) 0x03c00200) 1074 #define PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) \ 1075 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_MAC_SUBCATEGORY_MASK)) == \ 1076 PSA_ALG_CIPHER_MAC_BASE) 1078 #define PSA_ALG_CIPHER_STREAM_FLAG ((psa_algorithm_t) 0x00800000) 1079 #define PSA_ALG_CIPHER_FROM_BLOCK_FLAG ((psa_algorithm_t) 0x00400000) 1093 #define PSA_ALG_IS_STREAM_CIPHER(alg) \ 1094 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_CIPHER_STREAM_FLAG)) == \ 1095 (PSA_ALG_CATEGORY_CIPHER | PSA_ALG_CIPHER_STREAM_FLAG)) 1103 #define PSA_ALG_STREAM_CIPHER ((psa_algorithm_t) 0x04800100) 1112 #define PSA_ALG_CTR ((psa_algorithm_t) 0x04c01000) 1118 #define PSA_ALG_CFB ((psa_algorithm_t) 0x04c01100) 1124 #define PSA_ALG_OFB ((psa_algorithm_t) 0x04c01200) 1132 #define PSA_ALG_XTS ((psa_algorithm_t) 0x0440ff00) 1152 #define PSA_ALG_ECB_NO_PADDING ((psa_algorithm_t) 0x04404400) 1161 #define PSA_ALG_CBC_NO_PADDING ((psa_algorithm_t) 0x04404000) 1169 #define PSA_ALG_CBC_PKCS7 ((psa_algorithm_t) 0x04404100) 1171 #define PSA_ALG_AEAD_FROM_BLOCK_FLAG ((psa_algorithm_t) 0x00400000) 1182 #define PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) \ 1183 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_AEAD_FROM_BLOCK_FLAG)) == \ 1184 (PSA_ALG_CATEGORY_AEAD | PSA_ALG_AEAD_FROM_BLOCK_FLAG)) 1190 #define PSA_ALG_CCM ((psa_algorithm_t) 0x05500100) 1196 #define PSA_ALG_GCM ((psa_algorithm_t) 0x05500200) 1207 #define PSA_ALG_CHACHA20_POLY1305 ((psa_algorithm_t) 0x05100500) 1213 #define PSA_ALG_AEAD_TAG_LENGTH_MASK ((psa_algorithm_t) 0x003f0000) 1214 #define PSA_AEAD_TAG_LENGTH_OFFSET 16 1222 #define PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG ((psa_algorithm_t) 0x00008000) 1242 #define PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, tag_length) \ 1243 (((aead_alg) & ~(PSA_ALG_AEAD_TAG_LENGTH_MASK | \ 1244 PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG)) | \ 1245 ((tag_length) << PSA_AEAD_TAG_LENGTH_OFFSET & \ 1246 PSA_ALG_AEAD_TAG_LENGTH_MASK)) 1258 #define PSA_ALG_AEAD_GET_TAG_LENGTH(aead_alg) \ 1259 (((aead_alg) & PSA_ALG_AEAD_TAG_LENGTH_MASK) >> \ 1260 PSA_AEAD_TAG_LENGTH_OFFSET) 1270 #define PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG(aead_alg) \ 1272 PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, PSA_ALG_CCM) \ 1273 PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, PSA_ALG_GCM) \ 1274 PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, PSA_ALG_CHACHA20_POLY1305) \ 1276 #define PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, ref) \ 1277 PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, 0) == \ 1278 PSA_ALG_AEAD_WITH_SHORTENED_TAG(ref, 0) ? \ 1305 #define PSA_ALG_AEAD_WITH_AT_LEAST_THIS_LENGTH_TAG(aead_alg, min_tag_length) \ 1306 (PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, min_tag_length) | \ 1307 PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG) 1309 #define PSA_ALG_RSA_PKCS1V15_SIGN_BASE ((psa_algorithm_t) 0x06000200) 1325 #define PSA_ALG_RSA_PKCS1V15_SIGN(hash_alg) \ 1326 (PSA_ALG_RSA_PKCS1V15_SIGN_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1333 #define PSA_ALG_RSA_PKCS1V15_SIGN_RAW PSA_ALG_RSA_PKCS1V15_SIGN_BASE 1334 #define PSA_ALG_IS_RSA_PKCS1V15_SIGN(alg) \ 1335 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_PKCS1V15_SIGN_BASE) 1337 #define PSA_ALG_RSA_PSS_BASE ((psa_algorithm_t) 0x06000300) 1338 #define PSA_ALG_RSA_PSS_ANY_SALT_BASE ((psa_algorithm_t) 0x06001300) 1359 #define PSA_ALG_RSA_PSS(hash_alg) \ 1360 (PSA_ALG_RSA_PSS_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1377 #define PSA_ALG_RSA_PSS_ANY_SALT(hash_alg) \ 1378 (PSA_ALG_RSA_PSS_ANY_SALT_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1391 #define PSA_ALG_IS_RSA_PSS_STANDARD_SALT(alg) \ 1392 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_PSS_BASE) 1405 #define PSA_ALG_IS_RSA_PSS_ANY_SALT(alg) \ 1406 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_PSS_ANY_SALT_BASE) 1423 #define PSA_ALG_IS_RSA_PSS(alg) \ 1424 (PSA_ALG_IS_RSA_PSS_STANDARD_SALT(alg) || \ 1425 PSA_ALG_IS_RSA_PSS_ANY_SALT(alg)) 1427 #define PSA_ALG_ECDSA_BASE ((psa_algorithm_t) 0x06000600) 1448 #define PSA_ALG_ECDSA(hash_alg) \ 1449 (PSA_ALG_ECDSA_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1459 #define PSA_ALG_ECDSA_ANY PSA_ALG_ECDSA_BASE 1460 #define PSA_ALG_DETERMINISTIC_ECDSA_BASE ((psa_algorithm_t) 0x06000700) 1483 #define PSA_ALG_DETERMINISTIC_ECDSA(hash_alg) \ 1484 (PSA_ALG_DETERMINISTIC_ECDSA_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1485 #define PSA_ALG_ECDSA_DETERMINISTIC_FLAG ((psa_algorithm_t) 0x00000100) 1486 #define PSA_ALG_IS_ECDSA(alg) \ 1487 (((alg) & ~PSA_ALG_HASH_MASK & ~PSA_ALG_ECDSA_DETERMINISTIC_FLAG) == \ 1489 #define PSA_ALG_ECDSA_IS_DETERMINISTIC(alg) \ 1490 (((alg) & PSA_ALG_ECDSA_DETERMINISTIC_FLAG) != 0) 1491 #define PSA_ALG_IS_DETERMINISTIC_ECDSA(alg) \ 1492 (PSA_ALG_IS_ECDSA(alg) && PSA_ALG_ECDSA_IS_DETERMINISTIC(alg)) 1493 #define PSA_ALG_IS_RANDOMIZED_ECDSA(alg) \ 1494 (PSA_ALG_IS_ECDSA(alg) && !PSA_ALG_ECDSA_IS_DETERMINISTIC(alg)) 1524 #define PSA_ALG_PURE_EDDSA ((psa_algorithm_t) 0x06000800) 1526 #define PSA_ALG_HASH_EDDSA_BASE ((psa_algorithm_t) 0x06000900) 1527 #define PSA_ALG_IS_HASH_EDDSA(alg) \ 1528 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_HASH_EDDSA_BASE) 1551 #define PSA_ALG_ED25519PH \ 1552 (PSA_ALG_HASH_EDDSA_BASE | (PSA_ALG_SHA_512 & PSA_ALG_HASH_MASK)) 1576 #define PSA_ALG_ED448PH \ 1577 (PSA_ALG_HASH_EDDSA_BASE | (PSA_ALG_SHAKE256_512 & PSA_ALG_HASH_MASK)) 1582 #define PSA_ALG_IS_VENDOR_HASH_AND_SIGN(alg) 0 1601 #define PSA_ALG_IS_SIGN_HASH(alg) \ 1602 (PSA_ALG_IS_RSA_PSS(alg) || PSA_ALG_IS_RSA_PKCS1V15_SIGN(alg) || \ 1603 PSA_ALG_IS_ECDSA(alg) || PSA_ALG_IS_HASH_EDDSA(alg) || \ 1604 PSA_ALG_IS_VENDOR_HASH_AND_SIGN(alg)) 1617 #define PSA_ALG_IS_SIGN_MESSAGE(alg) \ 1618 (PSA_ALG_IS_SIGN_HASH(alg) || (alg) == PSA_ALG_PURE_EDDSA) 1646 #define PSA_ALG_IS_HASH_AND_SIGN(alg) \ 1647 (PSA_ALG_IS_SIGN_HASH(alg) && \ 1648 ((alg) & PSA_ALG_HASH_MASK) != 0) 1668 #define PSA_ALG_SIGN_GET_HASH(alg) \ 1669 (PSA_ALG_IS_HASH_AND_SIGN(alg) ? \ 1670 ((alg) & PSA_ALG_HASH_MASK) | PSA_ALG_CATEGORY_HASH : \ 1675 #define PSA_ALG_RSA_PKCS1V15_CRYPT ((psa_algorithm_t) 0x07000200) 1677 #define PSA_ALG_RSA_OAEP_BASE ((psa_algorithm_t) 0x07000300) 1692 #define PSA_ALG_RSA_OAEP(hash_alg) \ 1693 (PSA_ALG_RSA_OAEP_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1694 #define PSA_ALG_IS_RSA_OAEP(alg) \ 1695 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_OAEP_BASE) 1696 #define PSA_ALG_RSA_OAEP_GET_HASH(alg) \ 1697 (PSA_ALG_IS_RSA_OAEP(alg) ? \ 1698 ((alg) & PSA_ALG_HASH_MASK) | PSA_ALG_CATEGORY_HASH : \ 1701 #define PSA_ALG_HKDF_BASE ((psa_algorithm_t) 0x08000100) 1722 #define PSA_ALG_HKDF(hash_alg) \ 1723 (PSA_ALG_HKDF_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1735 #define PSA_ALG_IS_HKDF(alg) \ 1736 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_HKDF_BASE) 1737 #define PSA_ALG_HKDF_GET_HASH(hkdf_alg) \ 1738 (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK)) 1740 #define PSA_ALG_TLS12_PRF_BASE ((psa_algorithm_t) 0x08000200) 1767 #define PSA_ALG_TLS12_PRF(hash_alg) \ 1768 (PSA_ALG_TLS12_PRF_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1778 #define PSA_ALG_IS_TLS12_PRF(alg) \ 1779 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_TLS12_PRF_BASE) 1780 #define PSA_ALG_TLS12_PRF_GET_HASH(hkdf_alg) \ 1781 (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK)) 1783 #define PSA_ALG_TLS12_PSK_TO_MS_BASE ((psa_algorithm_t) 0x08000300) 1813 #define PSA_ALG_TLS12_PSK_TO_MS(hash_alg) \ 1814 (PSA_ALG_TLS12_PSK_TO_MS_BASE | ((hash_alg) & PSA_ALG_HASH_MASK)) 1824 #define PSA_ALG_IS_TLS12_PSK_TO_MS(alg) \ 1825 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_TLS12_PSK_TO_MS_BASE) 1826 #define PSA_ALG_TLS12_PSK_TO_MS_GET_HASH(hkdf_alg) \ 1827 (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK)) 1829 #define PSA_ALG_KEY_DERIVATION_MASK ((psa_algorithm_t) 0xfe00ffff) 1830 #define PSA_ALG_KEY_AGREEMENT_MASK ((psa_algorithm_t) 0xffff0000) 1846 #define PSA_ALG_KEY_AGREEMENT(ka_alg, kdf_alg) \ 1847 ((ka_alg) | (kdf_alg)) 1849 #define PSA_ALG_KEY_AGREEMENT_GET_KDF(alg) \ 1850 (((alg) & PSA_ALG_KEY_DERIVATION_MASK) | PSA_ALG_CATEGORY_KEY_DERIVATION) 1852 #define PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) \ 1853 (((alg) & PSA_ALG_KEY_AGREEMENT_MASK) | PSA_ALG_CATEGORY_KEY_AGREEMENT) 1869 #define PSA_ALG_IS_RAW_KEY_AGREEMENT(alg) \ 1870 (PSA_ALG_IS_KEY_AGREEMENT(alg) && \ 1871 PSA_ALG_KEY_AGREEMENT_GET_KDF(alg) == PSA_ALG_CATEGORY_KEY_DERIVATION) 1873 #define PSA_ALG_IS_KEY_DERIVATION_OR_AGREEMENT(alg) \ 1874 ((PSA_ALG_IS_KEY_DERIVATION(alg) || PSA_ALG_IS_KEY_AGREEMENT(alg))) 1883 #define PSA_ALG_FFDH ((psa_algorithm_t) 0x09010000) 1897 #define PSA_ALG_IS_FFDH(alg) \ 1898 (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_FFDH) 1925 #define PSA_ALG_ECDH ((psa_algorithm_t) 0x09020000) 1941 #define PSA_ALG_IS_ECDH(alg) \ 1942 (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_ECDH) 1957 #define PSA_ALG_IS_WILDCARD(alg) \ 1958 (PSA_ALG_IS_HASH_AND_SIGN(alg) ? \ 1959 PSA_ALG_SIGN_GET_HASH(alg) == PSA_ALG_ANY_HASH : \ 1960 PSA_ALG_IS_MAC(alg) ? \ 1961 (alg & PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG) != 0 : \ 1962 PSA_ALG_IS_AEAD(alg) ? \ 1963 (alg & PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG) != 0 : \ 1964 (alg) == PSA_ALG_ANY_HASH) 1988 #define PSA_KEY_LIFETIME_VOLATILE ((psa_key_lifetime_t) 0x00000000) 2002 #define PSA_KEY_LIFETIME_PERSISTENT ((psa_key_lifetime_t) 0x00000001) 2008 #define PSA_KEY_PERSISTENCE_VOLATILE ((psa_key_persistence_t) 0x00) 2014 #define PSA_KEY_PERSISTENCE_DEFAULT ((psa_key_persistence_t) 0x01) 2020 #define PSA_KEY_PERSISTENCE_READ_ONLY ((psa_key_persistence_t) 0xff) 2022 #define PSA_KEY_LIFETIME_GET_PERSISTENCE(lifetime) \ 2023 ((psa_key_persistence_t) ((lifetime) & 0x000000ff)) 2025 #define PSA_KEY_LIFETIME_GET_LOCATION(lifetime) \ 2026 ((psa_key_location_t) ((lifetime) >> 8)) 2044 #define PSA_KEY_LIFETIME_IS_VOLATILE(lifetime) \ 2045 (PSA_KEY_LIFETIME_GET_PERSISTENCE(lifetime) == \ 2046 PSA_KEY_PERSISTENCE_VOLATILE) 2065 #define PSA_KEY_LIFETIME_IS_READ_ONLY(lifetime) \ 2066 (PSA_KEY_LIFETIME_GET_PERSISTENCE(lifetime) == \ 2067 PSA_KEY_PERSISTENCE_READ_ONLY) 2078 #define PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION(persistence, location) \ 2079 ((location) << 8 | (persistence)) 2088 #define PSA_KEY_LOCATION_LOCAL_STORAGE ((psa_key_location_t) 0x000000) 2090 #define PSA_KEY_LOCATION_VENDOR_FLAG ((psa_key_location_t) 0x800000) 2100 #define PSA_KEY_ID_NULL ((psa_key_id_t)0) 2104 #define PSA_KEY_ID_USER_MIN ((psa_key_id_t) 0x00000001) 2107 #define PSA_KEY_ID_USER_MAX ((psa_key_id_t) 0x3fffffff) 2110 #define PSA_KEY_ID_VENDOR_MIN ((psa_key_id_t) 0x40000000) 2113 #define PSA_KEY_ID_VENDOR_MAX ((psa_key_id_t) 0x7fffffff) 2116 #if !defined(MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER) 2118 #define MBEDTLS_SVC_KEY_ID_INIT ((psa_key_id_t) 0) 2119 #define MBEDTLS_SVC_KEY_ID_GET_KEY_ID(id) (id) 2120 #define MBEDTLS_SVC_KEY_ID_GET_OWNER_ID(id) (0) 2161 #define MBEDTLS_SVC_KEY_ID_INIT ((mbedtls_svc_key_id_t){ 0, 0 }) 2162 #define MBEDTLS_SVC_KEY_ID_GET_KEY_ID(id) ((id).key_id) 2163 #define MBEDTLS_SVC_KEY_ID_GET_OWNER_ID(id) ((id).owner) 2174 .owner = owner_id };
2187 return (id1.key_id == id2.key_id) &&
2188 mbedtls_key_owner_id_equal(id1.owner, id2.owner);
2199 return key.key_id == 0;
2226 #define PSA_KEY_USAGE_EXPORT ((psa_key_usage_t) 0x00000001) 2242 #define PSA_KEY_USAGE_COPY ((psa_key_usage_t) 0x00000002) 2253 #define PSA_KEY_USAGE_ENCRYPT ((psa_key_usage_t) 0x00000100) 2264 #define PSA_KEY_USAGE_DECRYPT ((psa_key_usage_t) 0x00000200) 2274 #define PSA_KEY_USAGE_SIGN_MESSAGE ((psa_key_usage_t) 0x00000400) 2284 #define PSA_KEY_USAGE_VERIFY_MESSAGE ((psa_key_usage_t) 0x00000800) 2294 #define PSA_KEY_USAGE_SIGN_HASH ((psa_key_usage_t) 0x00001000) 2304 #define PSA_KEY_USAGE_VERIFY_HASH ((psa_key_usage_t) 0x00002000) 2308 #define PSA_KEY_USAGE_DERIVE ((psa_key_usage_t) 0x00004000) 2331 #define PSA_KEY_DERIVATION_INPUT_SECRET ((psa_key_derivation_step_t) 0x0101) 2338 #define PSA_KEY_DERIVATION_INPUT_LABEL ((psa_key_derivation_step_t) 0x0201) 2345 #define PSA_KEY_DERIVATION_INPUT_SALT ((psa_key_derivation_step_t) 0x0202) 2352 #define PSA_KEY_DERIVATION_INPUT_INFO ((psa_key_derivation_step_t) 0x0203) 2359 #define PSA_KEY_DERIVATION_INPUT_SEED ((psa_key_derivation_step_t) 0x0204) 2380 #define MBEDTLS_PSA_ALG_AEAD_EQUAL(aead_alg_1, aead_alg_2) \ 2381 (!(((aead_alg_1) ^ (aead_alg_2)) & \ 2382 ~(PSA_ALG_AEAD_TAG_LENGTH_MASK | PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG)))
static mbedtls_svc_key_id_t mbedtls_svc_key_id_make(unsigned int unused, psa_key_id_t key_id)
psa_key_id_t mbedtls_svc_key_id_t
static int mbedtls_svc_key_id_equal(mbedtls_svc_key_id_t id1, mbedtls_svc_key_id_t id2)
static int mbedtls_svc_key_id_is_null(mbedtls_svc_key_id_t key)