40 #ifndef PSA_CRYPTO_SIZES_H 41 #define PSA_CRYPTO_SIZES_H 45 #if !defined(MBEDTLS_CONFIG_FILE) 48 #include MBEDTLS_CONFIG_FILE 51 #define PSA_BITS_TO_BYTES(bits) (((bits) + 7) / 8) 52 #define PSA_BYTES_TO_BITS(bytes) ((bytes) * 8) 54 #define PSA_ROUND_UP_TO_MULTIPLE(block_size, length) \ 55 (((length) + (block_size) - 1) / (block_size) * (block_size)) 69 #define PSA_HASH_LENGTH(alg) \ 71 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD2 ? 16 : \ 72 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD4 ? 16 : \ 73 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 16 : \ 74 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 20 : \ 75 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 20 : \ 76 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 28 : \ 77 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 32 : \ 78 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 48 : \ 79 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 64 : \ 80 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 28 : \ 81 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 32 : \ 82 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 28 : \ 83 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 32 : \ 84 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 48 : \ 85 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 64 : \ 103 #define PSA_HASH_BLOCK_LENGTH(alg) \ 105 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD2 ? 16 : \ 106 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD4 ? 64 : \ 107 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 64 : \ 108 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 64 : \ 109 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 64 : \ 110 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 64 : \ 111 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 64 : \ 112 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 128 : \ 113 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 128 : \ 114 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 128 : \ 115 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 128 : \ 116 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 144 : \ 117 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 136 : \ 118 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 104 : \ 119 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 72 : \ 132 #if defined(PSA_WANT_ALG_SHA_512) || defined(PSA_WANT_ALG_SHA_384) 133 #define PSA_HASH_MAX_SIZE 64 134 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128 136 #define PSA_HASH_MAX_SIZE 32 137 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64 152 #define PSA_MAC_MAX_SIZE PSA_HASH_MAX_SIZE 175 #define PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg) \ 176 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \ 177 PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \ 178 ((void) (key_bits), 0)) 184 #define PSA_AEAD_TAG_MAX_SIZE 16 199 #define PSA_VENDOR_RSA_MAX_KEY_BITS 4096 203 #if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED) 204 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 521 205 #elif defined(MBEDTLS_ECP_DP_BP512R1_ENABLED) 206 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 512 207 #elif defined(MBEDTLS_ECP_DP_CURVE448_ENABLED) 208 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 448 209 #elif defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED) 210 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 384 211 #elif defined(MBEDTLS_ECP_DP_BP384R1_ENABLED) 212 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 384 213 #elif defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED) 214 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256 215 #elif defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED) 216 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256 217 #elif defined(MBEDTLS_ECP_DP_BP256R1_ENABLED) 218 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256 219 #elif defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED) 220 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 255 221 #elif defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED) 222 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 224 223 #elif defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED) 224 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 224 225 #elif defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED) 226 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 192 227 #elif defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED) 228 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 192 230 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 0 248 #define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE 128 251 #define PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE 16 274 #define PSA_MAC_LENGTH(key_type, key_bits, alg) \ 275 ((alg) & PSA_ALG_MAC_TRUNCATION_MASK ? PSA_MAC_TRUNCATED_LENGTH(alg) : \ 276 PSA_ALG_IS_HMAC(alg) ? PSA_HASH_LENGTH(PSA_ALG_HMAC_GET_HASH(alg)) : \ 277 PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \ 278 ((void) (key_type), (void) (key_bits), 0)) 306 #define PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext_length) \ 307 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \ 308 (plaintext_length) + PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \ 329 #define PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(plaintext_length) \ 330 ((plaintext_length) + PSA_AEAD_TAG_MAX_SIZE) 359 #define PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext_length) \ 360 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \ 361 (ciphertext_length) > PSA_ALG_AEAD_GET_TAG_LENGTH(alg) ? \ 362 (ciphertext_length) - PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \ 383 #define PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(ciphertext_length) \ 411 #define PSA_AEAD_NONCE_LENGTH(key_type, alg) \ 412 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) == 16 ? \ 413 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CCM) ? 13 : \ 414 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_GCM) ? 12 : \ 416 (key_type) == PSA_KEY_TYPE_CHACHA20 && \ 417 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CHACHA20_POLY1305) ? 12 : \ 431 #define PSA_AEAD_NONCE_MAX_SIZE 13 463 #define PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \ 464 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \ 465 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \ 466 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), (input_length)) : \ 480 #define PSA_AEAD_UPDATE_OUTPUT_MAX_SIZE(input_length) \ 481 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, (input_length))) 504 #define PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg) \ 505 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \ 506 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \ 507 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \ 515 #define PSA_AEAD_FINISH_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE) 538 #define PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg) \ 539 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \ 540 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \ 541 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \ 549 #define PSA_AEAD_VERIFY_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE) 551 #define PSA_RSA_MINIMUM_PADDING_SIZE(alg) \ 552 (PSA_ALG_IS_RSA_OAEP(alg) ? \ 553 2 * PSA_HASH_LENGTH(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1 : \ 564 #define PSA_ECDSA_SIGNATURE_SIZE(curve_bits) \ 565 (PSA_BITS_TO_BYTES(curve_bits) * 2) 592 #define PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg) \ 593 (PSA_KEY_TYPE_IS_RSA(key_type) ? ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \ 594 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_ECDSA_SIGNATURE_SIZE(key_bits) : \ 597 #define PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE \ 598 PSA_ECDSA_SIGNATURE_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) 607 #define PSA_SIGNATURE_MAX_SIZE \ 608 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) > PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE ? \ 609 PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) : \ 610 PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE) 637 #define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \ 638 (PSA_KEY_TYPE_IS_RSA(key_type) ? \ 639 ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \ 648 #define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE \ 649 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS)) 676 #define PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \ 677 (PSA_KEY_TYPE_IS_RSA(key_type) ? \ 678 PSA_BITS_TO_BYTES(key_bits) - PSA_RSA_MINIMUM_PADDING_SIZE(alg) : \ 688 #define PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE \ 689 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS)) 701 #define PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(bits) \ 715 #define PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) \ 716 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 11) 740 #define PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) \ 741 (9 * PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE((key_bits) / 2 + 1) + 14) 759 #define PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) \ 760 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3 + 59) 778 #define PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) \ 779 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3 + 75) 791 #define PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) \ 792 (2 * PSA_BITS_TO_BYTES(key_bits) + 1) 798 #define PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) \ 799 (PSA_BITS_TO_BYTES(key_bits)) 840 #define PSA_EXPORT_KEY_OUTPUT_SIZE(key_type, key_bits) \ 841 (PSA_KEY_TYPE_IS_UNSTRUCTURED(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \ 842 (key_type) == PSA_KEY_TYPE_RSA_KEY_PAIR ? PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) : \ 843 (key_type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \ 844 (key_type) == PSA_KEY_TYPE_DSA_KEY_PAIR ? PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) : \ 845 (key_type) == PSA_KEY_TYPE_DSA_PUBLIC_KEY ? PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \ 846 PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) : \ 847 PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \ 895 #define PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, key_bits) \ 896 (PSA_KEY_TYPE_IS_RSA(key_type) ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \ 897 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \ 908 #define PSA_EXPORT_KEY_PAIR_MAX_SIZE \ 909 (PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \ 910 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) ? \ 911 PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) : \ 912 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)) 923 #define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \ 924 (PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \ 925 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) ? \ 926 PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) : \ 927 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)) 953 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(key_type, key_bits) \ 954 (PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? \ 955 PSA_BITS_TO_BYTES(key_bits) : \ 965 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE \ 966 (PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS)) 992 #define PSA_CIPHER_IV_LENGTH(key_type, alg) \ 993 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) > 1 && \ 994 ((alg) == PSA_ALG_CTR || \ 995 (alg) == PSA_ALG_CFB || \ 996 (alg) == PSA_ALG_OFB || \ 997 (alg) == PSA_ALG_XTS || \ 998 (alg) == PSA_ALG_CBC_NO_PADDING || \ 999 (alg) == PSA_ALG_CBC_PKCS7) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \ 1000 (key_type) == PSA_KEY_TYPE_CHACHA20 && \ 1001 (alg) == PSA_ALG_STREAM_CIPHER ? 12 : \ 1008 #define PSA_CIPHER_IV_MAX_SIZE 16 1033 #define PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_length) \ 1034 (alg == PSA_ALG_CBC_PKCS7 ? \ 1035 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \ 1036 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \ 1037 (input_length) + 1) + \ 1038 PSA_CIPHER_IV_LENGTH((key_type), (alg)) : 0) : \ 1039 (PSA_ALG_IS_CIPHER(alg) ? \ 1040 (input_length) + PSA_CIPHER_IV_LENGTH((key_type), (alg)) : \ 1054 #define PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input_length) \ 1055 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, \ 1056 (input_length) + 1) + \ 1057 PSA_CIPHER_IV_MAX_SIZE) 1078 #define PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_length) \ 1079 (PSA_ALG_IS_CIPHER(alg) && \ 1080 ((key_type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \ 1094 #define PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(input_length) \ 1115 #define PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \ 1116 (PSA_ALG_IS_CIPHER(alg) ? \ 1117 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \ 1118 (((alg) == PSA_ALG_CBC_PKCS7 || \ 1119 (alg) == PSA_ALG_CBC_NO_PADDING || \ 1120 (alg) == PSA_ALG_ECB_NO_PADDING) ? \ 1121 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \ 1123 (input_length)) : 0) : \ 1136 #define PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input_length) \ 1137 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, input_length)) 1156 #define PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg) \ 1157 (PSA_ALG_IS_CIPHER(alg) ? \ 1158 (alg == PSA_ALG_CBC_PKCS7 ? \ 1159 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \ 1168 #define PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE \ 1169 (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE) Configuration options (set of defines)