39#ifndef PSA_CRYPTO_VALUES_H
40#define PSA_CRYPTO_VALUES_H
68#define PSA_SUCCESS ((psa_status_t)0)
75#define PSA_ERROR_GENERIC_ERROR ((psa_status_t)-132)
84#define PSA_ERROR_NOT_SUPPORTED ((psa_status_t)-134)
97#define PSA_ERROR_NOT_PERMITTED ((psa_status_t)-133)
109#define PSA_ERROR_BUFFER_TOO_SMALL ((psa_status_t)-138)
115#define PSA_ERROR_ALREADY_EXISTS ((psa_status_t)-139)
121#define PSA_ERROR_DOES_NOT_EXIST ((psa_status_t)-140)
137#define PSA_ERROR_BAD_STATE ((psa_status_t)-137)
148#define PSA_ERROR_INVALID_ARGUMENT ((psa_status_t)-135)
154#define PSA_ERROR_INSUFFICIENT_MEMORY ((psa_status_t)-141)
163#define PSA_ERROR_INSUFFICIENT_STORAGE ((psa_status_t)-142)
180#define PSA_ERROR_COMMUNICATION_FAILURE ((psa_status_t)-145)
205#define PSA_ERROR_STORAGE_FAILURE ((psa_status_t)-146)
211#define PSA_ERROR_HARDWARE_FAILURE ((psa_status_t)-147)
242#define PSA_ERROR_CORRUPTION_DETECTED ((psa_status_t)-151)
261#define PSA_ERROR_INSUFFICIENT_ENTROPY ((psa_status_t)-148)
271#define PSA_ERROR_INVALID_SIGNATURE ((psa_status_t)-149)
287#define PSA_ERROR_INVALID_PADDING ((psa_status_t)-150)
291#define PSA_ERROR_INSUFFICIENT_DATA ((psa_status_t)-143)
295#define PSA_ERROR_INVALID_HANDLE ((psa_status_t)-136)
319#define PSA_ERROR_DATA_CORRUPT ((psa_status_t)-152)
335#define PSA_ERROR_DATA_INVALID ((psa_status_t)-153)
355#define PSA_KEY_TYPE_NONE ((psa_key_type_t) 0x0000)
364#define PSA_KEY_TYPE_VENDOR_FLAG ((psa_key_type_t) 0x8000)
366#define PSA_KEY_TYPE_CATEGORY_MASK ((psa_key_type_t) 0x7000)
367#define PSA_KEY_TYPE_CATEGORY_RAW ((psa_key_type_t) 0x1000)
368#define PSA_KEY_TYPE_CATEGORY_SYMMETRIC ((psa_key_type_t) 0x2000)
369#define PSA_KEY_TYPE_CATEGORY_PUBLIC_KEY ((psa_key_type_t) 0x4000)
370#define PSA_KEY_TYPE_CATEGORY_KEY_PAIR ((psa_key_type_t) 0x7000)
372#define PSA_KEY_TYPE_CATEGORY_FLAG_PAIR ((psa_key_type_t) 0x3000)
378#define PSA_KEY_TYPE_IS_VENDOR_DEFINED(type) \
379 (((type) & PSA_KEY_TYPE_VENDOR_FLAG) != 0)
385#define PSA_KEY_TYPE_IS_UNSTRUCTURED(type) \
386 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_RAW || \
387 ((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC)
390#define PSA_KEY_TYPE_IS_ASYMMETRIC(type) \
391 (((type) & PSA_KEY_TYPE_CATEGORY_MASK \
392 & ~PSA_KEY_TYPE_CATEGORY_FLAG_PAIR) == \
393 PSA_KEY_TYPE_CATEGORY_PUBLIC_KEY)
395#define PSA_KEY_TYPE_IS_PUBLIC_KEY(type) \
396 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_PUBLIC_KEY)
399#define PSA_KEY_TYPE_IS_KEY_PAIR(type) \
400 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_KEY_PAIR)
411#define PSA_KEY_TYPE_KEY_PAIR_OF_PUBLIC_KEY(type) \
412 ((type) | PSA_KEY_TYPE_CATEGORY_FLAG_PAIR)
423#define PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) \
424 ((type) & ~PSA_KEY_TYPE_CATEGORY_FLAG_PAIR)
430#define PSA_KEY_TYPE_RAW_DATA ((psa_key_type_t) 0x1001)
440#define PSA_KEY_TYPE_HMAC ((psa_key_type_t) 0x1100)
447#define PSA_KEY_TYPE_DERIVE ((psa_key_type_t) 0x1200)
454#define PSA_KEY_TYPE_AES ((psa_key_type_t) 0x2400)
458#define PSA_KEY_TYPE_ARIA ((psa_key_type_t) 0x2406)
469#define PSA_KEY_TYPE_DES ((psa_key_type_t) 0x2301)
473#define PSA_KEY_TYPE_CAMELLIA ((psa_key_type_t) 0x2403)
479#define PSA_KEY_TYPE_ARC4 ((psa_key_type_t) 0x2002)
488#define PSA_KEY_TYPE_CHACHA20 ((psa_key_type_t) 0x2004)
494#define PSA_KEY_TYPE_RSA_PUBLIC_KEY ((psa_key_type_t) 0x4001)
499#define PSA_KEY_TYPE_RSA_KEY_PAIR ((psa_key_type_t) 0x7001)
501#define PSA_KEY_TYPE_IS_RSA(type) \
502 (PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY)
504#define PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE ((psa_key_type_t) 0x4100)
505#define PSA_KEY_TYPE_ECC_KEY_PAIR_BASE ((psa_key_type_t) 0x7100)
506#define PSA_KEY_TYPE_ECC_CURVE_MASK ((psa_key_type_t) 0x00ff)
516#define PSA_KEY_TYPE_ECC_KEY_PAIR(curve) \
517 (PSA_KEY_TYPE_ECC_KEY_PAIR_BASE | (curve))
527#define PSA_KEY_TYPE_ECC_PUBLIC_KEY(curve) \
528 (PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE | (curve))
531#define PSA_KEY_TYPE_IS_ECC(type) \
532 ((PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) & \
533 ~PSA_KEY_TYPE_ECC_CURVE_MASK) == PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE)
535#define PSA_KEY_TYPE_IS_ECC_KEY_PAIR(type) \
536 (((type) & ~PSA_KEY_TYPE_ECC_CURVE_MASK) == \
537 PSA_KEY_TYPE_ECC_KEY_PAIR_BASE)
539#define PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(type) \
540 (((type) & ~PSA_KEY_TYPE_ECC_CURVE_MASK) == \
541 PSA_KEY_TYPE_ECC_PUBLIC_KEY_BASE)
544#define PSA_KEY_TYPE_ECC_GET_FAMILY(type) \
545 ((psa_ecc_family_t) (PSA_KEY_TYPE_IS_ECC(type) ? \
546 ((type) & PSA_KEY_TYPE_ECC_CURVE_MASK) : \
557#define PSA_ECC_FAMILY_SECP_K1 ((psa_ecc_family_t) 0x17)
567#define PSA_ECC_FAMILY_SECP_R1 ((psa_ecc_family_t) 0x12)
569#define PSA_ECC_FAMILY_SECP_R2 ((psa_ecc_family_t) 0x1b)
579#define PSA_ECC_FAMILY_SECT_K1 ((psa_ecc_family_t) 0x27)
589#define PSA_ECC_FAMILY_SECT_R1 ((psa_ecc_family_t) 0x22)
599#define PSA_ECC_FAMILY_SECT_R2 ((psa_ecc_family_t) 0x2b)
608#define PSA_ECC_FAMILY_BRAINPOOL_P_R1 ((psa_ecc_family_t) 0x30)
620#define PSA_ECC_FAMILY_MONTGOMERY ((psa_ecc_family_t) 0x41)
636#define PSA_ECC_FAMILY_TWISTED_EDWARDS ((psa_ecc_family_t) 0x42)
638#define PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE ((psa_key_type_t) 0x4200)
639#define PSA_KEY_TYPE_DH_KEY_PAIR_BASE ((psa_key_type_t) 0x7200)
640#define PSA_KEY_TYPE_DH_GROUP_MASK ((psa_key_type_t) 0x00ff)
646#define PSA_KEY_TYPE_DH_KEY_PAIR(group) \
647 (PSA_KEY_TYPE_DH_KEY_PAIR_BASE | (group))
653#define PSA_KEY_TYPE_DH_PUBLIC_KEY(group) \
654 (PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE | (group))
657#define PSA_KEY_TYPE_IS_DH(type) \
658 ((PSA_KEY_TYPE_PUBLIC_KEY_OF_KEY_PAIR(type) & \
659 ~PSA_KEY_TYPE_DH_GROUP_MASK) == PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE)
661#define PSA_KEY_TYPE_IS_DH_KEY_PAIR(type) \
662 (((type) & ~PSA_KEY_TYPE_DH_GROUP_MASK) == \
663 PSA_KEY_TYPE_DH_KEY_PAIR_BASE)
665#define PSA_KEY_TYPE_IS_DH_PUBLIC_KEY(type) \
666 (((type) & ~PSA_KEY_TYPE_DH_GROUP_MASK) == \
667 PSA_KEY_TYPE_DH_PUBLIC_KEY_BASE)
670#define PSA_KEY_TYPE_DH_GET_FAMILY(type) \
671 ((psa_dh_family_t) (PSA_KEY_TYPE_IS_DH(type) ? \
672 ((type) & PSA_KEY_TYPE_DH_GROUP_MASK) : \
681#define PSA_DH_FAMILY_RFC7919 ((psa_dh_family_t) 0x03)
683#define PSA_GET_KEY_TYPE_BLOCK_SIZE_EXPONENT(type) \
703#define PSA_BLOCK_CIPHER_BLOCK_LENGTH(type) \
704 (((type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \
705 1u << PSA_GET_KEY_TYPE_BLOCK_SIZE_EXPONENT(type) : \
720#define PSA_ALG_VENDOR_FLAG ((psa_algorithm_t) 0x80000000)
722#define PSA_ALG_CATEGORY_MASK ((psa_algorithm_t) 0x7f000000)
723#define PSA_ALG_CATEGORY_HASH ((psa_algorithm_t) 0x02000000)
724#define PSA_ALG_CATEGORY_MAC ((psa_algorithm_t) 0x03000000)
725#define PSA_ALG_CATEGORY_CIPHER ((psa_algorithm_t) 0x04000000)
726#define PSA_ALG_CATEGORY_AEAD ((psa_algorithm_t) 0x05000000)
727#define PSA_ALG_CATEGORY_SIGN ((psa_algorithm_t) 0x06000000)
728#define PSA_ALG_CATEGORY_ASYMMETRIC_ENCRYPTION ((psa_algorithm_t) 0x07000000)
729#define PSA_ALG_CATEGORY_KEY_DERIVATION ((psa_algorithm_t) 0x08000000)
730#define PSA_ALG_CATEGORY_KEY_AGREEMENT ((psa_algorithm_t) 0x09000000)
736#define PSA_ALG_IS_VENDOR_DEFINED(alg) \
737 (((alg) & PSA_ALG_VENDOR_FLAG) != 0)
747#define PSA_ALG_IS_HASH(alg) \
748 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_HASH)
758#define PSA_ALG_IS_MAC(alg) \
759 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_MAC)
769#define PSA_ALG_IS_CIPHER(alg) \
770 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_CIPHER)
781#define PSA_ALG_IS_AEAD(alg) \
782 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_AEAD)
793#define PSA_ALG_IS_SIGN(alg) \
794 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_SIGN)
805#define PSA_ALG_IS_ASYMMETRIC_ENCRYPTION(alg) \
806 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_ASYMMETRIC_ENCRYPTION)
816#define PSA_ALG_IS_KEY_AGREEMENT(alg) \
817 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_KEY_AGREEMENT)
827#define PSA_ALG_IS_KEY_DERIVATION(alg) \
828 (((alg) & PSA_ALG_CATEGORY_MASK) == PSA_ALG_CATEGORY_KEY_DERIVATION)
832#define PSA_ALG_NONE ((psa_algorithm_t)0)
835#define PSA_ALG_HASH_MASK ((psa_algorithm_t) 0x000000ff)
837#define PSA_ALG_MD2 ((psa_algorithm_t) 0x02000001)
839#define PSA_ALG_MD4 ((psa_algorithm_t) 0x02000002)
841#define PSA_ALG_MD5 ((psa_algorithm_t) 0x02000003)
843#define PSA_ALG_RIPEMD160 ((psa_algorithm_t) 0x02000004)
845#define PSA_ALG_SHA_1 ((psa_algorithm_t) 0x02000005)
847#define PSA_ALG_SHA_224 ((psa_algorithm_t) 0x02000008)
849#define PSA_ALG_SHA_256 ((psa_algorithm_t) 0x02000009)
851#define PSA_ALG_SHA_384 ((psa_algorithm_t) 0x0200000a)
853#define PSA_ALG_SHA_512 ((psa_algorithm_t) 0x0200000b)
855#define PSA_ALG_SHA_512_224 ((psa_algorithm_t) 0x0200000c)
857#define PSA_ALG_SHA_512_256 ((psa_algorithm_t) 0x0200000d)
859#define PSA_ALG_SHA3_224 ((psa_algorithm_t) 0x02000010)
861#define PSA_ALG_SHA3_256 ((psa_algorithm_t) 0x02000011)
863#define PSA_ALG_SHA3_384 ((psa_algorithm_t) 0x02000012)
865#define PSA_ALG_SHA3_512 ((psa_algorithm_t) 0x02000013)
872#define PSA_ALG_SHAKE256_512 ((psa_algorithm_t) 0x02000015)
907#define PSA_ALG_ANY_HASH ((psa_algorithm_t) 0x020000ff)
909#define PSA_ALG_MAC_SUBCATEGORY_MASK ((psa_algorithm_t) 0x00c00000)
910#define PSA_ALG_HMAC_BASE ((psa_algorithm_t) 0x03800000)
922#define PSA_ALG_HMAC(hash_alg) \
923 (PSA_ALG_HMAC_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
925#define PSA_ALG_HMAC_GET_HASH(hmac_alg) \
926 (PSA_ALG_CATEGORY_HASH | ((hmac_alg) & PSA_ALG_HASH_MASK))
938#define PSA_ALG_IS_HMAC(alg) \
939 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_MAC_SUBCATEGORY_MASK)) == \
949#define PSA_ALG_MAC_TRUNCATION_MASK ((psa_algorithm_t) 0x003f0000)
950#define PSA_MAC_TRUNCATION_OFFSET 16
958#define PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG ((psa_algorithm_t) 0x00008000)
993#define PSA_ALG_TRUNCATED_MAC(mac_alg, mac_length) \
994 (((mac_alg) & ~(PSA_ALG_MAC_TRUNCATION_MASK | \
995 PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG)) | \
996 ((mac_length) << PSA_MAC_TRUNCATION_OFFSET & PSA_ALG_MAC_TRUNCATION_MASK))
1010#define PSA_ALG_FULL_LENGTH_MAC(mac_alg) \
1011 ((mac_alg) & ~(PSA_ALG_MAC_TRUNCATION_MASK | \
1012 PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG))
1025#define PSA_MAC_TRUNCATED_LENGTH(mac_alg) \
1026 (((mac_alg) & PSA_ALG_MAC_TRUNCATION_MASK) >> PSA_MAC_TRUNCATION_OFFSET)
1052#define PSA_ALG_AT_LEAST_THIS_LENGTH_MAC(mac_alg, min_mac_length) \
1053 (PSA_ALG_TRUNCATED_MAC(mac_alg, min_mac_length) | \
1054 PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG)
1056#define PSA_ALG_CIPHER_MAC_BASE ((psa_algorithm_t) 0x03c00000)
1062#define PSA_ALG_CBC_MAC ((psa_algorithm_t) 0x03c00100)
1064#define PSA_ALG_CMAC ((psa_algorithm_t) 0x03c00200)
1074#define PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) \
1075 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_MAC_SUBCATEGORY_MASK)) == \
1076 PSA_ALG_CIPHER_MAC_BASE)
1078#define PSA_ALG_CIPHER_STREAM_FLAG ((psa_algorithm_t) 0x00800000)
1079#define PSA_ALG_CIPHER_FROM_BLOCK_FLAG ((psa_algorithm_t) 0x00400000)
1093#define PSA_ALG_IS_STREAM_CIPHER(alg) \
1094 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_CIPHER_STREAM_FLAG)) == \
1095 (PSA_ALG_CATEGORY_CIPHER | PSA_ALG_CIPHER_STREAM_FLAG))
1103#define PSA_ALG_STREAM_CIPHER ((psa_algorithm_t) 0x04800100)
1112#define PSA_ALG_CTR ((psa_algorithm_t) 0x04c01000)
1118#define PSA_ALG_CFB ((psa_algorithm_t) 0x04c01100)
1124#define PSA_ALG_OFB ((psa_algorithm_t) 0x04c01200)
1132#define PSA_ALG_XTS ((psa_algorithm_t) 0x0440ff00)
1152#define PSA_ALG_ECB_NO_PADDING ((psa_algorithm_t) 0x04404400)
1161#define PSA_ALG_CBC_NO_PADDING ((psa_algorithm_t) 0x04404000)
1169#define PSA_ALG_CBC_PKCS7 ((psa_algorithm_t) 0x04404100)
1171#define PSA_ALG_AEAD_FROM_BLOCK_FLAG ((psa_algorithm_t) 0x00400000)
1182#define PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) \
1183 (((alg) & (PSA_ALG_CATEGORY_MASK | PSA_ALG_AEAD_FROM_BLOCK_FLAG)) == \
1184 (PSA_ALG_CATEGORY_AEAD | PSA_ALG_AEAD_FROM_BLOCK_FLAG))
1190#define PSA_ALG_CCM ((psa_algorithm_t) 0x05500100)
1196#define PSA_ALG_GCM ((psa_algorithm_t) 0x05500200)
1207#define PSA_ALG_CHACHA20_POLY1305 ((psa_algorithm_t) 0x05100500)
1213#define PSA_ALG_AEAD_TAG_LENGTH_MASK ((psa_algorithm_t) 0x003f0000)
1214#define PSA_AEAD_TAG_LENGTH_OFFSET 16
1222#define PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG ((psa_algorithm_t) 0x00008000)
1242#define PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, tag_length) \
1243 (((aead_alg) & ~(PSA_ALG_AEAD_TAG_LENGTH_MASK | \
1244 PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG)) | \
1245 ((tag_length) << PSA_AEAD_TAG_LENGTH_OFFSET & \
1246 PSA_ALG_AEAD_TAG_LENGTH_MASK))
1258#define PSA_ALG_AEAD_GET_TAG_LENGTH(aead_alg) \
1259 (((aead_alg) & PSA_ALG_AEAD_TAG_LENGTH_MASK) >> \
1260 PSA_AEAD_TAG_LENGTH_OFFSET)
1270#define PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG(aead_alg) \
1272 PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, PSA_ALG_CCM) \
1273 PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, PSA_ALG_GCM) \
1274 PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, PSA_ALG_CHACHA20_POLY1305) \
1276#define PSA_ALG_AEAD_WITH_DEFAULT_LENGTH_TAG_CASE(aead_alg, ref) \
1277 PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, 0) == \
1278 PSA_ALG_AEAD_WITH_SHORTENED_TAG(ref, 0) ? \
1305#define PSA_ALG_AEAD_WITH_AT_LEAST_THIS_LENGTH_TAG(aead_alg, min_tag_length) \
1306 (PSA_ALG_AEAD_WITH_SHORTENED_TAG(aead_alg, min_tag_length) | \
1307 PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG)
1309#define PSA_ALG_RSA_PKCS1V15_SIGN_BASE ((psa_algorithm_t) 0x06000200)
1325#define PSA_ALG_RSA_PKCS1V15_SIGN(hash_alg) \
1326 (PSA_ALG_RSA_PKCS1V15_SIGN_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1333#define PSA_ALG_RSA_PKCS1V15_SIGN_RAW PSA_ALG_RSA_PKCS1V15_SIGN_BASE
1334#define PSA_ALG_IS_RSA_PKCS1V15_SIGN(alg) \
1335 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_PKCS1V15_SIGN_BASE)
1337#define PSA_ALG_RSA_PSS_BASE ((psa_algorithm_t) 0x06000300)
1338#define PSA_ALG_RSA_PSS_ANY_SALT_BASE ((psa_algorithm_t) 0x06001300)
1359#define PSA_ALG_RSA_PSS(hash_alg) \
1360 (PSA_ALG_RSA_PSS_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1377#define PSA_ALG_RSA_PSS_ANY_SALT(hash_alg) \
1378 (PSA_ALG_RSA_PSS_ANY_SALT_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1391#define PSA_ALG_IS_RSA_PSS_STANDARD_SALT(alg) \
1392 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_PSS_BASE)
1405#define PSA_ALG_IS_RSA_PSS_ANY_SALT(alg) \
1406 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_PSS_ANY_SALT_BASE)
1423#define PSA_ALG_IS_RSA_PSS(alg) \
1424 (PSA_ALG_IS_RSA_PSS_STANDARD_SALT(alg) || \
1425 PSA_ALG_IS_RSA_PSS_ANY_SALT(alg))
1427#define PSA_ALG_ECDSA_BASE ((psa_algorithm_t) 0x06000600)
1448#define PSA_ALG_ECDSA(hash_alg) \
1449 (PSA_ALG_ECDSA_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1459#define PSA_ALG_ECDSA_ANY PSA_ALG_ECDSA_BASE
1460#define PSA_ALG_DETERMINISTIC_ECDSA_BASE ((psa_algorithm_t) 0x06000700)
1483#define PSA_ALG_DETERMINISTIC_ECDSA(hash_alg) \
1484 (PSA_ALG_DETERMINISTIC_ECDSA_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1485#define PSA_ALG_ECDSA_DETERMINISTIC_FLAG ((psa_algorithm_t) 0x00000100)
1486#define PSA_ALG_IS_ECDSA(alg) \
1487 (((alg) & ~PSA_ALG_HASH_MASK & ~PSA_ALG_ECDSA_DETERMINISTIC_FLAG) == \
1489#define PSA_ALG_ECDSA_IS_DETERMINISTIC(alg) \
1490 (((alg) & PSA_ALG_ECDSA_DETERMINISTIC_FLAG) != 0)
1491#define PSA_ALG_IS_DETERMINISTIC_ECDSA(alg) \
1492 (PSA_ALG_IS_ECDSA(alg) && PSA_ALG_ECDSA_IS_DETERMINISTIC(alg))
1493#define PSA_ALG_IS_RANDOMIZED_ECDSA(alg) \
1494 (PSA_ALG_IS_ECDSA(alg) && !PSA_ALG_ECDSA_IS_DETERMINISTIC(alg))
1524#define PSA_ALG_PURE_EDDSA ((psa_algorithm_t) 0x06000800)
1526#define PSA_ALG_HASH_EDDSA_BASE ((psa_algorithm_t) 0x06000900)
1527#define PSA_ALG_IS_HASH_EDDSA(alg) \
1528 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_HASH_EDDSA_BASE)
1551#define PSA_ALG_ED25519PH \
1552 (PSA_ALG_HASH_EDDSA_BASE | (PSA_ALG_SHA_512 & PSA_ALG_HASH_MASK))
1576#define PSA_ALG_ED448PH \
1577 (PSA_ALG_HASH_EDDSA_BASE | (PSA_ALG_SHAKE256_512 & PSA_ALG_HASH_MASK))
1582#define PSA_ALG_IS_VENDOR_HASH_AND_SIGN(alg) 0
1601#define PSA_ALG_IS_SIGN_HASH(alg) \
1602 (PSA_ALG_IS_RSA_PSS(alg) || PSA_ALG_IS_RSA_PKCS1V15_SIGN(alg) || \
1603 PSA_ALG_IS_ECDSA(alg) || PSA_ALG_IS_HASH_EDDSA(alg) || \
1604 PSA_ALG_IS_VENDOR_HASH_AND_SIGN(alg))
1617#define PSA_ALG_IS_SIGN_MESSAGE(alg) \
1618 (PSA_ALG_IS_SIGN_HASH(alg) || (alg) == PSA_ALG_PURE_EDDSA)
1646#define PSA_ALG_IS_HASH_AND_SIGN(alg) \
1647 (PSA_ALG_IS_SIGN_HASH(alg) && \
1648 ((alg) & PSA_ALG_HASH_MASK) != 0)
1668#define PSA_ALG_SIGN_GET_HASH(alg) \
1669 (PSA_ALG_IS_HASH_AND_SIGN(alg) ? \
1670 ((alg) & PSA_ALG_HASH_MASK) | PSA_ALG_CATEGORY_HASH : \
1675#define PSA_ALG_RSA_PKCS1V15_CRYPT ((psa_algorithm_t) 0x07000200)
1677#define PSA_ALG_RSA_OAEP_BASE ((psa_algorithm_t) 0x07000300)
1692#define PSA_ALG_RSA_OAEP(hash_alg) \
1693 (PSA_ALG_RSA_OAEP_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1694#define PSA_ALG_IS_RSA_OAEP(alg) \
1695 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_RSA_OAEP_BASE)
1696#define PSA_ALG_RSA_OAEP_GET_HASH(alg) \
1697 (PSA_ALG_IS_RSA_OAEP(alg) ? \
1698 ((alg) & PSA_ALG_HASH_MASK) | PSA_ALG_CATEGORY_HASH : \
1701#define PSA_ALG_HKDF_BASE ((psa_algorithm_t) 0x08000100)
1722#define PSA_ALG_HKDF(hash_alg) \
1723 (PSA_ALG_HKDF_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1735#define PSA_ALG_IS_HKDF(alg) \
1736 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_HKDF_BASE)
1737#define PSA_ALG_HKDF_GET_HASH(hkdf_alg) \
1738 (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK))
1740#define PSA_ALG_TLS12_PRF_BASE ((psa_algorithm_t) 0x08000200)
1767#define PSA_ALG_TLS12_PRF(hash_alg) \
1768 (PSA_ALG_TLS12_PRF_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1778#define PSA_ALG_IS_TLS12_PRF(alg) \
1779 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_TLS12_PRF_BASE)
1780#define PSA_ALG_TLS12_PRF_GET_HASH(hkdf_alg) \
1781 (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK))
1783#define PSA_ALG_TLS12_PSK_TO_MS_BASE ((psa_algorithm_t) 0x08000300)
1813#define PSA_ALG_TLS12_PSK_TO_MS(hash_alg) \
1814 (PSA_ALG_TLS12_PSK_TO_MS_BASE | ((hash_alg) & PSA_ALG_HASH_MASK))
1824#define PSA_ALG_IS_TLS12_PSK_TO_MS(alg) \
1825 (((alg) & ~PSA_ALG_HASH_MASK) == PSA_ALG_TLS12_PSK_TO_MS_BASE)
1826#define PSA_ALG_TLS12_PSK_TO_MS_GET_HASH(hkdf_alg) \
1827 (PSA_ALG_CATEGORY_HASH | ((hkdf_alg) & PSA_ALG_HASH_MASK))
1829#define PSA_ALG_KEY_DERIVATION_MASK ((psa_algorithm_t) 0xfe00ffff)
1830#define PSA_ALG_KEY_AGREEMENT_MASK ((psa_algorithm_t) 0xffff0000)
1846#define PSA_ALG_KEY_AGREEMENT(ka_alg, kdf_alg) \
1847 ((ka_alg) | (kdf_alg))
1849#define PSA_ALG_KEY_AGREEMENT_GET_KDF(alg) \
1850 (((alg) & PSA_ALG_KEY_DERIVATION_MASK) | PSA_ALG_CATEGORY_KEY_DERIVATION)
1852#define PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) \
1853 (((alg) & PSA_ALG_KEY_AGREEMENT_MASK) | PSA_ALG_CATEGORY_KEY_AGREEMENT)
1869#define PSA_ALG_IS_RAW_KEY_AGREEMENT(alg) \
1870 (PSA_ALG_IS_KEY_AGREEMENT(alg) && \
1871 PSA_ALG_KEY_AGREEMENT_GET_KDF(alg) == PSA_ALG_CATEGORY_KEY_DERIVATION)
1873#define PSA_ALG_IS_KEY_DERIVATION_OR_AGREEMENT(alg) \
1874 ((PSA_ALG_IS_KEY_DERIVATION(alg) || PSA_ALG_IS_KEY_AGREEMENT(alg)))
1883#define PSA_ALG_FFDH ((psa_algorithm_t) 0x09010000)
1897#define PSA_ALG_IS_FFDH(alg) \
1898 (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_FFDH)
1925#define PSA_ALG_ECDH ((psa_algorithm_t) 0x09020000)
1941#define PSA_ALG_IS_ECDH(alg) \
1942 (PSA_ALG_KEY_AGREEMENT_GET_BASE(alg) == PSA_ALG_ECDH)
1957#define PSA_ALG_IS_WILDCARD(alg) \
1958 (PSA_ALG_IS_HASH_AND_SIGN(alg) ? \
1959 PSA_ALG_SIGN_GET_HASH(alg) == PSA_ALG_ANY_HASH : \
1960 PSA_ALG_IS_MAC(alg) ? \
1961 (alg & PSA_ALG_MAC_AT_LEAST_THIS_LENGTH_FLAG) != 0 : \
1962 PSA_ALG_IS_AEAD(alg) ? \
1963 (alg & PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG) != 0 : \
1964 (alg) == PSA_ALG_ANY_HASH)
1988#define PSA_KEY_LIFETIME_VOLATILE ((psa_key_lifetime_t) 0x00000000)
2002#define PSA_KEY_LIFETIME_PERSISTENT ((psa_key_lifetime_t) 0x00000001)
2008#define PSA_KEY_PERSISTENCE_VOLATILE ((psa_key_persistence_t) 0x00)
2014#define PSA_KEY_PERSISTENCE_DEFAULT ((psa_key_persistence_t) 0x01)
2020#define PSA_KEY_PERSISTENCE_READ_ONLY ((psa_key_persistence_t) 0xff)
2022#define PSA_KEY_LIFETIME_GET_PERSISTENCE(lifetime) \
2023 ((psa_key_persistence_t) ((lifetime) & 0x000000ff))
2025#define PSA_KEY_LIFETIME_GET_LOCATION(lifetime) \
2026 ((psa_key_location_t) ((lifetime) >> 8))
2044#define PSA_KEY_LIFETIME_IS_VOLATILE(lifetime) \
2045 (PSA_KEY_LIFETIME_GET_PERSISTENCE(lifetime) == \
2046 PSA_KEY_PERSISTENCE_VOLATILE)
2065#define PSA_KEY_LIFETIME_IS_READ_ONLY(lifetime) \
2066 (PSA_KEY_LIFETIME_GET_PERSISTENCE(lifetime) == \
2067 PSA_KEY_PERSISTENCE_READ_ONLY)
2078#define PSA_KEY_LIFETIME_FROM_PERSISTENCE_AND_LOCATION(persistence, location) \
2079 ((location) << 8 | (persistence))
2088#define PSA_KEY_LOCATION_LOCAL_STORAGE ((psa_key_location_t) 0x000000)
2090#define PSA_KEY_LOCATION_VENDOR_FLAG ((psa_key_location_t) 0x800000)
2100#define PSA_KEY_ID_NULL ((psa_key_id_t)0)
2104#define PSA_KEY_ID_USER_MIN ((psa_key_id_t) 0x00000001)
2107#define PSA_KEY_ID_USER_MAX ((psa_key_id_t) 0x3fffffff)
2110#define PSA_KEY_ID_VENDOR_MIN ((psa_key_id_t) 0x40000000)
2113#define PSA_KEY_ID_VENDOR_MAX ((psa_key_id_t) 0x7fffffff)
2116#if !defined(MBEDTLS_PSA_CRYPTO_KEY_ID_ENCODES_OWNER)
2118#define MBEDTLS_SVC_KEY_ID_INIT ((psa_key_id_t) 0)
2119#define MBEDTLS_SVC_KEY_ID_GET_KEY_ID(id) (id)
2120#define MBEDTLS_SVC_KEY_ID_GET_OWNER_ID(id) (0)
2161#define MBEDTLS_SVC_KEY_ID_INIT ((mbedtls_svc_key_id_t){ 0, 0 })
2162#define MBEDTLS_SVC_KEY_ID_GET_KEY_ID(id) ((id).key_id)
2163#define MBEDTLS_SVC_KEY_ID_GET_OWNER_ID(id) ((id).owner)
2174 .owner = owner_id };
2187 return (id1.key_id == id2.key_id) &&
2188 mbedtls_key_owner_id_equal(id1.owner, id2.owner);
2199 return key.key_id == 0;
2226#define PSA_KEY_USAGE_EXPORT ((psa_key_usage_t) 0x00000001)
2242#define PSA_KEY_USAGE_COPY ((psa_key_usage_t) 0x00000002)
2253#define PSA_KEY_USAGE_ENCRYPT ((psa_key_usage_t) 0x00000100)
2264#define PSA_KEY_USAGE_DECRYPT ((psa_key_usage_t) 0x00000200)
2274#define PSA_KEY_USAGE_SIGN_MESSAGE ((psa_key_usage_t) 0x00000400)
2284#define PSA_KEY_USAGE_VERIFY_MESSAGE ((psa_key_usage_t) 0x00000800)
2294#define PSA_KEY_USAGE_SIGN_HASH ((psa_key_usage_t) 0x00001000)
2304#define PSA_KEY_USAGE_VERIFY_HASH ((psa_key_usage_t) 0x00002000)
2308#define PSA_KEY_USAGE_DERIVE ((psa_key_usage_t) 0x00004000)
2331#define PSA_KEY_DERIVATION_INPUT_SECRET ((psa_key_derivation_step_t) 0x0101)
2338#define PSA_KEY_DERIVATION_INPUT_LABEL ((psa_key_derivation_step_t) 0x0201)
2345#define PSA_KEY_DERIVATION_INPUT_SALT ((psa_key_derivation_step_t) 0x0202)
2352#define PSA_KEY_DERIVATION_INPUT_INFO ((psa_key_derivation_step_t) 0x0203)
2359#define PSA_KEY_DERIVATION_INPUT_SEED ((psa_key_derivation_step_t) 0x0204)
2380#define MBEDTLS_PSA_ALG_AEAD_EQUAL(aead_alg_1, aead_alg_2) \
2381 (!(((aead_alg_1) ^ (aead_alg_2)) & \
2382 ~(PSA_ALG_AEAD_TAG_LENGTH_MASK | PSA_ALG_AEAD_AT_LEAST_THIS_LENGTH_FLAG)))
static mbedtls_svc_key_id_t mbedtls_svc_key_id_make(unsigned int unused, psa_key_id_t key_id)
static int mbedtls_svc_key_id_is_null(mbedtls_svc_key_id_t key)
psa_key_id_t mbedtls_svc_key_id_t
static int mbedtls_svc_key_id_equal(mbedtls_svc_key_id_t id1, mbedtls_svc_key_id_t id2)