40 #ifndef PSA_CRYPTO_SIZES_H
41 #define PSA_CRYPTO_SIZES_H
52 #define PSA_BITS_TO_BYTES(bits) (((bits) + 7u) / 8u)
53 #define PSA_BYTES_TO_BITS(bytes) ((bytes) * 8u)
54 #define PSA_MAX_OF_THREE(a, b, c) ((a) <= (b) ? (b) <= (c) ? \
55 (c) : (b) : (a) <= (c) ? (c) : (a))
57 #define PSA_ROUND_UP_TO_MULTIPLE(block_size, length) \
58 (((length) + (block_size) - 1) / (block_size) * (block_size))
72 #define PSA_HASH_LENGTH(alg) \
74 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 16u : \
75 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 20u : \
76 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 20u : \
77 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 28u : \
78 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 32u : \
79 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 48u : \
80 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 64u : \
81 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 28u : \
82 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 32u : \
83 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 28u : \
84 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 32u : \
85 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 48u : \
86 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 64u : \
104 #define PSA_HASH_BLOCK_LENGTH(alg) \
106 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 64u : \
107 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 64u : \
108 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 64u : \
109 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 64u : \
110 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 64u : \
111 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 128u : \
112 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 128u : \
113 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 128u : \
114 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 128u : \
115 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 144u : \
116 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 136u : \
117 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 104u : \
118 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 72u : \
133 #if defined(PSA_WANT_ALG_SHA3_224)
134 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 144u
135 #elif defined(PSA_WANT_ALG_SHA3_256)
136 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 136u
137 #elif defined(PSA_WANT_ALG_SHA_512)
138 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128u
139 #elif defined(PSA_WANT_ALG_SHA_384)
140 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128u
141 #elif defined(PSA_WANT_ALG_SHA3_384)
142 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 104u
143 #elif defined(PSA_WANT_ALG_SHA3_512)
144 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 72u
145 #elif defined(PSA_WANT_ALG_SHA_256)
146 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
147 #elif defined(PSA_WANT_ALG_SHA_224)
148 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
150 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
153 #if defined(PSA_WANT_ALG_SHA_512) || defined(PSA_WANT_ALG_SHA3_512)
154 #define PSA_HASH_MAX_SIZE 64u
155 #elif defined(PSA_WANT_ALG_SHA_384) || defined(PSA_WANT_ALG_SHA3_384)
156 #define PSA_HASH_MAX_SIZE 48u
157 #elif defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA3_256)
158 #define PSA_HASH_MAX_SIZE 32u
159 #elif defined(PSA_WANT_ALG_SHA_224) || defined(PSA_WANT_ALG_SHA3_224)
160 #define PSA_HASH_MAX_SIZE 28u
162 #define PSA_HASH_MAX_SIZE 20u
177 #define PSA_MAC_MAX_SIZE PSA_HASH_MAX_SIZE
200 #define PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg) \
201 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
202 PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
203 ((void) (key_bits), 0u))
209 #define PSA_AEAD_TAG_MAX_SIZE 16u
224 #define PSA_VENDOR_RSA_MAX_KEY_BITS 4096u
232 #if defined(MBEDTLS_RSA_GEN_KEY_MIN_BITS)
233 #define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS MBEDTLS_RSA_GEN_KEY_MIN_BITS
235 #define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS 1024
242 #define PSA_VENDOR_FFDH_MAX_KEY_BITS 8192u
246 #if defined(PSA_WANT_ECC_SECP_R1_521)
247 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 521u
248 #elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_512)
249 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 512u
250 #elif defined(PSA_WANT_ECC_MONTGOMERY_448)
251 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 448u
252 #elif defined(PSA_WANT_ECC_SECP_R1_384)
253 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 384u
254 #elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_384)
255 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 384u
256 #elif defined(PSA_WANT_ECC_SECP_R1_256)
257 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
258 #elif defined(PSA_WANT_ECC_SECP_K1_256)
259 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
260 #elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_256)
261 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
262 #elif defined(PSA_WANT_ECC_MONTGOMERY_255)
263 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 255u
264 #elif defined(PSA_WANT_ECC_SECP_R1_224)
265 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 224u
266 #elif defined(PSA_WANT_ECC_SECP_K1_224)
267 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 224u
268 #elif defined(PSA_WANT_ECC_SECP_R1_192)
269 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 192u
270 #elif defined(PSA_WANT_ECC_SECP_K1_192)
271 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 192u
273 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 0u
291 #define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE 128u
295 #define PSA_TLS12_ECJPAKE_TO_PMS_INPUT_SIZE 65u
300 #define PSA_TLS12_ECJPAKE_TO_PMS_DATA_SIZE 32u
304 #define PSA_VENDOR_PBKDF2_MAX_ITERATIONS 0xffffffffU
307 #define PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE 16u
330 #define PSA_MAC_LENGTH(key_type, key_bits, alg) \
331 ((alg) & PSA_ALG_MAC_TRUNCATION_MASK ? PSA_MAC_TRUNCATED_LENGTH(alg) : \
332 PSA_ALG_IS_HMAC(alg) ? PSA_HASH_LENGTH(PSA_ALG_HMAC_GET_HASH(alg)) : \
333 PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
334 ((void) (key_type), (void) (key_bits), 0u))
362 #define PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext_length) \
363 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
364 (plaintext_length) + PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
385 #define PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(plaintext_length) \
386 ((plaintext_length) + PSA_AEAD_TAG_MAX_SIZE)
415 #define PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext_length) \
416 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
417 (ciphertext_length) > PSA_ALG_AEAD_GET_TAG_LENGTH(alg) ? \
418 (ciphertext_length) - PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
439 #define PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(ciphertext_length) \
467 #define PSA_AEAD_NONCE_LENGTH(key_type, alg) \
468 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) == 16 ? \
469 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CCM) ? 13u : \
470 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_GCM) ? 12u : \
472 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
473 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CHACHA20_POLY1305) ? 12u : \
487 #define PSA_AEAD_NONCE_MAX_SIZE 13u
519 #define PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
520 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
521 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
522 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), (input_length)) : \
536 #define PSA_AEAD_UPDATE_OUTPUT_MAX_SIZE(input_length) \
537 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, (input_length)))
560 #define PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg) \
561 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
562 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
563 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
571 #define PSA_AEAD_FINISH_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
594 #define PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg) \
595 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
596 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
597 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
605 #define PSA_AEAD_VERIFY_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
607 #define PSA_RSA_MINIMUM_PADDING_SIZE(alg) \
608 (PSA_ALG_IS_RSA_OAEP(alg) ? \
609 2u * PSA_HASH_LENGTH(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1u : \
620 #define PSA_ECDSA_SIGNATURE_SIZE(curve_bits) \
621 (PSA_BITS_TO_BYTES(curve_bits) * 2u)
648 #define PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg) \
649 (PSA_KEY_TYPE_IS_RSA(key_type) ? ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
650 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_ECDSA_SIGNATURE_SIZE(key_bits) : \
653 #define PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE \
654 PSA_ECDSA_SIGNATURE_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
663 #define PSA_SIGNATURE_MAX_SIZE 1
665 #if (defined(PSA_WANT_ALG_ECDSA) || defined(PSA_WANT_ALG_DETERMINISTIC_ECDSA)) && \
666 (PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE > PSA_SIGNATURE_MAX_SIZE)
667 #undef PSA_SIGNATURE_MAX_SIZE
668 #define PSA_SIGNATURE_MAX_SIZE PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE
670 #if (defined(PSA_WANT_ALG_RSA_PKCS1V15_SIGN) || defined(PSA_WANT_ALG_RSA_PSS)) && \
671 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) > PSA_SIGNATURE_MAX_SIZE)
672 #undef PSA_SIGNATURE_MAX_SIZE
673 #define PSA_SIGNATURE_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS)
701 #define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
702 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
703 ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
712 #define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE \
713 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
740 #define PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
741 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
742 PSA_BITS_TO_BYTES(key_bits) - PSA_RSA_MINIMUM_PADDING_SIZE(alg) : \
752 #define PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE \
753 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
765 #define PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(bits) \
779 #define PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
780 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 11u)
804 #define PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) \
805 (9u * PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE((key_bits) / 2u + 1u) + 14u)
823 #define PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
824 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3u + 59u)
842 #define PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) \
843 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3u + 75u)
855 #define PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) \
856 (2u * PSA_BITS_TO_BYTES(key_bits) + 1u)
862 #define PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) \
863 (PSA_BITS_TO_BYTES(key_bits))
869 #define PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(key_bits) \
870 (PSA_BITS_TO_BYTES(key_bits))
874 #define PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(key_bits) \
875 (PSA_BITS_TO_BYTES(key_bits))
916 #define PSA_EXPORT_KEY_OUTPUT_SIZE(key_type, key_bits) \
917 (PSA_KEY_TYPE_IS_UNSTRUCTURED(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
918 PSA_KEY_TYPE_IS_DH(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
919 (key_type) == PSA_KEY_TYPE_RSA_KEY_PAIR ? PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) : \
920 (key_type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
921 (key_type) == PSA_KEY_TYPE_DSA_KEY_PAIR ? PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) : \
922 (key_type) == PSA_KEY_TYPE_DSA_PUBLIC_KEY ? PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
923 PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) : \
924 PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
972 #define PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, key_bits) \
973 (PSA_KEY_TYPE_IS_RSA(key_type) ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
974 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
975 PSA_KEY_TYPE_IS_DH(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
986 #define PSA_EXPORT_KEY_PAIR_MAX_SIZE 1
988 #if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC) && \
989 (PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) > \
990 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
991 #undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
992 #define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
993 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
995 #if defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC) && \
996 (PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
997 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
998 #undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
999 #define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
1000 PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS)
1002 #if defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_BASIC) && \
1003 (PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS) > \
1004 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
1005 #undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
1006 #define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
1007 PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1019 #define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE 1
1021 #if defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY) && \
1022 (PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) > \
1023 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1024 #undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1025 #define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1026 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
1028 #if defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY) && \
1029 (PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
1030 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1031 #undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1032 #define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1033 PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS)
1035 #if defined(PSA_WANT_KEY_TYPE_DH_PUBLIC_KEY) && \
1036 (PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS) > \
1037 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1038 #undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1039 #define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1040 PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1066 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(key_type, key_bits) \
1067 ((PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) || \
1068 PSA_KEY_TYPE_IS_DH_KEY_PAIR(key_type)) ? PSA_BITS_TO_BYTES(key_bits) : 0u)
1077 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE 1
1079 #if defined(PSA_WANT_ALG_ECDH) && \
1080 (PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS) > PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE)
1081 #undef PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE
1082 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS)
1084 #if defined(PSA_WANT_ALG_FFDH) && \
1085 (PSA_BITS_TO_BYTES(PSA_VENDOR_FFDH_MAX_KEY_BITS) > PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE)
1086 #undef PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE
1087 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1114 #define PSA_CIPHER_IV_LENGTH(key_type, alg) \
1115 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) > 1 && \
1116 ((alg) == PSA_ALG_CTR || \
1117 (alg) == PSA_ALG_CFB || \
1118 (alg) == PSA_ALG_OFB || \
1119 (alg) == PSA_ALG_XTS || \
1120 (alg) == PSA_ALG_CBC_NO_PADDING || \
1121 (alg) == PSA_ALG_CBC_PKCS7) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1122 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
1123 (alg) == PSA_ALG_STREAM_CIPHER ? 12u : \
1124 (alg) == PSA_ALG_CCM_STAR_NO_TAG ? 13u : \
1131 #define PSA_CIPHER_IV_MAX_SIZE 16u
1156 #define PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1157 (alg == PSA_ALG_CBC_PKCS7 ? \
1158 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1159 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1160 (input_length) + 1u) + \
1161 PSA_CIPHER_IV_LENGTH((key_type), (alg)) : 0u) : \
1162 (PSA_ALG_IS_CIPHER(alg) ? \
1163 (input_length) + PSA_CIPHER_IV_LENGTH((key_type), (alg)) : \
1177 #define PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input_length) \
1178 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, \
1179 (input_length) + 1u) + \
1180 PSA_CIPHER_IV_MAX_SIZE)
1201 #define PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1202 (PSA_ALG_IS_CIPHER(alg) && \
1203 ((key_type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \
1217 #define PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(input_length) \
1238 #define PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
1239 (PSA_ALG_IS_CIPHER(alg) ? \
1240 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1241 (((alg) == PSA_ALG_CBC_PKCS7 || \
1242 (alg) == PSA_ALG_CBC_NO_PADDING || \
1243 (alg) == PSA_ALG_ECB_NO_PADDING) ? \
1244 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1246 (input_length)) : 0u) : \
1259 #define PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input_length) \
1260 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, input_length))
1279 #define PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg) \
1280 (PSA_ALG_IS_CIPHER(alg) ? \
1281 (alg == PSA_ALG_CBC_PKCS7 ? \
1282 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1291 #define PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE \
1292 (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
Build-time PSA configuration info.