40#ifndef PSA_CRYPTO_SIZES_H
41#define PSA_CRYPTO_SIZES_H
52#define PSA_BITS_TO_BYTES(bits) (((bits) + 7u) / 8u)
53#define PSA_BYTES_TO_BITS(bytes) ((bytes) * 8u)
54#define PSA_MAX_OF_THREE(a, b, c) ((a) <= (b) ? (b) <= (c) ? \
55 (c) : (b) : (a) <= (c) ? (c) : (a))
57#define PSA_ROUND_UP_TO_MULTIPLE(block_size, length) \
58 (((length) + (block_size) - 1) / (block_size) * (block_size))
72#define PSA_HASH_LENGTH(alg) \
74 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 16u : \
75 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 20u : \
76 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 20u : \
77 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 28u : \
78 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 32u : \
79 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 48u : \
80 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 64u : \
81 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 28u : \
82 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 32u : \
83 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 28u : \
84 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 32u : \
85 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 48u : \
86 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 64u : \
104#define PSA_HASH_BLOCK_LENGTH(alg) \
106 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 64u : \
107 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 64u : \
108 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 64u : \
109 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 64u : \
110 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 64u : \
111 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 128u : \
112 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 128u : \
113 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 128u : \
114 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 128u : \
115 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 144u : \
116 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 136u : \
117 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 104u : \
118 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 72u : \
133#if defined(PSA_WANT_ALG_SHA3_224)
134#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 144u
135#elif defined(PSA_WANT_ALG_SHA3_256)
136#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 136u
137#elif defined(PSA_WANT_ALG_SHA_512)
138#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128u
139#elif defined(PSA_WANT_ALG_SHA_384)
140#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128u
141#elif defined(PSA_WANT_ALG_SHA3_384)
142#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 104u
143#elif defined(PSA_WANT_ALG_SHA3_512)
144#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 72u
145#elif defined(PSA_WANT_ALG_SHA_256)
146#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
147#elif defined(PSA_WANT_ALG_SHA_224)
148#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
150#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
153#if defined(PSA_WANT_ALG_SHA_512) || defined(PSA_WANT_ALG_SHA3_512)
154#define PSA_HASH_MAX_SIZE 64u
155#elif defined(PSA_WANT_ALG_SHA_384) || defined(PSA_WANT_ALG_SHA3_384)
156#define PSA_HASH_MAX_SIZE 48u
157#elif defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA3_256)
158#define PSA_HASH_MAX_SIZE 32u
159#elif defined(PSA_WANT_ALG_SHA_224) || defined(PSA_WANT_ALG_SHA3_224)
160#define PSA_HASH_MAX_SIZE 28u
162#define PSA_HASH_MAX_SIZE 20u
177#define PSA_MAC_MAX_SIZE PSA_HASH_MAX_SIZE
200#define PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg) \
201 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
202 PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
203 ((void) (key_bits), 0u))
209#define PSA_AEAD_TAG_MAX_SIZE 16u
224#define PSA_VENDOR_RSA_MAX_KEY_BITS 4096u
232#if defined(MBEDTLS_RSA_GEN_KEY_MIN_BITS)
233#define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS MBEDTLS_RSA_GEN_KEY_MIN_BITS
235#define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS 1024
242#define PSA_VENDOR_FFDH_MAX_KEY_BITS 8192u
246#if defined(PSA_WANT_ECC_SECP_R1_521)
247#define PSA_VENDOR_ECC_MAX_CURVE_BITS 521u
248#elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_512)
249#define PSA_VENDOR_ECC_MAX_CURVE_BITS 512u
250#elif defined(PSA_WANT_ECC_MONTGOMERY_448)
251#define PSA_VENDOR_ECC_MAX_CURVE_BITS 448u
252#elif defined(PSA_WANT_ECC_SECP_R1_384)
253#define PSA_VENDOR_ECC_MAX_CURVE_BITS 384u
254#elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_384)
255#define PSA_VENDOR_ECC_MAX_CURVE_BITS 384u
256#elif defined(PSA_WANT_ECC_SECP_R1_256)
257#define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
258#elif defined(PSA_WANT_ECC_SECP_K1_256)
259#define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
260#elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_256)
261#define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
262#elif defined(PSA_WANT_ECC_MONTGOMERY_255)
263#define PSA_VENDOR_ECC_MAX_CURVE_BITS 255u
264#elif defined(PSA_WANT_ECC_SECP_R1_224)
265#define PSA_VENDOR_ECC_MAX_CURVE_BITS 224u
266#elif defined(PSA_WANT_ECC_SECP_K1_224)
267#define PSA_VENDOR_ECC_MAX_CURVE_BITS 224u
268#elif defined(PSA_WANT_ECC_SECP_R1_192)
269#define PSA_VENDOR_ECC_MAX_CURVE_BITS 192u
270#elif defined(PSA_WANT_ECC_SECP_K1_192)
271#define PSA_VENDOR_ECC_MAX_CURVE_BITS 192u
273#define PSA_VENDOR_ECC_MAX_CURVE_BITS 0u
291#define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE 128u
295#define PSA_TLS12_ECJPAKE_TO_PMS_INPUT_SIZE 65u
300#define PSA_TLS12_ECJPAKE_TO_PMS_DATA_SIZE 32u
304#define PSA_VENDOR_PBKDF2_MAX_ITERATIONS 0xffffffffU
307#define PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE 16u
330#define PSA_MAC_LENGTH(key_type, key_bits, alg) \
331 ((alg) & PSA_ALG_MAC_TRUNCATION_MASK ? PSA_MAC_TRUNCATED_LENGTH(alg) : \
332 PSA_ALG_IS_HMAC(alg) ? PSA_HASH_LENGTH(PSA_ALG_HMAC_GET_HASH(alg)) : \
333 PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
334 ((void) (key_type), (void) (key_bits), 0u))
362#define PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext_length) \
363 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
364 (plaintext_length) + PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
385#define PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(plaintext_length) \
386 ((plaintext_length) + PSA_AEAD_TAG_MAX_SIZE)
415#define PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext_length) \
416 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
417 (ciphertext_length) > PSA_ALG_AEAD_GET_TAG_LENGTH(alg) ? \
418 (ciphertext_length) - PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
439#define PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(ciphertext_length) \
467#define PSA_AEAD_NONCE_LENGTH(key_type, alg) \
468 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) == 16 ? \
469 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CCM) ? 13u : \
470 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_GCM) ? 12u : \
472 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
473 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CHACHA20_POLY1305) ? 12u : \
487#define PSA_AEAD_NONCE_MAX_SIZE 13u
519#define PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
520 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
521 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
522 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), (input_length)) : \
536#define PSA_AEAD_UPDATE_OUTPUT_MAX_SIZE(input_length) \
537 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, (input_length)))
560#define PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg) \
561 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
562 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
563 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
571#define PSA_AEAD_FINISH_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
594#define PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg) \
595 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
596 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
597 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
605#define PSA_AEAD_VERIFY_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
607#define PSA_RSA_MINIMUM_PADDING_SIZE(alg) \
608 (PSA_ALG_IS_RSA_OAEP(alg) ? \
609 2u * PSA_HASH_LENGTH(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1u : \
620#define PSA_ECDSA_SIGNATURE_SIZE(curve_bits) \
621 (PSA_BITS_TO_BYTES(curve_bits) * 2u)
648#define PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg) \
649 (PSA_KEY_TYPE_IS_RSA(key_type) ? ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
650 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_ECDSA_SIGNATURE_SIZE(key_bits) : \
653#define PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE \
654 PSA_ECDSA_SIGNATURE_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
663#define PSA_SIGNATURE_MAX_SIZE 1
665#if (defined(PSA_WANT_ALG_ECDSA) || defined(PSA_WANT_ALG_DETERMINISTIC_ECDSA)) && \
666 (PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE > PSA_SIGNATURE_MAX_SIZE)
667#undef PSA_SIGNATURE_MAX_SIZE
668#define PSA_SIGNATURE_MAX_SIZE PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE
670#if (defined(PSA_WANT_ALG_RSA_PKCS1V15_SIGN) || defined(PSA_WANT_ALG_RSA_PSS)) && \
671 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) > PSA_SIGNATURE_MAX_SIZE)
672#undef PSA_SIGNATURE_MAX_SIZE
673#define PSA_SIGNATURE_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS)
701#define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
702 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
703 ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
712#define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE \
713 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
740#define PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
741 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
742 PSA_BITS_TO_BYTES(key_bits) - PSA_RSA_MINIMUM_PADDING_SIZE(alg) : \
752#define PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE \
753 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
765#define PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(bits) \
779#define PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
780 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 11u)
804#define PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) \
805 (9u * PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE((key_bits) / 2u + 1u) + 14u)
823#define PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
824 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3u + 59u)
842#define PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) \
843 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3u + 75u)
855#define PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) \
856 (2u * PSA_BITS_TO_BYTES(key_bits) + 1u)
862#define PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) \
863 (PSA_BITS_TO_BYTES(key_bits))
869#define PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(key_bits) \
870 (PSA_BITS_TO_BYTES(key_bits))
874#define PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(key_bits) \
875 (PSA_BITS_TO_BYTES(key_bits))
916#define PSA_EXPORT_KEY_OUTPUT_SIZE(key_type, key_bits) \
917 (PSA_KEY_TYPE_IS_UNSTRUCTURED(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
918 PSA_KEY_TYPE_IS_DH(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
919 (key_type) == PSA_KEY_TYPE_RSA_KEY_PAIR ? PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) : \
920 (key_type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
921 (key_type) == PSA_KEY_TYPE_DSA_KEY_PAIR ? PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) : \
922 (key_type) == PSA_KEY_TYPE_DSA_PUBLIC_KEY ? PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
923 PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) : \
924 PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
972#define PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, key_bits) \
973 (PSA_KEY_TYPE_IS_RSA(key_type) ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
974 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
975 PSA_KEY_TYPE_IS_DH(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
986#define PSA_EXPORT_KEY_PAIR_MAX_SIZE 1
988#if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC) && \
989 (PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) > \
990 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
991#undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
992#define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
993 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
995#if defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC) && \
996 (PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
997 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
998#undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
999#define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
1000 PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS)
1002#if defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_BASIC) && \
1003 (PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS) > \
1004 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
1005#undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
1006#define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
1007 PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1019#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE 1
1021#if defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY) && \
1022 (PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) > \
1023 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1024#undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1025#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1026 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
1028#if defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY) && \
1029 (PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
1030 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1031#undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1032#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1033 PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS)
1035#if defined(PSA_WANT_KEY_TYPE_DH_PUBLIC_KEY) && \
1036 (PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS) > \
1037 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1038#undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1039#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1040 PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1066#define PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(key_type, key_bits) \
1067 ((PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) || \
1068 PSA_KEY_TYPE_IS_DH_KEY_PAIR(key_type)) ? PSA_BITS_TO_BYTES(key_bits) : 0u)
1077#define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE 1
1079#if defined(PSA_WANT_ALG_ECDH) && \
1080 (PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS) > PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE)
1081#undef PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE
1082#define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS)
1084#if defined(PSA_WANT_ALG_FFDH) && \
1085 (PSA_BITS_TO_BYTES(PSA_VENDOR_FFDH_MAX_KEY_BITS) > PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE)
1086#undef PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE
1087#define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1114#define PSA_CIPHER_IV_LENGTH(key_type, alg) \
1115 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) > 1 && \
1116 ((alg) == PSA_ALG_CTR || \
1117 (alg) == PSA_ALG_CFB || \
1118 (alg) == PSA_ALG_OFB || \
1119 (alg) == PSA_ALG_XTS || \
1120 (alg) == PSA_ALG_CBC_NO_PADDING || \
1121 (alg) == PSA_ALG_CBC_PKCS7) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1122 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
1123 (alg) == PSA_ALG_STREAM_CIPHER ? 12u : \
1124 (alg) == PSA_ALG_CCM_STAR_NO_TAG ? 13u : \
1131#define PSA_CIPHER_IV_MAX_SIZE 16u
1156#define PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1157 (alg == PSA_ALG_CBC_PKCS7 ? \
1158 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1159 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1160 (input_length) + 1u) + \
1161 PSA_CIPHER_IV_LENGTH((key_type), (alg)) : 0u) : \
1162 (PSA_ALG_IS_CIPHER(alg) ? \
1163 (input_length) + PSA_CIPHER_IV_LENGTH((key_type), (alg)) : \
1177#define PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input_length) \
1178 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, \
1179 (input_length) + 1u) + \
1180 PSA_CIPHER_IV_MAX_SIZE)
1201#define PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1202 (PSA_ALG_IS_CIPHER(alg) && \
1203 ((key_type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \
1217#define PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(input_length) \
1238#define PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
1239 (PSA_ALG_IS_CIPHER(alg) ? \
1240 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1241 (((alg) == PSA_ALG_CBC_PKCS7 || \
1242 (alg) == PSA_ALG_CBC_NO_PADDING || \
1243 (alg) == PSA_ALG_ECB_NO_PADDING) ? \
1244 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1246 (input_length)) : 0u) : \
1259#define PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input_length) \
1260 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, input_length))
1279#define PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg) \
1280 (PSA_ALG_IS_CIPHER(alg) ? \
1281 (alg == PSA_ALG_CBC_PKCS7 ? \
1282 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1291#define PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE \
1292 (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
Build-time PSA configuration info.