Merge pull request #27 from hanno-arm/crypto_submodule_update_prs_6_18_19_sibling

PSA integration sibling: Update crypto submodule (Hash clone, Key Policy Init, Key slot alloc)
2025-07-29 11:41:15 +03:00 · 2019-01-28 11:33:28 +00:00
parent 4d69cf1a84 2169a5e54d
commit 37a8c0c144
6 changed files with 13 additions and 15 deletions
--- a/library/cipher.c
+++ b/library/cipher.c
@ -308,7 +308,7 @@ int mbedtls_cipher_setkey( mbedtls_cipher_context_t *ctx,
            return( MBEDTLS_ERR_CIPHER_FEATURE_UNAVAILABLE );

        /* Allocate a key slot to use. */
-        status = psa_allocate_key( key_type, key_bitlen, &cipher_psa->slot );
+        status = psa_allocate_key( &cipher_psa->slot );
        if( status != PSA_SUCCESS )
            return( MBEDTLS_ERR_CIPHER_HW_ACCEL_FAILED );

@ -322,7 +322,7 @@ int mbedtls_cipher_setkey( mbedtls_cipher_context_t *ctx,
         * mbedtls_cipher_free() needs to be called in any case. */

        /* Setup policy for the new key slot. */
-        psa_key_policy_init( &key_policy );
+        key_policy = psa_key_policy_init();

        /* Mbed TLS' cipher layer doesn't enforce the mode of operation
         * (encrypt vs. decrypt): it is possible to setup a key for encryption
--- a/library/pk.c
+++ b/library/pk.c
@ -576,11 +576,11 @@ int mbedtls_pk_wrap_as_opaque( mbedtls_pk_context *pk,
                                 mbedtls_psa_parse_tls_ecc_group ( curve_id ) );

    /* allocate a key slot */
-    if( PSA_SUCCESS != psa_allocate_key( key_type, d_len * 8, &key ) )
+    if( PSA_SUCCESS != psa_allocate_key( &key ) )
        return( MBEDTLS_ERR_PK_HW_ACCEL_FAILED );

    /* set policy */
-    psa_key_policy_init( &policy );
+    policy = psa_key_policy_init();
    psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_SIGN,
                                       PSA_ALG_ECDSA(hash_alg) );
    if( PSA_SUCCESS != psa_set_key_policy( key, &policy ) )
--- a/library/pk_wrap.c
+++ b/library/pk_wrap.c
@ -577,12 +577,10 @@ static int ecdsa_verify_wrap( void *ctx, mbedtls_md_type_t md_alg,
    psa_sig_md = PSA_ALG_ECDSA( psa_md );
    psa_type = PSA_KEY_TYPE_ECC_PUBLIC_KEY( curve );

-    if( ( ret = psa_allocate_key( psa_type,
-                                  MBEDTLS_PSA_ECC_KEY_BITS_OF_CURVE(curve),
-                                  &key_slot ) ) != PSA_SUCCESS )
+    if( ( ret = psa_allocate_key( &key_slot ) ) != PSA_SUCCESS )
          return( mbedtls_psa_err_translate_pk( ret ) );

-    psa_key_policy_init( &policy );
+    policy = psa_key_policy_init();
    psa_key_policy_set_usage( &policy, PSA_KEY_USAGE_VERIFY, psa_sig_md );
    if( ( ret = psa_set_key_policy( key_slot, &policy ) ) != PSA_SUCCESS )
    {