Use PSA version of mbedtls_ct_hmac() in mbedtls_ssl_decrypt_buf()

Due to mbedtls_ct_hmac() implementation the decryption MAC key must be exportable. Signed-off-by: Neil Armstrong <narmstrong@baylibre.com>
2025-12-24 17:41:01 +03:00 · 2022-02-25 15:14:29 +01:00
parent 2968d306e4
commit e858996413
3 changed files with 14 additions and 48 deletions
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c
@@ -7321,7 +7321,9 @@ static int ssl_tls12_populate_transform( mbedtls_ssl_transform *transform,
            goto end;
        }

-        psa_set_key_usage_flags( &attributes, PSA_KEY_USAGE_VERIFY_HASH );
+        /* mbedtls_ct_hmac() requires the key to be exportable */
+        psa_set_key_usage_flags( &attributes, PSA_KEY_USAGE_EXPORT |
+                                              PSA_KEY_USAGE_VERIFY_HASH );

        if( ( status = psa_import_key( &attributes,
                                       mac_dec, mac_key_len,