40 #ifndef PSA_CRYPTO_SIZES_H
41 #define PSA_CRYPTO_SIZES_H
47 #define PSA_BITS_TO_BYTES(bits) (((bits) + 7) / 8)
48 #define PSA_BYTES_TO_BITS(bytes) ((bytes) * 8)
50 #define PSA_ROUND_UP_TO_MULTIPLE(block_size, length) \
51 (((length) + (block_size) - 1) / (block_size) * (block_size))
65 #define PSA_HASH_LENGTH(alg) \
67 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 16 : \
68 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 20 : \
69 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 20 : \
70 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 28 : \
71 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 32 : \
72 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 48 : \
73 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 64 : \
74 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 28 : \
75 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 32 : \
76 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 28 : \
77 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 32 : \
78 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 48 : \
79 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 64 : \
97 #define PSA_HASH_BLOCK_LENGTH(alg) \
99 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 64 : \
100 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 64 : \
101 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 64 : \
102 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 64 : \
103 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 64 : \
104 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 128 : \
105 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 128 : \
106 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 128 : \
107 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 128 : \
108 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 144 : \
109 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 136 : \
110 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 104 : \
111 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 72 : \
124 #if defined(PSA_WANT_ALG_SHA_512) || defined(PSA_WANT_ALG_SHA_384)
125 #define PSA_HASH_MAX_SIZE 64
126 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128
128 #define PSA_HASH_MAX_SIZE 32
129 #define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64
144 #define PSA_MAC_MAX_SIZE PSA_HASH_MAX_SIZE
167 #define PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg) \
168 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
169 PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
170 ((void) (key_bits), 0))
176 #define PSA_AEAD_TAG_MAX_SIZE 16
191 #define PSA_VENDOR_RSA_MAX_KEY_BITS 4096
195 #if defined(MBEDTLS_ECP_DP_SECP521R1_ENABLED)
196 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 521
197 #elif defined(MBEDTLS_ECP_DP_BP512R1_ENABLED)
198 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 512
199 #elif defined(MBEDTLS_ECP_DP_CURVE448_ENABLED)
200 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 448
201 #elif defined(MBEDTLS_ECP_DP_SECP384R1_ENABLED)
202 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 384
203 #elif defined(MBEDTLS_ECP_DP_BP384R1_ENABLED)
204 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 384
205 #elif defined(MBEDTLS_ECP_DP_SECP256R1_ENABLED)
206 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256
207 #elif defined(MBEDTLS_ECP_DP_SECP256K1_ENABLED)
208 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256
209 #elif defined(MBEDTLS_ECP_DP_BP256R1_ENABLED)
210 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 256
211 #elif defined(MBEDTLS_ECP_DP_CURVE25519_ENABLED)
212 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 255
213 #elif defined(MBEDTLS_ECP_DP_SECP224R1_ENABLED)
214 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 224
215 #elif defined(MBEDTLS_ECP_DP_SECP224K1_ENABLED)
216 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 224
217 #elif defined(MBEDTLS_ECP_DP_SECP192R1_ENABLED)
218 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 192
219 #elif defined(MBEDTLS_ECP_DP_SECP192K1_ENABLED)
220 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 192
222 #define PSA_VENDOR_ECC_MAX_CURVE_BITS 0
240 #define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE 128
244 #define PSA_TLS12_ECJPAKE_TO_PMS_INPUT_SIZE 65
249 #define PSA_TLS12_ECJPAKE_TO_PMS_DATA_SIZE 32
252 #define PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE 16
275 #define PSA_MAC_LENGTH(key_type, key_bits, alg) \
276 ((alg) & PSA_ALG_MAC_TRUNCATION_MASK ? PSA_MAC_TRUNCATED_LENGTH(alg) : \
277 PSA_ALG_IS_HMAC(alg) ? PSA_HASH_LENGTH(PSA_ALG_HMAC_GET_HASH(alg)) : \
278 PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
279 ((void) (key_type), (void) (key_bits), 0))
307 #define PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext_length) \
308 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
309 (plaintext_length) + PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
330 #define PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(plaintext_length) \
331 ((plaintext_length) + PSA_AEAD_TAG_MAX_SIZE)
360 #define PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext_length) \
361 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
362 (ciphertext_length) > PSA_ALG_AEAD_GET_TAG_LENGTH(alg) ? \
363 (ciphertext_length) - PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
384 #define PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(ciphertext_length) \
412 #define PSA_AEAD_NONCE_LENGTH(key_type, alg) \
413 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) == 16 ? \
414 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CCM) ? 13 : \
415 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_GCM) ? 12 : \
417 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
418 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CHACHA20_POLY1305) ? 12 : \
432 #define PSA_AEAD_NONCE_MAX_SIZE 13
464 #define PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
465 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
466 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
467 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), (input_length)) : \
481 #define PSA_AEAD_UPDATE_OUTPUT_MAX_SIZE(input_length) \
482 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, (input_length)))
505 #define PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg) \
506 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
507 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
508 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
516 #define PSA_AEAD_FINISH_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
539 #define PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg) \
540 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
541 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
542 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
550 #define PSA_AEAD_VERIFY_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
552 #define PSA_RSA_MINIMUM_PADDING_SIZE(alg) \
553 (PSA_ALG_IS_RSA_OAEP(alg) ? \
554 2 * PSA_HASH_LENGTH(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1 : \
565 #define PSA_ECDSA_SIGNATURE_SIZE(curve_bits) \
566 (PSA_BITS_TO_BYTES(curve_bits) * 2)
593 #define PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg) \
594 (PSA_KEY_TYPE_IS_RSA(key_type) ? ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
595 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_ECDSA_SIGNATURE_SIZE(key_bits) : \
598 #define PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE \
599 PSA_ECDSA_SIGNATURE_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
608 #define PSA_SIGNATURE_MAX_SIZE \
609 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) > PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE ? \
610 PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) : \
611 PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE)
638 #define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
639 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
640 ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
649 #define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE \
650 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
677 #define PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
678 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
679 PSA_BITS_TO_BYTES(key_bits) - PSA_RSA_MINIMUM_PADDING_SIZE(alg) : \
689 #define PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE \
690 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
702 #define PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(bits) \
716 #define PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
717 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 11)
741 #define PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) \
742 (9 * PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE((key_bits) / 2 + 1) + 14)
760 #define PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
761 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3 + 59)
779 #define PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) \
780 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3 + 75)
792 #define PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) \
793 (2 * PSA_BITS_TO_BYTES(key_bits) + 1)
799 #define PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) \
800 (PSA_BITS_TO_BYTES(key_bits))
841 #define PSA_EXPORT_KEY_OUTPUT_SIZE(key_type, key_bits) \
842 (PSA_KEY_TYPE_IS_UNSTRUCTURED(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
843 (key_type) == PSA_KEY_TYPE_RSA_KEY_PAIR ? PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) : \
844 (key_type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
845 (key_type) == PSA_KEY_TYPE_DSA_KEY_PAIR ? PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) : \
846 (key_type) == PSA_KEY_TYPE_DSA_PUBLIC_KEY ? PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
847 PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) : \
848 PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
896 #define PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, key_bits) \
897 (PSA_KEY_TYPE_IS_RSA(key_type) ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
898 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
909 #define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
910 (PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
911 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) ? \
912 PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) : \
913 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS))
924 #define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
925 (PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
926 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) ? \
927 PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) : \
928 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS))
954 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(key_type, key_bits) \
955 (PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? \
956 PSA_BITS_TO_BYTES(key_bits) : \
966 #define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE \
967 (PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS))
993 #define PSA_CIPHER_IV_LENGTH(key_type, alg) \
994 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) > 1 && \
995 ((alg) == PSA_ALG_CTR || \
996 (alg) == PSA_ALG_CFB || \
997 (alg) == PSA_ALG_OFB || \
998 (alg) == PSA_ALG_XTS || \
999 (alg) == PSA_ALG_CBC_NO_PADDING || \
1000 (alg) == PSA_ALG_CBC_PKCS7) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1001 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
1002 (alg) == PSA_ALG_STREAM_CIPHER ? 12 : \
1003 (alg) == PSA_ALG_CCM_STAR_NO_TAG ? 13 : \
1010 #define PSA_CIPHER_IV_MAX_SIZE 16
1035 #define PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1036 (alg == PSA_ALG_CBC_PKCS7 ? \
1037 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1038 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1039 (input_length) + 1) + \
1040 PSA_CIPHER_IV_LENGTH((key_type), (alg)) : 0) : \
1041 (PSA_ALG_IS_CIPHER(alg) ? \
1042 (input_length) + PSA_CIPHER_IV_LENGTH((key_type), (alg)) : \
1056 #define PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input_length) \
1057 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, \
1058 (input_length) + 1) + \
1059 PSA_CIPHER_IV_MAX_SIZE)
1080 #define PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1081 (PSA_ALG_IS_CIPHER(alg) && \
1082 ((key_type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \
1096 #define PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(input_length) \
1117 #define PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
1118 (PSA_ALG_IS_CIPHER(alg) ? \
1119 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1120 (((alg) == PSA_ALG_CBC_PKCS7 || \
1121 (alg) == PSA_ALG_CBC_NO_PADDING || \
1122 (alg) == PSA_ALG_ECB_NO_PADDING) ? \
1123 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1125 (input_length)) : 0) : \
1138 #define PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input_length) \
1139 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, input_length))
1158 #define PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg) \
1159 (PSA_ALG_IS_CIPHER(alg) ? \
1160 (alg == PSA_ALG_CBC_PKCS7 ? \
1161 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1170 #define PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE \
1171 (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
Build-time configuration info.