28#ifndef PSA_CRYPTO_SIZES_H
29#define PSA_CRYPTO_SIZES_H
40#define PSA_BITS_TO_BYTES(bits) (((bits) + 7u) / 8u)
41#define PSA_BYTES_TO_BITS(bytes) ((bytes) * 8u)
42#define PSA_MAX_OF_THREE(a, b, c) ((a) <= (b) ? (b) <= (c) ? \
43 (c) : (b) : (a) <= (c) ? (c) : (a))
45#define PSA_ROUND_UP_TO_MULTIPLE(block_size, length) \
46 (((length) + (block_size) - 1) / (block_size) * (block_size))
60#define PSA_HASH_LENGTH(alg) \
62 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 16u : \
63 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 20u : \
64 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 20u : \
65 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 28u : \
66 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 32u : \
67 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 48u : \
68 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 64u : \
69 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 28u : \
70 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 32u : \
71 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 28u : \
72 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 32u : \
73 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 48u : \
74 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 64u : \
92#define PSA_HASH_BLOCK_LENGTH(alg) \
94 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_MD5 ? 64u : \
95 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_RIPEMD160 ? 64u : \
96 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_1 ? 64u : \
97 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_224 ? 64u : \
98 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_256 ? 64u : \
99 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_384 ? 128u : \
100 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512 ? 128u : \
101 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_224 ? 128u : \
102 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA_512_256 ? 128u : \
103 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_224 ? 144u : \
104 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_256 ? 136u : \
105 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_384 ? 104u : \
106 PSA_ALG_HMAC_GET_HASH(alg) == PSA_ALG_SHA3_512 ? 72u : \
121#if defined(PSA_WANT_ALG_SHA3_224)
122#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 144u
123#elif defined(PSA_WANT_ALG_SHA3_256)
124#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 136u
125#elif defined(PSA_WANT_ALG_SHA_512)
126#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128u
127#elif defined(PSA_WANT_ALG_SHA_384)
128#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 128u
129#elif defined(PSA_WANT_ALG_SHA3_384)
130#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 104u
131#elif defined(PSA_WANT_ALG_SHA3_512)
132#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 72u
133#elif defined(PSA_WANT_ALG_SHA_256)
134#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
135#elif defined(PSA_WANT_ALG_SHA_224)
136#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
138#define PSA_HMAC_MAX_HASH_BLOCK_SIZE 64u
141#if defined(PSA_WANT_ALG_SHA_512) || defined(PSA_WANT_ALG_SHA3_512)
142#define PSA_HASH_MAX_SIZE 64u
143#elif defined(PSA_WANT_ALG_SHA_384) || defined(PSA_WANT_ALG_SHA3_384)
144#define PSA_HASH_MAX_SIZE 48u
145#elif defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA3_256)
146#define PSA_HASH_MAX_SIZE 32u
147#elif defined(PSA_WANT_ALG_SHA_224) || defined(PSA_WANT_ALG_SHA3_224)
148#define PSA_HASH_MAX_SIZE 28u
150#define PSA_HASH_MAX_SIZE 20u
165#define PSA_MAC_MAX_SIZE PSA_HASH_MAX_SIZE
188#define PSA_AEAD_TAG_LENGTH(key_type, key_bits, alg) \
189 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
190 PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
191 ((void) (key_bits), 0u))
197#define PSA_AEAD_TAG_MAX_SIZE 16u
212#define PSA_VENDOR_RSA_MAX_KEY_BITS 4096u
220#if defined(MBEDTLS_RSA_GEN_KEY_MIN_BITS)
221#define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS MBEDTLS_RSA_GEN_KEY_MIN_BITS
223#define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS 1024
230#define PSA_VENDOR_FFDH_MAX_KEY_BITS 8192u
234#if defined(PSA_WANT_ECC_SECP_R1_521)
235#define PSA_VENDOR_ECC_MAX_CURVE_BITS 521u
236#elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_512)
237#define PSA_VENDOR_ECC_MAX_CURVE_BITS 512u
238#elif defined(PSA_WANT_ECC_MONTGOMERY_448)
239#define PSA_VENDOR_ECC_MAX_CURVE_BITS 448u
240#elif defined(PSA_WANT_ECC_SECP_R1_384)
241#define PSA_VENDOR_ECC_MAX_CURVE_BITS 384u
242#elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_384)
243#define PSA_VENDOR_ECC_MAX_CURVE_BITS 384u
244#elif defined(PSA_WANT_ECC_SECP_R1_256)
245#define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
246#elif defined(PSA_WANT_ECC_SECP_K1_256)
247#define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
248#elif defined(PSA_WANT_ECC_BRAINPOOL_P_R1_256)
249#define PSA_VENDOR_ECC_MAX_CURVE_BITS 256u
250#elif defined(PSA_WANT_ECC_MONTGOMERY_255)
251#define PSA_VENDOR_ECC_MAX_CURVE_BITS 255u
252#elif defined(PSA_WANT_ECC_SECP_R1_224)
253#define PSA_VENDOR_ECC_MAX_CURVE_BITS 224u
254#elif defined(PSA_WANT_ECC_SECP_K1_224)
255#define PSA_VENDOR_ECC_MAX_CURVE_BITS 224u
256#elif defined(PSA_WANT_ECC_SECP_R1_192)
257#define PSA_VENDOR_ECC_MAX_CURVE_BITS 192u
258#elif defined(PSA_WANT_ECC_SECP_K1_192)
259#define PSA_VENDOR_ECC_MAX_CURVE_BITS 192u
261#define PSA_VENDOR_ECC_MAX_CURVE_BITS 0u
279#define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE 128u
283#define PSA_TLS12_ECJPAKE_TO_PMS_INPUT_SIZE 65u
288#define PSA_TLS12_ECJPAKE_TO_PMS_DATA_SIZE 32u
292#define PSA_VENDOR_PBKDF2_MAX_ITERATIONS 0xffffffffU
295#define PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE 16u
318#define PSA_MAC_LENGTH(key_type, key_bits, alg) \
319 ((alg) & PSA_ALG_MAC_TRUNCATION_MASK ? PSA_MAC_TRUNCATED_LENGTH(alg) : \
320 PSA_ALG_IS_HMAC(alg) ? PSA_HASH_LENGTH(PSA_ALG_HMAC_GET_HASH(alg)) : \
321 PSA_ALG_IS_BLOCK_CIPHER_MAC(alg) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
322 ((void) (key_type), (void) (key_bits), 0u))
350#define PSA_AEAD_ENCRYPT_OUTPUT_SIZE(key_type, alg, plaintext_length) \
351 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
352 (plaintext_length) + PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
373#define PSA_AEAD_ENCRYPT_OUTPUT_MAX_SIZE(plaintext_length) \
374 ((plaintext_length) + PSA_AEAD_TAG_MAX_SIZE)
403#define PSA_AEAD_DECRYPT_OUTPUT_SIZE(key_type, alg, ciphertext_length) \
404 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
405 (ciphertext_length) > PSA_ALG_AEAD_GET_TAG_LENGTH(alg) ? \
406 (ciphertext_length) - PSA_ALG_AEAD_GET_TAG_LENGTH(alg) : \
427#define PSA_AEAD_DECRYPT_OUTPUT_MAX_SIZE(ciphertext_length) \
455#define PSA_AEAD_NONCE_LENGTH(key_type, alg) \
456 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) == 16 ? \
457 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CCM) ? 13u : \
458 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_GCM) ? 12u : \
460 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
461 MBEDTLS_PSA_ALG_AEAD_EQUAL(alg, PSA_ALG_CHACHA20_POLY1305) ? 12u : \
475#define PSA_AEAD_NONCE_MAX_SIZE 13u
507#define PSA_AEAD_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
508 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 ? \
509 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
510 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), (input_length)) : \
524#define PSA_AEAD_UPDATE_OUTPUT_MAX_SIZE(input_length) \
525 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, (input_length)))
548#define PSA_AEAD_FINISH_OUTPUT_SIZE(key_type, alg) \
549 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
550 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
551 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
559#define PSA_AEAD_FINISH_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
582#define PSA_AEAD_VERIFY_OUTPUT_SIZE(key_type, alg) \
583 (PSA_AEAD_NONCE_LENGTH(key_type, alg) != 0 && \
584 PSA_ALG_IS_AEAD_ON_BLOCK_CIPHER(alg) ? \
585 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
593#define PSA_AEAD_VERIFY_OUTPUT_MAX_SIZE (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
595#define PSA_RSA_MINIMUM_PADDING_SIZE(alg) \
596 (PSA_ALG_IS_RSA_OAEP(alg) ? \
597 2u * PSA_HASH_LENGTH(PSA_ALG_RSA_OAEP_GET_HASH(alg)) + 1u : \
608#define PSA_ECDSA_SIGNATURE_SIZE(curve_bits) \
609 (PSA_BITS_TO_BYTES(curve_bits) * 2u)
636#define PSA_SIGN_OUTPUT_SIZE(key_type, key_bits, alg) \
637 (PSA_KEY_TYPE_IS_RSA(key_type) ? ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
638 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_ECDSA_SIGNATURE_SIZE(key_bits) : \
641#define PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE \
642 PSA_ECDSA_SIGNATURE_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
651#define PSA_SIGNATURE_MAX_SIZE 1
653#if (defined(PSA_WANT_ALG_ECDSA) || defined(PSA_WANT_ALG_DETERMINISTIC_ECDSA)) && \
654 (PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE > PSA_SIGNATURE_MAX_SIZE)
655#undef PSA_SIGNATURE_MAX_SIZE
656#define PSA_SIGNATURE_MAX_SIZE PSA_VENDOR_ECDSA_SIGNATURE_MAX_SIZE
658#if (defined(PSA_WANT_ALG_RSA_PKCS1V15_SIGN) || defined(PSA_WANT_ALG_RSA_PSS)) && \
659 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS) > PSA_SIGNATURE_MAX_SIZE)
660#undef PSA_SIGNATURE_MAX_SIZE
661#define PSA_SIGNATURE_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS)
689#define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
690 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
691 ((void) alg, PSA_BITS_TO_BYTES(key_bits)) : \
700#define PSA_ASYMMETRIC_ENCRYPT_OUTPUT_MAX_SIZE \
701 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
728#define PSA_ASYMMETRIC_DECRYPT_OUTPUT_SIZE(key_type, key_bits, alg) \
729 (PSA_KEY_TYPE_IS_RSA(key_type) ? \
730 PSA_BITS_TO_BYTES(key_bits) - PSA_RSA_MINIMUM_PADDING_SIZE(alg) : \
740#define PSA_ASYMMETRIC_DECRYPT_OUTPUT_MAX_SIZE \
741 (PSA_BITS_TO_BYTES(PSA_VENDOR_RSA_MAX_KEY_BITS))
753#define PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(bits) \
767#define PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
768 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) + 11u)
792#define PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) \
793 (9u * PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE((key_bits) / 2u + 1u) + 14u)
811#define PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) \
812 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3u + 59u)
830#define PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) \
831 (PSA_KEY_EXPORT_ASN1_INTEGER_MAX_SIZE(key_bits) * 3u + 75u)
843#define PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) \
844 (2u * PSA_BITS_TO_BYTES(key_bits) + 1u)
850#define PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) \
851 (PSA_BITS_TO_BYTES(key_bits))
857#define PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(key_bits) \
858 (PSA_BITS_TO_BYTES(key_bits))
862#define PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(key_bits) \
863 (PSA_BITS_TO_BYTES(key_bits))
904#define PSA_EXPORT_KEY_OUTPUT_SIZE(key_type, key_bits) \
905 (PSA_KEY_TYPE_IS_UNSTRUCTURED(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
906 PSA_KEY_TYPE_IS_DH(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
907 (key_type) == PSA_KEY_TYPE_RSA_KEY_PAIR ? PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(key_bits) : \
908 (key_type) == PSA_KEY_TYPE_RSA_PUBLIC_KEY ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
909 (key_type) == PSA_KEY_TYPE_DSA_KEY_PAIR ? PSA_KEY_EXPORT_DSA_KEY_PAIR_MAX_SIZE(key_bits) : \
910 (key_type) == PSA_KEY_TYPE_DSA_PUBLIC_KEY ? PSA_KEY_EXPORT_DSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
911 PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) ? PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(key_bits) : \
912 PSA_KEY_TYPE_IS_ECC_PUBLIC_KEY(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
960#define PSA_EXPORT_PUBLIC_KEY_OUTPUT_SIZE(key_type, key_bits) \
961 (PSA_KEY_TYPE_IS_RSA(key_type) ? PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(key_bits) : \
962 PSA_KEY_TYPE_IS_ECC(key_type) ? PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(key_bits) : \
963 PSA_KEY_TYPE_IS_DH(key_type) ? PSA_BITS_TO_BYTES(key_bits) : \
974#define PSA_EXPORT_KEY_PAIR_MAX_SIZE 1
976#if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_BASIC) && \
977 (PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) > \
978 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
979#undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
980#define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
981 PSA_KEY_EXPORT_ECC_KEY_PAIR_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
983#if defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_BASIC) && \
984 (PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
985 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
986#undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
987#define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
988 PSA_KEY_EXPORT_RSA_KEY_PAIR_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS)
990#if defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_BASIC) && \
991 (PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS) > \
992 PSA_EXPORT_KEY_PAIR_MAX_SIZE)
993#undef PSA_EXPORT_KEY_PAIR_MAX_SIZE
994#define PSA_EXPORT_KEY_PAIR_MAX_SIZE \
995 PSA_KEY_EXPORT_FFDH_KEY_PAIR_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1007#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE 1
1009#if defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY) && \
1010 (PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS) > \
1011 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1012#undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1013#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1014 PSA_KEY_EXPORT_ECC_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_ECC_MAX_CURVE_BITS)
1016#if defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY) && \
1017 (PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS) > \
1018 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1019#undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1020#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1021 PSA_KEY_EXPORT_RSA_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_RSA_MAX_KEY_BITS)
1023#if defined(PSA_WANT_KEY_TYPE_DH_PUBLIC_KEY) && \
1024 (PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS) > \
1025 PSA_EXPORT_PUBLIC_KEY_MAX_SIZE)
1026#undef PSA_EXPORT_PUBLIC_KEY_MAX_SIZE
1027#define PSA_EXPORT_PUBLIC_KEY_MAX_SIZE \
1028 PSA_KEY_EXPORT_FFDH_PUBLIC_KEY_MAX_SIZE(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1054#define PSA_RAW_KEY_AGREEMENT_OUTPUT_SIZE(key_type, key_bits) \
1055 ((PSA_KEY_TYPE_IS_ECC_KEY_PAIR(key_type) || \
1056 PSA_KEY_TYPE_IS_DH_KEY_PAIR(key_type)) ? PSA_BITS_TO_BYTES(key_bits) : 0u)
1065#define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE 1
1067#if defined(PSA_WANT_ALG_ECDH) && \
1068 (PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS) > PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE)
1069#undef PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE
1070#define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_ECC_MAX_CURVE_BITS)
1072#if defined(PSA_WANT_ALG_FFDH) && \
1073 (PSA_BITS_TO_BYTES(PSA_VENDOR_FFDH_MAX_KEY_BITS) > PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE)
1074#undef PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE
1075#define PSA_RAW_KEY_AGREEMENT_OUTPUT_MAX_SIZE PSA_BITS_TO_BYTES(PSA_VENDOR_FFDH_MAX_KEY_BITS)
1102#define PSA_CIPHER_IV_LENGTH(key_type, alg) \
1103 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) > 1 && \
1104 ((alg) == PSA_ALG_CTR || \
1105 (alg) == PSA_ALG_CFB || \
1106 (alg) == PSA_ALG_OFB || \
1107 (alg) == PSA_ALG_XTS || \
1108 (alg) == PSA_ALG_CBC_NO_PADDING || \
1109 (alg) == PSA_ALG_CBC_PKCS7) ? PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1110 (key_type) == PSA_KEY_TYPE_CHACHA20 && \
1111 (alg) == PSA_ALG_STREAM_CIPHER ? 12u : \
1112 (alg) == PSA_ALG_CCM_STAR_NO_TAG ? 13u : \
1119#define PSA_CIPHER_IV_MAX_SIZE 16u
1144#define PSA_CIPHER_ENCRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1145 (alg == PSA_ALG_CBC_PKCS7 ? \
1146 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1147 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1148 (input_length) + 1u) + \
1149 PSA_CIPHER_IV_LENGTH((key_type), (alg)) : 0u) : \
1150 (PSA_ALG_IS_CIPHER(alg) ? \
1151 (input_length) + PSA_CIPHER_IV_LENGTH((key_type), (alg)) : \
1165#define PSA_CIPHER_ENCRYPT_OUTPUT_MAX_SIZE(input_length) \
1166 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, \
1167 (input_length) + 1u) + \
1168 PSA_CIPHER_IV_MAX_SIZE)
1189#define PSA_CIPHER_DECRYPT_OUTPUT_SIZE(key_type, alg, input_length) \
1190 (PSA_ALG_IS_CIPHER(alg) && \
1191 ((key_type) & PSA_KEY_TYPE_CATEGORY_MASK) == PSA_KEY_TYPE_CATEGORY_SYMMETRIC ? \
1205#define PSA_CIPHER_DECRYPT_OUTPUT_MAX_SIZE(input_length) \
1226#define PSA_CIPHER_UPDATE_OUTPUT_SIZE(key_type, alg, input_length) \
1227 (PSA_ALG_IS_CIPHER(alg) ? \
1228 (PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) != 0 ? \
1229 (((alg) == PSA_ALG_CBC_PKCS7 || \
1230 (alg) == PSA_ALG_CBC_NO_PADDING || \
1231 (alg) == PSA_ALG_ECB_NO_PADDING) ? \
1232 PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type), \
1234 (input_length)) : 0u) : \
1247#define PSA_CIPHER_UPDATE_OUTPUT_MAX_SIZE(input_length) \
1248 (PSA_ROUND_UP_TO_MULTIPLE(PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE, input_length))
1267#define PSA_CIPHER_FINISH_OUTPUT_SIZE(key_type, alg) \
1268 (PSA_ALG_IS_CIPHER(alg) ? \
1269 (alg == PSA_ALG_CBC_PKCS7 ? \
1270 PSA_BLOCK_CIPHER_BLOCK_LENGTH(key_type) : \
1279#define PSA_CIPHER_FINISH_OUTPUT_MAX_SIZE \
1280 (PSA_BLOCK_CIPHER_BLOCK_MAX_SIZE)
Build-time PSA configuration info.