Key derivation size definitions for the PSA Crypto API. More...
Detailed Description
Key derivation size definitions for the PSA Crypto API.
Definition in file sizes.h.
This graph shows which files directly or indirectly include this file:Go to the source code of this file.
| #define | PSA_KEY_DERIVATION_UNLIMITED_CAPACITY /* implementation-defined value */ |
| Use the maximum possible capacity for a key derivation operation. More... | |
| #define | PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE /* implementation-defined value */ |
| This macro returns the maximum supported length of the PSK for the TLS-1.2 PSK-to-MS key derivation. More... | |
Macro Definition Documentation
◆ PSA_KEY_DERIVATION_UNLIMITED_CAPACITY
| #define PSA_KEY_DERIVATION_UNLIMITED_CAPACITY /* implementation-defined value */ |
Use the maximum possible capacity for a key derivation operation.
Use this value as the capacity argument when setting up a key derivation to specify that the operation will use the maximum possible capacity. The value of the maximum possible capacity depends on the key derivation algorithm.
◆ PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE
| #define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE /* implementation-defined value */ |
This macro returns the maximum supported length of the PSK for the TLS-1.2 PSK-to-MS key derivation.
This implementation-defined value specifies the maximum length for the PSK input used with a PSA_ALG_TLS12_PSK_TO_MS() key agreement algorithm.
Quoting Pre-Shared Key Ciphersuites for Transport Layer Security (TLS) RFC4279 ยง5.3: TLS implementations supporting these cipher suites MUST support arbitrary PSK identities up to 128 octets in length, and arbitrary PSKs up to 64 octets in length. Supporting longer identities and keys is RECOMMENDED.
Therefore, it is recommended that implementations define PSA_TLS12_PSK_TO_MS_PSK_MAX_SIZE with a value greater than or equal to 64.
