Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Do Not Review, Do Not Merge: Do Not Review, Do Not Merge: Prototype for single file PSA/Legacy Mbed TLS configs #24

Open
wants to merge 25 commits into
base: main
Choose a base branch
from
Open

Do Not Review, Do Not Merge: Do Not Review, Do Not Merge: Prototype for single file PSA/Legacy Mbed TLS configs #24

Changes from all commits
Commits
Show all changes
25 commits
Select commit Hold shift + click to select a range
f6d3c44
[nrf noup] Undef PSA crypto client in crypto_types
frkv Nov 29, 2021
92a84d6
[nrf noup] Remove redefinition ECC_MAX_CURVE_BITS
Vge0rge Dec 13, 2021
d3eb208
[nrf noup] Check if ECP_MAX_BITS is set in ecp.h
Vge0rge Jan 20, 2022
8ffbcc1
[nrf noup] Check if GCM_C is defined in gcm.h
Vge0rge Jan 20, 2022
f1f21d2
[nrf noup] Add driver_wrapper call for derivation
Vge0rge Jan 30, 2022
ca1e6b2
[nrf noup] Enable use of SNI without x509.
plskeggs Feb 5, 2022
dbbe35f
[nrf noup] Enable auto-generation of additional TLS/DTLS docs
plskeggs Feb 14, 2022
a9d5a5a
[nrf toup] pk_wrap: Add missing MD description for ECDSA verify
frkv Mar 10, 2022
3da802b
[nrf noup] Disable reporting ecjpake kkpp extension for PSK
frkv Apr 5, 2022
24c4ec1
[nrf noup] Fix PSA MAC for CMAC key types
frkv Apr 5, 2022
f6ff46f
[nrf_noup] Add opaque oberon context for hash
Vge0rge Apr 10, 2022
2863179
[nrf noup] Fix unset key bits for nrf_cc3xx v0.9.14
frkv May 12, 2022
c56a2ae
[nrf noup] Zeroize the Mbedtls entropy mutex
Vge0rge Sep 13, 2022
7322ffa
[nrf noup] Constant size for psa_core_key_attributes_t struct
mswarowsky Sep 30, 2022
45374c0
[nrf toup] Fix RSA dependency on PK write when enabling PSA crypto
joerchan Feb 17, 2023
a58396e
[nrf fromlist] library: psa_crypto: Fix compilation error in psa_key_…
joerchan Feb 17, 2023
829e3ed
[nrf fromlist] psa_crypto: Fix psa_key_derivation_output_key ECC with…
joerchan Mar 1, 2023
b573773
[nrf_noup] mbedtls: Circumvent ECJPAKE API inconsistency for OpenThread
maciejbaczmanski Sep 15, 2023
2d81092
[nrf noup] Fix buffer overflow in TLS 1.2 ClientKeyExchange parsing
frkv Oct 16, 2023
4a204f2
[nrf noup] Fix buffer overflow in TLS 1.3 ECDH public key parsing
frkv Oct 16, 2023
acea48f
[nrf noup] Fix buffer overread with stream cipher
frkv Oct 17, 2023
8277390
[nrf noup] mbedtls: Remove enforcing config_psa.h
frkv Sep 6, 2023
7239fbd
[nrf noup] mbedtls: MBEDTLS_PSA_CRYPTO_CLIENT
frkv Dec 5, 2023
81e3610
[nrf noup] mbedtls: ifdef guard around PSA_VENDOR_ECDSA_SIGNATURE_MAX…
frkv Dec 5, 2023
53e4153
[nrf noup] mbedtls: HACK: Make ECJPAKE use legacy for non TF-M
frkv Dec 1, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
48 changes: 48 additions & 0 deletions doxygen/mbedtls.doxyfile
View file
Original file line number Diff line number Diff line change
@@ -21,6 +21,54 @@ GENERATE_LATEX = NO
MACRO_EXPANSION = YES
EXPAND_ONLY_PREDEF = YES
INCLUDE_PATH = ../include

# You can use the INCLUDE_FILE_PATTERNS tag to specify one or more wildcard
# patterns (like *.h and *.hpp) to filter out the header-files in the
# directories. If left blank, the patterns specified with FILE_PATTERNS will
# be used.

INCLUDE_FILE_PATTERNS =

# The PREDEFINED tag can be used to specify one or more macro names that
# are defined before the preprocessor is started (similar to the -D option of
# gcc). The argument of the tag is a list of macros of the form: name
# or name=definition (no spaces). If the definition and the = are
# omitted =1 is assumed. To prevent a macro definition from being
# undefined via #undef or recursively expanded use the := operator
# instead of the = operator.

PREDEFINED = WIN32 \
NTLM \
USE_LZO \
ENABLE_FRAGMENT \
P2MP \
P2MP_SERVER \
USE_CRYPTO \
USE_SSL \
ENABLE_PLUGIN \
ENABLE_MANAGEMENT \
ENABLE_OCC \
HAVE_GETTIMEOFDAY \
MBEDTLS_SSL_DTLS_CONNECTION_ID \
MBEDTLS_SSL_PROTO_DTLS \
MBEDTLS_SSL_SESSION_TICKETS \
MBEDTLS_SSL_CLI_C \
MBEDTLS_SSL_MAX_FRAGMENT_LENGTH \
MBEDTLS_SSL_ENCRYPT_THEN_MAC \
MBEDTLS_SSL_EXPORT_KEYS \
MBEDTLS_SSL_SERVER_NAME_INDICATION \
MBEDTLS_KEY_EXCHANGE_SOME_PSK_ENABLED \
MBEDTLS_SSL_DTLS_HELLO_VERIFY \
MBEDTLS_SSL_EXTENDED_MASTER_SECRET \
MBEDTLS_DEBUG_C


# If the MACRO_EXPANSION and EXPAND_ONLY_PREDEF tags are set to YES then
# this tag can be used to specify a list of macro names that should be expanded.
# The macro definition that is found in the sources will be used.
# Use the PREDEFINED tag if you want to use a different macro definition that
# overrules the definition found in the source code.

EXPAND_AS_DEFINED = MBEDTLS_PRIVATE
CLASS_DIAGRAMS = NO
HAVE_DOT = YES
9 changes: 1 addition & 8 deletions include/mbedtls/build_info.h
View file
Original file line number Diff line number Diff line change
@@ -87,7 +87,7 @@
* goes through but psa_export_key() and psa_export_public_key() fail on
* RSA keys), and pk_parse to work with RSA keys in almost any way.
*/
#if defined(MBEDTLS_PSA_CRYPTO_C) && defined(MBEDTLS_RSA_C)
#if defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(MBEDTLS_RSA_C)
#define MBEDTLS_PK_C
#define MBEDTLS_PK_WRITE_C
#define MBEDTLS_PK_PARSE_C
@@ -131,13 +131,6 @@
#define MBEDTLS_SSL_TLS1_3_KEY_EXCHANGE_MODE_SOME_EPHEMERAL_ENABLED
#endif

/* Make sure all configuration symbols are set before including check_config.h,
* even the ones that are calculated programmatically. */
#if defined(MBEDTLS_PSA_CRYPTO_CONFIG) /* PSA_WANT_xxx influences MBEDTLS_xxx */ || \
defined(MBEDTLS_PSA_CRYPTO_C) /* MBEDTLS_xxx influences PSA_WANT_xxx */
#include "mbedtls/config_psa.h"
#endif

#include "mbedtls/check_config.h"

#endif /* MBEDTLS_BUILD_INFO_H */
39 changes: 22 additions & 17 deletions include/mbedtls/check_config.h
View file
Original file line number Diff line number Diff line change
@@ -111,12 +111,13 @@

#if defined(MBEDTLS_ECJPAKE_C) && \
( !defined(MBEDTLS_ECP_C) || \
!( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_C) ) )
!( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_CLIENT) ) )
#error "MBEDTLS_ECJPAKE_C defined, but not all prerequisites"
#endif

#if defined(MBEDTLS_ECP_RESTARTABLE) && \
( defined(MBEDTLS_USE_PSA_CRYPTO) || \
defined(MBEDTLS_PSA_CRYPTO_CLIENT) || \
defined(MBEDTLS_ECDH_COMPUTE_SHARED_ALT) || \
defined(MBEDTLS_ECDH_GEN_PUBLIC_ALT) || \
defined(MBEDTLS_ECDSA_SIGN_ALT) || \
@@ -157,18 +158,18 @@
#endif

#if defined(MBEDTLS_PKCS5_C) && \
( !( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_C) ) || \
( !( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_CLIENT) ) || \
!defined(MBEDTLS_CIPHER_C) )
#error "MBEDTLS_PKCS5_C defined, but not all prerequisites"
#endif

#if defined(MBEDTLS_PKCS12_C) && \
!( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_C) )
!( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_CLIENT) )
#error "MBEDTLS_PKCS12_C defined, but not all prerequisites"
#endif

#if defined(MBEDTLS_PKCS1_V21) && \
!( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_C) )
!( defined(MBEDTLS_MD_C) || defined(MBEDTLS_PSA_CRYPTO_CLIENT) )
#error "MBEDTLS_PKCS1_V21 defined, but not all prerequisites"
#endif

@@ -356,8 +357,8 @@
#endif

#if defined(MBEDTLS_LMS_C) && \
! ( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256) )
#error "MBEDTLS_LMS_C requires MBEDTLS_PSA_CRYPTO_C and PSA_WANT_ALG_SHA_256"
! ( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_256) )
#error "MBEDTLS_LMS_C requires MBEDTLS_PSA_CRYPTO_CLIENT and PSA_WANT_ALG_SHA_256"
#endif

#if defined(MBEDTLS_LMS_PRIVATE) && \
@@ -627,8 +628,8 @@
#error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites (missing RNG)"
#endif

#if defined(MBEDTLS_PSA_CRYPTO_C) && !defined(MBEDTLS_CIPHER_C )
#error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites"
#if defined(MBEDTLS_PSA_CRYPTO_CLIENT) && !defined(MBEDTLS_CIPHER_C )
#error "MBEDTLS_PSA_CRYPTO_CLIENT defined, but not all prerequisites"
#endif

#if defined(MBEDTLS_PSA_CRYPTO_SPM) && !defined(MBEDTLS_PSA_CRYPTO_C)
@@ -787,7 +788,7 @@

/* TLS 1.3 requires separate HKDF parts from PSA */
#if defined(MBEDTLS_SSL_PROTO_TLS1_3) && \
!( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_HKDF_EXTRACT) && defined(PSA_WANT_ALG_HKDF_EXPAND) )
!( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_HKDF_EXTRACT) && defined(PSA_WANT_ALG_HKDF_EXPAND) )
#error "MBEDTLS_SSL_PROTO_TLS1_3 defined, but not all prerequisites"
#endif

@@ -797,7 +798,7 @@
#if !( defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA_384) )
#error "MBEDTLS_SSL_PROTO_TLS1_3 defined, but not all prerequisites"
#endif /* !(PSA_WANT_ALG_SHA_256 || PSA_WANT_ALG_SHA_384) */
#if !defined(MBEDTLS_USE_PSA_CRYPTO)
#if !(defined(MBEDTLS_USE_PSA_CRYPTO) || defined(MBEDTLS_PSA_CRYPTO_CLIENT))
/* When USE_PSA_CRYPTO is not defined, we also need SHA-256 or SHA-384 via the
* legacy interface, including via the MD layer, for the parts of the code
* that are shared with TLS 1.2 (running handshake hash). */
@@ -868,7 +869,8 @@
#endif

#if defined(MBEDTLS_SSL_TLS_C) && ( !defined(MBEDTLS_CIPHER_C) || \
( !defined(MBEDTLS_MD_C) && !defined(MBEDTLS_USE_PSA_CRYPTO) ) )
( !defined(MBEDTLS_MD_C) && !(defined(MBEDTLS_USE_PSA_CRYPTO) || \
defined(MBEDTLS_PSA_CRYPTO_CLIENT) ) ) )
#error "MBEDTLS_SSL_TLS_C defined, but not all prerequisites"
#endif

@@ -936,7 +938,8 @@
#endif

#if defined(MBEDTLS_SSL_TICKET_C) && ( !defined(MBEDTLS_CIPHER_C) && \
!defined(MBEDTLS_USE_PSA_CRYPTO) )
!( defined(MBEDTLS_USE_PSA_CRYPTO) || \
defined(MBEDTLS_PSA_CRYPTO_CLIENT) ) )
#error "MBEDTLS_SSL_TICKET_C defined, but not all prerequisites"
#endif

@@ -951,7 +954,8 @@
#endif

#if defined(MBEDTLS_SSL_SERVER_NAME_INDICATION) && \
!defined(MBEDTLS_X509_CRT_PARSE_C)
!defined(MBEDTLS_X509_CRT_PARSE_C) && \
!defined(MBEDTLS_SSL_PROTO_DTLS)
#error "MBEDTLS_SSL_SERVER_NAME_INDICATION defined, but not all prerequisites"
#endif

@@ -974,9 +978,9 @@
#endif
#undef MBEDTLS_THREADING_IMPL

// #if defined(MBEDTLS_USE_PSA_CRYPTO) && !defined(MBEDTLS_PSA_CRYPTO_C)
// #error "MBEDTLS_USE_PSA_CRYPTO defined, but not all prerequisites"
// #endif
#if defined(MBEDTLS_USE_PSA_CRYPTO) && !defined(MBEDTLS_PSA_CRYPTO_CLIENT)
#error "MBEDTLS_USE_PSA_CRYPTO defined, but not all prerequisites"
#endif

#if defined(MBEDTLS_VERSION_FEATURES) && !defined(MBEDTLS_VERSION_C)
#error "MBEDTLS_VERSION_FEATURES defined, but not all prerequisites"
@@ -985,7 +989,8 @@
#if defined(MBEDTLS_X509_USE_C) && ( !defined(MBEDTLS_BIGNUM_C) || \
!defined(MBEDTLS_OID_C) || !defined(MBEDTLS_ASN1_PARSE_C) || \
!defined(MBEDTLS_PK_PARSE_C) || \
( !defined(MBEDTLS_MD_C) && !defined(MBEDTLS_USE_PSA_CRYPTO) ) )
( !defined(MBEDTLS_MD_C) && !( defined(MBEDTLS_USE_PSA_CRYPTO) || \
defined(MBEDTLS_PSA_CRYPTO_CLIENT) ) ) )
#error "MBEDTLS_X509_USE_C defined, but not all prerequisites"
#endif

4 changes: 4 additions & 0 deletions include/mbedtls/ecp.h
View file
Original file line number Diff line number Diff line change
@@ -305,6 +305,8 @@ mbedtls_ecp_group;
#include "ecp_alt.h"
#endif /* MBEDTLS_ECP_ALT */

#ifndef MBEDTLS_ECP_MAX_BITS

/**
* The maximum size of the groups, that is, of \c N and \c P.
*/
@@ -343,6 +345,8 @@ mbedtls_ecp_group;
#error "Missing definition of MBEDTLS_ECP_MAX_BITS"
#endif

#endif

#define MBEDTLS_ECP_MAX_BYTES ( ( MBEDTLS_ECP_MAX_BITS + 7 ) / 8 )
#define MBEDTLS_ECP_MAX_PT_LEN ( 2 * MBEDTLS_ECP_MAX_BYTES + 1 )

4 changes: 3 additions & 1 deletion include/mbedtls/gcm.h
View file
Original file line number Diff line number Diff line change
@@ -52,6 +52,8 @@
extern "C" {
#endif

#if defined(MBEDTLS_GCM_C)

#if !defined(MBEDTLS_GCM_ALT)

/**
@@ -374,10 +376,10 @@ void mbedtls_gcm_free( mbedtls_gcm_context *ctx );
int mbedtls_gcm_self_test( int verbose );

#endif /* MBEDTLS_SELF_TEST */
#endif /* MBEDTLS_GCM_C */

#ifdef __cplusplus
}
#endif


#endif /* gcm.h */
32 changes: 16 additions & 16 deletions include/mbedtls/legacy_or_psa.h
View file
Original file line number Diff line number Diff line change
@@ -100,78 +100,78 @@
#define MBEDTLS_OR_PSA_HELPERS_H

#include "mbedtls/build_info.h"
#if defined(MBEDTLS_PSA_CRYPTO_C)
#if defined(MBEDTLS_PSA_CRYPTO_CLIENT)
#include "psa/crypto.h"
#endif /* MBEDTLS_PSA_CRYPTO_C */
#endif /* MBEDTLS_PSA_CRYPTO_CLIENT */

/*
* Hashes
*/

/* Hashes using low-level or PSA based on availability */
#if defined(MBEDTLS_MD5_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_MD5) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_MD5) )
#define MBEDTLS_HAS_ALG_MD5_VIA_LOWLEVEL_OR_PSA
#endif
#if defined(MBEDTLS_RIPEMD160_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_RIPEMD160) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_RIPEMD160) )
#define MBEDTLS_HAS_ALG_RIPEMD160_VIA_LOWLEVEL_OR_PSA
#endif
#if defined(MBEDTLS_SHA1_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_1) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_1) )
#define MBEDTLS_HAS_ALG_SHA_1_VIA_LOWLEVEL_OR_PSA
#endif
#if defined(MBEDTLS_SHA224_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_224) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_224) )
#define MBEDTLS_HAS_ALG_SHA_224_VIA_LOWLEVEL_OR_PSA
#endif
#if defined(MBEDTLS_SHA256_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_256) )
#define MBEDTLS_HAS_ALG_SHA_256_VIA_LOWLEVEL_OR_PSA
#endif
#if defined(MBEDTLS_SHA384_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_384) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_384) )
#define MBEDTLS_HAS_ALG_SHA_384_VIA_LOWLEVEL_OR_PSA
#endif
#if defined(MBEDTLS_SHA512_C) || \
( defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_512) )
( defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_512) )
#define MBEDTLS_HAS_ALG_SHA_512_VIA_LOWLEVEL_OR_PSA
#endif

/* Hashes using MD or PSA based on availability */
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_MD5_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_MD5) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_MD5) )
#define MBEDTLS_HAS_ALG_MD5_VIA_MD_OR_PSA
#endif
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_RIPEMD160_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_RIPEMD160) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_RIPEMD160) )
#define MBEDTLS_HAS_ALG_RIPEMD160_VIA_MD_OR_PSA
#endif
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_SHA1_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_1) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_1) )
#define MBEDTLS_HAS_ALG_SHA_1_VIA_MD_OR_PSA
#endif
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_SHA224_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_224) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_224) )
#define MBEDTLS_HAS_ALG_SHA_224_VIA_MD_OR_PSA
#endif
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_SHA256_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_256) )
#define MBEDTLS_HAS_ALG_SHA_256_VIA_MD_OR_PSA
#endif
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_SHA384_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_384) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_384) )
#define MBEDTLS_HAS_ALG_SHA_384_VIA_MD_OR_PSA
#endif
#if ( defined(MBEDTLS_MD_C) && defined(MBEDTLS_SHA512_C) ) || \
( !defined(MBEDTLS_MD_C) && \
defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_512) )
defined(MBEDTLS_PSA_CRYPTO_CLIENT) && defined(PSA_WANT_ALG_SHA_512) )
#define MBEDTLS_HAS_ALG_SHA_512_VIA_MD_OR_PSA
#endif

2 changes: 1 addition & 1 deletion include/mbedtls/pk.h
View file
Original file line number Diff line number Diff line change
@@ -536,7 +536,7 @@ int mbedtls_pk_sign( mbedtls_pk_context *ctx, mbedtls_md_type_t md_alg,
unsigned char *sig, size_t sig_size, size_t *sig_len,
int (*f_rng)(void *, unsigned char *, size_t), void *p_rng );

#if defined(MBEDTLS_PSA_CRYPTO_C)
#if defined(MBEDTLS_PSA_CRYPTO_CLIENT)
/**
* \brief Make signature given a signature type.
*
2 changes: 1 addition & 1 deletion include/mbedtls/psa_util.h
View file
Original file line number Diff line number Diff line change
@@ -29,7 +29,7 @@

#include "mbedtls/build_info.h"

#if defined(MBEDTLS_PSA_CRYPTO_C)
#if defined(MBEDTLS_PSA_CRYPTO_CLIENT)

#include "psa/crypto.h"

Loading