2020-11-12 20:36:06 +01:00
|
|
|
/**
|
|
|
|
* \file check_crypto_config.h
|
|
|
|
*
|
|
|
|
* \brief Consistency checks for PSA configuration options
|
|
|
|
*/
|
|
|
|
/*
|
|
|
|
* Copyright The Mbed TLS Contributors
|
|
|
|
* SPDX-License-Identifier: Apache-2.0
|
|
|
|
*
|
|
|
|
* Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
|
|
* not use this file except in compliance with the License.
|
|
|
|
* You may obtain a copy of the License at
|
|
|
|
*
|
|
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
*
|
|
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
|
|
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
|
|
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
* See the License for the specific language governing permissions and
|
|
|
|
* limitations under the License.
|
|
|
|
*/
|
|
|
|
|
|
|
|
/*
|
|
|
|
* It is recommended to include this file from your crypto_config.h
|
|
|
|
* in order to catch dependency issues early.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#ifndef MBEDTLS_CHECK_CRYPTO_CONFIG_H
|
|
|
|
#define MBEDTLS_CHECK_CRYPTO_CONFIG_H
|
|
|
|
|
2021-03-18 13:40:31 +01:00
|
|
|
#if defined(PSA_WANT_ALG_CCM) && \
|
2023-01-11 14:50:10 +01:00
|
|
|
!(defined(PSA_WANT_KEY_TYPE_AES) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_CAMELLIA))
|
2021-03-18 13:40:31 +01:00
|
|
|
#error "PSA_WANT_ALG_CCM defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_ALG_CMAC) && \
|
2023-01-11 14:50:10 +01:00
|
|
|
!(defined(PSA_WANT_KEY_TYPE_AES) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_CAMELLIA) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_DES))
|
2021-03-18 13:40:31 +01:00
|
|
|
#error "PSA_WANT_ALG_CMAC defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
2020-11-12 20:36:06 +01:00
|
|
|
#if defined(PSA_WANT_ALG_DETERMINISTIC_ECDSA) && \
|
2023-05-26 13:48:07 +02:00
|
|
|
!(defined(MBEDTLS_PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_LEGACY) || \
|
2023-01-11 14:50:10 +01:00
|
|
|
defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY))
|
2020-11-12 20:36:06 +01:00
|
|
|
#error "PSA_WANT_ALG_DETERMINISTIC_ECDSA defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_ALG_ECDSA) && \
|
2023-05-26 13:48:07 +02:00
|
|
|
!(defined(MBEDTLS_PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_LEGACY) || \
|
2023-01-11 14:50:10 +01:00
|
|
|
defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY))
|
2020-11-12 20:36:06 +01:00
|
|
|
#error "PSA_WANT_ALG_ECDSA defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
2021-03-18 13:40:31 +01:00
|
|
|
#if defined(PSA_WANT_ALG_GCM) && \
|
2023-01-11 14:50:10 +01:00
|
|
|
!(defined(PSA_WANT_KEY_TYPE_AES) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_CAMELLIA))
|
2021-03-18 13:40:31 +01:00
|
|
|
#error "PSA_WANT_ALG_GCM defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
2020-11-12 20:36:06 +01:00
|
|
|
#if defined(PSA_WANT_ALG_RSA_PKCS1V15_CRYPT) && \
|
2023-05-26 13:48:07 +02:00
|
|
|
!(defined(MBEDTLS_PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_LEGACY) || \
|
2023-01-11 14:50:10 +01:00
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY))
|
2020-11-12 20:36:06 +01:00
|
|
|
#error "PSA_WANT_ALG_RSA_PKCS1V15_CRYPT defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_ALG_RSA_PKCS1V15_SIGN) && \
|
2023-05-26 13:48:07 +02:00
|
|
|
!(defined(MBEDTLS_PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_LEGACY) || \
|
2023-01-11 14:50:10 +01:00
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY))
|
2020-11-12 20:36:06 +01:00
|
|
|
#error "PSA_WANT_ALG_RSA_PKCS1V15_SIGN defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_ALG_RSA_OAEP) && \
|
2023-05-26 13:48:07 +02:00
|
|
|
!(defined(MBEDTLS_PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_LEGACY) || \
|
2023-01-11 14:50:10 +01:00
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY))
|
2020-11-12 20:36:06 +01:00
|
|
|
#error "PSA_WANT_ALG_RSA_OAEP defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_ALG_RSA_PSS) && \
|
2023-05-26 13:48:07 +02:00
|
|
|
!(defined(MBEDTLS_PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_LEGACY) || \
|
2023-01-11 14:50:10 +01:00
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY))
|
2020-11-12 20:36:06 +01:00
|
|
|
#error "PSA_WANT_ALG_RSA_PSS defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
2023-06-09 11:58:29 +02:00
|
|
|
#if (defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_USE) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_IMPORT) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_EXPORT) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_GENERATE) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_DERIVE)) && \
|
2020-11-17 07:08:34 +01:00
|
|
|
!defined(PSA_WANT_KEY_TYPE_ECC_PUBLIC_KEY)
|
2023-06-09 11:58:29 +02:00
|
|
|
#error "PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_xxx defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if (defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_USE) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_IMPORT) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_EXPORT) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_GENERATE)) && \
|
|
|
|
!defined(PSA_WANT_KEY_TYPE_RSA_PUBLIC_KEY)
|
|
|
|
#error "PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_xxx defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if (defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_USE) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_IMPORT) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_EXPORT) || \
|
|
|
|
defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_GENERATE)) && \
|
|
|
|
!defined(PSA_WANT_KEY_TYPE_DH_PUBLIC_KEY)
|
|
|
|
#error "PSA_WANT_KEY_TYPE_DH_KEY_PAIR_xxx defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_KEY_TYPE_ECC_KEY_PAIR)
|
|
|
|
#if defined(MBEDTLS_DEPRECATED_REMOVED)
|
|
|
|
#error "PSA_WANT_KEY_TYPE_ECC_KEY_PAIR is deprecated and will be removed in a \
|
|
|
|
future version of Mbed TLS. Please switch to new PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_xxx \
|
|
|
|
symbols, where xxx can be: USE, IMPORT, EXPORT, GENERATE, DERIVE"
|
|
|
|
#elif defined(MBEDTLS_DEPRECATED_WARNING)
|
|
|
|
#warning "PSA_WANT_KEY_TYPE_ECC_KEY_PAIR is deprecated and will be removed in a \
|
|
|
|
future version of Mbed TLS. Please switch to new PSA_WANT_KEY_TYPE_ECC_KEY_PAIR_xxx \
|
|
|
|
symbols, where xxx can be: USE, IMPORT, EXPORT, GENERATE, DERIVE"
|
|
|
|
#endif /* MBEDTLS_DEPRECATED_WARNING */
|
|
|
|
#endif /* PSA_WANT_KEY_TYPE_ECC_KEY_PAIR */
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR)
|
|
|
|
#if defined(MBEDTLS_DEPRECATED_REMOVED)
|
|
|
|
#error "PSA_WANT_KEY_TYPE_RSA_KEY_PAIR is deprecated and will be removed in a \
|
|
|
|
future version of Mbed TLS. Please switch to new PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_xxx \
|
|
|
|
symbols, where xxx can be: USE, IMPORT, EXPORT, GENERATE, DERIVE"
|
|
|
|
#elif defined(MBEDTLS_DEPRECATED_WARNING)
|
|
|
|
#warning "PSA_WANT_KEY_TYPE_RSA_KEY_PAIR is deprecated and will be removed in a \
|
|
|
|
future version of Mbed TLS. Please switch to new PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_xxx \
|
|
|
|
symbols, where xxx can be: USE, IMPORT, EXPORT, GENERATE, DERIVE"
|
|
|
|
#endif /* MBEDTLS_DEPRECATED_WARNING */
|
|
|
|
#endif /* PSA_WANT_KEY_TYPE_RSA_KEY_PAIR */
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_DERIVE)
|
|
|
|
#error "PSA_WANT_KEY_TYPE_RSA_KEY_PAIR_DERIVE defined, but feature is not supported"
|
|
|
|
#endif
|
|
|
|
|
|
|
|
#if defined(PSA_WANT_KEY_TYPE_DH_KEY_PAIR_DERIVE)
|
|
|
|
#error "PSA_WANT_KEY_TYPE_DH_KEY_PAIR_DERIVE defined, but feature is not supported"
|
2020-11-17 07:08:34 +01:00
|
|
|
#endif
|
|
|
|
|
2022-08-19 09:42:11 +02:00
|
|
|
#if defined(MBEDTLS_SSL_PROTO_TLS1_2) && defined(MBEDTLS_USE_PSA_CRYPTO) && \
|
2023-01-11 14:50:10 +01:00
|
|
|
!(defined(PSA_WANT_ALG_SHA_1) || defined(PSA_WANT_ALG_SHA_256) || defined(PSA_WANT_ALG_SHA_512))
|
2022-08-17 22:19:39 +02:00
|
|
|
#error "MBEDTLS_SSL_PROTO_TLS1_2 defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
2022-09-14 16:02:30 +02:00
|
|
|
#if defined(PSA_WANT_ALG_TLS12_ECJPAKE_TO_PMS) && \
|
|
|
|
!defined(PSA_WANT_ALG_SHA_256)
|
|
|
|
#error "PSA_WANT_ALG_TLS12_ECJPAKE_TO_PMS defined, but not all prerequisites"
|
|
|
|
#endif
|
|
|
|
|
2020-11-12 20:36:06 +01:00
|
|
|
#endif /* MBEDTLS_CHECK_CRYPTO_CONFIG_H */
|