cipher_auth_xxcrypt_ext: Make NIST_KW case more robust
Don't invoke classic NIST_KW in case PSA gains support for NIST_KW. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
This commit is contained in:
parent
e09aeb4923
commit
a56d3d9e75
1 changed files with 12 additions and 4 deletions
|
@ -1537,8 +1537,12 @@ int mbedtls_cipher_auth_encrypt_ext( mbedtls_cipher_context_t *ctx,
|
||||||
CIPHER_VALIDATE_RET( olen != NULL );
|
CIPHER_VALIDATE_RET( olen != NULL );
|
||||||
|
|
||||||
#if defined(MBEDTLS_NIST_KW_C)
|
#if defined(MBEDTLS_NIST_KW_C)
|
||||||
if( MBEDTLS_MODE_KW == ctx->cipher_info->mode ||
|
if(
|
||||||
MBEDTLS_MODE_KWP == ctx->cipher_info->mode )
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
ctx->psa_enabled == 0 &&
|
||||||
|
#endif
|
||||||
|
( MBEDTLS_MODE_KW == ctx->cipher_info->mode ||
|
||||||
|
MBEDTLS_MODE_KWP == ctx->cipher_info->mode ) )
|
||||||
{
|
{
|
||||||
mbedtls_nist_kw_mode_t mode = ( MBEDTLS_MODE_KW == ctx->cipher_info->mode ) ?
|
mbedtls_nist_kw_mode_t mode = ( MBEDTLS_MODE_KW == ctx->cipher_info->mode ) ?
|
||||||
MBEDTLS_KW_MODE_KW : MBEDTLS_KW_MODE_KWP;
|
MBEDTLS_KW_MODE_KW : MBEDTLS_KW_MODE_KWP;
|
||||||
|
@ -1586,8 +1590,12 @@ int mbedtls_cipher_auth_decrypt_ext( mbedtls_cipher_context_t *ctx,
|
||||||
CIPHER_VALIDATE_RET( olen != NULL );
|
CIPHER_VALIDATE_RET( olen != NULL );
|
||||||
|
|
||||||
#if defined(MBEDTLS_NIST_KW_C)
|
#if defined(MBEDTLS_NIST_KW_C)
|
||||||
if( MBEDTLS_MODE_KW == ctx->cipher_info->mode ||
|
if(
|
||||||
MBEDTLS_MODE_KWP == ctx->cipher_info->mode )
|
#if defined(MBEDTLS_USE_PSA_CRYPTO)
|
||||||
|
ctx->psa_enabled == 0 &&
|
||||||
|
#endif
|
||||||
|
( MBEDTLS_MODE_KW == ctx->cipher_info->mode ||
|
||||||
|
MBEDTLS_MODE_KWP == ctx->cipher_info->mode ) )
|
||||||
{
|
{
|
||||||
mbedtls_nist_kw_mode_t mode = ( MBEDTLS_MODE_KW == ctx->cipher_info->mode ) ?
|
mbedtls_nist_kw_mode_t mode = ( MBEDTLS_MODE_KW == ctx->cipher_info->mode ) ?
|
||||||
MBEDTLS_KW_MODE_KW : MBEDTLS_KW_MODE_KWP;
|
MBEDTLS_KW_MODE_KW : MBEDTLS_KW_MODE_KWP;
|
||||||
|
|
Loading…
Reference in a new issue