Limit keys to 65528 bits 65528 bits is more than any reasonable key until we start supporting post-quantum cryptography. This limit is chosen to allow bit-sizes to be stored in 16 bits, with 65535 left to indicate an invalid value. It's a whole number of bytes, which facilitates some calculations, in particular allowing a key of exactly PSA_CRYPTO_MAX_STORAGE_SIZE to be created but not one bit more. As a resource usage limit, this is arguably too large, but that's out of scope of the current commit. Test that key import, generation and derivation reject overly large sizes.

commit: c744d99386adda801ea879814e47a08f73a94cc0 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Tue Jul 30 17:26:54 2019 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Tue Jul 30 20:58:33 2019 +0200
tree: aafd95bcaa22970515cf24170138b6467eff8612
parent: 7e0cff90b9bb6ed0295919e79512902dfe51ed79 [diff]
diff --git a/include/psa/crypto_struct.h b/include/psa/crypto_struct.h
index fea59df..b37b0b5 100644
--- a/include/psa/crypto_struct.h
+++ b/include/psa/crypto_struct.h

@@ -309,6 +309,12 @@
     return( v );
 }
 
+/* The maximum size of a key in bits.
+ * This is a whole number of bytes, to facilitate some calculations
+ * such as the maximum size of key data in storage.
+ */
+#define PSA_MAX_KEY_BITS 0xfff8
+
 typedef struct
 {
     psa_key_type_t type;
commit	c744d99386adda801ea879814e47a08f73a94cc0	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Jul 30 17:26:54 2019 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Tue Jul 30 20:58:33 2019 +0200
tree	aafd95bcaa22970515cf24170138b6467eff8612
parent	7e0cff90b9bb6ed0295919e79512902dfe51ed79 [diff]