PSA: support HMAC_DRBG Support using HMAC_DRBG instead of CTR_DRBG in the PSA subsystem. Use HMAC_DRBG if CTR_DRBG is available. Choose between SHA-256 and SHA-512 based on availability. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 82e57d1611877b7d27f7194cb34528b8eca54ea2 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Nov 13 21:31:17 2020 +0100
committer: Gilles Peskine <Gilles.Peskine@arm.com> Mon Nov 23 17:42:54 2020 +0100
tree: c8a8b79805d85ce265fef1e9196268acd2553d2c
parent: 4fc21fdeb6ecff1165b1a7e77cea5676b8058ee0 [diff] [blame]
diff --git a/include/mbedtls/check_config.h b/include/mbedtls/check_config.h
index 9497279..939ec6c 100644
--- a/include/mbedtls/check_config.h
+++ b/include/mbedtls/check_config.h

@@ -573,7 +573,7 @@
 #endif
 
 #if defined(MBEDTLS_PSA_CRYPTO_C) &&                                    \
-    !( ( defined(MBEDTLS_CTR_DRBG_C) &&                                 \
+    !( ( ( defined(MBEDTLS_CTR_DRBG_C) || defined(MBEDTLS_HMAC_DRBG_C) ) && \
          defined(MBEDTLS_ENTROPY_C) ) ||                                \
        defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG) )
 #error "MBEDTLS_PSA_CRYPTO_C defined, but not all prerequisites (missing RNG)"
commit	82e57d1611877b7d27f7194cb34528b8eca54ea2	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Nov 13 21:31:17 2020 +0100
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Mon Nov 23 17:42:54 2020 +0100
tree	c8a8b79805d85ce265fef1e9196268acd2553d2c
parent	4fc21fdeb6ecff1165b1a7e77cea5676b8058ee0 [diff] [blame]