Extend PSA_USAGE_SIGN/VERIFY_HASH key policies According to the PSA specification the PSA_USAGE_SIGN_HASH has the permission to sign a message as PSA_USAGE_SIGN_MESSAGE. Similarly the PSA_USAGE_VERIFY_HASH has the permission to verify a message as PSA_USAGE_VERIFY_MESSAGE. These permission will also be present when the application queries the usage flags of the key. Signed-off-by: gabor-mezei-arm <gabor.mezei@arm.com>

commit: eeaeef4d58b6e89ba899407d568da43beb4b90be [log] [tgz]
author: gabor-mezei-arm <gabor.mezei@arm.com> Thu Apr 29 15:57:57 2021 +0200
committer: gabor-mezei-arm <gabor.mezei@arm.com> Thu Jun 24 11:58:18 2021 +0200
tree: 0e73eaf94513e4168f23b3b8703f8ffbd84be732
parent: eaacabf98dc1bb118c50c02dc58244f7557bc9ec [diff] [blame]
diff --git a/include/psa/crypto_struct.h b/include/psa/crypto_struct.h
index 47012fd..aee4002 100644
--- a/include/psa/crypto_struct.h
+++ b/include/psa/crypto_struct.h

@@ -394,6 +394,12 @@
 static inline void psa_set_key_usage_flags(psa_key_attributes_t *attributes,
                                            psa_key_usage_t usage_flags)
 {
+    if( usage_flags & PSA_KEY_USAGE_SIGN_HASH )
+        usage_flags |= PSA_KEY_USAGE_SIGN_MESSAGE;
+
+    if( usage_flags & PSA_KEY_USAGE_VERIFY_HASH )
+        usage_flags |= PSA_KEY_USAGE_VERIFY_MESSAGE;
+
     attributes->core.policy.usage = usage_flags;
 }
commit	eeaeef4d58b6e89ba899407d568da43beb4b90be	[log] [tgz]
author	gabor-mezei-arm <gabor.mezei@arm.com>	Thu Apr 29 15:57:57 2021 +0200
committer	gabor-mezei-arm <gabor.mezei@arm.com>	Thu Jun 24 11:58:18 2021 +0200
tree	0e73eaf94513e4168f23b3b8703f8ffbd84be732
parent	eaacabf98dc1bb118c50c02dc58244f7557bc9ec [diff] [blame]