TrustedFirmware Git Browser
Code Review Sign In
review.trustedfirmware.org / mirror / mbed-tls / 4fc21fdeb6ecff1165b1a7e77cea5676b8058ee0 / . / library / psa_crypto_invasive.h
blob: be127d9f8cc06c65947e82ea06d0878d74f8501d [file] [log] [blame]
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]1/**
2 * \file psa_crypto_invasive.h
3 *
4 * \brief PSA cryptography module: invasive interfaces for test only.
5 *
6 * The interfaces in this file are intended for testing purposes only.
7 * They MUST NOT be made available to clients over IPC in integrations
8 * with isolation, and they SHOULD NOT be made available in library
9 * integrations except when building the library for testing.
10 */
11/*
Bence Szépkúti1e148272020-08-07 13:07:28 +0200[diff] [blame]12 * Copyright The Mbed TLS Contributors
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]13 * SPDX-License-Identifier: Apache-2.0
14 *
15 * Licensed under the Apache License, Version 2.0 (the "License"); you may
16 * not use this file except in compliance with the License.
17 * You may obtain a copy of the License at
18 *
19 * http://www.apache.org/licenses/LICENSE-2.0
20 *
21 * Unless required by applicable law or agreed to in writing, software
22 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
23 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
24 * See the License for the specific language governing permissions and
25 * limitations under the License.
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]26 */
27
28#ifndef PSA_CRYPTO_INVASIVE_H
29#define PSA_CRYPTO_INVASIVE_H
30
31#if defined(MBEDTLS_CONFIG_FILE)
32#include MBEDTLS_CONFIG_FILE
33#else
34#include "mbedtls/config.h"
35#endif
36
37#include "psa/crypto.h"
38
39#include "mbedtls/entropy.h"
40
Gilles Peskine4fc21fd2020-11-13 18:47:18 +0100[diff] [blame^]41#if !defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG)
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]42/** \brief Configure entropy sources.
43 *
44 * This function may only be called before a call to psa_crypto_init(),
45 * or after a call to mbedtls_psa_crypto_free() and before any
46 * subsequent call to psa_crypto_init().
47 *
48 * This function is only intended for test purposes. The functionality
49 * it provides is also useful for system integrators, but
50 * system integrators should configure entropy drivers instead of
51 * breaking through to the Mbed TLS API.
52 *
53 * \param entropy_init Function to initialize the entropy context
54 * and set up the desired entropy sources.
55 * It is called by psa_crypto_init().
56 * By default this is mbedtls_entropy_init().
57 * This function cannot report failures directly.
58 * To indicate a failure, set the entropy context
59 * to a state where mbedtls_entropy_func() will
60 * return an error.
61 * \param entropy_free Function to free the entropy context
62 * and associated resources.
63 * It is called by mbedtls_psa_crypto_free().
64 * By default this is mbedtls_entropy_free().
65 *
Ronald Cron96783552020-10-19 12:06:30 +0200[diff] [blame]66 * \retval #PSA_SUCCESS
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]67 * Success.
Ronald Cron96783552020-10-19 12:06:30 +0200[diff] [blame]68 * \retval #PSA_ERROR_NOT_PERMITTED
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]69 * The caller does not have the permission to configure
70 * entropy sources.
Ronald Cron96783552020-10-19 12:06:30 +0200[diff] [blame]71 * \retval #PSA_ERROR_BAD_STATE
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]72 * The library has already been initialized.
73 */
74psa_status_t mbedtls_psa_crypto_configure_entropy_sources(
75 void (* entropy_init )( mbedtls_entropy_context *ctx ),
76 void (* entropy_free )( mbedtls_entropy_context *ctx ) );
Gilles Peskine4fc21fd2020-11-13 18:47:18 +0100[diff] [blame^]77#endif /* !defined(MBEDTLS_PSA_CRYPTO_EXTERNAL_RNG) */
Gilles Peskine5e769522018-11-20 21:59:56 +0100[diff] [blame]78
79#endif /* PSA_CRYPTO_INVASIVE_H */