xref: /third_party/mbedtls/library/psa_crypto_storage.h

4  * \brief PSA cryptography module: Mbed TLS key storage
24 /* Limit the maximum key size in storage. This should have no effect
25  * since the key size is limited in memory. */
36  * - Using the file backend, all key ids are ok except 0.
37  * - Using the ITS backend, all key ids are ok except 0xFFFFFF52
40  * - Only key ids from 1 to #MBEDTLS_PSA_KEY_SLOT_COUNT are actually used.
42  * Since we need to preserve the random seed, avoid using that key slot.
43  * Reserve a whole range of key slots just in case something else comes up.
46  * separation for key storage.
51  * \brief Checks if persistent data is stored for the given key slot number
53  * This function checks if any key data or metadata exists for the key slot in
56  * \param key           Persistent identifier to check.
63 int psa_is_key_present_in_storage(const mbedtls_svc_key_id_t key);
66  * \brief Format key data and metadata and save to a location for given key
69  * This function formats the key data and metadata and saves it to a
71  * key slot must be empty, otherwise this function will fail. This function
72  * should be called after loading the key into an internal slot to ensure the
73  * persistent key is not saved into a storage location corresponding to an
74  * already occupied non-persistent key, as well as ensuring the key data is
77  * Note: This function will only succeed for key buffers which are not
81  * \param[in] attr          The attributes of the key to save.
82  *                          The key identifier field in the attributes
83  *                          determines the key's location.
84  * \param[in] data          Buffer containing the key data.
85  * \param data_length       The number of bytes that make up the key data.
101  * \brief Parses key data and metadata and load persistent key for given
102  * key slot number.
104  * This function reads from a storage backend, parses the key data and
113  * \param[in,out] attr      On input, the key identifier field identifies
114  *                          the key to load. Other fields are ignored.
116  *                          the key metadata that was loaded from storage.
117  * \param[out] data         Pointer to an allocated key data buffer on return.
118  * \param[out] data_length  The number of bytes that make up the key data.
131  * \brief Remove persistent data for the given key slot number.
133  * \param key           Persistent identifier of the key to remove
137  *         The key was successfully removed,
138  *         or the key did not exist.
141 psa_status_t psa_destroy_persistent_key(const mbedtls_svc_key_id_t key);
149  * \param key_data        Buffer for the key data.
150  * \param key_data_length Size of the key data buffer.
156  * \brief Formats key data and metadata for persistent storage
158  * \param[in] data          Buffer containing the key data.
159  * \param data_length       Length of the key data buffer.
160  * \param[in] attr          The core attributes of the key.
170  * \brief Parses persistent storage data into key data and metadata
175  *                             containing the key data. This must be freed
177  * \param[out] key_data_length Length of the key data buffer
179  *                             with the loaded key metadata.
213 /** A key creation transaction.
221 /** A key destruction transaction.
290     } key;

Indexes created Thu Nov 07 10:32:03 CST 2024