mbedtls_pk_copy_from_psa() function

Create a PK context starting from a key stored in PSA. This key: - must be exportable and - must be an RSA or EC key pair or public key (FFDH is not supported in PK). The resulting PK object will be a transparent type: - #MBEDTLS_PK_RSA for RSA keys or - #MBEDTLS_PK_ECKEY for EC keys. Once this functions returns the PK object will be completely independent from the original PSA key that it was generated from. Calling mbedtls_pk_sign(), mbedtls_pk_verify(), mbedtls_pk_encrypt(), mbedtls_pk_decrypt() on the resulting PK context will perform the corresponding algorithm for that PK context type. * For ECDSA, the choice of deterministic vs randomized will be based on the compile-time setting #MBEDTLS_ECDSA_DETERMINISTIC. * For an RSA key, the output PK context will allow both encrypt/decrypt and sign/verify regardless of the original key's policy. The original key's policy determines the output key's padding mode: PCKS1 v2.1 is set if the PSA key policy is OAEP or PSS, otherwise PKCS1 v1.5 is set.

Syntax

Show:

Summary

Declaration

Definition

from pk.h:685

int mbedtls_pk_copy_from_psa(mbedtls_svc_key_id_t key_id, mbedtls_pk_context *pk);

Implemented in pk.c:981

Arguments

Argument

Description

key_id

The key identifier of the key stored in PSA.

The PK context that will be filled. It must be initialized, but not set up.

Return value

0 on success. #MBEDTLS_ERR_PK_BAD_INPUT_DATA in case the provided input parameters are not correct.

References

Code

Location

int mbedtls_pk_copy_from_psa(mbedtls_svc_key_id_t key_id,

pk.c:981

int mbedtls_pk_copy_from_psa(mbedtls_svc_key_id_t key_id, mbedtls_pk_context *pk);

pk.h:685

Call Tree

mbedtls_pk_copy_from_psa() calls 1 function:

mbedtls_pk_copy_from_psa()

copy_from_psa()

Data Use

mbedtls_pk_copy_from_psa():

mbedtls_pk_copy_from_psa()

Class Tree

All items filtered out

Override Tree

All items filtered out

Implementations

All items filtered out

Instances

Lifecycle

All items filtered out