diff options
author | Valerio Setti <valerio.setti@nordicsemi.no> | 2024-03-18 17:12:49 +0100 |
---|---|---|
committer | Valerio Setti <valerio.setti@nordicsemi.no> | 2024-03-21 16:55:24 +0100 |
commit | 622f90597ecc21435aa48698eca0ff93220e8dbf (patch) | |
tree | 491ca3480b889bd51f5fb9ee8f71cf62246d1ce5 /include | |
parent | f5a6e220323f5abfe3d789b9be8bdb9a2a7a8ea8 (diff) | |
download | mbedtls-622f90597ecc21435aa48698eca0ff93220e8dbf.zip mbedtls-622f90597ecc21435aa48698eca0ff93220e8dbf.tar.gz mbedtls-622f90597ecc21435aa48698eca0ff93220e8dbf.tar.bz2 |
pk: improve documentation of mbedtls_pk_setup_opaque()
Signed-off-by: Valerio Setti <valerio.setti@nordicsemi.no>
Diffstat (limited to 'include')
-rw-r--r-- | include/mbedtls/pk.h | 13 |
1 files changed, 11 insertions, 2 deletions
diff --git a/include/mbedtls/pk.h b/include/mbedtls/pk.h index 97af0a1..4113895 100644 --- a/include/mbedtls/pk.h +++ b/include/mbedtls/pk.h @@ -374,10 +374,19 @@ int mbedtls_pk_setup(mbedtls_pk_context *ctx, const mbedtls_pk_info_t *info); * operations and, based on the key type, used algorithms will be: * * EC: * * verify: #PSA_ALG_ECDSA_ANY; - * * sign: try both deterministic and non-deterministic ECDSA. + * * sign: try #PSA_ALG_DETERMINISTIC_ECDSA() first and, in + * case it fails, try with #PSA_ALG_ECDSA(). * * RSA: * * sign: #PSA_ALG_RSA_PKCS1V15_SIGN(); - * * decrypt: #PSA_ALG_RSA_PKCS1V15_CRYPT. + * * sign_ext: use the algorithm associated with the wrapped + * PSA key; + * * verify: not supported; + * * verify_ext: not supported; + * * decrypt: #PSA_ALG_RSA_PKCS1V15_CRYPT; + * * encrypt: not supported. + * In order to have above mentioned operations to succeed it is + * mandatory that the wrapped PSA key allows the specified + * algorithm in its policy. * * \param ctx The context to initialize. It must be empty (type NONE). * \param key The PSA key to wrap, which must hold an ECC or RSA key |