/* * Example computing a SHA-256 hash using the PSA Crypto API * * The example computes the SHA-256 hash of a test string using the * one-shot API call psa_hash_compute() and the using multi-part * operation, which requires psa_hash_setup(), psa_hash_update() and * psa_hash_finish(). The multi-part operation is popular on embedded * devices where a rolling hash needs to be computed. * * * Copyright The Mbed TLS Contributors * SPDX-License-Identifier: Apache-2.0 * * Licensed under the Apache License, Version 2.0 (the "License"); you may * not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ #include "psa/crypto.h" #include #include #include #include "mbedtls/build_info.h" #include "mbedtls/platform.h" /* Information about hashing with the PSA API can be * found here: * https://arm-software.github.io/psa-api/crypto/1.1/api/ops/hashes.html * * The algorithm used by this demo is SHA 256. * Please see include/psa/crypto_values.h to see the other * algorithms that are supported by Mbed TLS. * If you switch to a different algorithm you will need to update * the hash data in the EXAMPLE_HASH_VALUE macro below. */ #if !defined(MBEDTLS_PSA_CRYPTO_C) || !defined(PSA_WANT_ALG_SHA_256) int main(void) { mbedtls_printf("MBEDTLS_PSA_CRYPTO_C and PSA_WANT_ALG_SHA_256" "not defined.\r\n"); return EXIT_SUCCESS; } #else #define HASH_ALG PSA_ALG_SHA_256 const uint8_t sample_message[] = "Hello World!"; /* sample_message is terminated with a null byte which is not part of * the message itself so we make sure to subtract it in order to get * the message length. */ const size_t sample_message_length = sizeof(sample_message) - 1; #define EXPECTED_HASH_VALUE { \ 0x7f, 0x83, 0xb1, 0x65, 0x7f, 0xf1, 0xfc, 0x53, 0xb9, 0x2d, 0xc1, 0x81, \ 0x48, 0xa1, 0xd6, 0x5d, 0xfc, 0x2d, 0x4b, 0x1f, 0xa3, 0xd6, 0x77, 0x28, \ 0x4a, 0xdd, 0xd2, 0x00, 0x12, 0x6d, 0x90, 0x69 \ } const uint8_t expected_hash[] = EXPECTED_HASH_VALUE; const size_t expected_hash_len = sizeof(expected_hash); int main(void) { psa_status_t status; uint8_t hash[PSA_HASH_LENGTH(HASH_ALG)]; size_t hash_length; psa_hash_operation_t hash_operation = PSA_HASH_OPERATION_INIT; psa_hash_operation_t cloned_hash_operation = PSA_HASH_OPERATION_INIT; mbedtls_printf("PSA Crypto API: SHA-256 example\n\n"); status = psa_crypto_init(); if (status != PSA_SUCCESS) { mbedtls_printf("psa_crypto_init failed\n"); return EXIT_FAILURE; } /* Compute hash using multi-part operation */ status = psa_hash_setup(&hash_operation, HASH_ALG); if (status == PSA_ERROR_NOT_SUPPORTED) { mbedtls_printf("unknown hash algorithm supplied\n"); return EXIT_FAILURE; } else if (status != PSA_SUCCESS) { mbedtls_printf("psa_hash_setup failed\n"); return EXIT_FAILURE; } status = psa_hash_update(&hash_operation, sample_message, sample_message_length); if (status != PSA_SUCCESS) { mbedtls_printf("psa_hash_update failed\n"); goto cleanup; } status = psa_hash_clone(&hash_operation, &cloned_hash_operation); if (status != PSA_SUCCESS) { mbedtls_printf("PSA hash clone failed\n"); goto cleanup; } status = psa_hash_finish(&hash_operation, hash, sizeof(hash), &hash_length); if (status != PSA_SUCCESS) { mbedtls_printf("psa_hash_finish failed\n"); goto cleanup; } /* Check the result of the operation against the sample */ if (hash_length != expected_hash_len || (memcmp(hash, expected_hash, expected_hash_len) != 0)) { mbedtls_printf("Multi-part hash operation gave the wrong result!\n\n"); goto cleanup; } status = psa_hash_verify(&cloned_hash_operation, expected_hash, expected_hash_len); if (status != PSA_SUCCESS) { mbedtls_printf("psa_hash_verify failed\n"); goto cleanup; } else { mbedtls_printf("Multi-part hash operation successful!\n"); } /* Clear local variables prior to one-shot hash demo */ memset(hash, 0, sizeof(hash)); hash_length = 0; /* Compute hash using one-shot function call */ status = psa_hash_compute(HASH_ALG, sample_message, sample_message_length, hash, sizeof(hash), &hash_length); if (status != PSA_SUCCESS) { mbedtls_printf("psa_hash_compute failed\n"); goto cleanup; } if (hash_length != expected_hash_len || (memcmp(hash, expected_hash, expected_hash_len) != 0)) { mbedtls_printf("One-shot hash operation gave the wrong result!\n\n"); goto cleanup; } mbedtls_printf("One-shot hash operation successful!\n\n"); /* Print out result */ mbedtls_printf("The SHA-256( '%s' ) is: ", sample_message); for (size_t j = 0; j < expected_hash_len; j++) { mbedtls_printf("%02x", hash[j]); } mbedtls_printf("\n"); mbedtls_psa_crypto_free(); return EXIT_SUCCESS; cleanup: psa_hash_abort(&hash_operation); psa_hash_abort(&cloned_hash_operation); return EXIT_FAILURE; } #endif /* !MBEDTLS_PSA_CRYPTO_C || !PSA_WANT_ALG_SHA_256 */