Lines Matching refs:not

37 There is functionality that is tied to one API and is not directly available in the other API:
41 * The legacy API has features that are not present (yet) in PSA, notably parsing and formatting asy…
67 The goal of this document is to bridge the legacy API and the PSA API. The goal is not to provide a…
69 With respect to the legacy API, we do not consider functionality of low-level modules for individua…
75 * Where the PSA equivalents do not provide the same functionality. A typical example is parsing and…
86 …nd converting between `MBEDTLS_ERR_xxx` error codes and `PSA_ERROR_xxx` is not particularly helpfu…
92 Hashes do not involve keys, and involves no nontrivial data format. Therefore the only gap is with …
94 …atures, key derivation, etc.). Therefore metadata about hashes is relevant not only when calculati…
118 …ie-Hellman-Merkle = FFDH: finite-field Diffie-Hellman) keys, but those are not integrated in the p…
127 …a policy that (for the most part) limits them to one algorithm, there does not seem to be a need t…
151 * A very common case where the input is a legacy key object is parsing. PSA does not (yet) have an …
152 …is less flexible in some cases. In particular, PSA RSA key generation does not (yet) allow choosin…
160 …his partially exists in the form of `mbedtls_pk_wrap_as_opaque`, but it is not fully satisfactory,…
164 …r third-party interface, or the `mbedtls_pk_write_xxx` interfaces which do not (yet) have PSA equi…
168 …OPAQUE` that wraps the PSA key. This is good enough in some scenarios, but not others. For example…
170 * It is only available under `MBEDTLS_USE_PSA_CRYPTO`. This is not a priority concern, since we gen…
179 After some discussion, have not identified anything we want to change in the behavior of `mbedtls_p…
192 …the knowledge of the curve, or at least the curve's size. Therefore we are not going to add a gene…
194not appear nested in TLV structures in either TLS (there's just a signature field) or X.509 (the s…
251 …algorithm. “Same key material” is straightforward, but “same algorithm” is not, because a PK conte…
257 …he information from the `mbedtls_pk_context` object. It is convenient, but not necessary, for the …
261 This is close to the existing function `mbedtls_pk_wrap_as_opaque`, but does not bake in the implem…
274 * `mbedtls_pk_get_psa_attributes` does not change the id/lifetime fields of the attributes (which i…
292 * `mbedtls_pk_import_into_psa` does not need to check the bit-size in the attributes: `psa_import_k…
293 * `mbedtls_pk_import_into_psa` does not check that the policy in the attributes is sensible. That's…
306 * `pk` must be initialized, but not set up.
308 * It is an error if the key is not exportable.
309 * The resulting pk object has a transparent type, not `MBEDTLS_PK_OPAQUE`. That's `MBEDTLS_PK_RSA` …
322 …BEDTLS_PSA_CRYPTO_CLIENT` is enabled, not just when `MBEDTLS_USE_PSA_CRYPTO` is enabled. This is n…