parsec_interface::operations::psa_key_attributes

Struct Attributes

Source 
pub struct Attributes {
    pub lifetime: Lifetime,
    pub key_type: Type,
    pub bits: usize,
    pub policy: Policy,
}
Expand description

Native definition of the attributes needed to fully describe a cryptographic key.

Fields§

§lifetime: Lifetime

Lifetime of the key

§key_type: Type

Intrinsic category and type of the key

§bits: usize

Size of the key in bits

§policy: Policy

Policy restricting the permitted usage of the key

Implementations§

Source§

impl Attributes

Source

pub fn is_exportable(self) -> bool

Check if a key has permission to be exported

Source

pub fn can_export(self) -> Result<(), Error>

Check export in a fallible way

§Example
use psa_crypto::types::key::{Attributes, Type, Lifetime, Policy, UsageFlags};
use psa_crypto::types::algorithm::{Algorithm, AsymmetricSignature, Hash};

let mut usage_flags: UsageFlags = Default::default();
let mut attributes = Attributes {
    key_type: Type::RsaKeyPair,
    bits: 1024,
    lifetime: Lifetime::Volatile,
    policy: Policy {
        usage_flags,
        permitted_algorithms: Algorithm::AsymmetricSignature(AsymmetricSignature::RsaPkcs1v15Sign {
            hash_alg: Hash::Sha256.into(),
        }),
    },
};
// Can not export because the export flag is set to false.
attributes.can_export().unwrap_err();
Source

pub fn is_hash_signable(self) -> bool

Check if a key has permission to sign a message hash

Source

pub fn can_sign_hash(self) -> Result<(), Error>

Check hash signing permission in a fallible way

Source

pub fn is_hash_verifiable(self) -> bool

Check if a key has permission to verify a message hash

Source

pub fn can_verify_hash(self) -> Result<(), Error>

Check hash verifying permission in a fallible way

Source

pub fn is_message_signable(self) -> bool

Check if a key has permission to sign a message

Source

pub fn can_sign_message(self) -> Result<(), Error>

Check message signing permission in a fallible way

Source

pub fn is_message_verifiable(self) -> bool

Check if a key has permission to verify a message

Source

pub fn can_verify_message(self) -> Result<(), Error>

Check message verifying permission in a fallible way

Source

pub fn is_encrypt_permitted(self) -> bool

Check if a key has permissions to encrypt a message

Source

pub fn can_encrypt_message(self) -> Result<(), Error>

Check encrypt permission in a fallible way

Source

pub fn is_decrypt_permitted(self) -> bool

Check if a key has permissions to decrypt a message

Source

pub fn can_decrypt_message(self) -> Result<(), Error>

Check decrypt permission in a fallible way

Source

pub fn is_derivable(self) -> bool

Check if a key has permissions to be derived from

Source

pub fn can_derive_from(self) -> Result<(), Error>

Check derive permission of a fallible way

Source

pub fn is_alg_permitted(self, alg: Algorithm) -> bool

Check if the alg given for a cryptographic operation is permitted to be used with the key

Source

pub fn permits_alg(self, alg: Algorithm) -> Result<(), Error>

Check if alg is permitted in a fallible way

Source

pub fn is_compatible_with_alg(self, alg: Algorithm) -> bool

Check if the alg given for a cryptographic operation is compatible with the type of the key

§Example
use psa_crypto::types::key::{Attributes, Type, Lifetime, Policy, UsageFlags};
use psa_crypto::types::algorithm::{Algorithm, AsymmetricSignature, Hash};

let permitted_alg = Algorithm::AsymmetricSignature(AsymmetricSignature::RsaPkcs1v15Sign {
    hash_alg: Hash::Sha256.into(),
});
let alg = Algorithm::AsymmetricSignature(AsymmetricSignature::RsaPkcs1v15Sign {
    hash_alg: Hash::Sha256.into(),
});
let mut usage_flags: UsageFlags = Default::default();
let mut attributes = Attributes {
    key_type: Type::RsaKeyPair,
    bits: 1024,
    lifetime: Lifetime::Volatile,
    policy: Policy {
        usage_flags,
        permitted_algorithms: permitted_alg,
    },
};
assert!(attributes.is_compatible_with_alg(alg));
attributes.key_type = Type::RsaPublicKey;
assert!(attributes.is_compatible_with_alg(alg));
Source

pub fn compatible_with_alg(self, alg: Algorithm) -> Result<(), Error>

Check if alg is compatible in a fallible way

Trait Implementations§

Source§

impl Clone for Attributes

Source§

fn clone(&self) -> Attributes

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for Attributes

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Formats the value using the given formatter. Read more
Source§

impl<'de> Deserialize<'de> for Attributes

Source§

fn deserialize<__D>( __deserializer: __D, ) -> Result<Attributes, <__D as Deserializer<'de>>::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl PartialEq for Attributes

Source§

fn eq(&self, other: &Attributes) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl Serialize for Attributes

Source§

fn serialize<__S>( &self, __serializer: __S, ) -> Result<<__S as Serializer>::Ok, <__S as Serializer>::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more
Source§

impl Zeroize for Attributes

Source§

fn zeroize(&mut self)

Zero out this object from memory using Rust intrinsics which ensure the zeroization operation is not “optimized away” by the compiler.
Source§

impl Copy for Attributes

Source§

impl Eq for Attributes

Source§

impl StructuralPartialEq for Attributes

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,