Define AVS_COMMONS_WITH_AVS_CRYPTO_PSK_ENGINE

• Defined in File avs_commons_config.h

Define Documentation

AVS_COMMONS_WITH_AVS_CRYPTO_PSK_ENGINE

Enables high-level support for hardware-based PSK security, i.e. loading and managing PSK keys and identities via external engine.

Requires AVS_COMMONS_WITH_AVS_CRYPTO_PKI to be enabled.

An actual implementation is required to use this feature. You may provide your own, or use the default PSA-based one that comes with the HSM engine commercial feature (see AVS_COMMONS_WITH_MBEDTLS_PSA_ENGINE).

The functions that need to be provided in case of a custom implementation:

• avs_crypto_psk_engine_identity_store()

• avs_crypto_psk_engine_identity_rm()

• avs_crypto_psk_engine_key_store()

• avs_crypto_psk_engine_key_rm()

• When targeting the Mbed TLS backend:

  • _avs_crypto_mbedtls_engine_initialize_global_state()

  • _avs_crypto_mbedtls_engine_cleanup_global_state()

  • _avs_crypto_mbedtls_engine_load_psk_key()

External PSK engines are NOT supported in the OpenSSL and TinyDTLS backend.