174 	int rc;  in construct_psa_alg()  local
181 	rc = mbedtls_asn1_get_alg(&p, end, &sig_alg_oid, &params);  in construct_psa_alg()
182 	if (rc != 0) {  in construct_psa_alg()
183 		rc = CRYPTO_ERR_SIGNATURE;  in construct_psa_alg()
187 	rc = mbedtls_x509_get_sig_alg(&sig_alg_oid, &params, &md_alg, pk_alg, &sig_opts);  in construct_psa_alg()
188 	if (rc != 0) {  in construct_psa_alg()
189 		rc = CRYPTO_ERR_SIGNATURE;  in construct_psa_alg()
198 		rc = CRYPTO_SUCCESS;  in construct_psa_alg()
202 		rc = CRYPTO_SUCCESS;  in construct_psa_alg()
206 		rc = CRYPTO_ERR_SIGNATURE;  in construct_psa_alg()
212 	return rc;  in construct_psa_alg()
246 	int rc = CRYPTO_ERR_SIGNATURE;  in verify_signature()  local
264 		rc = mbedtls_pk_parse_subpubkey(&p, end, &pk);  in verify_signature()
265 		if (rc != 0) {  in verify_signature()
266 			rc = CRYPTO_ERR_SIGNATURE;  in verify_signature()
270 		rc = mbedtls_pk_get_psa_attributes(&pk, PSA_KEY_USAGE_VERIFY_MESSAGE,  in verify_signature()
272 		if (rc != 0) {  in verify_signature()
273 			rc = CRYPTO_ERR_SIGNATURE;  in verify_signature()
277 		rc = construct_psa_alg(sig_alg, sig_alg_len, &pk_alg, &psa_alg);  in verify_signature()
278 		if (rc != CRYPTO_SUCCESS) {  in verify_signature()
283 		rc = mbedtls_pk_import_into_psa(&pk, &psa_key_attr, &psa_key_id);  in verify_signature()
284 		if (rc != 0) {  in verify_signature()
285 			rc = CRYPTO_ERR_SIGNATURE;  in verify_signature()
290 		rc = cache_psa_key_info(pk_oid, psa_key_id, psa_alg, psa_key_attr);  in verify_signature()
291 		if (rc != CRYPTO_SUCCESS) {  in verify_signature()
302 	rc = mbedtls_asn1_get_bitstring_null(&p, end, &local_sig_len);  in verify_signature()
303 	if (rc != 0) {  in verify_signature()
304 		rc = CRYPTO_ERR_SIGNATURE;  in verify_signature()
315 		rc = mbedtls_ecdsa_der_to_raw(key_bits, p, local_sig_len,  in verify_signature()
318 		if (rc != 0) {  in verify_signature()
319 			rc = CRYPTO_ERR_SIGNATURE;  in verify_signature()
334 	rc = (psa_status == PSA_SUCCESS) ? CRYPTO_SUCCESS : CRYPTO_ERR_SIGNATURE;  in verify_signature()
337 	return rc;  in verify_signature()
342 	return rc;  in verify_signature()
358 	int rc;  in verify_hash()  local
369 	rc = mbedtls_asn1_get_tag(&p, end, &len, MBEDTLS_ASN1_CONSTRUCTED |  in verify_hash()
371 	if (rc != 0) {  in verify_hash()
378 	rc = mbedtls_asn1_get_alg(&p, end, &hash_oid, &params);  in verify_hash()
379 	if (rc != 0) {  in verify_hash()
384 	rc = mbedtls_asn1_get_tag(&p, end, &len, MBEDTLS_ASN1_OCTET_STRING);  in verify_hash()
385 	if ((rc != 0) || ((size_t)(end - p) != len)) {  in verify_hash()
390 	rc = mbedtls_oid_get_md_alg(&hash_oid, &md_alg);  in verify_hash()
391 	if (rc != 0) {  in verify_hash()
568 	int rc;  in auth_decrypt()  local
574 		rc = aes_gcm_decrypt(data_ptr, len, key, key_len, iv, iv_len,  in auth_decrypt()
576 		if (rc != 0)  in auth_decrypt()
577 			return rc;  in auth_decrypt()