PSA key storage: systematically store the bit-size #3740
Assignees
Labels
Comments
gilles-peskine-arm
added
enhancement
component-crypto
gilles-peskine-arm
added this to Incoming Items
in OBSOLETE - SEE https://github.com/orgs/Mbed-TLS/projects/3
via automation
gilles-peskine-arm
removed this from Incoming Items
in OBSOLETE - SEE https://github.com/orgs/Mbed-TLS/projects/3
|
I have started working on this ticket and can have a PR ready fairly soon. Should a solution to this ticket include updates of the storage format documentation? It seems like a separate ticket was created for this #3737 |
|
#3737 is to update historical documentation. If you change the format, please add a new section to https://github.com/ARMmbed/mbedtls/blob/development/docs/architecture/mbed-crypto-storage-specification.md that describes the new format. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Currently the bit-size is stored for dynamic-driver secure element keys and calculated for the data for transparent keys. To simplify the design of storage for opaque drivers that store the key as a wrapped blob (#3289), store the bit-size systematically with the other attributes.
The storage format currently has a 32-bit field for the key type, but key types are now 16-bit, as are key sizes. So I propose to split these 32-bits into type and size.
psa_format_key_data_for_storageandpsa_parse_key_data_from_storageto store the bit-size with the other attributes.test_suite_psa_crypto_persistent_key.The text was updated successfully, but these errors were encountered: