Restyle Add ephemeral key allocator to FabricTable #20083
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![restyled-io[bot]](https://avatars.githubusercontent.com/in/5851?s=60&v=4){kind=small}
- CASE requires P256 ephemeral keys - CASE had a hack whereby "single slots" ephemeral keys for NXP HSM were used, which cannot work for multiple CASE session establishments - Using raw P256Keypair prevents being able to use OS-backed or HW-backed keys, like can be done for operational keys Issue #20036 This PR: - Adds a way to get CASE ephemeral keys from the OperationalKeystore abstraction - Funnels their access via the FabricTable - Removes some HSM hacks (cannot remove all HSM usage just yet) in a way that now OperationalKeystore targeting NXP HSM could do the right thing Testing done: - Unit tests still pass - Integration tests still passa - Added unit tests to validate usage of new APIs - Ran valgrind on the unit tests, found no leaks
pullapprove
bot
requested review from
andy31415,
anush-apple,
arkq,
Byungjoo-Lee,
bzbarsky-apple,
carol-apple,
chrisdecenzo,
chshu,
chulspro,
Damian-Nordic,
dhrishi,
electrocucaracha,
emargolis,
franck-apple and
gjc13
pullapprove
bot
requested review from
tehampson,
msandstedt,
xylophone21,
rgoliver,
yufengwangca,
turon,
robszewczyk,
yunhanw-google,
vijs,
saurabhst,
vivien-apple,
selissia,
wbschiller,
tecimovic and
woody-apple
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
A duplicate of #20082 with additional commits that automatically address
incorrect style, created by Restyled.
Please review accordingly.
Since the original Pull Request was opened as a fork in a contributor's
repository, we are unable to create a Pull Request branching from it with only
the style fixes.
The following Restylers made fixes:
To incorporate these changes, you can either:
Merge this Pull Request instead of the original, or
Ask your contributor to locally incorporate these commits and push them to
the original Pull Request
Expand for example instructions
NOTE: As work continues on the original Pull Request, this process will
re-run and update (force-push) this Pull Request with updated style fixes as
necessary. If the style is fixed manually at any point (i.e. this process finds
no fixes to make), this Pull Request will be closed automatically.
Sorry if this was unexpected. To disable it, see our documentation.