Make mbedtls_psa_register_se_key usable with opaque drivers #9255
Labels
api-break
This issue/PR breaks the API and must wait for a new major version
component-psa
PSA keystore/dispatch layer (storage, drivers, …)
enhancement
size-s
Estimated task size: small (~2d)
The function
mbedtls_psa_register_se_key
creates a PSA key object that is backed by a secure element. It is currently only implemented only for dynamic secure element drivers (the feature enabled byMBEDTLS_PSA_CRYPTO_SE_C
), which are going away in TF-PSA-Crypto 1.0 (i.e. Mbed TLS 4.0). But it would be useful for the new kind of opaque drivers too. It needs a new interface for that, to specify the key material (with dynamic secure elements, that comes from theslot_number
parameter in the attributes).We'll want to fix #9254 while we're at it. Thus the new prototype should probably be:
The text was updated successfully, but these errors were encountered: