Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Move ssl_ticket to the PSA API #9874

Open
gilles-peskine-arm opened this issue Jan 2, 2025 · 0 comments
Open

Move ssl_ticket to the PSA API #9874

gilles-peskine-arm opened this issue Jan 2, 2025 · 0 comments
Labels
api-break This issue/PR breaks the API and must wait for a new major version component-tls size-s Estimated task size: small (~2d)

Comments

@gilles-peskine-arm
Copy link
Contributor

The ssl_ticket module references cipher.h in its API. This API will disappear in TF-PSA-Crypto 1.0, which Mbed TLS 4.0 will consume. The goal of this issue is to adapt ssl_ticket.h to not indirectly expose cipher.h APIs.

It's ok if the ssl_ticket module still references cipher.h interfaces in private places: inside ssl_ticket.c, or in private fields of structures defined in ssl_ticket.h.

The goal of this issue is therefore to adapt the one place where ssl_ticket.h publicly exposes a cipher.h interface: the function mbedtls_ssl_ticket_setup, which takes an argument of type mbedtls_cipher_type_t. Change this function to take two arguments instead: a PSA key type and a PSA algorithm. Adapt the implementation and all the code in our code base that calls this function.

@gilles-peskine-arm gilles-peskine-arm added component-tls api-break This issue/PR breaks the API and must wait for a new major version size-s Estimated task size: small (~2d) labels Jan 2, 2025
@gilles-peskine-arm gilles-peskine-arm moved this to Implementation needed in Mbed TLS 4.0 planning Jan 2, 2025
@mpg mpg moved this to Remove legacy types from public non-PSA interfaces in Mbed TLS Epics Jan 10, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
api-break This issue/PR breaks the API and must wait for a new major version component-tls size-s Estimated task size: small (~2d)
Projects
Status: Implementation needed
Status: Remove legacy types from public non-PSA interfaces
Development

No branches or pull requests

1 participant