Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PK architecture and project specification #9555

Closed
wants to merge 1 commit into from
Closed

PK architecture and project specification #9555

wants to merge 1 commit into from

Conversation

gilles-peskine-arm
Copy link
Contributor

@gilles-peskine-arm gilles-peskine-arm commented Sep 10, 2024
edited
Loading

New interface design and overview of required work. Resolves #8452 once this is merged and we have filed GitHub issues corresponding to the task breakdown.

I've tried to minimize the amount of changes compared to the current code. This is mostly a cleanup, keeping the 3.6 transition workflows identical where it's sensible to do so, with few new interfaces.

Status: architecture for the original goal of a clean 4.0 mostly complete. Task breakdown only barely started. Needs heavy rework because we have scoped 4.0 down to be minimal changes.

PR checklist

  • changelog not required because: doc only
  • development PR here
  • framework PR not required
  • 3.6 PR not required because: new stuff
  • 2.28 PR not required because: new stuff
  • tests not required because: doc only

@gilles-peskine-arm
PK architecture and project specification
e7e1a17 
New interface design and overview of required work.

The task breakdown has only been done for preliminaries, not for the bulk of
the work.

Signed-off-by: Gilles Peskine <[email protected]>
@gilles-peskine-arm gilles-peskine-arm added component-crypto Crypto primitives and low-level interfaces size-s Estimated task size: small (~2d) labels Sep 10, 2024
@gilles-peskine-arm gilles-peskine-arm added priority-high High priority - will be reviewed soon needs-work labels Oct 28, 2024
@gilles-peskine-arm
Copy link
Contributor Author

I am closing this pull request because we have scaled down our expectations for TF-PSA-Crypto 1.0 and Mbed TLS 4.0, and we will not make radical changes to the pk module. We will instead make minimal changes. In particular, some parts of pk will become private but will still be used in X.509 and TLS as of Mbed TLS 4.0, and those parts will only be replaced and removed later.

Parts of this specification are still of interest, but I will make a new specification document in a new pull request for the revised pk project.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
component-crypto Crypto primitives and low-level interfaces needs-work priority-high High priority - will be reviewed soon size-s Estimated task size: small (~2d)
Projects
Roadmap pull requests (new board)
Status: Done
Roadmap Board for Mbed TLS
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Evolution of pk.h in 4.0
1 participant
@gilles-peskine-arm