diff options
author | Ronald Cron <ronald.cron@arm.com> | 2020-08-04 09:51:30 +0200 |
---|---|---|
committer | Ronald Cron <ronald.cron@arm.com> | 2020-11-10 16:00:41 +0100 |
commit | cf56a0a320469a28d8b825f7f028fa5ea01c2ac3 (patch) | |
tree | 0cd43a8e9d659c43019ddb19d76f57b12dd1dc85 /README.md | |
parent | e4f6d5c5fe5b2ac9fa93c067d4553754f6a8a02b (diff) | |
download | mbedtls-cf56a0a320469a28d8b825f7f028fa5ea01c2ac3.zip mbedtls-cf56a0a320469a28d8b825f7f028fa5ea01c2ac3.tar.gz mbedtls-cf56a0a320469a28d8b825f7f028fa5ea01c2ac3.tar.bz2 |
psa: Move from key handle to key identifier
Move all the PSA crypto APIs using key handles
to use key identifiers but psa_key_open() and
psa_key_close(). This is done without modifying
any test as key handles and key identifiers are
now the same.
Update the library modules using PSA crypto APIs
to get rid of key handles.
Programs and unit tests are updated to not use
key handles in subsequent commits, not in this
one.
Signed-off-by: Ronald Cron <ronald.cron@arm.com>
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 2 |
1 files changed, 1 insertions, 1 deletions
@@ -208,7 +208,7 @@ The design goals of the PSA cryptography API include: * The API distinguishes caller memory from internal memory, which allows the library to be implemented in an isolated space for additional security. Library calls can be implemented as direct function calls if isolation is not desired, and as remote procedure calls if isolation is desired. * The structure of internal data is hidden to the application, which allows substituting alternative implementations at build time or run time, for example, in order to take advantage of hardware accelerators. -* All access to the keys happens through handles, which allows support for external cryptoprocessors that is transparent to applications. +* All access to the keys happens through key identifiers, which allows support for external cryptoprocessors that is transparent to applications. * The interface to algorithms is generic, favoring algorithm agility. * The interface is designed to be easy to use and hard to accidentally misuse. |