Implement PSA protected storage & restructure PSA storage implementation #9708
Conversation
davidsaada
force-pushed
the
david_protected_storage
branch
2 times, most recently
from
c98fd6a to
a42794a
Compare
|
@davidsaada, thank you for your changes. |
|
This has no impact on @ARMmbed/mbed-os-tls so please remove as approvers. |
|
@davidsaada This will need release notes section https://os.mbed.com/docs/mbed-os/v5.11/contributing/workflow.html#functionality-change |
davidsaada
force-pushed
the
david_protected_storage
branch
from
a42794a to
91ba024
Compare
|
This depends on #9702 now in order to fix travis issues. |
|
@davidsaada Can you look at #9653 and see what is the impact of the changes there on this PR (or the opposite, whichever is merged first) |
@davidsaada Travis issues? |
Should have been more specific: It failed the psa-autogen travis check before depending on that PR. |
@mikisch81 The PRs are almost orthogonal. They only collide in |
davidsaada
force-pushed
the
david_protected_storage
branch
from
91ba024 to
9962a15
Compare
|
Rebased, no longer depends on #9702 . |
davidsaada
force-pushed
the
david_protected_storage
branch
from
9962a15 to
46a0d54
Compare
|
Can you add "Release notes" section , following https://os.mbed.com/docs/mbed-os/v5.11/contributing/workflow.html#functionality-change |
|
Implement PSA protected storage & restructure PSA storage implementation - why was this squashed into one commit? |
These were never squashed - they were all part of the same commit from the beginning (the second commit only includes the mbed-crypto files, which should be discarded after CI is successful and before merge). This is also explained in the PR description: Most of the work includes the restructuring and turning the previous ITS code to become the common code. The Protected Storage is just a very thin layer on top of it. |
|
Hi @davidsaada Could you please remove Temporary commit for mbed-crypto files. and instead cherry-pick Patater@3638862 and then Patater@5c5b6b4 into this PR? We can update Mbed Crypto with the necessary modifications though this PR, now that the changes have landed in Mbed Crypto. |
davidsaada
force-pushed
the
david_protected_storage
branch
from
46a0d54 to
3291fc3
Compare
Done. Temporary commit removed in favour of these two. |
My team just hates me... |
|
@AnotherButler Review the docs please |
|
Whoops. Stopped the accidental restart. |
|
CI started |
|
Sneaky sneaky. The success results were for the build before the rebase. |
|
@0xc0170 Please feel free to test and merge without our review. We do not have the bandwidth to review this much Doxygen at this point in time. |
|
@davidsaada Should any of these classes be added to our published, rendered documentation? |
|
@AnotherButler A pointer to the spec of protected storage (like in ITS) will be good enough |
|
@ARMmbed/mbed-os-maintainers Was just told that I needed to add few more deprecated definitions for our PSA compliance tests. This should have no effect on current code (only used by the external code). Will add them after CI finishes, so please don't stop it (so I can see if there's other stuff I need to fix if it fails). If it succeeds, please don't perform the merge yet. |
|
@davidsaada Thanks for the heads up. Will try to keep CI light today so that we can accelerate this through. |
Test run: SUCCESSSummary: 12 of 12 test jobs passed |
- Move all PSA storage code under psa/storage directory - Create a global PSA error codes header, eliminating ITS specific ones - Create a common header file for PSA storage type definitions, eliminating ITS specific ones - Create a common implementation for PS & ITS - Implement protected storage feature - Change ITS test to be common to PS as well
davidsaada
force-pushed
the
david_protected_storage
branch
from
9ab9f8b to
3c5c205
Compare
|
Pushed an update including deprecated ITS error codes (squashed into main commit) following tests success. Please rerun CI. |
|
CI started |
Test run: SUCCESSSummary: 12 of 12 test jobs passed |
Description
This PR's main purpose is the implementation of the PSA Protected Storage (PS) feature. As this implementation is almost identical to the one we already have in PSA's Internal Trusted Storage (ITS), it triggered a deeper change in the entire implementation of PSA storage.
So, changes included here are:
Important notes:
- Changes in the mbed-crypto code, included in this PR, are temporary. Changes should eventually be taken from PR #55 in the mbed-crypto repo. They are included here for CI sake only. After both PRs are approved, they should be merged together.Tested with all PSA tests on K64F and FUTURE_SEQUANA boards.
Pull request type
Release Notes