Edmund Grimley Evans

Could we also make sure that if the user fails to call `psa_crypto_init` then the error code returned is one that, when they look it up, will tell them that...

The tests passed at https://github.com/veracruz-project/veracruz/actions/runs/2799377318 But I will try undoing some of the changes that perhaps were not necessary ...

@gbryant-arm, it would be good if you could test this on Nitro, though I don't think this PR will help with the entropy problem you're currently working on. @ShaleXIONG ,...

@gbryant-arm, I've fixed those two problems you pointed out and rebased.

This PR uses `psa-crypto`, while #501 remove `psa-crypto`!

Is this issue still valid? Could the pointer to the example be updated? (According to #26, `jalisco` is now `sgx-root-enclave`, and `sonora` is now `trustzone-root-enclave`, but I don't know where...

> This is the longer-term solution for the entropy problem on Nitro. I think we should mention in the log or in a comment what the correct long-term solution is,...

> We can't seed periodically because we don't know how much entropy is needed, nor when it is needed. There is no need to seed periodically. Once it has been...

> Entropy shortage is another one that you can hit on Nitro when you open too many TLS connections in a short time, for instance. The latter is a real...

> What matters here is whether `getrandom()` succeeds or not, which, as I understand it, is directly related to the status of the entropy pool. What exactly do you mean?...