trussed
trussed copied to clipboard
trussed-dev
Modern Cryptographic Firmware
This PR follows what was discussed in https://github.com/trussed-dev/trussed/discussions/36. There are two issues to solve: - [ ] Migrations: Already created public keys will have the `EXTRACTABLE` flag off by default,...
This PR fixes key type confusions that could happen previously. Because many symmetric operations didn't check the `Kind` of the key they used, it was possible to use an ECC...
This is an "request for comments"-type PR to invite a discussion and iron out the details of the RSA library integration. #### Context We've discussed this with the Nitrokey team...
This PR runs `cargo-fmt` on trussed. This creates conflicts with other branches but they can be solved with some bits of git magic. There is a rebased branch for #29...
The miracl/core library is an option to provide implementations of a wider range of (non-core) algorithms in Trussed. While the implementations are definitely "C translated to Rust", and likely not...
Based on the HmacSha256 implementation - the only difference is, that the result is stored as a P256 key, instead of a shared variant. As discussed, it would be best...
This adds the structure to allow multiple service backends. Essentially the client now has the possibility to choose a order-of-dispatch in its `ClientContext`. This is an elementary step towards transparent...
Currently, the mechanisms are behind feature flags, but most of them are enabled by default via the `default-mechanisms` feature. The `Mechanism` enum always contains all mechanisms, not depending on the...