trussed
trussed copied to clipboard
trussed-dev
Modern Cryptographic Firmware
Currently, Trussed implements some certificate handling functions. In some cases (specifically: [Fobnail](https://fobnail.3mdeb.com/)), it was required to verify the certificate chain (i.e.: to confirm, whether the given certificate was issued by...
This allows for more flexibility. Ultimately the goal it to enable running multiple trussed instances at the same time.
The CI runs checks only with either all features enabled or none. As a consequence it never checks that trussed compiles with logs enabled (they are either not enabled or...
Hello, we are having an issue where Trussed consumes large amounts of stack. The problem happens when constructing a before calling into Trussed. To construct a message we need to...
Given the limitations with iteration over files in a directory, trussed could expose `read_dir_(files_)_many` that returns multiple file contents/filenames.
Provide a `read_dir_nth()` syscall that starts iteration not at the first file. Same for `read_dir_files_nth()`. This can reduce the time taken by paging mechanisms like in our [secrets-app](https://github.com/Nitrokey/trussed-secrets-app/blob/main/src/authenticator.rs#L428). This could...
Upgrading postcard from 0.7 to 1.0 would be a breaking change and invalidate existing FIDO credentials generated with `fido-authenticator`. To avoid outdated dependencies, we should consider forking or replacing postcard.
- [x] p348 (using RustCrypto) - [x] p521 (using Ruscrypto) - [ ] brainpoolP256r1 (Mechanism definition only, implementation in separate backend) - [ ] brainpoolP384r1 (Mechanism definition only, implementation in...
This patch combines the operation traits that were previously used to call mechanism implementations into a single MechanismImpl trait. This has several advantages: - We can use a macro to...