Skip to content

HMAC Owned Api#75

Merged
FerralCoder merged 17 commits intoOpenPRoT:mainfrom
rusty1968:hmac-owned
Nov 3, 2025
Merged

HMAC Owned Api#75
FerralCoder merged 17 commits intoOpenPRoT:mainfrom
rusty1968:hmac-owned

Conversation

@rusty1968
Copy link
Collaborator

@rusty1968 rusty1968 commented Oct 30, 2025

The owned API is a modern pattern in OpenPRoT HAL that uses Rust's move semantics for safe, zero-cost cryptographic operations. Unlike the reference-based APIs, owned APIs transfer ownership of contexts between operations.

  • Move Semantics
  • Operations consume contexts with self (not &mut self)
  • Prevents accidental reuse of finalized contexts
  • Ensures each context has a single, linear lifecycle

This mirrors the digest owned API pattern but adds key management for MAC operations.

@rusty1968 rusty1968 requested a review from FerralCoder October 30, 2025 07:42
FerralCoder
FerralCoder previously approved these changes Oct 30, 2025
View reviewed changes
FerralCoder
FerralCoder previously approved these changes Oct 30, 2025
View reviewed changes
@rusty1968 rusty1968 force-pushed the hmac-owned branch 2 times, most recently from b44e760 to a1d7e1a Compare October 31, 2025 18:44
FerralCoder
FerralCoder previously approved these changes Oct 31, 2025
View reviewed changes
@rusty1968
example(rustcrypto): implement complete digest API supporting both sc…
178961a 
…oped and owned patterns
@rusty1968
feat(hmac_owned api) applicable to use cases where we need a persiste…
876d9ba 
…nt context (ipc server).
@rusty1968
refactor(rustcrypto): unify digest and MAC operations in single trait…
106371d 
… implementation

- Add RustCryptoController as unified trait implementation for digest and MAC
- Consolidate SHA-256/384/512 digest and HMAC-SHA operations in one type
- Remove redundant digest.rs and hash.rs modules
- Update MAC traits to use generic key handle design for better security
- Update dependencies to support unified trait implementation

The RustCryptoController serves as a stateless Hubris-compatible type that
implements both digest and MAC traits with proper generic key handling.
@rusty1968
Update copilot-instructions
16d2721
@rusty1968
Rename rustcrypto controller platform
34587ac
@rusty1968
Fix clippy warnings
1c46295
@rusty1968
[fix] clippy warnings and version conflict source.
cbd035d
@rusty1968
suppres clippy warnings in test functions.
604e540
@rusty1968
address panic sources in rustcrypto implementation
249b3fd
@rusty1968
Replaced direct indexing: words[i] = value → words.get_mut(i) with pr…
f95e1a1 
…oper error handling
@rusty1968
Introduce SecureOwnedKey
1eba0cd
@rusty1968
### Hubris Integration Traits
b831971 
- Add `HubrisDigestDevice` trait with concrete associated types
- Implement `HubrisCryptoError` for IDL-compatible error handling
- Support SHA-256/384/512 digest operations with move semantics
- Add HMAC-SHA256/384/512 support with secure key management
- Include one-shot operation convenience methods

### RustCrypto Controller Integration
- Implement `HubrisDigestDevice` for `RustCryptoController`
- Add `SecureOwnedKey` with stack-allocated 128-byte buffer
- Fix unsafe indexing operations with bounds-checked alternatives
- Suppress deprecation warnings for ecosystem compatibility
@rusty1968
fix: move Hubris platform integration before test module.
782a0f2
@rusty1968
[test] Hubris adapter traits unit test.
466c072
@rusty1968
dded safety and documentation attributes
589a592
@rusty1968
Extend the HubrisDigestDevice with sesison management methods.
9f65dbd
@rusty1968
Add missing Controller = Self constraint.
8d41a41
@FerralCoder FerralCoder merged commit de085da into OpenPRoT:main Nov 3, 2025
7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@FerralCoder FerralCoder FerralCoder approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rusty1968 @FerralCoder