TLSSocket::set_client_cert_key() doesn't support PSA key ID

0
open
ccli8
ccli8
Posted 2 months ago

TLSSocket::set_client_cert_key() doesn't support PSA key ID #15162

Description of defect

With PSA/TF-M, client (private) key should have provisioned and doesn't disclose to Mbed. Currently, for PSA-enabled Mbed TLS, TLSSocket::set_client_cert_key() still needs client key passed in the open and doesn't support an interface to pass client key as PSA key ID with mbedtls_pk_setup_opaque().

https://github.com/ARMmbed/mbed-os/blob/07e119b46754fc313947f3ce8399c68a613f0c77/connectivity/netsocket/source/TLSSocketWrapper.cpp#L144-L145

Target(s) affected by this defect ?

N/A

Toolchain(s) (name and version) displaying this defect ?

N/A

What version of Mbed-os are you using (tag or sha) ?

mbed-os-6.15.0

What version(s) of tools are you using. List all that apply (E.g. mbed-cli)

N/A

How is this defect reproduced ?

N/A