OSCORE Californium API/behavior changes. #1231
Comments
sbernard31
changed the title
|
Yes I had many of the same points listed down. The only possible additions are:
As a note on point 2: It would be good if both the RID and ID Context could be specified (if desired). Even though the ID Context is not used by Leshan right now, it adds flexibility for the future and for other users. |
|
I also forgot to mention this point : AlgorithmID.FromCBOR(
CBORObject.FromObject(
securityInfo.getOscoreSetting().getAeadAlgorithm().getValue())), It could be better to have an API which doesn't need a CBOR object but just a int ? |
In the OSCoreCtx constructor? Yeah I think that would be convenient and make sense. |
Yes or/and adding AlgorithmID.fromValue(int value) ? |
Yep, that one also makes sense to add. |
|
(Not really an API changes but maybe a tiny possible improvement) try {
this.sender_key = deriveKey(this.common_master_secret, this.common_master_salt, this.key_length, digest,
info.EncodeToBytes());
} catch (CoseException e) {
- LOGGER.error(e.getMessage());
- throw new OSException(e.getMessage());
+ LOGGER.error(e.getMessage(), e);
+ throw new OSException(e.getMessage(), e);
}First line, it could make sense to display exception stack trace in the log. (except all of this is hiding for Security reason ?) |
Yes, I did not write that particular code (it was a previous colleague), but I could imagine it was for security reasons. |
|
I think we have a good list of changes to be done in Californium then. I have one PR pending related to the plugtest server/client, after that has been merged I can go through and perform the listed changes. |
|
I add the point about |
|
(@rikard-sics just to let you know : I will be unavailable from the end of day to Monday 18th april, back on Tuesday) |
Okay, thanks for letting me know. Meanwhile I can spend time on testing the current code (as you mention in #920), and work on implementing the additions to Californium. |
|
@rikard-sics any news about this 🙂 ? |
I have been focusing a bit on the addition of OSCORE support to the sandbox client/server in Californium, and related discussions on interoperability with libcoap that was triggered by this which took some time to investigate. However, I have begun working on some of the points listed and am planning to create a PR covering those. Currently I am on a business trip and will be back on Saturday so probably I can get this first PR done by the middle of next week. When I create the PR you could also review it to check that it suits the intended functionality. |
|
OK I will be often unavailable during April and May. (e.g. I'm back on Tuesday) Do you think Leshan opened PR about OSCORE should be merge in I also wonder when we can integrate it in |
|
@rikard-sics, I integrated all opened OSCORE PR in For the integration in Just to let you know about my availability on May : I will be unavailable :
then I will be avaialble again as usual 🙂. |
|
@rikard-sics, I try to move forward on Bootstrap config support at server side : #1254 (to do that I rebase |
Sounds good. Sorry for the long silence, unfortunately I have been quite busy with other tasks. I want to get back to working on the modifications to Californium we discussed and finalize a PR for them. |
|
@rikard-sics, let me know if I can help in any way ? |
|
Working on #1220 (comment), I found a blocker issue ❌. /**
* Gets the local address of the receiving endpoint.
*
* @return local address of the receiving endpoint. {@code null} for
* outgoing messages.
* @since 3.0
*/
public InetSocketAddress getLocalAddress() {
return localAddress;
}But with OSCORE this returns |
I will list here all the Californium changes we talked about with @rikard-sics.
OscoreStorein org.eclipse.leshan.core.californium.oscore.cf(or something like this) from Leshan to Californium.oscorebranch cleaning #1226 (comment))@rikard-sics tell me if I missed something ?
The text was updated successfully, but these errors were encountered: