parallaxsecond
diff --git a/‎Cargo.toml
Lines changed: 2 additions & 2 deletions b/‎Cargo.toml
Lines changed: 2 additions & 2 deletions
diff --git a/‎src/operations/psa_aead_decrypt.rs
Lines changed: 5 additions & 5 deletions b/‎src/operations/psa_aead_decrypt.rs
Lines changed: 5 additions & 5 deletions
diff --git a/‎src/operations/psa_aead_encrypt.rs
Lines changed: 4 additions & 5 deletions b/‎src/operations/psa_aead_encrypt.rs
Lines changed: 4 additions & 5 deletions
diff --git a/‎src/operations/psa_asymmetric_decrypt.rs
Lines changed: 4 additions & 13 deletions b/‎src/operations/psa_asymmetric_decrypt.rs
Lines changed: 4 additions & 13 deletions
diff --git a/‎src/operations/psa_asymmetric_encrypt.rs
Lines changed: 4 additions & 13 deletions b/‎src/operations/psa_asymmetric_encrypt.rs
Lines changed: 4 additions & 13 deletions
diff --git a/‎src/operations/psa_raw_key_agreement.rs
Lines changed: 4 additions & 13 deletions b/‎src/operations/psa_raw_key_agreement.rs
Lines changed: 4 additions & 13 deletions
diff --git a/‎src/operations/psa_sign_hash.rs
Lines changed: 5 additions & 13 deletions b/‎src/operations/psa_sign_hash.rs
Lines changed: 5 additions & 13 deletions
diff --git a/‎src/operations/psa_sign_message.rs
Lines changed: 4 additions & 14 deletions b/‎src/operations/psa_sign_message.rs
Lines changed: 4 additions & 14 deletions
diff --git a/‎src/operations/psa_verify_hash.rs
Lines changed: 4 additions & 13 deletions b/‎src/operations/psa_verify_hash.rs
Lines changed: 4 additions & 13 deletions
diff --git a/‎src/operations/psa_verify_message.rs
Lines changed: 4 additions & 14 deletions b/‎src/operations/psa_verify_message.rs
Lines changed: 4 additions & 14 deletions
@@ -1,6 +1,6 @@
 [package]
 name = "parsec-interface"
-version = "0.24.0"
+version = "0.25.0"
 authors = ["Parsec Project Contributors"]
 description = "Parsec interface library to communicate using the wire protocol"
 license = "Apache-2.0"
@@ -23,7 +23,7 @@ prost = "0.6.1"
 arbitrary = { version = "0.4.6", features = ["derive"], optional = true }
 uuid = "0.8.1"
 log = "0.4.11"
-psa-crypto = { git = "https://github.com/parallaxsecond/rust-psa-crypto", rev = "8605006d34944fa880edd3d4d347f460c5585747", default-features = false }
+psa-crypto = { version = "0.9.0", default-features = false }
 zeroize = { version = "1.1.0", features = ["zeroize_derive"] }
 secrecy = { version = "0.7.0", features = ["serde"] }
 derivative = "2.1.1"
 
@@ -67,15 +67,15 @@ mod tests {
     use psa_crypto::types::algorithm::Aead;
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_decrypt();
+
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::Aes,
             bits: 0,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    decrypt: true,
-                    ..Default::default()
-                },
+                usage_flags,
                 permitted_algorithms: Aead::AeadWithDefaultLengthTag(AeadWithDefaultLengthTag::Ccm)
                     .into(),
             },
@@ -98,7 +98,7 @@ mod tests {
     #[test]
     fn cannot_decrypt() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.decrypt = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -67,15 +67,14 @@ mod tests {
     use psa_crypto::types::algorithm::Aead;
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_encrypt();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::Aes,
             bits: 0,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    encrypt: true,
-                    ..Default::default()
-                },
+                usage_flags,
                 permitted_algorithms: Aead::AeadWithDefaultLengthTag(AeadWithDefaultLengthTag::Ccm)
                     .into(),
             },
@@ -98,7 +97,7 @@ mod tests {
     #[test]
     fn cannot_encrypt() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.encrypt = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -68,23 +68,14 @@ mod tests {
     use zeroize::Zeroizing;
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_decrypt();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::RsaKeyPair,
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: false,
-                    decrypt: true,
-                    sign_message: false,
-                    verify_message: false,
-                    sign_hash: false,
-                    verify_hash: false,
-                    derive: false,
-                },
+                usage_flags,
                 permitted_algorithms: AsymmetricEncryption::RsaPkcs1v15Crypt.into(),
             },
         }
@@ -105,7 +96,7 @@ mod tests {
     #[test]
     fn cannot_decrypt() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.decrypt = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -63,23 +63,14 @@ mod tests {
     use crate::operations::psa_key_attributes::{Lifetime, Policy, Type, UsageFlags};
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_encrypt();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::RsaKeyPair,
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: true,
-                    decrypt: false,
-                    sign_message: false,
-                    verify_message: false,
-                    sign_hash: false,
-                    verify_hash: false,
-                    derive: false,
-                },
+                usage_flags,
                 permitted_algorithms: AsymmetricEncryption::RsaPkcs1v15Crypt.into(),
             },
         }
@@ -100,7 +91,7 @@ mod tests {
     #[test]
     fn cannot_encrypt() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.encrypt = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -56,25 +56,16 @@ mod tests {
     use crate::requests::ResponseStatus;
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_derive();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::EccKeyPair {
                 curve_family: EccFamily::SecpR1,
             },
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: false,
-                    decrypt: false,
-                    sign_message: false,
-                    verify_message: false,
-                    sign_hash: false,
-                    verify_hash: false,
-                    derive: true,
-                },
+                usage_flags,
                 permitted_algorithms: KeyAgreement::Raw(RawKeyAgreement::Ecdh).into(),
             },
         }
@@ -94,7 +85,7 @@ mod tests {
     #[test]
     fn cannot_derive() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.derive = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 private_key_name: String::from("some key"),
 
@@ -55,25 +55,17 @@ mod tests {
     use crate::operations::psa_key_attributes::{EccFamily, Lifetime, Policy, Type, UsageFlags};
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_sign_hash();
+
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::EccKeyPair {
                 curve_family: EccFamily::SecpR1,
             },
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: false,
-                    decrypt: false,
-                    sign_message: false,
-                    verify_message: false,
-                    sign_hash: true,
-                    verify_hash: false,
-                    derive: false,
-                },
+                usage_flags,
                 permitted_algorithms: Algorithm::AsymmetricSignature(AsymmetricSignature::Ecdsa {
                     hash_alg: Hash::Sha256.into(),
                 }),
@@ -97,7 +89,7 @@ mod tests {
     #[test]
     fn cannot_sign() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.sign_hash = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -51,25 +51,16 @@ mod tests {
     use crate::requests::ResponseStatus;
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_sign_hash();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::EccKeyPair {
                 curve_family: EccFamily::SecpR1,
             },
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: false,
-                    decrypt: false,
-                    sign_message: true,
-                    verify_message: false,
-                    sign_hash: true,
-                    verify_hash: false,
-                    derive: false,
-                },
+                usage_flags,
                 permitted_algorithms: Algorithm::AsymmetricSignature(AsymmetricSignature::Ecdsa {
                     hash_alg: Hash::Sha256.into(),
                 }),
@@ -93,8 +84,7 @@ mod tests {
     #[test]
     fn cannot_sign() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.sign_hash = false;
-        attrs.policy.usage_flags.sign_message = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -55,25 +55,16 @@ mod tests {
     use crate::operations::psa_key_attributes::{EccFamily, Lifetime, Policy, Type, UsageFlags};
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_verify_hash();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::EccKeyPair {
                 curve_family: EccFamily::SecpR1,
             },
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: false,
-                    decrypt: false,
-                    sign_message: false,
-                    verify_message: false,
-                    sign_hash: false,
-                    verify_hash: true,
-                    derive: false,
-                },
+                usage_flags,
                 permitted_algorithms: Algorithm::AsymmetricSignature(AsymmetricSignature::Ecdsa {
                     hash_alg: Hash::Sha256.into(),
                 }),
@@ -98,7 +89,7 @@ mod tests {
     #[test]
     fn cannot_sign() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.verify_hash = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),
 
@@ -51,25 +51,16 @@ mod tests {
     use crate::requests::ResponseStatus;
 
     fn get_attrs() -> Attributes {
+        let mut usage_flags = UsageFlags::default();
+        let _ = usage_flags.set_verify_hash();
         Attributes {
             lifetime: Lifetime::Persistent,
             key_type: Type::EccKeyPair {
                 curve_family: EccFamily::SecpR1,
             },
             bits: 256,
             policy: Policy {
-                usage_flags: UsageFlags {
-                    export: false,
-                    copy: false,
-                    cache: false,
-                    encrypt: false,
-                    decrypt: false,
-                    sign_message: false,
-                    verify_message: true,
-                    sign_hash: false,
-                    verify_hash: true,
-                    derive: false,
-                },
+                usage_flags,
                 permitted_algorithms: Algorithm::AsymmetricSignature(AsymmetricSignature::Ecdsa {
                     hash_alg: Hash::Sha256.into(),
                 }),
@@ -94,8 +85,7 @@ mod tests {
     #[test]
     fn cannot_sign() {
         let mut attrs = get_attrs();
-        attrs.policy.usage_flags.verify_hash = false;
-        attrs.policy.usage_flags.verify_message = false;
+        attrs.policy.usage_flags = UsageFlags::default();
         assert_eq!(
             (Operation {
                 key_name: String::from("some key"),