Alan-Jowett / sonde / 26000128271
82%

DEFAULT BRANCH: main
Ran
Jobs 1
Files 126
Run time 1min
Badge
Embed ▾
README BADGES
x

If you need to use a raster PNG badge, change the '.svg' to '.png' in the link

Markdown

Textile

RDoc

HTML

Rst
coverage: 82.957% (+0.02%) from 82.941%
26000128271

push

github

web-flow 
Design: PSK key escrow for gateway replaceability (#887) (#927)

* docs: add PSK key escrow design specs for #887

Add requirements and specification patches for PSK key escrow to enable
gateway replaceability without re-pairing nodes.

Requirements patch (evolve-887-requirements.md):
- GW-2000–GW-2013: recovery keypair, escrow blobs, key rotation,
  crash-safe migration, auto-heal recovery, replacement bootstrap,
  connector security, fingerprint display
- AZH-0600–AZH-0605: escrow storage, recovery serving, salt/pubkey
- ADMIN-0900–ADMIN-0902: key rotation CLI, fingerprint, status
- 4 new connector message types (0x10–0x13)

Specification patch (evolve-887-specification.md):
- Gateway design §20: escrow subsystem architecture
- Azure handler design §8: table schema, message handling
- Admin design §11: key management commands
- Security model §2.3.2: escrow threat analysis
- 30+ validation test cases with full traceability

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
Signed-off-by: Alan Jowett <alan.jowett@microsoft.com>

* fix: address review comments on PSK escrow design docs

- Fix cross-reference: GW-2006 crash recovery refers to GW-2007 (not GW-2008)
- Fix ADMIN requirement range: ADMIN-0900-ADMIN-0902 (not 0903)
- Fix spec scope: GW-2000-GW-2013 (not GW-2011)
- Fix fingerprint comment: bytes 0..8 (not 0..9)
- Add \KeyHint\ column to \ActualNodeState\ and \ActualPhoneState\ tables
- Allocate CBOR key 13 (\scrow_key_hint\) in ACTUAL_STATE for key_hint
- Clarify handler blob inspection: may read top-level \key_hint\, must not
  decrypt blob ciphertext
- Add \pending_rotation\ CREATE TABLE schema with \privkey_rewrapped\ column

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>

* Fix review comments on PSK key escrow design docs

- Fix spec scope: GW-2000-GW-2011 to GW-2000-GW-2013
- Add SubjectKind CBOR encoding note (tstr: node/phone)
- Clarify disabled-state null semantics for keys 12 and 13
- Fix f... (continued)

35168 of 42393 relevant lines covered (82.96%)

256.35 hits per line

Jobs
ID Job ID Ran Files Coverage
1 26000128271.1 126
82.96
 GitHub Action Run
Source Files on build 26000128271