Fixed issues with policy verification, since wildcard JPAKE policy is now disallowed, changed to concrete jpake algorithm (with SHA256 hash) Signed-off-by: Anton Matkin <anton.matkin@arm.com>

commit: 6eb5335ef0caa8bb77d5ec1b94a1736677acac0a [log] [tgz]
author: Anton Matkin <anton.matkin@arm.com> Wed May 28 20:02:35 2025 +0200
committer: Anton Matkin <anton.matkin@arm.com> Tue Aug 12 13:50:48 2025 +0200
tree: b14eabbd4de3fda6452c2d978810991c7bd5f3a1
parent: 143d5d8a3a50642bef0af85ed89c50139e1d72e0 [diff]
diff --git a/library/ssl_tls.c b/library/ssl_tls.c
index 76430b5..9144f92 100644
--- a/library/ssl_tls.c
+++ b/library/ssl_tls.c

@@ -1808,7 +1808,7 @@
     }
 
     psa_set_key_usage_flags(&attributes, PSA_KEY_USAGE_DERIVE);
-    psa_set_key_algorithm(&attributes, PSA_ALG_JPAKE_BASE);
+    psa_set_key_algorithm(&attributes, PSA_ALG_JPAKE(PSA_ALG_SHA_256));
     psa_set_key_type(&attributes, PSA_KEY_TYPE_PASSWORD);
 
     status = psa_import_key(&attributes, pw, pw_len,
commit	6eb5335ef0caa8bb77d5ec1b94a1736677acac0a	[log] [tgz]
author	Anton Matkin <anton.matkin@arm.com>	Wed May 28 20:02:35 2025 +0200
committer	Anton Matkin <anton.matkin@arm.com>	Tue Aug 12 13:50:48 2025 +0200
tree	b14eabbd4de3fda6452c2d978810991c7bd5f3a1
parent	143d5d8a3a50642bef0af85ed89c50139e1d72e0 [diff]