Implement PSA interruptible sign/verify hash #6737
Conversation
paul-elliott-arm
added
needs-work
needs-ci
paul-elliott-arm
force-pushed
the
interruptible_sign_hash_internal
branch
from
764e7b0
to
2e34ee4
Compare
There was a problem hiding this comment.
I've done a design review, not a code review.
Regarding test coverage, the test plan sketch in the issue description might be ok, but it's so lacking details that it's hard to tell what you have in mind. I've added my reflections in comments in the .function file.
Regarding the library, there are major design issues which I think need to be addressed before reviewing. Regarding the conversion to ASN.1, let's not move the code from pk, we really shouldn't be using it. It will be a lot easier to start with a clean history that doesn't move this code back and forth. Regarding compilation guards, we can defer part of the work, but it might make it hard to pass the CI, and even if it passes the CI now it risks hurting driver work so we need to be reasonably clean. Regarding driver support, we can skip it for now as long as what we do doesn't hurt driver support.
paul-elliott-arm
force-pushed
the
interruptible_sign_hash_internal
branch
3 times, most recently
from
7cdcd75
to
abf669f
Compare
paul-elliott-arm
force-pushed
the
interruptible_sign_hash_internal
branch
5 times, most recently
from
5949478
to
8f5b8ad
Compare
Signed-off-by: Paul Elliott <[email protected]>
Signed-off-by: Paul Elliott <[email protected]>
paul-elliott-arm
force-pushed
the
interruptible_sign_hash_internal
branch
from
8f5b8ad
to
d0ec69d
Compare
Signed-off-by: Paul Elliott <[email protected]>
Signed-off-by: Paul Elliott <[email protected]>
Using PSA interruptible interfaces will cause previously set values to be overwritten. Signed-off-by: Paul Elliott <[email protected]>
Signed-off-by: Paul Elliott <[email protected]>
Signed-off-by: Paul Elliott <[email protected]>
Signed-off-by: Paul Elliott <[email protected]>
There was a problem hiding this comment.
I've completed my review, including the new commits, and checked that the feedback from my first review had all been addressed.
I've not found any blockers beyond those raised by Gilles.
Still on my TODO list:
- compare API in this PR to that in the API PR;
- review lcov results.
| *min_completes = 1; | ||
|
|
||
| *max_completes = PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED; | ||
| } else |
There was a problem hiding this comment.
[non-blocker] Hmm, shouldn't that be else if( max_ops == PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED )? The function seems to have an undocumented assumption that max_ops will be either unlimited or 0 or 1.
Actually I'd like to suggest an alternative way to structure the function: start with
*min_completes = 1;
*max_completes = PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED;Then handle the cases where we can say something better about one of those bounds (one case for min = 2, one case for max = 1).
There was a problem hiding this comment.
This would be changing it back to the way it was prior to extracting it into the function, which Gilles previously wasn't happy with. Github is hiding these conversations from me, so its difficult to refer back to it here, unfortunately.
There was a problem hiding this comment.
Yeah, big PRs are intrinsically hard to review, but github is really not making it any easier by hiding stuff like this.
There was a problem hiding this comment.
I'm guessing you're refering to this?
I was objecting to
if( max_ops == PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED )
{
min_completes = 1;
max_completes = 1;
}
else
{
min_completes = 2;
max_completes = PSA_INTERRUPTIBLE_MAX_OPS_UNLIMITED;
}
Specifically, setting min_completes = 2 whenever max_ops is finite.
I agree with Manuel that max_completes should be 1 only when max_ops is UNLIMITED.
But now that we have the code in one place, I won't insist on it: it's easy to fix later, and reasonably easy to discover.
|
Note: I've compare the API against #6279 and found all the changes to be good. Also, I've checked that all my comments there had been addressed. @gilles-peskine-arm do you want to check that all your comments on #6279 have been addressed here or are you happy to leave that for later? (I've complete my review, and do not intend to to any more review until something new is pushed.) |
|
I believe this is ready for final review now - all blockers have been addressed, and all non-blockers filed as issues. CI is green, and I have a code-styled and rebased branch ready to go. |
gilles-peskine-arm
added
needs-work
and removed
needs-review
Previously calling get_num_ops more than once would have ended up with ops getting double counted, and not calling inbetween completes would have ended up with ops getting missed. Fix this by moving this to where the work is actually done, and add tests for double calls to get_num_ops(). Signed-off-by: Paul Elliott <[email protected]>
|
Hopefully final changes before re-code-style / rebase. Ready for review |
paul-elliott-arm
added
the
needs-review
|
I rebased and restyled my copy so that I can compare when the same is done with this PR, here are my notes:
|
|
The rebase and restyle is being maintained in #7095 - I can either push that here, or we can review / merge that - wdyt @gilles-peskine-arm and @mpg? Also are we still waiting for @athoelke to review? |
Whichever you prefer. |
If we're happy with 7095 let's merge that: this will save one round of waiting for the CI. |
|
Superseded by #7095 which is the same semantic content, but rebased and restyled. |
Description
Implement PSA interruptible sign/verify hash, using the internal restartable ECDSA sign / verify interface. Addresses #6332.
Design based on #6279 as of its first commit 0cb0972 . Some requested changes there have been made to this version.
Missing: PSA_WANT guards around the code to remove if functions are not compiled in. I will definitely need some help with this, so this will have to wait until. the new year. I do not believe this prevents review of the rest though, and I hope this will not prove a major amount of work.
Gatekeeper checklist
or not requireddone, ornot requiredor not required