Implement a provider side PKEY MAC bridge #12637
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
paulidale
reviewed
Aug 12, 2020
paulidale
reviewed
Aug 12, 2020
paulidale
reviewed
Aug 12, 2020
paulidale
reviewed
Aug 12, 2020
|
All feedback addressed. Also fixed some CI issues, and added some missing documentation. |
slontis
reviewed
Aug 18, 2020
|
|
||
| if (cipher != NULL) | ||
| cipher_name = EVP_CIPHER_name(cipher); | ||
|
|
There was a problem hiding this comment.
Should we error here if there is no cipher_name for both the cases (cipher != NULL or cipher == NULL)?
There was a problem hiding this comment.
Yes, since it's the cipher name that gets passed a few lines down
slontis
reviewed
Aug 18, 2020
doc/man7/EVP_PKEY-HMAC.pod
Outdated
| =head1 DESCRIPTION | ||
|
|
||
| The B<HMAC>, B<SIPHASH>, B<POLY1305> and B<CMAC> keytypes are implemented in | ||
| OpenSSL's default and FIPS providers. Performing MAC operations via an EVP_PKEY |
There was a problem hiding this comment.
HMAC and CMAC are the only ones in the fips provider.
slontis
reviewed
Aug 18, 2020
doc/man7/EVP_PKEY-HMAC.pod
Outdated
|
|
||
| =head2 CMAC parameters | ||
|
|
||
| As well as all the parameters described above, the B<CMAC> keytype additionally |
slontis
reviewed
Aug 18, 2020
doc/man7/EVP_SIGNATURE-HMAC.pod
Outdated
| The algorithms described here have legacy support for creating MACs using | ||
| L<EVP_DigestSignInit(3)> and related functions. This is not the preferred way of | ||
| creating MACs. Instead you should use the newer L<EVP_MAC_init(3)> functions. | ||
| However this mechanism is provided for backwards compatibility with older |
slontis
reviewed
Aug 18, 2020
| @@ -277,6 +277,8 @@ extern const OSSL_DISPATCH ed25519_keymgmt_functions[]; | |||
| extern const OSSL_DISPATCH ed448_keymgmt_functions[]; | |||
| extern const OSSL_DISPATCH ec_keymgmt_functions[]; | |||
| extern const OSSL_DISPATCH kdf_keymgmt_functions[]; | |||
| extern const OSSL_DISPATCH mac_keymgmt_functions[]; | |||
There was a problem hiding this comment.
I think these names should indicate they are legacy.. by adding legacy as part of the name.
slontis
reviewed
Aug 18, 2020
| #include "prov/macsignature.h" | ||
|
|
||
| # ifdef OPENSSL_SYS_WINDOWS | ||
| # define strcasecmp _stricmp |
There was a problem hiding this comment.
At some point these will need to be cleaned up..
slontis
reviewed
Aug 18, 2020
| return gettable_params; | ||
| } | ||
|
|
||
|
|
slontis
reviewed
Aug 18, 2020
slontis
reviewed
Aug 18, 2020
paulidale
reviewed
Aug 18, 2020
|
All feedback addressed or responded to. Please take another look. |
paulidale
approved these changes
Aug 19, 2020
paulidale
added
the
approval: done
mattcaswell
force-pushed
the
provider-pkey-mac-bridge
branch
from
9a99802
to
1a47629
Compare
|
I rebased this to resolve a trivial conflict with master. I also pushed a new fixup commit to address a minor issue identified by travis. @paulidale - please can you reconfirm? |
|
24 hours has passed since 'approval: done' was set, but as this PR has been updated in that time the label 'approval: ready to merge' is not being automatically set. Please review the updates and set the label manually. |
paulidale
reviewed
Aug 25, 2020
Some MAC implementations were available before the current EVP_MAC API. They were used via EVP_DigestSign*. There exists a bridge between the old API and the EVP_MAC API however this bridge itself uses a legacy EVP_PKEY_METHOD. This commit implements the key management for provider side bridge without having to useany legacy code.
…idge Some MAC implementations were available before the current EVP_MAC API. They were used via EVP_DigestSign*. There exists a bridge between the oldAPI and the EVP_MAC API however this bridge itself uses a legacy EVP_PKEY_METHOD. This commit implements the signature functions for the provider side bridge without having to use any legacy code.
evp_extra_test had a test that checks whether an EVP_PKEY_CTX can still be created for HMAC even though there are no providers loaded because it is a legacy algorithm. However after the earlier commits this is no longer the case. We swap the check to a different legacy algorithm (SM2). Hopefully before too long there will be no legacy algorithms left and the test can be deleted.
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Some MAC implementations were available before the current EVP_MAC API. They were used via EVP_DigestSign*. There exists a bridge between the old API and the EVP_MAC API however this bridge itself uses a legacy EVP_PKEY_METHOD. This commit implements the key management for provider side bridge without having to useany legacy code. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
…idge Some MAC implementations were available before the current EVP_MAC API. They were used via EVP_DigestSign*. There exists a bridge between the oldAPI and the EVP_MAC API however this bridge itself uses a legacy EVP_PKEY_METHOD. This commit implements the signature functions for the provider side bridge without having to use any legacy code. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
evp_extra_test had a test that checks whether an EVP_PKEY_CTX can still be created for HMAC even though there are no providers loaded because it is a legacy algorithm. However after the earlier commits this is no longer the case. We swap the check to a different legacy algorithm (SM2). Hopefully before too long there will be no legacy algorithms left and the test can be deleted. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Previously it was a macro. We now make it into a function that is params aware. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Fixes some issues with EVP_MD_CTX_* functions when doing EVP_DigestSign* and EVP_DigestVerify* functions. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Convert various mac key creation function calls to use the _with_libctx variants. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
The previous commits added support for HMAC into the provider MAC bridge. We now extend that for SIPHASH too. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Some signature algorithms don't need a default digest, so don't fail if we don't have one. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
The previous commits added support for HMAC and SIPHASH into the provider MAC bridge. We now extend that for Poly1305 too. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
The previous commits added support for HMAC, SIPHASH and Poly1305 into the provider MAC bridge. We now extend that for CMAC too. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Now that the all the legacy PKEY MAC bridge code has been moved to the providers we no longer need the old bridge and it can be removed. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
The test only setup the generation of a key. It did not complete that generation. We extend the test to complete the generation and to use the generated key. We also compare the result with a key generated in a different way. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
We reuse concepts such as PROV_CIPHER, and make use of some common code in provider_util.c Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
swenkeratmicrosoft
pushed a commit
to swenkeratmicrosoft/openssl
that referenced
this pull request
Sep 1, 2020
Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from openssl#12637)
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR replaces the legacy EVP_PKEY to MAC bridge with a provider side version. After this PR the only remaining EVP_PKEY_METHOD still in place will be SM2.