Make ECDSA sign/verify format spec-compliant #8236
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
- Use raw <r,s> concatenated point format for input/output to ECDSA signature primitives, so that format on the wire matches spec. This will allow CASE to follow spec encoding. - Update some utilities to add missign bits/pieces. - Add associated unit tests Fixes project-chip#8209
- Method is cheaper and more direct than conversions. - Overall code is smaller. - Refactor the message versions to defer to the sign_hash/verify_hash
pullapprove
bot
requested review from
chrisdecenzo,
jelderton,
jmartinez-silabs,
LuDuda,
mspang,
pan-apple,
saurabhst and
woody-apple
pan-apple
approved these changes
Jul 13, 2021
Need to make this large number (1k+) to catch some signature serialization corner casesconnectedhomeip/src/crypto/tests/CHIPCryptoPALTest.cpp Lines 794 to 804 in 57e6a60 This comment was generated by todo based on a
|
andy31415
reviewed
Jul 13, 2021
| { | ||
| EC_POINT_clear_free(key_point); | ||
| key_point = nullptr; | ||
| BN_clear_free(s); |
There was a problem hiding this comment.
ScopedBigNum and ScopedPoint would be so nice. I think some OpenSSL C++ headers have unique_ptr implementations for this.
andy31415
approved these changes
Jul 13, 2021
saurabhst
approved these changes
Jul 14, 2021
jpk233
approved these changes
Jul 14, 2021
balducci-apple
approved these changes
Jul 14, 2021
bzbarsky-apple
approved these changes
Jul 14, 2021
|
@tcarmelveilleux will deal with my comments in a followup; merging to get other things unblocked, since none of those comments are critical. |
tcarmelveilleux
added a commit
to tcarmelveilleux/connectedhomeip
that referenced
this pull request
Jul 15, 2021
…ort Span - Fix leftover nits from @bzbarsky-apple's review of project-chip#8236 - In order to add span support cleanly, added Span support to Reader and BufferWriter, and fixed all necessary breakage. Testing done: pass all unit tests and CASE cert tests
See #8408 for follow-up. |
bzbarsky-apple
pushed a commit
that referenced
this pull request
Jul 20, 2021
) * Fix leftover from #8236 and make BufferReader/Writer support Span - Fix leftover nits from @bzbarsky-apple's review of #8236 - In order to add span support cleanly, added Span support to Reader and BufferWriter, and fixed all necessary breakage. Testing done: pass all unit tests and CASE cert tests * Fix mbedTLS usage of EcdsaAsn1SignatureToRaw * Apply review comments from @bzbarsky-apple * Use some span reassign instead of out_size ref * Restyled by clang-format * Remove unnecessary nullptr checks handled by Span::size() * Improve IntegerToDer test coverage - Assign to output spans - Use new span function for validity checks (`is_span_usable`) - Replace an untested CHIPCert.cpp usage with tested version * Add is_span_usable() tests * Restyled by clang-format * Grammar fix to kick CI * Commit forgotten removal of obsolete ConvertIntegerRawToDER from CHIPCert.h * Apply review comments from @mspang * Fix clang Co-authored-by: Restyled.io <[email protected]>
nikita-s-wrk
pushed a commit
to nikita-s-wrk/connectedhomeip
that referenced
this pull request
Sep 23, 2021
* Make ECDSA sign/verify format spec-compliant - Use raw <r,s> concatenated point format for input/output to ECDSA signature primitives, so that format on the wire matches spec. This will allow CASE to follow spec encoding. - Update some utilities to add missign bits/pieces. - Add associated unit tests Fixes project-chip#8209 * Fix some comment typos * Make OpenSSL and mbedTLS use raw signatures directly - Method is cheaper and more direct than conversions. - Overall code is smaller. - Refactor the message versions to defer to the sign_hash/verify_hash * Restyled by clang-format * Fix issue with cert conversion * Use CHIPCert module for raw to DER conversion * Ran clang-format * Restyled by clang-format * Fix unit tests * Remove debug logging left by mistake * Restyled by shellharden * Restyled by shfmt * Address review comments from @andy31415 * Fix merge issues * Restyled by clang-format * Fix test script and improve signing unit test * Restyled by shellharden * Reduce signing unit test case numbers for now * Apply review from @pan-apple * Fix test_suites.sh * Please the gods of shell-harden * Please the gods of shell-harden some more Co-authored-by: Restyled.io <[email protected]>
nikita-s-wrk
pushed a commit
to nikita-s-wrk/connectedhomeip
that referenced
this pull request
Sep 23, 2021
…ort Span (project-chip#8408) * Fix leftover from project-chip#8236 and make BufferReader/Writer support Span - Fix leftover nits from @bzbarsky-apple's review of project-chip#8236 - In order to add span support cleanly, added Span support to Reader and BufferWriter, and fixed all necessary breakage. Testing done: pass all unit tests and CASE cert tests * Fix mbedTLS usage of EcdsaAsn1SignatureToRaw * Apply review comments from @bzbarsky-apple * Use some span reassign instead of out_size ref * Restyled by clang-format * Remove unnecessary nullptr checks handled by Span::size() * Improve IntegerToDer test coverage - Assign to output spans - Use new span function for validity checks (`is_span_usable`) - Replace an untested CHIPCert.cpp usage with tested version * Add is_span_usable() tests * Restyled by clang-format * Grammar fix to kick CI * Commit forgotten removal of obsolete ConvertIntegerRawToDER from CHIPCert.h * Apply review comments from @mspang * Fix clang Co-authored-by: Restyled.io <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Problem
Change overview
to ECDSA signature primitives, so that format on the wire
matches spec. This will allow CASE to follow spec encoding.
This is also needed for device attestation and CSR response
spec compliance.
TLS wrappers.
should be non-nullptr, but with size zero)
more code, more heap and more ASN.1 handling dependencies
if a hardware-based TLS accelerator does not support raw
signatures.
Testing
ninja -C out/host checkagainst latest merge with master with both OpenSSL and mbedTLS on Linux, all tests still pass (after fixes)