Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rebased from upstream 0.16.19 #6

Merged
merged 392 commits into from
Dec 9, 2020
Merged

Rebased from upstream 0.16.19 #6

merged 392 commits into from
Dec 9, 2020

Conversation

trevor-crypto
Copy link
Collaborator

I had to apply the changes from #5 in order to get the tests to actually pass.

From my research into a few issues (fortanix/rust-sgx#30, briansmith#775) it doesn't seem that sgx will be supported on ring

agl and others added 30 commits October 16, 2020 21:36
@agl
acvp: update subprocess_test.go
9d1bca3 
A recent change broke this but I didn't notice. (Which suggests that the
test isn't very useful, which is true, but I'm not ready to pull the
trigger on deleting it just yet.)

Change-Id: If120a553c095fa0be9f8e85fc05ee996a486621f
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43484
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
@briansmith
Ignore BoringSSL changes through 7361ee4.
261e620
@briansmith
Merge BoringSSL 5d74463: Use |crypto_word_t| and |size_t| more consis…
fd09534 
…tently in ECC scalar recoding.
@briansmith
Skip BoringSSL e2abade.
db5df21
@briansmith
Skip BoringSSL 939d426: Maybe build for AArch64 Windows.
10b94a7
@briansmith
Ignore BoringSSL commits through d054e1b.
63ef178
@briansmith
Merge BoringSSL 54858b6: Switch clang-format IncludeBlocks to Preserve.
8de8423
@briansmith
Ignore BoringSSL commits through dcd6e44.
fd02760
@briansmith
Merge BoringSSL a0b49d6: aarch64: support BTI and pointer authenticat…
6e500fe 
…ion in assembly.
@briansmith
Ignore BoringSSL commits through c947efa.
645a0bf
@briansmith
Skip BoringSSL 9372f38.
322733b
@davidben
Silence some linter checks.
fd83592 
Use empty() over size() == 0, and don't export the IterateAES*
functions. (They return private types.)

Change-Id: I8a8f33a64e28cc2eab789563c6ba91afa6df87f9
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43544
Commit-Queue: Adam Langley <agl@google.com>
Reviewed-by: Adam Langley <agl@google.com>
@tamaspetz
aarch64: Improve conditional compilation
c46b173 
With -Wundef one could get warnings of undefined symbols.
This patch tries to fix this issue.

Furthermore, the case where there is BTI but no Pointer Authentication
now uses GNU_PROPERTY_AARCH64_BTI in the check which should correctly
reflect that feature's enabled state.

Change-Id: I14902a64e5f403c2b6a117bc9f5fb1a4f4611ebf
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43524
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
@davidben
clang-format and convert comments in x509v3.h.
1e8e563 
Change-Id: I9cb1ed08fff71d94c28f16efa4d356bdfdebeebe
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43564
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
@davidben
Const-correct X509V3_extensions_print.
e9fce74 
Change-Id: I1cb16d926a58de5345de462c857774775c865c2f
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43565
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
@davidben
Clear some reported gcc -Wshadow warnings.
043fba2 
The constructor parameter vs. method name one is a little unfortunate
given Google C++ style, but I think we've done this elsewhere in libssl,
so let's run with it for now.

Bug: 378
Change-Id: I31fb6b4b16e3248369dae6f47cc150de0e4f04fe
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43545
Reviewed-by: Steven Valdez <svaldez@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
acvp: add 3DES-ECB support
e796cc6 
Change-Id: I4ffa2572acce1fdccdf4d3c33680e6d0114bd42b
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43405
Commit-Queue: Adam Langley <agl@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
acvp: add 3DES-CBC support
9c12f01 
Change-Id: I2e6cc7367b5ca6631329be298fbed7424221a06b
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43406
Commit-Queue: Adam Langley <agl@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
@davidben
Reland "Check AlgorithmIdentifier parameters for RSA and ECDSA signat…
40f4942 
…ures.""

This is a looser reland of
https://boringssl-review.googlesource.com/c/boringssl/+/41804, which was
reverted in
https://boringssl-review.googlesource.com/c/boringssl/+/42804.

Enforcing that the ECDSA parameters were omitted rather than NULL hit
some compatibility issues, so instead allow either forms for now. To
align with the Chromium verifier, we'll probably want to later be
stricter with a quirks flag to allow the invalid form, and then add a
similar flag to Chromium. For now, at least try to reject the completely
invalid parameter values.

Update-Note: Some invalid certificates will now be rejected at
verification time. Parsing of certificates is unchanged.

Bug: b/167375496,342
Change-Id: I1cba44fd164660e82a7a27e26368609e2bf59955
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43664
Reviewed-by: Adam Langley <agl@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
Support 4096-bit keys in FIPS mode.
80e3f95 
Change-Id: I9aa66109bd0f6acc0c30a505eef6d85b6972132d
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43624
Commit-Queue: Adam Langley <agl@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
@agl
acvp: support RSA key generation tests.
2e22d1b 
Change-Id: I40bbf6d10fcfd1e0fb506bef44f4cd6e9d2daac5
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43644
Reviewed-by: David Benjamin <davidben@google.com>
acvp: RSA signature generation tests.
e44d977 
Change-Id: Ibc794a66ea9b04e2d48c2124d52234a0bed10aff
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43625
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: Adam Langley <agl@google.com>
acvp: RSA signature verification tests.
777e1ff 
Change-Id: I8697230d4feb3bc5308905aa8981087b0f080555
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43626
Commit-Queue: Adam Langley <agl@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
Have fewer opaque booleans in aead_test.cc
c583dbe 
These booleans are a little hard to understand in context and adding
any more makes things even more complicated. Thus make them flags so
that the meaning is articulated locally.

Change-Id: I8cdb7fd5657bb12f28a73d7c6818d400c987ad3b
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43684
Commit-Queue: David Benjamin <davidben@google.com>
Reviewed-by: David Benjamin <davidben@google.com>
@briansmith
Ignore BoringSSL commits through fd83592.
3a906af
@briansmith
Merge BoringSSL commit 'c46b173'.
971a9e2
@briansmith
Merge pull request briansmith#1065 from briansmith/b/merge-boringssl
7478c80 
Merge BoringSSL changes through commit c46b173.
@briansmith
Fix Windows build.
51a8ca1
@tamaspetz
aarch64: Remove some flavour conditionals
b67732a 
This change is expected to be a non-functional change.

Original request:
https://boringssl-review.googlesource.com/c/boringssl/+/42084

Change-Id: Ifbf85eb6cafebabf0cf063b7dd147417d01c280c
Reviewed-on: https://boringssl-review.googlesource.com/c/boringssl/+/43584
Reviewed-by: David Benjamin <davidben@google.com>
Commit-Queue: David Benjamin <davidben@google.com>
@aig787 @briansmith
Added musl targets
2464e96
briansmith and others added 17 commits December 3, 2020 17:40
@briansmith
CI/CD: Also lint with the stable channel's clippy.
ad4f6c9
@briansmith
CI/CD: Only use the latest stable version of Clippy.
45a43db 
It's too tedious to keep the code compatible with older clippy and newer
clippy, especially if/when we enable pedantic lints.
@briansmith
CI/CD: Run release-mode tests using MSRV.
20c9479 
Also reorder the channels according in some priority order.
@devashishdxt @trevor-crypto
Changes for building in SGX env
0c3ab86
@trevor-crypto
CPU feature detection for SGX
caca20c
@devashishdxt @trevor-crypto
Make std a default feature
04c51b4
@devashishdxt @trevor-crypto
Import macro
aa296e2
@devashishdxt @trevor-crypto
import std
5bf37a7
@devashishdxt @trevor-crypto
Add stdsimd feature
b84fca2
@devashishdxt @trevor-crypto
Add sgx feature and make it default
7df6e33
@devashishdxt @trevor-crypto
Changes for building in SGX env
261ac8b
@devashishdxt @trevor-crypto
Import macro
fad1b07
@devashishdxt @trevor-crypto
import std
9f7c3df
@devashishdxt @trevor-crypto
Add stdsimd feature
44ae65c
@devashishdxt @trevor-crypto
Add sgx feature and make it default
6623de9
@tomtau @trevor-crypto
added LVI mitigation flags
f8038eb
@trevor-crypto
NOHW for sgx - from NOHW AES-GCM implementation for EDP environment PR
27cb1fe
@trevor-crypto trevor-crypto changed the title Rebased onto upstream 0.16.19 Merged from upstream 0.16.19 Dec 8, 2020
@trevor-crypto trevor-crypto changed the title Merged from upstream 0.16.19 Rebased from upstream 0.16.19 Dec 8, 2020
tomtau
tomtau reviewed Dec 9, 2020
View reviewed changes
src/aead/gcm.rs Outdated
@@ -65,7 +65,7 @@ impl Key {
}
}

#[cfg(all(not(target_arch = "aarch64"), not(target_env = "sgx")))]
#[cfg(all(not(target_arch = "aarch64")))]
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#5 (review) -- no need for "all" + why not to use the HW implementation?

Copy link
Collaborator Author

@trevor-crypto trevor-crypto Dec 9, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

no need for "all"

Will change this.

HW implementation

I'm probably missing something, cause I'm new to the sgx stuff, but I thought we were trying to avoid the changes from this patch briansmith@7c29308 and the panic! state

tomtau
tomtau reviewed Dec 9, 2020
View reviewed changes
src/cpu.rs
@@ -52,97 +51,97 @@ pub(crate) fn features() -> Features {
let [l1edx, l1ecx, l7ebx, l7ecx] = unsafe { &mut GFp_ia32cap_P };
Copy link

@tomtau tomtau Dec 9, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I saw later in this detection that it requires feature = "sgx" -- maybe just target_env = "sgx" is enough?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah most likely is enough, since we're using the sgx feature by default. I will change it.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yeah, perhaps no need for sgx feature, if it can be guarded with target_env

@tomtau tomtau merged commit 493eb07 into crypto-com:sgx-env Dec 9, 2020
@tomtau tomtau mentioned this pull request Dec 9, 2020
Closed
@trevor-crypto trevor-crypto mentioned this pull request Dec 9, 2020
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tomtau tomtau tomtau left review comments

@devashishdxt devashishdxt devashishdxt approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.