Rethink the EVP_PKEY cache of provider side keys by levitte · Pull Request #11148 · openssl/openssl

levitte · 2020-02-22T00:36:20Z

The role of this cache was two-fold:

It was a cache of key copies exported to providers with which an
operation was initiated.
If the EVP_PKEY didn't have a legacy key, item 0 of the cache was
the corresponding provider side origin, while the rest was the
actual cache.

This dual role for item 0 made the code a bit confusing, so we now
make a separate keymgmt / keydata pair outside of that cache, which is
the provider side "origin" key.

A hard rule is that an EVP_PKEY cannot hold a legacy "origin" and a
provider side "origin" at the same time.

This also adds evp_pkey_upgrade_to_provider(), for EVP_PKEY upgrades

levitte · 2020-02-22T00:39:56Z

A small note on evp_pkey_upgrade_to_provider(): This should never become a public function, for the simple reason that it's temporary, even though it's obvious that it will be around for a few years. The reason is that this duality between legacy keys and provider side keys is planned to go away when all the legacy stuff is gone, at which point the idea of an "upgrade" will be moot.

levitte · 2020-02-22T00:43:45Z

This is WIP because I haven't updated the documentation yet.

crypto/evp/exchange.c

crypto/evp/keymgmt_lib.c

crypto/evp/p_lib.c

slontis

Much cleaner..

levitte · 2020-02-22T11:36:42Z

I'm pondering if the separation between legacy "origin" and provider "origin" is a bit too strong. A slightly different model would be to have an upgrade simply use the legacy key as a template, and keep it around in case someone changes something in it...

levitte · 2020-02-24T12:40:21Z

My pondering lead to mods, not here, but in #11158. Key upgrades must be used very carefully, the majority of cases only need to have a cached export.

levitte · 2020-02-24T12:58:26Z

I did some squashing, for cleanup

levitte · 2020-02-24T13:37:37Z

Docs have been added, this is no longer WIP

doc/internal/man3/evp_keymgmt_util_export_to_provider.pod

doc/internal/man3/evp_pkey_export_to_provider.pod

doc/internal/man7/EVP_PKEY.pod

crypto/evp/p_lib.c

slontis · 2020-02-26T22:01:31Z

travis errors are relevant..

levitte · 2020-02-27T12:14:21Z

travis errors are relevant..

Fixed

slontis

Approved - Provided the appveyor tests pass.

openssl-machine · 2020-02-28T23:00:18Z

This pull request is ready to merge

The role of this cache was two-fold: 1. It was a cache of key copies exported to providers with which an operation was initiated. 2. If the EVP_PKEY didn't have a legacy key, item 0 of the cache was the corresponding provider side origin, while the rest was the actual cache. This dual role for item 0 made the code a bit confusing, so we now make a separate keymgmt / keydata pair outside of that cache, which is the provider side "origin" key. A hard rule is that an EVP_PKEY cannot hold a legacy "origin" and a provider side "origin" at the same time. Reviewed-by: Shane Lontis <[email protected]> (Merged from openssl#11148)

This function "upgrades" a key from a legacy key container to a provider side key container. Reviewed-by: Shane Lontis <[email protected]> (Merged from openssl#11148)

Functions covered: - evp_pkey_export_to_provider() - evp_pkey_upgrade_to_provider() Reviewed-by: Shane Lontis <[email protected]> (Merged from openssl#11148)

Reviewed-by: Shane Lontis <[email protected]> (Merged from openssl#11148)

levitte added branch: master Applies to master branch approval: review pending This pull request needs review by a committer labels Feb 22, 2020

levitte added this to the 3.0.0 milestone Feb 22, 2020

levitte requested review from mattcaswell and slontis February 22, 2020 00:36

levitte mentioned this pull request Feb 22, 2020

Refactor evp_pkey_make_provided() to do legacy to provider export #11074

Merged

2 tasks

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/exchange.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/exchange.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/keymgmt_lib.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/keymgmt_lib.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/p_lib.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/p_lib.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/p_lib.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

crypto/evp/p_lib.c Outdated Show resolved Hide resolved

slontis reviewed Feb 22, 2020

View reviewed changes

levitte force-pushed the refactor-evp_pkey-provider-cache branch from 0fe97bf to 22de7e1 Compare February 24, 2020 08:22

levitte mentioned this pull request Feb 24, 2020

EVP: Adapt EVP_PKEY checking, comparing and copying for provider keys, take 3 #11158

Merged

levitte force-pushed the refactor-evp_pkey-provider-cache branch from bce4d61 to 690e195 Compare February 24, 2020 12:58

levitte changed the title ~~[WIP] Rethink the EVP_PKEY cache of provider side keys~~ Rethink the EVP_PKEY cache of provider side keys Feb 24, 2020

levitte mentioned this pull request Feb 24, 2020

Implement domparam and key generation #10289

Merged