Create a generic number ↔ name and let EVP use it by levitte · Pull Request #8878 · openssl/openssl

levitte · 2019-05-04T11:00:47Z

This creates a generic, per library context number ↔ name map, and has the EVP fetcher use it.

Checklist

documentation is added or updated

levitte · 2019-05-04T11:06:31Z

Arguably, this namemap could be used by the property code... I don't quite understand why crypto/property/property_string.c currently holds two databases, when they are really just string ↔ identity maps and those strings don't have any other inherent per se.

paulidale · 2019-05-04T12:20:09Z

@levitte the reason that crypto/property/property_string.c holds two (name, value) databases is to distinguish between the names and the values. There are strict rules about what forms names can take and these are enforced. There are far laxer restrictions on values. Keeping them separate seemed expedient from the point of view of validity checking.

I'm not going to object to a merging of the two, so long as the semantics don't also change.

crypto/core_namemap.c

paulidale · 2019-05-05T01:31:58Z

[edit: this whole comment is wrong]

There is a slight difference between the properties name ↔ value maps and this. The property maps are known to be indexed sequentially (from ~~zero~~ one) which makes a stack of names efficient, here the index doesn't have that property which makes a sparse array the better choice.

By switching the property implementation over, there will be a (small?) space cost but I don't think there will be a noticeable time cost. I believe the simplification to a single name ↔ value map across the library is a beneficial one that outweighs associated the costs.

paulidale · 2019-05-05T01:35:01Z

Merging the two name ↔ value maps in the property code into a single map will allow properties like: "fips=foo, foo=bar" (where foo is not a property name) to be specified and parsed without error. I.e. the reservation of names without a period can be circumvented.

levitte · 2019-05-05T02:48:07Z

There is a slight difference between the properties name ↔ value maps and this. The property maps are known to be indexed sequentially (from zero) which makes a stack of names efficient, here the index doesn't have that property which makes a sparse array the better choice.

Uhmmmm, this namemap is indexed monotonically as well, but from one (zero indicates an "undefined" string). A string gets added by pushing it in the stack...

levitte · 2019-05-05T02:57:05Z

There's one bit that I find highly disturbing, and it's that this namemap is per library context... That would mean duplicating it unnecessarily if we're handling several library contexts within a unit. It's just a string to number cache, essentially, so there's no reason to make the numbers different per context.

I could force it to end up in the default library context, but that would mean that there must be one, and the FIPS module currently forbids that... I might have an idea or two on that, btw, but that's the matter of another PR.

paulidale · 2019-05-05T03:07:34Z

I saw the use of sk_NAMEMAP_value and thought that it searched for some unknown reason.

Best to stick with the stack and it can directly replace the two property mappings.

paulidale · 2019-05-05T03:10:22Z

Could we have this per context and default to the "default" context if none is directly set?

paulidale · 2019-05-05T03:26:26Z

Properties index from 1 as well.

levitte · 2019-05-05T03:28:21Z

Could we have this per context and default to the "default" context if none is directly set?

We can. Also, this implementation only allows one namemap (per library context), and what you said about keeping property names and values separate makes me think that we need a mechanism to have more than one. This is perfectly viable, but needs an extension of the API.

levitte · 2019-05-05T05:09:45Z

I re-implemented it to make it possible to create free floating name maps.

levitte · 2019-05-05T05:58:48Z

Ooooh, this found me an interesting bug... we weren't doing things quite right when there is no pre-existing nid for a name...

levitte · 2019-05-05T07:07:29Z

This isn't in draft any more

crypto/evp/evp_fetch.c

crypto/core_namemap.c

crypto/evp/evp_fetch.c

doc/internal/man3/ossl_namemap_new.pod

include/internal/namemap.h

crypto/core_namemap.c

crypto/evp/evp_fetch.c

This avoids using the ASN1_OBJECT database, which is bloated for the purpose of a simple number <-> name database.

We didn't deal very well with names that didn't have pre-defined NIDs, as the NID zero travelled through the full process and resulted in an inaccessible method. By consequence, we need to refactor the method construction callbacks to rely more on algorithm names. We must, however, still store the legacy NID with the method, for the sake of other code that depend on it (for example, CMS).

POD markup is only forbidden in the actual names, while permitted in the description.

…uction Now that the legacy NID isn't used as a main index for fetched algorithms, the legacy NID was just transported around unnecessarily. This is removed, and the legacy NID is simply set by EVP_{API}_fetch() after the construction process is done.

levitte · 2019-05-12T14:11:41Z

Ping?

(btw, in a conversation yesterday, it was suggested that the strings could be bitstrings, i.e. binary data rather than just text... I don't mind the idea, but I also think that could be future development of this map functionality, it doesn't have to happen in this PR)

levitte · 2019-05-12T14:16:55Z

Doing the close+open thing to kick Appveyor

levitte · 2019-05-12T20:46:43Z

Merged.

0211740 EVP_FETCH: remove the need to transport the legacy NID through construction
1f79ddf util/find-doc-nits: Fine tune detection of POD markup in NAME section
2e49c05 EVP_FETCH: deal with names without pre-defined NIDs
baff732 Make the generic EVP fetching mechanism use the namenum map
f2182a4 Create internal number<->name mapping API

This can be used as a general name to identity map. Reviewed-by: Paul Dale <[email protected]> (Merged from #8878)

This avoids using the ASN1_OBJECT database, which is bloated for the purpose of a simple number <-> name database. Reviewed-by: Paul Dale <[email protected]> (Merged from #8878)

We didn't deal very well with names that didn't have pre-defined NIDs, as the NID zero travelled through the full process and resulted in an inaccessible method. By consequence, we need to refactor the method construction callbacks to rely more on algorithm names. We must, however, still store the legacy NID with the method, for the sake of other code that depend on it (for example, CMS). Reviewed-by: Paul Dale <[email protected]> (Merged from #8878)

POD markup is only forbidden in the actual names, while permitted in the description. Reviewed-by: Paul Dale <[email protected]> (Merged from #8878)

…uction Now that the legacy NID isn't used as a main index for fetched algorithms, the legacy NID was just transported around unnecessarily. This is removed, and the legacy NID is simply set by EVP_{API}_fetch() after the construction process is done. Reviewed-by: Paul Dale <[email protected]> (Merged from #8878)

levitte added the branch: master Applies to master branch label May 4, 2019

levitte changed the title ~~Evp namemap~~ Create a generic number ↔ name and let EVP use it May 4, 2019

levitte mentioned this pull request May 4, 2019

Make the EVP API available from within the FIPS module #8728

Closed

mattcaswell reviewed May 4, 2019

View reviewed changes

crypto/core_namemap.c Outdated Show resolved Hide resolved

paulidale reviewed May 5, 2019

View reviewed changes

crypto/core_namemap.c Outdated Show resolved Hide resolved

levitte force-pushed the evp-namemap branch from 352eb76 to 456a358 Compare May 5, 2019 03:54

levitte marked this pull request as ready for review May 5, 2019 07:05