Add example program for PSA hash #7942
Conversation
This commit adds the example program for PSA hash as well as the relevant changes to CMakeLists.txt and the Makefile. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
tom-daubney-arm
added
enhancement
needs-ci
This PR was originally created before the code style was changed. This commit updates the style. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
| @@ -109,6 +109,7 @@ APPS = \ | |||
| psa/hmac_demo \ | |||
| psa/key_ladder_demo \ | |||
| psa/psa_constant_names \ | |||
| psa/psa_hash \ | |||
There was a problem hiding this comment.
There's a directory programs/psa that contains all programs that are related to the PSA API: examples of simple usage like psa_hash and crypto_examples and aead_demo and hmac_demo, examples of more complex usage like key_ladder_demo, and utility programs for developers (just one: psa_constant_names). This made sense originally when PSA was an experimental feature, but now that it's the preferred API for cryptography, maybe we shouldn't single out psa anymore?
There was a problem hiding this comment.
Happy to do this as a follow-up PR but in this PR I want to focus on getting the PSA hash program merged.
There was a problem hiding this comment.
Sure, let's reorganize later.
programs/psa/psa_hash.c
Outdated
| psa_hash_operation_t sha256_psa = PSA_HASH_OPERATION_INIT; | ||
| psa_hash_operation_t cloned_sha256 = PSA_HASH_OPERATION_INIT; | ||
|
|
||
| printf("PSA Crypto API: SHA-256 example\n\n"); |
There was a problem hiding this comment.
We should use mbedtls_printf. We normally don't use stdio directly in sample programs for crypto.
| @@ -0,0 +1,144 @@ | |||
| /* | |||
There was a problem hiding this comment.
It's unfortunate that we don't run sample programs on the CI. I would like that at least for new programs we arrange to run them on the CI. #2698 sets up some infrastructure to make that easier. Can we rework this as a part of the epic to get the PSA demo programs in?
There was a problem hiding this comment.
At the moment I want to focus on bringing in these PSA programs as a priority, especially since they have been around a while already. I think the suggestion here introduces too much scope creep to the original plan. I am happy to discuss it and potentially work on it after the PSA programs are done, but I don't think we should make #2698 part of this bit of work.
There was a problem hiding this comment.
As discussed today, I'm going to split #2698 into two parts: one to add run_demos.py to CI runs, and one for cert_write_demo.hs. We'll push the run_demos.py part quickly and we'll add a demo script for the new sample programs.
There was a problem hiding this comment.
#7982 is available for review. I would like to merge it and the hash demo independently, but to make a follow-up to run the hash demo on the CI before we merge the other demos.
tom-daubney-arm
added
needs-work
needs-review
gilles-peskine-arm
requested review from
gilles-peskine-arm
and removed request for
gilles-peskine-arm
Following an initial review: - Swap printf for mbedtls_printf - Remove MBEDTLS_xxx dependencies - Demonstrate correct buffer sizing Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Define HALH_ALG to the desired PSA algorithm to demostrate the ease of swapping algorithms with the PSA API. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Add variable to store message length to increase clarity in what the program is doing. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Newline character was missing from end of print statement. Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
gilles-peskine-arm
added
the
needs-review
programs/psa/psa_hash.c
Outdated
| * limitations under the License. | ||
| */ | ||
|
|
||
|
|
There was a problem hiding this comment.
We don't normally have two consecutive blank lines in our code
There was a problem hiding this comment.
ag -c '\n\n\n' library/*.c programs/*/*.c
Yes we do. And I can't think of a good reason why that would be a problem.
There was a problem hiding this comment.
Hmm, yes, so we do, but used so inconsistently that they are clearly unintentional (i.e. not clearly separating sections of a file, etc)
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
| /* sample_message is terminated with a null byte which is not part of | ||
| * the message itself so we make sure to subtract it in order to get | ||
| * the message length. */ | ||
| const size_t sample_message_length = sizeof(sample_message) - 1; |
There was a problem hiding this comment.
I think the sample program would read better if this sample message and its length appeared before the expected hash value. And note "expected" - again, it would read better with EXPECTED_HASH_DATA, expected_hash, and expected_hash_len.
Also, these variables are outside the macro guards, which means if it's compiled without MBEDTLS_PSA_CRYPTO_C or PSA_WANT_ALG_SHA_256, some compilers will give warnings about unused variables - at least, they should, but now I see that they're not static, which they probably should be - I don't see a reason to have them global. So they should be static and within the compilation guard.
Finally, I wonder if it's worth having the "interesting" version of main() - i.e. the one with all the good stuff in it - before the un-interesting "these aren't defined" version. That would mean the guards become #if defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256) and therefore match the #endif at the bottom of the file, which isn't currently right.
However, that is the opposite of the way the example programs are currently done, so I'd be keen to see what other reviewers think.
That is, how does the following layout seem?
:
#include "mbedtls/build_info.h"
#include "mbedtls/platform.h"
#if defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256)
/* Information about hashing with the PSA API can be found here:
* https://arm-software.github.io/psa-api/crypto/1.1/api/ops/hashes.html
:
* the hash output in the EXPECTED_HASH_DATA macro below. */
#define HASH_ALG PSA_ALG_SHA_256
static const uint8_t sample_message[] = "Hello World!";
/* sample_message is terminated with a null byte which is not part of
* the message itself so we make sure to subtract it in order to get
* the message length. */
static const size_t sample_message_length = sizeof(sample_message) - 1;
#define EXPECTED_HASH_DATA { \
0x7f, 0x83, 0xb1, 0x65, 0x7f, 0xf1, 0xfc, 0x53, 0xb9, 0x2d, 0xc1, 0x81, \
0x48, 0xa1, 0xd6, 0x5d, 0xfc, 0x2d, 0x4b, 0x1f, 0xa3, 0xd6, 0x77, 0x28, \
0x4a, 0xdd, 0xd2, 0x00, 0x12, 0x6d, 0x90, 0x69 \
}
static const uint8_t expected_hash[] = EXPECTED_HASH_DATA;
static const size_t expected_hash_len = sizeof(expected_hash);
int main(void)
{
psa_status_t status;
uint8_t hash[PSA_HASH_LENGTH(HASH_ALG)];
:
:
return EXIT_FAILURE;
}
#else /* MBEDTLS_PSA_CRYPTO_C && PSA_WANT_ALG_SHA_256 */
int main(void)
{
mbedtls_printf("MBEDTLS_PSA_CRYPTO_C and PSA_WANT_ALG_SHA_256"
"not defined.\r\n");
return EXIT_SUCCESS;
}
#endif /* MBEDTLS_PSA_CRYPTO_C && PSA_WANT_ALG_SHA_256 */
There was a problem hiding this comment.
I think the sample program would read better if this sample message and its length appeared before the expected hash value. And note "expected" - again, it would read better with EXPECTED_HASH_DATA, expected_hash, and expected_hash_len.
Agreed, though I don't consider this a blocker.
Also, these variables are outside the macro guards, which means if it's compiled without MBEDTLS_PSA_CRYPTO_C or PSA_WANT_ALG_SHA_256, some compilers will give warnings about unused variables - at least, they should, but now I see that they're not static, which they probably should be - I don't see a reason to have them global. So they should be static and within the compilation guard.
I don't care about any of this if the CI passes. Not even by the standards of a sample program. This is the part that will be replaced if someone takes this and turns it into actual code.
Finally, I wonder if it's worth having the "interesting" version of main() - i.e. the one with all the good stuff in it - before the un-interesting "these aren't defined" version. That would mean the guards become #if defined(MBEDTLS_PSA_CRYPTO_C) && defined(PSA_WANT_ALG_SHA_256) and therefore match the #endif at the bottom of the file, which isn't currently right.
However, that is the opposite of the way the example programs are currently done, so I'd be keen to see what other reviewers think.
I agree, but I'd rather be consistent between the sample programs than have one program read very slightly better.
There was a problem hiding this comment.
I think I have implemented a compromise. PTAL when you have the bandwidth
Signed-off-by: Thomas Daubney <thomas.daubney@arm.com>
tom-cosgrove-arm
added
approved
github-merge-queue
bot
removed this pull request from the merge queue due to failed status checks
|
Merge queue failures appear to be transient errors, re-submitting |
gilles-peskine-arm
removed this pull request from the merge queue due to a manual request
|
The merge queue failure is real: The failure isn't caused by this PR though, so it looks like |
Description
This PR contains the PSA Hash program, originally authored by @hannestschofenig .
This PR is the second part of a series of PRs that are based on #5064 , which has been split in order to make reviewing easier.
PR checklist
Please tick as appropriate and edit the reasons (e.g.: "backport: not needed because this is a new feature")