Backport 2.2x: range-based constant-flow base64 #4835
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
gilles-peskine-arm
added
bug
needs-review
gilles-peskine-arm
added
needs-ci
gilles-peskine-arm
added
needs-review
mpg
requested changes
Aug 6, 2021
There was a problem hiding this comment.
I've verified that the first commits (up to 4ac01d2) are a forward-port of the 2.16 PR, with the obvious conflict resolution, and the manually reviewed the other commits. I'm generally happy with the testing strategy, but have a few reservations about specific points of its implementation.
daverodgman
added
needs-work
and removed
needs-review
gilles-peskine-arm
added
needs-review
davidhorstmann-arm
requested changes
Aug 18, 2021
ChangeLog.d/base64-ranges.txt
Outdated
| Changes | ||
| * Improve the performance of base64 constant-flow code. The result is still | ||
| slower than the original non-constant-flow implementation, but much faster | ||
| than the previous constant-flow implemenation. Fixes #4814. |
There was a problem hiding this comment.
typo: "implemenation" -> "implementation"
library/base64.c
Outdated
| return (unsigned char) ( 1 ^ difference ); | ||
| /* low_mask is: 0 if low <= c, 0x...ff if low > c */ | ||
| unsigned low_mask = ( (unsigned) c - low ) >> 8; | ||
| /* high_mask is: 0 if c <= high, 0x...ff if high > c */ |
There was a problem hiding this comment.
This comment is wrong: high > c should be c > high or high < c
n was used for two different purposes. Give it a different name the second time. This does not seem to change the generated code when compiling with optimization for size or performance. Signed-off-by: Gilles Peskine <[email protected]>
To test c <= high, instead of testing the sign of (high + 1) - c, negate the sign of high - c (as we're doing for c - low). This is a little easier to read and shaves 2 instructions off the arm thumb build with arm-none-eabi-gcc 7.3.1. Signed-off-by: Gilles Peskine <[email protected]>
I had originally thought to support directories with mbedtls_x509_crt_parse_path but it would have complicated the code more than I cared for. Remove a remnant of the original project in the documentation. Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Add unit tests for mask_of_range(), enc_char() and dec_value(). When constant-flow testing is enabled, verify that these functions are constant-flow. Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
This is part of the definition of the encoding, not a choice of test parameter, so keep it with the test code. Signed-off-by: Gilles Peskine <[email protected]>
digits is also a local variable in host_test.function, leading to compilers complaining about that shadowing the global variable in test_suite_base64.function. Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
Signed-off-by: Gilles Peskine <[email protected]>
gilles-peskine-arm
force-pushed
the
base64-no-table-2.2x
branch
from
3e49b1a to
1222fed
Compare
mpg
approved these changes
Oct 26, 2021
davidhorstmann-arm
approved these changes
Oct 27, 2021
mpg
added
approved
Merged
1 task
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fix #4814. See #4819.
Compared to the 2.16 version:
mbedtls_base64_decodeitself due to its logic relying on equality tests of string contents against non-digit values (e.g.src[i] == ' '); I haven't found a way to get rid of those equality tests without a significant cost in both performance and code size.I expect the 3.0 forward-port to be identical except for further build script tweaks and for timing in
load_rootsneeding adjustments (or maybe we can do the easy thing and remove it). I'll make it after the 2.2x version has at least one approval.