sw/libhal - Cryptech libhal: crypto software, HSM management, RPC

Age	Commit message (Collapse)	Author
2020-03-10	auto-detect cores	Paul Selkirk

2020-03-04	Take advantage of ModExpNG core's blinding factor mutation.	Paul Selkirk

2020-02-26	Merge branch 'js_keywrap' to 'master'	Paul Selkirk

2020-02-26	Remove init checks from hal_io_[write\|read], since initialization is done	Paul Selkirk
	in stm_init, and the checks add unneccesary delays to critical code paths.
2020-02-26	Merge branch 'modexpng' to 'master'	Paul Selkirk

2020-02-18	timing tests for RSA signingmodexpng	Paul Selkirk

2020-02-07	driver for Pavel's ModExpNG core	Paul Selkirk

2019-04-10	Allow multiple iterations in verify, for better timing measurement.	Paul Selkirk

2019-04-10	Add hashsig interop tests.	Paul Selkirk

2019-04-09	Huh, I forgot to add a Python RPC handler for pkey_generate_hashsig,	Paul Selkirk
	over a year ago.
2019-04-09	In pkey_local_sign_hashsig, don't create the digest in the signature	Paul Selkirk
	buffer, because hal_hashsig_sign assembles the signature incrementally, and will overwrite the digest before it's ready to sign it.
2019-04-05	Update FPGA core name/version list	Paul Selkirk

2019-04-05	The FPGA register interface now does byte-swapping in hardware, so we can	Paul Selkirk
	just call memcpy here. (Although it turns out to be more efficient to use an inline version of memcpy than the library function.)
2019-04-02	The all-singing, all-dancing key management app	Paul Selkirk

2019-04-02	Small cleanups in RPC code, e.g. to support null arguments.	Paul Selkirk
	- Add support for null pointer arguments in RPCs for get_digest_algorithm_id and get_public_key. This is years overdue, and would have obviated the need for get_public_key_len as a separate RPC. - Refactor pkey_local_get_public_key_len in terms of pkey_local_get_public_key. - Add more parameter sanity checks to rpc_api.c. - Add a len_max parameter to hal_xdr_decode_variable_opaque, rather than having len be an in/out parameter. This brings xdr slightly more in line with the rest of the code base (again after literal years), and slightly simplifies several calls in rpc_client.c.
2019-03-31	Hashsig cleanup.	Paul Selkirk
	- Move hashsig.h contents into hal.h. - Uppercase lmots and lms algorithm types, because we have a convention that enum values are uppercase. - Change all I to hal_uuid_t, because that how we're using them, and it seems silly to have two different 16-byte array types. - Change all "memcpy(&this, &that, sizeof(this))" to "this = that", because it's more succinct, more type-safe, and harder to get wrong. - Slightly tighten up lmots_generate, lmots_sign, and lmots_public_key_candidate. - Remove verbatim draft text, now that I'm pretty sure I implemented it correctly.
2019-03-31	Add support for hashsig key export/import.	Paul Selkirk

2019-03-04	Restructure hashsig test program	Paul Selkirk

2019-03-04	On device restart, if a hashsig key was generated using the pseudorandom	Paul Selkirk
	method, and it's missing one or more lmots keys, those keys can be regenerated. OTOH, if an lms key is damaged or missing, it's still a fatal error, because that's the only place we record the current q value.
2019-03-04	Use the hashsig pseudorandom key generation method if the key is exportable.	Paul Selkirk

2019-02-28	Increase volatile keystore size to allow for multi-level hashsig trees.	Paul Selkirk

2019-02-01	Clean up mkm.c	Paul Selkirk

2019-02-01	Remove global stored core pointer from mkm.c.	Paul Selkirk
	This forces each hal_mkmif_* function to alloc/free the core, which is a miniscule performance hit, but the only sane thing to do in a tasking environment. Otherwise (with a stored/shared core pointer), one task will initiate a read, yield in hal_io_wait, another task will initiate a read, and both will be unhappy.
2018-12-03	add some more statistics to parallel-signatures.py	Paul Selkirk

2018-11-14	Add some yields to hal_hashsig_ks_init, so other tasks can run while we're ↵	Paul Selkirk
	rebuilding the hash tree.
2018-11-14	Change scanf/printf %hhx format strings to %x, because not every libc ↵	Paul Selkirk
	supports it. In particular, the version of newlib distributed by Ubuntu is not configured with --enable-newlib-io-c99-formats, and now includes guard code that treats %hhx as an error, rather than silently interpreting it as %hx. The net effect was to break hal_uuid_parse. (Ironically, vfprintf.c does not (yet) include this guard code, but it's probably only a matter of time, and it seemed expedient to change hal_uuid_format at the same time.)
2018-11-01	Tornado 5.0 made an incompatible API change in iostream.BaseIOStream.	Paul Selkirk
	Found when upgrading Ubuntu to 18.10.
2018-10-29	Sigh, add8e03 botched handling of 0-length hal_xdr_encode_fixed_opaque requests.	Paul Selkirk
	It's an edge case, but it's supported, and it's used in a few places.
2018-10-25	Enable bloat tests, since they work with the current 8K keystore block size.	Paul Selkirk

2018-10-25	Change explicitly signed XDR buffer overflow checks to explicitly unsigned.	Paul Selkirk
	This fixes CT-01-006 MCU: Value cast allows a bypass of the size checks (Critical)
2018-10-25	Add buffer overflow checks before allocating stack arrays.	Paul Selkirk
	This fixes CT-01-005: OOB writes through dynamic stack allocations (Critical)
2018-09-11	Track Joachim's latest keywrap core - unroll bank-switched memory into a ↵	Paul Selkirk
	number of core register blocks.
2018-08-27	fix pkey_remote_get_attributes	Paul Selkirk

2018-08-16	Correct the limit on memory banks in the keywrap core.	Paul Selkirk

2018-08-15	Add support for Joachim's keywrap core.	Paul Selkirk

2018-08-12	Update .gitignore with newish test apps	Paul Selkirk

2018-08-12	Simplify makefile to make them easier to use with non-default directory names	Paul Selkirk

2018-08-12	Clean up builds for *BSD/clang.	Paul Selkirk
	Move lm[ot]s_algorithm_t definitions to hal.h, prefix all public symbols with 'hal_'. Remove some unused functions. Wrap hal_pkey_slot_t initializers in an extra set of curly braces. Remove an unused-argument kludge (x=x;) because gcc doesn't care, and clang complains. Make timersub a proper macro. Add some casts to printf arguments, because !@#$ printf formats.
2018-08-11	Un-break builds on MacOS.	Rob Austein
	timersub() is a macro on *BSD, including MacOS, so redefinition as a function in hashsig test code was breaking the whole build. Clang has other comments on the hashsig code, leaving those for Paul.
2018-07-31	Add hashsig description to README	Paul Selkirk

2018-07-25	Merge branch 'hashsig'	Paul Selkirk

2018-07-24	Change the rest of the hashsig ASN.1 wrapper functions to static inline, for ↵	Paul Selkirk
	consistency.
2018-07-24	A recent(?) version of arm-none-eabi-gcc decided to make storage for enums	Paul Selkirk
	the minimum size necessary, so hal_asn1_decode_lms_algorithm and hal_asn1_decode_lmots_algorithm were writing 4 bytes of data into 1-byte variables. Hilarity ensued. Yes, I already knew that conflating enum with uint32_t was a bad idea, I was just being lazy. For that matter, sizeof(size_t) isn't guaranteed either, although arm-none-eabi-gcc treats it as 32 bits on this 32-bit target (for now), so exercise proper data hygiene in hal_asn1_decode_size_t as well.
2018-07-24	Add protection against trying to use hashsig while the restart mechanism is ↵	Paul Selkirk
	rebuilding the tree.
2018-07-24	Housekeeping: Mark hal_ks_pin_uuid extern, so it doesn't get instantiated in ↵	Paul Selkirk
	each object module.
2018-07-24	Add descriptions of signature algorithm OIDs, because pre-encoded ASN.1 ↵	Paul Selkirk
	blobs are really inscrutable.
2018-07-16	No-op out core alloc/free when no cores exist.	Rob Austein

2018-07-15	Support PF_UNIX socket inode modes other than 0600.	Rob Austein

2018-05-27	Inline hal_core_base().	Rob Austein

2018-05-27	FMC cleanup: constification, gratuitous pointer.	Rob Austein