Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

aes-gcm cleanup #850

Merged
merged 6 commits into from
Jul 12, 2021
Merged

aes-gcm cleanup #850

merged 6 commits into from
Jul 12, 2021

Conversation

jcape
Copy link
Contributor

@jcape jcape commented Jul 8, 2021
edited

Motivation

One of the things which needs to happen to aid in building on M1 is removing the patched aes-gcm crate where possible. This removes the in-repo mc-crypto-ct-aead trait and it's use of a forked aes-gcm in favor of the standard upstream aes-gcm in every location other than mc-crypto-box.

In this PR

  • Remove patch for aes-gcm crate
  • Remove patch for cpuid-bool crate.
  • Add patch for cpufeatures crate to enclave only.
  • Use mc-oblivious-aes-gcm in mc-crypto-box.
  • Update sha2 to 0.9.5 (uses cpufeatures instead of cpuid-bool).
  • Update aes-gcm to 0.9.2.
  • Update aead to 0.4.

TODO

  • PR against fog repo to handle these changes
  • Deployment test
  • Finish cpufeatures PR, use mobilecoinfoundation for patch instead of jcape.

Future Work

  • Parameterize mc-crypto-box to further reduce the the use of a forked AES implementation to just the ingest enclave.

James Cape added 3 commits July 1, 2021 10:54
WIP
7fb2662
Merge branch 'master' into feature/aes-gcm-cleanup
7c251d1
Replace some aes-gcm with mc-oblivious-aes-gcm.
883d78e 
 - Use mc-oblivious-aes-gcm in mc-crypto-box.
 - Patch in forked cpufeatures crate for enclave purposes.
 - Remove (unused) cpuid-bool patch.
 - Update aes-gcm to 0.9.2.
 - Update sha2 to 0.9.5 (use cpufeatures instead of cpuid-bool).
@jcape jcape added this to the Build on M1 milestone Jul 8, 2021
@jcape jcape self-assigned this Jul 8, 2021
@jcape jcape added this to In progress in Consensus via automation Jul 8, 2021
@jcape jcape requested review from a team July 8, 2021 01:21
cbeck88
cbeck88 approved these changes Jul 8, 2021
View reviewed changes
Copy link
Contributor

@cbeck88 cbeck88 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM thank you

Consensus automation moved this from In progress to Reviewer approved Jul 8, 2021
@jcape jcape marked this pull request as ready for review July 10, 2021 00:17
@jcape
Copy link
Contributor Author

jcape commented Jul 12, 2021

I'm going to just merge this and do the test-deploy in fog.

@jcape jcape merged commit 78a3a22 into mobilecoinfoundation:master Jul 12, 2021
Consensus automation moved this from Reviewer approved to Done Jul 12, 2021
Consensus automation moved this from Done to Reviewer approved Aug 2, 2021
Consensus automation moved this from Reviewer approved to Done Aug 2, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@eranrund eranrund eranrund approved these changes

@cbeck88 cbeck88 cbeck88 approved these changes

Assignees

@jcape jcape

Labels
None yet
Projects
No open projects
Consensus
  
Done
Milestone
Build on M1
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@jcape @eranrund @cbeck88