Feature unavailable errors

[RonEld]

Description

1. Add a common error code for alternative implementations, returning MBEDTLS_ERR_PLATFORM_FEATURE_UNSUPPORTED.
2. Remove all feature specific errors for Feature "Not Supported and for the HW acceleration failure.

Dependent on #1993 to be merged first
One of the PRs that supersedes #1716

Status

HOLD

Requires Backporting

NO

Migrations

If there is any API change, what's the incentive and logic for it.

YES

Removing existing error codes may result n backwards incompatibility. Developers May need to change their returned error codes for their alternative implementations. In addition, If a specific error code is expected, it should be changed as well.
The incentive is to have one common error code for a feature that is not supported by the underlying HW accelerator, which makes tests and applications simpler and readable.

This may result in future ABI break, since removed error codes might be reused in the future,

Additional comments

Any additional information that could be of interest

The following FEATURE UNAVAILABLE errors were kept, as they actually mean that a specific feature is currently unavailable, because of missing configuration or other reasons, but are not related to the alternative implementation:

MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE
MBEDTLS_ERR_PKCS12_FEATURE_UNAVAILABLE
MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE
MBEDTLS_ERR_CIPHER_FEATURE_UNAVAILABLE
MBEDTLS_ERR_PEM_FEATURE_UNAVAILABLE
MBEDTLS_ERR_X509_FEATURE_UNAVAILABLE
MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE
MBEDTLS_ERR_PKCS5_FEATURE_UNAVAILABLE
MBEDTLS_ERR_PK_FEATURE_UNAVAILABLE

In addition, MBEDTLS_ERR_SSL_HW_ACCEL_FAILED was kept as it is a specific TLS feature.

Open question: should have MBEDTLS_ERR_THREADING_FEATURE_UNAVAILABLE been removed?

Todos

• Tests
• Documentation
• Changelog updated
• Backported

[Patater]

This looks a bit funny. Isn't 0x0021 within the range of 0x0020-0x0022 Why does it need a separate entry?

[RonEld]

The left is the even error codes, the right are the odd error codes

[Patater]

Weird. THREADING doesn't do that. BLOWFISH doesn't do that.

[Patater]

Nevermind. BLOWFISH doesn't do this because we deleted 0x0017. THREADING also doesn't have odd error codes.

[Patater]

0x002 looks wrong.

[RonEld]

yes, it's a typo

[Patater]

A platform error code is not a cipher-specific error code. What makes sense to say here? Should we list MBEDTLS_ERR_PLATFORM_HW_FAILED explicitly or say "a cipher- or platform-specific error code"? Same goes for other similar comments for other functions and files.

[RonEld]

Correct, but the MBEDTLS_ERR_PLATFORM_HW_FAILED is a generic error that is returned by the platform. The cipher specific code is because gcm is part of the cipher module.

[Patater]

Where in this function's documentation do we indicate that you might receive a platform error code? Or is that universally implied or expressly written elsewhere?

[RonEld]

It should be universally implied. It will be updated in the relevant KB article, about implementing alternative modules

[Patater]

OK

[RonEld]

@Patater I addressed your comments

[itayzafrir]

LGTM

[RonEld]

CI failed in timing test, which is a known issue

[RonEld]

@Patater Thank you for your review.
Do you have additional comments? Is this approved for design?

[RonEld]

@Patater @itayzafrir Thank you for reviewing.

I would like to hear your comments about the additional comments in the description.

[Patater]

Should MBEDTLS_ERR_THREADING_FEATURE_UNAVAILABLE have been removed?

I could see that making sense, but it's also OK as-is, IMO.

[RonEld]

The value probably needs to be changed.
I get the following:

programs/util/strerror 0x82
Last error was: -0x0082 - UNKNOWN ERROR CODE (0080) : BIGNUM - An error occurred while reading from or writing to a file

I'll change to 0x78, assuming the parsing will work

[RonEld]

The problem is that our low level error codes are defined as:

(0x0002-0x007E, 0x0003-0x007F)

[RonEld]

@Patater @itayzafrir I have updated the error code value.
Please review

[itayzafrir]

Looks good to me. Note there's a typo in commit message for e9afdd2, rage -> range.

[RonEld]

As discussed offline, I have returned the removed error codes, for API compatibility sake, and made them deprecated
cc @Patater @itayzafrir

[Patater]

• What's the name of this inline function?
• Why do we need an inline function? Add a comment.
• I think I'd rather update our test scripts to work with constant deprecation than to use inline functions to work around the scripts' limitations.

[RonEld]

What's the name of this inline function?
Copy paste error. I'll add names to the functions

Why do we need an inline function? Add a comment.

I couldn't find another way to deprecate MACROs. If I add a warning, we get compilation warnings, and thus compilation errors when warnings are treated as errors. see https://stackoverflow.com/questions/2681259/how-to-deprecate-a-macro-in-gcc

I think I'd rather update our test scripts to work with constant deprecation than to use inline functions to work around the scripts' limitations.

Me too, but how do you suggest we make the constant deprecations?

[RonEld]

Note that all.sh checks explicitely for MBEDTLS_DEPRECATED_WARNINGS and treat warnings as errors:

msg "build: make, full config + DEPRECATED_WARNING, gcc -O" # ~ 30s
cleanup
cp "$CONFIG_H" "$CONFIG_BAK"
scripts/config.pl full
scripts/config.pl set MBEDTLS_DEPRECATED_WARNING
# Build with -O -Wextra to catch a maximum of issues.
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra' lib programs
make CC=gcc CFLAGS='-O -Werror -Wall -Wextra -Wno-unused-function' tests

msg "build: make, full config + DEPRECATED_REMOVED, clang -O" # ~ 30s
# No cleanup, just tweak the configuration and rebuild
make clean
scripts/config.pl unset MBEDTLS_DEPRECATED_WARNING
scripts/config.pl set MBEDTLS_DEPRECATED_REMOVED
# Build with -O -Wextra to catch a maximum of issues.
make CC=clang CFLAGS='-O -Werror -Wall -Wextra' lib programs
make CC=clang CFLAGS='-O -Werror -Wall -Wextra -Wno-unused-function' tests

[RonEld]

@Patater How about we go with our original plan and define the MACROS as the platform errors, but not using the MBEDTLS_DEPRECATED_WARNING?

[RonEld]

As discussed offline, I dropped the deprecation of the constant, and kept the commit for the build error

cc @Patater @itayzafrir

[Patater]

CI failure is timing-suite on FreeBSD, a known issue.

[Patater]

Rebased to add back in and deprecate the deprecated errors. Updated ChangeLog wording slightly.

Old branch at https://github.com/Patater/mbedtls/tree/dev/RonEld/feature_unavailable_errors

[dgreen-arm]

MBEDTLS_ERR_XTEA_HW_ACCEL_FAILED was removed in the previous version, it should probably get a deprecated warning now.

[Patater]

Fixed in original commit

[simonbutcher]

I think we need to change the ChangeLog (which I can do if you agree), and we should schedule work to deprecate the constants differently at a later date (including moving the comments to doxygen).

[simonbutcher]

I think we can be specific and say MBEDTLS_ERR_PLATFORM_FEATURE_UNSUPPORTED has been added,

[Patater]

Yes, specific is better.

[simonbutcher]

I think we can specify what we mean here. eg.

All the current module specific errors that mean a feature is not available, such as MBEDTLS_ERR_XXX_FEATURE_UNAVAILABLE, are deprecated.

[simonbutcher]

Same comment as above. We can show an example symbol,

[simonbutcher]

Not a blocker because there's precedent, but why have the statement on the symbol being deprecated above it and not in the doxygen comment?

[Patater]

Not sure what the best way for our library to document or tell the compiler that a define is deprecated, yet. Copied the approach used previously.

[RonEld]

If there is a deprecated feature for doxygen, I think it is better. The approach use previously was on a file that is not part of the doxygen headers.

[Patater]

Yes, please feel free to update the ChangeLog as desired.

[simonbutcher]

retest