Remove discussions of MBEDTLS_USE_PSA_CRYPTO in API documentation #9781
Conversation
yanesca
added
enhancement
needs-review
There was a problem hiding this comment.
This mostly looks good, and I'm satisfied with completeness for the subtask “API documentation”. There are a few problems in mbedtls_config.h. There are conflicts with #9771, so it would be better to wait until that is merged for rework and re-review.
include/mbedtls/mbedtls_config.h
Outdated
| * \note When this option is enabled, restartable operations in PK, X.509 | ||
| * and TLS (see above) are not using PSA. On the other hand, ECDH | ||
| * computations in TLS are using PSA, and are not restartable. These | ||
| * are temporary limitations that should be lifted in the future. |
There was a problem hiding this comment.
Minor: there is only one limitation now.
There was a problem hiding this comment.
I am sorry I am not sure I can see which of these limitations has gone. Could you please elaborate?
There was a problem hiding this comment.
Oh, based on your next comment the remaining limitation is the restartable ECDH. As far as I can tell the restartable operations in PK, X509 and TLS are still not using PSA.
There was a problem hiding this comment.
Raised #9817 for tracking.
There was a problem hiding this comment.
Sorry, I must have forgotten to actually write a sentence here, or I made a mistake when consolidating/separating comments. Grammatically, the current paragraph contains two limitations (one per sentence). The first limitation “… not using PSA” is not really meaningful anymore, since users must assume that everything is “using PSA” — users must call psa_crypto_init and must enable PSA_WANT_xxx. So I thought we should remove that sentence: it's now an implementation detail, no longer a statement about the interface. The sentence isn't misleading though, and it's informative in a non-semantic way, so it can stay.
| @@ -853,8 +850,8 @@ | |||
| * | |||
| * Enable the ECDH-ECDSA based ciphersuite modes in SSL / TLS. | |||
| * | |||
| * Requires: MBEDTLS_ECDH_C or (MBEDTLS_USE_PSA_CRYPTO and PSA_WANT_ALG_ECDH) | |||
| * MBEDTLS_ECDSA_C or (MBEDTLS_USE_PSA_CRYPTO and PSA_WANT_ALG_ECDSA) | |||
| * Requires: MBEDTLS_ECDH_C or PSA_WANT_ALG_ECDH | |||
There was a problem hiding this comment.
Partly preexisting (in many places in this file): this isn't quite right, and it wasn't right in 3.6 either. When MBEDTLS_USE_PSA_CRYPTO is enabled and MBEDTLS_PSA_CRYPTO_CONFIG is enabled (i.e. the only thing that will remain in 4.0), defining MBEDTLS_ECDH_C does not automatically enable ECDH in PSA, so here the requirement is on PSA_WANT_ALG_ECDH only.
In 3.6, this would be correct, although not necessarily the most helpful way to put it:
(!MBEDTLS_USE_PSA_CRYPTO and MBEDTLS_ECDH_C) or (MBEDTLS_USE_PSA_CRYPTO and PSA_WANT_ALG_ECDH)
It's not the most helpful way because if MBEDTLS_PSA_CRYPTO_CONFIG is disabled, which is the case by default, then enabling MBEDTLS_ECDH_C works regardless of MBEDTLS_USE_PSA_CRYPTO.
In some cases where there's a direct correspondence between legacy and PSA mechanisms, we have a rule that the PSA mechanism will always be enabled if the legacy mechanism is (unless PSA is completely disabled). This is done in config_adjust_psa_superset_legacy.h. But we only do this for hashes and curves, not for things like ECC/RSA algorithms.
Given that the removal of MBEDTLS_PSA_CRYPTO_CONFIG is happening in parallel (https://github.com/Mbed-TLS/mbedtls/pull/9771/files#r1848889790), I think it would be best to not try to get those statements exactly right on either side, because then we'd have a lot of conflicts. Rather, I propose to file a task to fix these requirement statements once both #9781 and #9771 are merged.
gilles-peskine-arm
added
needs-work
needs-preceding-pr
MBEDTLS_USE_PSA_CRYPTO is now always enabled we need to update the documentation accordingly. Signed-off-by: Janos Follath <janos.follath@arm.com>
MBEDTLS_USE_PSA_CRYPTO is now always enabled we need to update the documentation accordingly. Signed-off-by: Janos Follath <janos.follath@arm.com>
MBEDTLS_USE_PSA_CRYPTO is now always enabled we need to update the documentation accordingly. Signed-off-by: Janos Follath <janos.follath@arm.com>
MBEDTLS_USE_PSA_CRYPTO is now always enabled we need to update the documentation accordingly. Signed-off-by: Janos Follath <janos.follath@arm.com>
yanesca
force-pushed
the
remove_USE_PSA_from_API_doc_9632
branch
from
77d290e to
056cb14
Compare
Recent commits have changed these reference configurations and they are not verbatim copies anymore. Signed-off-by: Janos Follath <janos.follath@arm.com>
Now that USA_PSA_CRYPTO is always on, users need to call psa_init() with all protocol versions. Signed-off-by: Janos Follath <janos.follath@arm.com>
Add reference to github issues to give a way for users to track progress and express interest. Signed-off-by: Janos Follath <janos.follath@arm.com>
yanesca
added
needs-review
| @@ -165,7 +162,8 @@ typedef struct mbedtls_pk_rsassa_pss_options { | |||
| * which functions are used for various operations. The overall picture looks | |||
| * like this: | |||
| * - if USE_PSA is not defined and ECP_C is defined then use ecp_keypair data | |||
| * structure and legacy functions | |||
| * structure and legacy functions. (MBEDTLS_USE_PSA_CRYPTO is always on and | |||
There was a problem hiding this comment.
Cosmetic:
| * structure and legacy functions. (MBEDTLS_USE_PSA_CRYPTO is always on and | |
| * structure and legacy functions. (\c MBEDTLS_USE_PSA_CRYPTO is always on and |
| * #MBEDTLS_USE_PSA_CRYPTO is defined, the salt length is not | ||
| * verified as PSA_ALG_RSA_PSS_ANY_SALT is used. | ||
| * otherwise it must be NULL. Note that the salt length is not | ||
| * verified as contexes have PSA_ALG_RSA_PSS_ANY_SALT as default |
There was a problem hiding this comment.
Cosmetic, preexisting:
| * verified as contexes have PSA_ALG_RSA_PSS_ANY_SALT as default | |
| * verified as contexts have #PSA_ALG_RSA_PSS_ANY_SALT as default |
| * \note When this option is enabled, restartable operations in PK, X.509 | ||
| * and TLS (see above) are not using PSA. On the other hand, ECDH |
There was a problem hiding this comment.
Minor: “not using PSA” is not really meaningful anymore, since users must assume that everything is “using PSA” — users must call psa_crypto_init and must enable PSA_WANT_xxx. So arguably we should remove that sentence: it's now an implementation detail, no longer a statement about the interface. The sentence isn't misleading though, and it's informative in a non-semantic way, so it can stay.
There was a problem hiding this comment.
Using or not using PSA might be an implementation detail, but it has user visible consequences. (eg. using or not using drivers)
davidhorstmann-arm
removed
the
needs-reviewer
davidhorstmann-arm
added
needs-ci
Description
Remove discussions of MBEDTLS_USE_PSA_CRYPTO in API documentation. Resolves partially #9632.
PR checklist
Please remove the segment/s on either side of the | symbol as appropriate, and add any relevant link/s to the end of the line.
If the provided content is part of the present PR remove the # symbol.