Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Multipacket handling for credentials listing and other improvements #24

Merged
merged 9 commits into from
Feb 3, 2023
Merged

Multipacket handling for credentials listing and other improvements #24

merged 9 commits into from
Feb 3, 2023

Conversation

szszszsz
Copy link
Member

@szszszsz szszszsz commented Jan 18, 2023
edited
Loading

Changes:

  • Use smaller buffers for the EncryptedDataContainer crypto fields, to save stack.
  • Handle multipacket responses, specifically for listing the credentials.
  • Use read-only state access where possible, to limit writes.

Fixes #19
Fixes #14

@szszszsz szszszsz force-pushed the state-encryption-smaller-buffer branch from 5df4632 to 9580018 Compare January 20, 2023 14:19
@szszszsz
Use smaller buffers for the EncryptedDataContainer crypto details
148cb7c
@szszszsz
Use read-only access to the persistent storage where possible
c26067b 
Load tests counters: 425 RW before, 421 RO / 4 RW now
@szszszsz
Use state read/write counters only in devel
a8ea3d9
@szszszsz
Handle state writing error
de2c934
@szszszsz
Cargo fmt
368fdd5
@szszszsz
Add some error handling
45b2f95 
Handle injected key writing error
Show error on failed write
@szszszsz
Handle multipacket responses
2b72d0f 
Abort if the previous state is not set.
Try to clean up after Credential's write failure.
Using 0x61FF, as we do not know the count of the remaining bytes.
@szszszsz
Generalize response length over the provided reply buffer
b305cc9 
Fill the buffer as long as it is possible, break otherwise.
Instead of using a temporary buffer for the unfit data, reiterate over directories again -
this saves memory at the cost of the additional computation.
@szszszsz szszszsz force-pushed the state-encryption-smaller-buffer branch 2 times, most recently from 1631dfd to 314f8e5 Compare January 24, 2023 17:45
@szszszsz szszszsz force-pushed the state-encryption-smaller-buffer branch from 314f8e5 to 98c8b01 Compare January 24, 2023 17:47
@szszszsz szszszsz marked this pull request as ready for review January 24, 2023 17:48
@szszszsz szszszsz mentioned this pull request Jan 24, 2023
Closed
@szszszsz szszszsz added the enhancement New feature or request label Jan 25, 2023
@szszszsz szszszsz changed the title Use smaller buffers for the EncryptedDataContainer crypto details Multipacket handling for credentials listing and other improvements Jan 25, 2023
@szszszsz
Copy link
Member Author

@robin-nitrokey Friendly ping!

robin-nitrokey
robin-nitrokey approved these changes Feb 2, 2023
View reviewed changes
Copy link
Member

@robin-nitrokey robin-nitrokey left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! I’m not sure if I understand the role of the SendRemaining command though. Currently it has the same effect as calling ListCredentials (unless there is no cached state), right? Wouldn’t it make more sense if ListCredentials would start at zero and only SendRemaining would use the cached state? Alternatively, an optional offset could be added to ListCredentials directly.

src/state.rs Show resolved Hide resolved
src/state.rs Show resolved Hide resolved
@szszszsz szszszsz merged commit 98c8b01 into main Feb 3, 2023
@szszszsz szszszsz deleted the state-encryption-smaller-buffer branch February 3, 2023 08:42
@szszszsz
Copy link
Member Author

szszszsz commented Feb 3, 2023

Regarding the SendRemaining - yes, that makes sense. Sequential calls to ListCredentials should not continue from the last point.
I have addressed that in 2be7cb2.

@robin-nitrokey robin-nitrokey mentioned this pull request Feb 27, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@robin-nitrokey robin-nitrokey robin-nitrokey approved these changes

Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Write state only if changed State loading can crash
2 participants
@szszszsz @robin-nitrokey