secret-sharing: Zeroize sensitive data #5928

peternose · 2024-11-05T14:11:12Z

No description provided.

netlify · 2024-11-05T14:11:26Z

✅ Deploy Preview for oasisprotocol-oasis-core canceled.

Name	Link
🔨 Latest commit	`a3e8637`
🔍 Latest deploy log	https://app.netlify.com/sites/oasisprotocol-oasis-core/deploys/672ae7e15f3754000827c93d

PrimeField implements the Copy trait, which means values are copied when passed as parameters. To prevent sensitive data from being replicated, the switch point struct should accumulate points rather than coordinates.

The AddAssign, SubAssign, and MulAssign functions can now be used only when the prime field supports zeroization. This ensures that any leftover data from heap reallocation, when the right-hand-side polynomial has more coefficients than the left-hand-side, is zeroized. An alternative solution is to remove these functions, but this could lead to performance drawbacks.

codecov · 2024-11-06T04:22:58Z

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 64.62%. Comparing base (7dd0c3e) to head (a3e8637).
Report is 1 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #5928   +/-   ##
=======================================
  Coverage   64.62%   64.62%           
=======================================
  Files         627      627           
  Lines       64292    64292           
=======================================
+ Hits        41546    41550    +4     
+ Misses      17823    17820    -3     
+ Partials     4923     4922    -1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

kostko · 2024-11-06T07:03:00Z

keymanager/src/churp/storage.rs

+
+        // Encrypt data using seal_into so that we can zeroize the plaintext.
+        let mut ciphertext = Vec::with_capacity(plaintext.len() + TAG_SIZE + NONCE_SIZE);
+        unsafe { ciphertext.set_len(plaintext.len() + TAG_SIZE) }


Why do you need unsafe here? Couldn't you just use ciphertext.resize instead?

kostko · 2024-11-06T07:03:16Z

keymanager/src/churp/storage.rs

+
+        // Encrypt data using seal_into so that we can zeroize the plaintext.
+        let mut ciphertext = Vec::with_capacity(plaintext.len() + TAG_SIZE + NONCE_SIZE);
+        unsafe { ciphertext.set_len(plaintext.len() + TAG_SIZE) }


Same as above.

peternose added 4 commits November 4, 2024 09:15

secret-sharing/src/poly/lagrange: Add debug assertions

5e09b07

secret-sharing/src/poly/lagrange: Update comments

16d589a

secret-sharing/src/poly/univariate: Fix vec capacity

d5a9a7a

secret-sharing: Remove redundant GroupEncoding constraint

6696dd5

peternose added the c:key management Category: key management label Nov 5, 2024

peternose linked an issue Nov 5, 2024 that may be closed by this pull request

Zeroize sensitive CHURP data #5775

Open

secret-sharing/src/vss/matrix: Implement AddAssign for matrix

454802d

peternose force-pushed the peternose/trivial/churp-zeroize-secrets branch from d0fabf6 to cf516e0 Compare November 6, 2024 03:23

peternose added 16 commits November 6, 2024 04:46

secret-sharing/src/churp/switch: Add bivariate shares using AddAssign

ffde5b8

secret-sharing/src/churp/switch: Implement AddAssign for shares

a2f76b6

secret-sharing/src/poly: Support zeroize

8b5ad48

secret-sharing/src/churp/shareholder: Zeroize share on drop

d74f0f5

secret-sharing/src/poly/lagrange: Zeroize product of li and yi

cf2fe43

secret-sharing/src/churp/switch: Flatten code when adding switch point

be45e1b

secret-sharing/src/poly: Add accessors for point coordinates

3a03273

secret-sharing/src/churp/switch: Store points instead of coordinates

8325ebd

PrimeField implements the Copy trait, which means values are copied when passed as parameters. To prevent sensitive data from being replicated, the switch point struct should accumulate points rather than coordinates.

secret-sharing/src/churp/switch: Zeroize switch points on drop

a717221

secret-sharing/src/churp/shareholder: Deref verifiable secret share

1cf9f7a

ZeroizePolyFromLagrangie on error

0191ae3

secret-sharing/src/churp/player: Zeroize intermediate values

6c812b4

secret-sharing/src/kdc: Zeroize intermediate values

2e0805f

secret-sharing/src/churp/dealer: Zeroize bivariate polynomial on drop

ec0556b

keymanager/src/churp: Zeroize sensitive data

31608ce

peternose force-pushed the peternose/trivial/churp-zeroize-secrets branch from cf516e0 to a3e8637 Compare November 6, 2024 03:52

peternose marked this pull request as ready for review November 6, 2024 04:28

peternose requested review from kostko and peterjgilbert as code owners November 6, 2024 04:28

peternose requested review from pro-wh and ptrus as code owners November 6, 2024 04:28

kostko reviewed Nov 6, 2024

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

secret-sharing: Zeroize sensitive data #5928

secret-sharing: Zeroize sensitive data #5928

peternose commented Nov 5, 2024

netlify bot commented Nov 5, 2024 •

edited

Loading

codecov bot commented Nov 6, 2024

kostko Nov 6, 2024

kostko Nov 6, 2024

secret-sharing: Zeroize sensitive data #5928

Are you sure you want to change the base?

secret-sharing: Zeroize sensitive data #5928

Conversation

peternose commented Nov 5, 2024

netlify bot commented Nov 5, 2024 • edited Loading

✅ Deploy Preview for oasisprotocol-oasis-core canceled.

codecov bot commented Nov 6, 2024

Codecov Report

kostko Nov 6, 2024

Choose a reason for hiding this comment

kostko Nov 6, 2024

Choose a reason for hiding this comment

netlify bot commented Nov 5, 2024 •

edited

Loading