Skip to content

SPKI: Add TRC signature combination #3137

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Sep 12, 2019
Merged

SPKI: Add TRC signature combination #3137

merged 2 commits into from
Sep 12, 2019

Conversation

oncilla
Copy link
Contributor

@oncilla oncilla commented Sep 11, 2019
edited by kormat
Loading

This PR adds TRC signature combination.
Also, the gen call executes the 3 phases in one call.

This change is Reviewable

@oncilla oncilla added c/tooling SCION network tools c/CPPKI SCION Control-plane PKI labels Sep 11, 2019
@oncilla oncilla added this to the Q3S3 milestone Sep 11, 2019
lukedirtwalker
lukedirtwalker requested changes Sep 11, 2019
View reviewed changes
Copy link
Collaborator

@lukedirtwalker lukedirtwalker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed 5 of 5 files at r1.
Reviewable status: all files reviewed, 2 unresolved discussions (waiting on @oncilla)

go/tools/scion-pki/internal/v2/trcs/combine.go, line 67 at r1 (raw file):

}

func loadUniqueSignatures(isd addr.ISD, ver scrypto.Version, encoded trc.Encoded) (

uff, I think line splits like this are weird to me. I would split it after the version argument.

go/tools/scion-pki/internal/v2/trcs/util.go, line 61 at r1 (raw file):

		return common.NewBasicError("unable to marshal signed TRC", err)
	}
	if err := validateResult(raw); err != nil {

Why do we need to Marshal it to json just UnMarshal it again for validation? couldn't we do validation on the signed argument? And only if it succeeds do the marshalling?

oncilla
oncilla commented Sep 11, 2019
View reviewed changes
Copy link
Contributor Author

@oncilla oncilla left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewable status: all files reviewed, 1 unresolved discussion (waiting on @lukedirtwalker)

go/tools/scion-pki/internal/v2/trcs/combine.go, line 67 at r1 (raw file):

Previously, lukedirtwalker (Lukas Vogel) wrote…

uff, I think line splits like this are weird to me. I would split it after the version argument.

Done.

go/tools/scion-pki/internal/v2/trcs/util.go, line 61 at r1 (raw file):

Previously, lukedirtwalker (Lukas Vogel) wrote…

Why do we need to Marshal it to json just UnMarshal it again for validation? couldn't we do validation on the signed argument? And only if it succeeds do the marshalling?

This ensures that what we write is actually parsable and verifiable.
If we just verify the parsed version, we cannot guarantee that.
Should also not really be a performance concern, since manual TRC generation is infrequent anyway.

lukedirtwalker
lukedirtwalker approved these changes Sep 11, 2019
View reviewed changes
Copy link
Collaborator

@lukedirtwalker lukedirtwalker left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

:lgtm:

Reviewed 1 of 1 files at r2.
Reviewable status: :shipit: complete! all files reviewed, all discussions resolved

@oncilla
SPKI: Add TRC signature combination
5e4aace 
This PR adds TRC signature combination.
Also, the `gen` call executes the 3 phases in one call.
@oncilla
line split
720d9ef
@oncilla oncilla merged commit 92e02a8 into scionproto:master Sep 12, 2019
@oncilla oncilla deleted the pub-spki-combine branch September 12, 2019 14:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lukedirtwalker lukedirtwalker lukedirtwalker approved these changes

Assignees
No one assigned
Labels
c/CPPKI SCION Control-plane PKI c/tooling SCION network tools
Projects
None yet
Milestone
Q3S3
Development

Successfully merging this pull request may close these issues.
2 participants
@oncilla @lukedirtwalker