crypto: reconcile oneshot sign/verify sync and async implementations by panva · Pull Request #37816 · nodejs/node

panva · 2021-03-19T16:12:09Z

This reconciles the crypto.sign and crypto.verify C++ implementation when running with or without a callback.

panva · 2021-03-19T21:12:13Z

cc @nodejs/crypto

nodejs-github-bot · 2021-03-20T07:43:31Z

CI: https://ci.nodejs.org/job/node-test-pull-request/36842/

💚

src/crypto/crypto_sig.cc

tniessen · 2021-03-23T16:36:30Z

@panva @danbev Re thread-safety:

OpenSSL does not really make any guarantees. Key management itself is thread-safe (see e.g., CRYPTO_UP_REF), however, OpenSSL does not really tell us if the EVP APIs will be thread-safe, too.
Documentation of thread safety openssl/openssl#2165 (comment) sounds like most things should be thread-safe, but also isn't particularly specific.
It seems that any OpenSSL *_CTX should not be accessed by more than one thread, which makes sense. However, in our case, we don't share contexts, only keys.
src: add mutex to ManagedEVPPKey class #36825 mentions evp_pkey_downgraded, which was recently replaced in openssl/openssl@b574c6a. The current implementation looks thread-safe at first sight.

Thinking further...

If there really is no way to use EVP_PKEYs from multiple threads, then why do they implement thread-safe reference counters?
Assuming there really is no way to use EVP_PKEYs from multiple threads, then we should be able to clone EVP_PKEY instances before using them to prevent mutexes from negatively affecting performance.

danbev · 2021-03-24T17:18:19Z

I'm aware of these and I saw that evp_pkey_downgrade was recently replaced. But even with it gone I think we might put ourselves in the same situation we have now where we are using objects that are not guaranteed to be thread safe.

I think the suggestions here are good and worth pursuing. What I would like is we get the OpenSSL 3.0 CI job in place before we start this work. It was time consuming to get all the tests to pass against OpenSSL 3.0 and the threading issue was only one of them. At the moment any changes to crypto could break the tests and I have to go chasing them down afterwards.

panva · 2021-03-24T17:42:22Z

@danbev are you tracking the places where parallel performance may have been affected by these openssl3 related changes?

If not we have to look at all crypto async APIs (that's for sure this one here and all of webcrypto) and bench them with the same keyobject vs unique keyobjects, before and after the changes were put in place and figure out a way forward if performance was impacted like this API here.

Ideally this would've been done before the changes landed in a release.

danbev · 2021-03-24T18:54:19Z

are you tracking the places where parallel performance may have been affected by these openssl3 related changes?

Anywhere an EVP_PKEY is used from multiple threads. There was an assumption that this was not required with versions prior to OpenSSL 3.0, but there was never such a guarantee from OpenSSL about this as far as I understand it.

panva · 2021-04-07T16:35:50Z

@danbev @tniessen I've added a parallel libuv threaded test and the only failure with openssl3 is the one from #38136. Can I assume the lock is therefore not necessary and this can proceed?

nodejs-github-bot · 2021-04-07T18:40:10Z

CI: https://ci.nodejs.org/job/node-test-pull-request/37260/

jasnell

Excellent work

mcollina

lgtm

mcollina · 2021-04-08T08:05:46Z

Why is this identified as semver-major?

panva · 2021-04-08T08:07:50Z

Why is this identified as semver-major?

It isn't anymore. At first it looked like there were going to be minor differences.

PR-URL: #37816 Reviewed-By: Daniel Bevenius <daniel.bevenius@gmail.com> Reviewed-By: James M Snell <jasnell@gmail.com> Reviewed-By: Matteo Collina <matteo.collina@gmail.com>

panva · 2021-04-08T08:08:54Z

Landed in e8cb644

panva added wip Issues and PRs that are still a work in progress. semver-major PRs that contain breaking changes and should be released in the next major version. labels Mar 19, 2021

nodejs-github-bot added c++ Issues and PRs that require attention from people who are familiar with C++. crypto Issues and PRs related to the crypto subsystem. needs-ci PRs that need a full CI run. labels Mar 19, 2021

panva mentioned this pull request Mar 19, 2021

crypto: clear errors in SignTraits::DeriveBits #37820

Closed

panva force-pushed the reconsile-oneshot branch from a1de71c to bbc1058 Compare March 19, 2021 20:59

panva removed the wip Issues and PRs that are still a work in progress. label Mar 19, 2021

panva marked this pull request as ready for review March 19, 2021 21:02

panva force-pushed the reconsile-oneshot branch from bbc1058 to e82cbd1 Compare March 19, 2021 21:03