Csprng rework #254
Csprng rework #254
Conversation
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
b22a01d to
1293596
Compare
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
54a7391 to
3ef48df
Compare
aPere3
changed the title
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
2 times, most recently
from
7172dd1 to
df4c15e
Compare
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
df4c15e to
75fd849
Compare
|
Thanks for your thorough reviews @agnesLeroy, @IceTDrinker ! I made the changes you requested ! |
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
2 times, most recently
from
4a0f82a to
fa4b4d9
Compare
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
fa4b4d9 to
8c1d140
Compare
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
2 times, most recently
from
452eb1d to
2d19e32
Compare
|
@IceTDrinker Thanks for reminding us of that, I forgot that you mentioned it a few weeks ago. I see an |
probably not, it's big enough as is IMO :) was just that I thought about it again, I don't know if the config flag is easy to use in the build system (vs. features IIRC) which is a bit of a shame really... |
|
Yes, I got mixed up, I read |
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
2d19e32 to
31d7c49
Compare
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
31d7c49 to
df7470c
Compare
BREAKING_CHANGES: + `try_fork` and `par_try_fork` now return a result. + `remaining_bytes` now returns a `ByteCount`.
BREAKING_CHANGE: this commit completely breaks the previous API
aPere3
force-pushed
the
bug/concrete_csprng_byte_ctr
branch
from
df7470c to
2c0e93d
Compare
|
@IceTDrinker : I asked the question on RustCrypto/block-ciphers#316 . |
There was a problem hiding this comment.
Very good upgrade! there are some spaces in middle of documentation probably because of the formatting. also misused of the verb yield. we should avoid it and use output of produce instead. i added many comments about that but i left some of them. please could you double check all of them?
It could also be useful to re implement the drop (cf @agnesLeroy) to set to zero all the prng values.
| pub struct AesCtrGenerator<BlockCipher: AesBlockCipher> { | ||
| // The block cipher used in the background | ||
| pub(crate) block_cipher: BlockCipher, | ||
| // The state corresponding to the latest yielded byte. |
There was a problem hiding this comment.
is it the counter? the next randomness will be obtained from: this state+1?
|
Hello @damienligier , Thank you for this review ! I tried to address most points in the follow-up PR on zama-ai/concrete-core#8 . I integrated most of your remarks, and closed the related conversations here. The few remaining ones, I left open in case you want more informations / take actions. Related to your remark on re-implementing the Drop trait, you raise a very valid point, and I would love to see this done ! That being said, it is tricky to do properly, as we have to use volatile memory operations and compiler fences to ensure the compiler does not get rid / reorder the clean-up code in a wrong way. I would prefer to add that in a future PR, focused on this matter, as this one is already pretty big, what do you think ? I close this PR so that we can leave the floor for the libs team here, but feel free to answer in the conversation 😉 Best, Alex. |
Resolves:
zama-ai/concrete-core-internal#111
zama-ai/concrete-core-internal#112
zama-ai/concrete_internal#346
Description
When forked, the children of the parent generator sometimes get an incorrect bound whose byte_ctr is higher than 127 (which should not be the case).
Checklist
(Use '[x]' to check the checkboxes, or submit the PR and then click the checkboxes)
aws_testto the PR to launch the tests on AWS)