[dice,x509] Reduce X509 template library code size

Our ROM_EXT is close to the limit, and future changes (e.g. immutable rom_ext) will likely introduce 10~20k more bytes. This refactor moves the error propagation to the end of asn1 builder, reducing a huge amount of branches to save firmware size. This patch reduced 1860 bytes from the ROM_EXT. (45884 to 44024) Change-Id: I295fd36ea1cf125a3c875b12000177b6a3ec826b Signed-off-by: Yi-Hsuan Deng <[email protected]>
lowRISC · Nov 19, 2024 · f4afc28 · f4afc28
1 parent 203a67a
commit f4afc28
Show file tree

Hide file tree

Showing 5 changed files with 358 additions and 227 deletions.
diff --git a/sw/device/silicon_creator/lib/cert/BUILD b/sw/device/silicon_creator/lib/cert/BUILD
@@ -68,6 +68,7 @@ cc_library(
     srcs = ["asn1.c"],
     hdrs = ["asn1.h"],
     deps = [
+        "//sw/device/lib/base:macros",
         "//sw/device/lib/base:memory",
         "//sw/device/lib/base:status",
     ],

diff --git a/sw/device/silicon_creator/lib/cert/asn1.c b/sw/device/silicon_creator/lib/cert/asn1.c
@@ -6,6 +6,21 @@
 
 #include <limits.h>
 
+#define RETURN_IF_ASN1_ERROR(state)                      \
+  do {                                                   \
+    if ((state) == NULL || (state)->error != kErrorOk) { \
+      return;                                            \
+    }                                                    \
+  } while (false);
+
+#define RAISE_ASN1_ERROR(state, error_code) \
+  do {                                      \
+    (state)->error = (error_code);          \
+    return;                                 \
+  } while (false);
+
+void asn1_clear_error(asn1_state_t *state) { state->error = kErrorOk; }
+
 rom_error_t asn1_start(asn1_state_t *new_state, uint8_t *buffer, size_t size) {
   // Make sure that the buffer is not too large to prevent overflows.
   if (new_state == NULL || buffer == NULL || size > PTRDIFF_MAX) {
@@ -14,57 +29,60 @@ rom_error_t asn1_start(asn1_state_t *new_state, uint8_t *buffer, size_t size) {
   new_state->buffer = buffer;
   new_state->size = size;
   new_state->offset = 0;
+  asn1_clear_error(new_state);
   return kErrorOk;
 }
 
 rom_error_t asn1_finish(asn1_state_t *state, size_t *out_size) {
+  rom_error_t result = state->error;
   *out_size = state->offset;
-  state->buffer = 0;
+  state->buffer = NULL;
   state->size = 0;
   state->offset = 0;
-  return kErrorOk;
+  asn1_clear_error(state);
+  return result;
 }
 
-rom_error_t asn1_push_byte(asn1_state_t *state, uint8_t byte) {
-  return asn1_push_bytes(state, &byte, 1);
+void asn1_push_byte(asn1_state_t *state, uint8_t byte) {
+  asn1_push_bytes(state, &byte, 1);
 }
 
-rom_error_t asn1_push_bytes(asn1_state_t *state, const uint8_t *bytes,
-                            size_t size) {
+void asn1_push_bytes(asn1_state_t *state, const uint8_t *bytes, size_t size) {
+  RETURN_IF_ASN1_ERROR(state);
+
   // Make sure that the addition will not overflow
-  if (size > PTRDIFF_MAX) {
-    return kErrorAsn1PushBytesInvalidArgument;
+  if (size > PTRDIFF_MAX || state->offset > PTRDIFF_MAX) {
+    RAISE_ASN1_ERROR(state, kErrorAsn1PushBytesInvalidArgument);
   }
   if (state->offset + size > state->size) {
-    return kErrorAsn1BufferExhausted;
+    RAISE_ASN1_ERROR(state, kErrorAsn1BufferExhausted);
   }
   memcpy(state->buffer + state->offset, bytes, size);
   state->offset += size;
-  return kErrorOk;
 }
 
-rom_error_t asn1_start_tag(asn1_state_t *state, asn1_tag_t *new_tag,
-                           uint8_t id) {
+void asn1_start_tag(asn1_state_t *state, asn1_tag_t *new_tag, uint8_t id) {
+  new_tag->state = NULL;
+  RETURN_IF_ASN1_ERROR(state);
+
   new_tag->state = state;
-  RETURN_IF_ERROR(asn1_push_byte(state, id));
+  asn1_push_byte(state, id);
+  RETURN_IF_ASN1_ERROR(state);
   new_tag->len_offset = state->offset;
   // We do not yet known how many bytes we need to encode the length. For now
   // reserve one byte which is the minimum. This is then fixed in
   // asn1_finish_tag by moving the data if necessary.
 
-  RETURN_IF_ERROR(asn1_push_byte(state, 0));
+  asn1_push_byte(state, 0);
+  RETURN_IF_ASN1_ERROR(state);
   new_tag->len_size = 1;
-  return kErrorOk;
 }
 
-rom_error_t asn1_finish_tag(asn1_tag_t *tag) {
-  // Robustness check against accidently reusing a finished tag.
-  if (tag->state == NULL) {
-    return kErrorAsn1Internal;
-  }
+void asn1_finish_tag(asn1_tag_t *tag) {
+  RETURN_IF_ASN1_ERROR(tag->state);
   // Sanity check: asn1_start_tag should have output one byte.
   if (tag->len_size != 1) {
-    return kErrorAsn1Internal;
+    RAISE_ASN1_ERROR(tag->state, kErrorAsn1Internal);
   }
   // Compute actually used length.
   size_t length = tag->state->offset - tag->len_offset - tag->len_size;
@@ -83,7 +101,7 @@ rom_error_t asn1_finish_tag(asn1_tag_t *tag) {
     final_len_size = 3;
   } else {
     // Length too large.
-    return kErrorAsn1Internal;
+    RAISE_ASN1_ERROR(tag->state, kErrorAsn1Internal);
   }
   // If the final length uses more bytes than we initially allocated, we
   // need to shift all the tag data backwards.
@@ -92,7 +110,7 @@ rom_error_t asn1_finish_tag(asn1_tag_t *tag) {
     size_t new_buffer_size =
         tag->state->offset + final_len_size - tag->len_size;
     if (new_buffer_size > tag->state->size) {
-      return kErrorAsn1BufferExhausted;
+      RAISE_ASN1_ERROR(tag->state, kErrorAsn1BufferExhausted);
     }
     // Copy backwards.
     for (size_t i = 0; i < length; i++) {
@@ -112,52 +130,52 @@ rom_error_t asn1_finish_tag(asn1_tag_t *tag) {
     tag->state->buffer[tag->len_offset + 2] = (uint8_t)(length & 0xff);
   } else {
     // Length too large.
-    return kErrorAsn1Internal;
+    RAISE_ASN1_ERROR(tag->state, kErrorAsn1Internal);
   }
   // Fix up state offset.
   tag->state->offset += final_len_size - tag->len_size;
   // Hardening: clear out the tag structure to prevent accidental reuse.
   tag->state = NULL;
   tag->len_offset = 0;
   tag->len_size = 0;
-  return kErrorOk;
 }
 
-rom_error_t asn1_push_bool(asn1_state_t *state, uint8_t tag, bool value) {
+void asn1_push_bool(asn1_state_t *state, uint8_t tag, bool value) {
   asn1_tag_t tag_st;
-  RETURN_IF_ERROR(asn1_start_tag(state, &tag_st, tag));
-  RETURN_IF_ERROR(asn1_push_byte(state, value ? 0xff : 0));
-  return asn1_finish_tag(&tag_st);
+  asn1_start_tag(state, &tag_st, tag);
+  asn1_push_byte(state, value ? 0xff : 0);
+  asn1_finish_tag(&tag_st);
 }
 
-rom_error_t asn1_push_int32(asn1_state_t *state, uint8_t tag, int32_t value) {
+void asn1_push_int32(asn1_state_t *state, uint8_t tag, int32_t value) {
   uint32_t u_value = (uint32_t)value;
   uint8_t bigint[4] = {
       u_value >> 24,
       (u_value >> 16) & 0xff,
       (u_value >> 8) & 0xff,
       u_value & 0xff,
   };
-  return asn1_push_integer(state, tag, true, bigint, sizeof(bigint));
+  asn1_push_integer(state, tag, true, bigint, sizeof(bigint));
 }
 
-rom_error_t asn1_push_uint32(asn1_state_t *state, uint8_t tag, uint32_t value) {
+void asn1_push_uint32(asn1_state_t *state, uint8_t tag, uint32_t value) {
   uint8_t bigint[4] = {
       value >> 24,
       (value >> 16) & 0xff,
       (value >> 8) & 0xff,
       value & 0xff,
   };
-  return asn1_push_integer(state, tag, false, bigint, sizeof(bigint));
+  asn1_push_integer(state, tag, false, bigint, sizeof(bigint));
 }
 
-rom_error_t asn1_push_integer(asn1_state_t *state, uint8_t tag, bool is_signed,
-                              const uint8_t *bytes_be, size_t size) {
+void asn1_push_integer(asn1_state_t *state, uint8_t tag, bool is_signed,
+                       const uint8_t *bytes_be, size_t size) {
+  RETURN_IF_ASN1_ERROR(state);
   if (size == 0 || (bytes_be == NULL && size > 0)) {
-    return kErrorAsn1PushIntegerInvalidArgument;
+    RAISE_ASN1_ERROR(state, kErrorAsn1PushIntegerInvalidArgument);
   }
   asn1_tag_t tag_st;
-  RETURN_IF_ERROR(asn1_start_tag(state, &tag_st, tag));
+  asn1_start_tag(state, &tag_st, tag);
   // Compute smallest possible encoding: ASN1 forbids that the first 9 bits (ie
   // first octet) and MSB of the second octet are either all ones or all zeroes.
 
@@ -177,18 +195,19 @@ rom_error_t asn1_push_integer(asn1_state_t *state, uint8_t tag, bool is_signed,
   } else {
     // For unsigned numbers, add a 0x00 padding if the first octet has MSB set.
     if ((bytes_be[0] >> 7) == 1) {
-      RETURN_IF_ERROR(asn1_push_byte(state, 0));
+      asn1_push_byte(state, 0);
     }
   }
-  RETURN_IF_ERROR(asn1_push_bytes(state, bytes_be, size));
-  return asn1_finish_tag(&tag_st);
+  asn1_push_bytes(state, bytes_be, size);
+  asn1_finish_tag(&tag_st);
 }
 
-rom_error_t asn1_push_integer_pad(asn1_state_t *state, bool is_signed,
-                                  const uint8_t *bytes_be, size_t size,
-                                  size_t padded_size) {
+void asn1_push_integer_pad(asn1_state_t *state, bool is_signed,
+                           const uint8_t *bytes_be, size_t size,
+                           size_t padded_size) {
+  RETURN_IF_ASN1_ERROR(state);
   if (size == 0 || size > padded_size) {
-    return kErrorAsn1PushIntegerPadInvalidArgument;
+    RAISE_ASN1_ERROR(state, kErrorAsn1PushIntegerPadInvalidArgument);
   }
   // Determine the padding byte.
   uint8_t padding = 0;
@@ -197,93 +216,92 @@ rom_error_t asn1_push_integer_pad(asn1_state_t *state, bool is_signed,
   }
   // Output padding.
   while (padded_size-- > size) {
-    RETURN_IF_ERROR(asn1_push_byte(state, padding));
+    asn1_push_byte(state, padding);
   }
-  return asn1_push_bytes(state, bytes_be, size);
+  asn1_push_bytes(state, bytes_be, size);
 }
 
-rom_error_t asn1_push_oid_raw(asn1_state_t *state, const uint8_t *bytes,
-                              size_t size) {
+void asn1_push_oid_raw(asn1_state_t *state, const uint8_t *bytes, size_t size) {
   asn1_tag_t tag;
-  RETURN_IF_ERROR(asn1_start_tag(state, &tag, kAsn1TagNumberOid));
-  RETURN_IF_ERROR(asn1_push_bytes(state, bytes, size));
-  return asn1_finish_tag(&tag);
+  asn1_start_tag(state, &tag, kAsn1TagNumberOid);
+  asn1_push_bytes(state, bytes, size);
+  asn1_finish_tag(&tag);
 }
 
-rom_error_t asn1_push_string(asn1_state_t *state, uint8_t id, const char *str,
-                             size_t max_len) {
+void asn1_push_string(asn1_state_t *state, uint8_t id, const char *str,
+                      size_t max_len) {
   asn1_tag_t tag;
-  RETURN_IF_ERROR(asn1_start_tag(state, &tag, id));
+  asn1_start_tag(state, &tag, id);
   while (max_len > 0 && str[0] != 0) {
-    RETURN_IF_ERROR(asn1_push_byte(state, (uint8_t)str[0]));
+    asn1_push_byte(state, (uint8_t)str[0]);
     str++;
     max_len--;
   }
-  return asn1_finish_tag(&tag);
+  asn1_finish_tag(&tag);
 }
 
 static const char kLowercaseHexChars[16] = {'0', '1', '2', '3', '4', '5',
                                             '6', '7', '8', '9', 'a', 'b',
                                             'c', 'd', 'e', 'f'};
 
-rom_error_t asn1_push_hexstring(asn1_state_t *state, uint8_t id,
-                                const uint8_t *bytes, size_t size) {
+void asn1_push_hexstring(asn1_state_t *state, uint8_t id, const uint8_t *bytes,
+                         size_t size) {
   asn1_tag_t tag;
-  RETURN_IF_ERROR(asn1_start_tag(state, &tag, id));
+  asn1_start_tag(state, &tag, id);
   while (size > 0) {
-    RETURN_IF_ERROR(
-        asn1_push_byte(state, (uint8_t)kLowercaseHexChars[bytes[0] >> 4]));
-    RETURN_IF_ERROR(
-        asn1_push_byte(state, (uint8_t)kLowercaseHexChars[bytes[0] & 0xf]));
+    asn1_push_byte(state, (uint8_t)kLowercaseHexChars[bytes[0] >> 4]);
+    asn1_push_byte(state, (uint8_t)kLowercaseHexChars[bytes[0] & 0xf]);
     bytes++;
     size--;
   }
-  return asn1_finish_tag(&tag);
+  asn1_finish_tag(&tag);
 }
 
-rom_error_t asn1_start_bitstring(asn1_state_t *state,
-                                 asn1_bitstring_t *out_bitstring) {
+void asn1_start_bitstring(asn1_state_t *state,
+                          asn1_bitstring_t *out_bitstring) {
+  out_bitstring->state = NULL;
+  RETURN_IF_ASN1_ERROR(state);
   out_bitstring->state = state;
   out_bitstring->unused_bits_offset = state->offset;
   out_bitstring->used_bits = 0;
   out_bitstring->current_byte = 0;
   // Push a single byte that will hold the unused bit count (it will be updated
   // in asn1_finish_bitstring.
-  RETURN_IF_ERROR(asn1_push_byte(state, 0));
-  return kErrorOk;
+  asn1_push_byte(state, 0);
 }
 
-rom_error_t asn1_bitstring_push_bit(asn1_bitstring_t *bitstring, bool bit) {
+void asn1_bitstring_push_bit(asn1_bitstring_t *bitstring, bool bit) {
+  RETURN_IF_ASN1_ERROR(bitstring->state);
   // Update the current byte: bits are added from MSB to LSB.
   if (bit) {
     bitstring->current_byte |= 1 << (7 - bitstring->used_bits);
   }
   // If this makes a full byte, push it and reset.
   bitstring->used_bits++;
   if (bitstring->used_bits == 8) {
-    RETURN_IF_ERROR(asn1_push_byte(bitstring->state, bitstring->current_byte));
+    asn1_push_byte(bitstring->state, bitstring->current_byte);
     bitstring->current_byte = 0;
     bitstring->used_bits = 0;
   }
-  return kErrorOk;
 }
 
-rom_error_t asn1_finish_bitstring(asn1_bitstring_t *bitstring) {
+void asn1_finish_bitstring(asn1_bitstring_t *bitstring) {
+  RETURN_IF_ASN1_ERROR(bitstring->state);
   if (bitstring->used_bits >= 8) {
+    asn1_state_t *state = bitstring->state;
     bitstring->state = NULL;
-    return kErrorAsn1FinishBitstringInvalidArgument;
+    RAISE_ASN1_ERROR(state, kErrorAsn1FinishBitstringInvalidArgument);
   }
   // If the last byte contains some bits, we need to push it and update
   // the number of unused bits. If the string length was a multiple of 8
   // (ie used_bits = 0) then there are 0 unused bits which is the value pushed
   // in asn1_start_bitstring so we do not need to update it.
   if (bitstring->used_bits != 0) {
-    RETURN_IF_ERROR(asn1_push_byte(bitstring->state, bitstring->current_byte));
+    asn1_push_byte(bitstring->state, bitstring->current_byte);
     // Update the "unused bits value"
     bitstring->state->buffer[bitstring->unused_bits_offset] =
         8 - (uint8_t)bitstring->used_bits;
   }
   // Hardening: clear out the tag structure to prevent accidental reuse.
   bitstring->state = NULL;
-  return kErrorOk;
 }