fix: make RwLock in RustCrypto async [WPB-10044]

wireapp · Jul 5, 2024 · ee94171 · ee94171
1 parent 6d2f5a2
commit ee94171
Show file tree

Hide file tree

Showing 43 changed files with 144 additions and 137 deletions.
diff --git a/openmls/Cargo.toml b/openmls/Cargo.toml
@@ -36,6 +36,7 @@ async-lock = { version = "3.3", optional = true }
 rstest = { version = "0.18.2", optional = true }
 rstest_reuse = { version = "0.6.0", optional = true }
 tokio = { version = "1.24", optional = true, features = ["macros", "rt", "rt-multi-thread"] }
+futures = "0.3.30"
 
 [features]
 default = []

diff --git a/openmls/src/ciphersuite/hpke.rs b/openmls/src/ciphersuite/hpke.rs
@@ -90,7 +90,7 @@ impl From<(&str, &[u8])> for EncryptContext {
 }
 
 /// Encrypt to an HPKE key with a label.
-pub(crate) fn encrypt_with_label(
+pub(crate) async fn encrypt_with_label(
     public_key: &[u8],
     label: &str,
     context: &[u8],
@@ -115,7 +115,7 @@ pub(crate) fn encrypt_with_label(
         &context,
         &[],
         plaintext,
-    )?;
+    ).await?;
 
     log_crypto!(debug, "* ciphertext:  {:x?}", cipher);
 

diff --git a/openmls/src/ciphersuite/reuse_guard.rs b/openmls/src/ciphersuite/reuse_guard.rs
@@ -11,13 +11,13 @@ pub struct ReuseGuard {
 
 impl ReuseGuard {
     /// Samples a fresh reuse guard uniformly at random.
-    pub(crate) fn try_from_random(
+    pub(crate) async fn try_from_random(
         crypto: &impl OpenMlsCryptoProvider,
     ) -> Result<Self, CryptoError> {
         Ok(Self {
             value: crypto
                 .rand()
-                .random_array()
+                .random_array().await
                 .map_err(|_| CryptoError::InsufficientRandomness)?,
         })
     }

diff --git a/openmls/src/ciphersuite/secret.rs b/openmls/src/ciphersuite/secret.rs
@@ -73,7 +73,7 @@ impl Secret {
     /// Randomly sample a fresh `Secret`.
     /// This default random initialiser uses the default Secret length of `hash_length`.
     /// The function can return a [`CryptoError`] if there is insufficient randomness.
-    pub(crate) fn random(
+    pub(crate) async fn random(
         ciphersuite: Ciphersuite,
         crypto: &impl OpenMlsCryptoProvider,
         version: impl Into<Option<ProtocolVersion>>,
@@ -88,6 +88,7 @@ impl Secret {
             value: crypto
                 .rand()
                 .random_vec(ciphersuite.hash_length())
+                .await
                 .map_err(|_| CryptoError::InsufficientRandomness)?
                 .into(),
             mls_version,

diff --git a/openmls/src/ciphersuite/tests/kat_crypto_basics.rs b/openmls/src/ciphersuite/tests/kat_crypto_basics.rs
@@ -341,14 +341,14 @@ pub fn run_test_vector(
         assert_eq!(plaintext, decrypted_plaintext);
 
         // Check that encryption works.
-        let my_ciphertext = hpke::encrypt_with_label(
+        let my_ciphertext = async_std::task::block_on(async {hpke::encrypt_with_label(
             &public,
             &label,
             &context,
             &plaintext,
             ciphersuite,
             backend.crypto(),
-        )
+        ).await})
         .unwrap();
         let decrypted_plaintext = hpke::decrypt_with_label(
             &private,

diff --git a/openmls/src/framing/private_message.rs b/openmls/src/framing/private_message.rs
@@ -69,7 +69,7 @@ impl PrivateMessage {
     ///
     /// TODO #1148: Refactor theses constructors to avoid test code in main and
     /// to avoid validation using a special feature flag.
-    pub(crate) fn try_from_authenticated_content(
+    pub(crate) async fn try_from_authenticated_content(
         public_message: &AuthenticatedContent,
         ciphersuite: Ciphersuite,
         backend: &impl OpenMlsCryptoProvider,
@@ -89,11 +89,11 @@ impl PrivateMessage {
             backend,
             message_secrets,
             padding_size,
-        )
+        ).await
     }
 
     #[cfg(any(feature = "test-utils", test))]
-    pub(crate) fn encrypt_without_check(
+    pub(crate) async fn encrypt_without_check(
         public_message: &AuthenticatedContent,
         ciphersuite: Ciphersuite,
         backend: &impl OpenMlsCryptoProvider,
@@ -107,11 +107,11 @@ impl PrivateMessage {
             backend,
             message_secrets,
             padding_size,
-        )
+        ).await
     }
 
     #[cfg(test)]
-    pub(crate) fn encrypt_with_different_header(
+    pub(crate) async fn encrypt_with_different_header(
         public_message: &AuthenticatedContent,
         ciphersuite: Ciphersuite,
         backend: &impl OpenMlsCryptoProvider,
@@ -126,12 +126,12 @@ impl PrivateMessage {
             backend,
             message_secrets,
             padding_size,
-        )
+        ).await
     }
 
     /// Internal function to encrypt content. The extra message header is only used
     /// for tests. Otherwise, the data from the given `AuthenticatedContent` is used.
-    fn encrypt_content(
+    async fn encrypt_content(
         test_header: Option<MlsMessageHeader>,
         public_message: &AuthenticatedContent,
         ciphersuite: Ciphersuite,
@@ -171,7 +171,7 @@ impl PrivateMessage {
             .secret_for_encryption(ciphersuite, backend, sender_index, secret_type)?;
         // Sample reuse guard uniformly at random.
         let reuse_guard: ReuseGuard =
-            ReuseGuard::try_from_random(backend).map_err(LibraryError::unexpected_crypto_error)?;
+            ReuseGuard::try_from_random(backend).await.map_err(LibraryError::unexpected_crypto_error)?;
         // Prepare the nonce by xoring with the reuse guard.
         let prepared_nonce = ratchet_nonce.xor_with_reuse_guard(&reuse_guard);
         // Encrypt the payload

diff --git a/openmls/src/framing/test_framing.rs b/openmls/src/framing/test_framing.rs
@@ -138,7 +138,7 @@ async fn codec_ciphertext(ciphersuite: Ciphersuite, backend: &impl OpenMlsCrypto
         },
         &mut message_secrets,
         0,
-    )
+    ).await
     .expect("Could not encrypt PublicMessage.");
 
     let enc = orig
@@ -199,7 +199,7 @@ async fn wire_format_checks(ciphersuite: Ciphersuite, backend: &impl OpenMlsCryp
         },
         &mut message_secrets,
         0,
-    )
+    ).await
     .expect("Could not encrypt PublicMessage.")
     .into();
 
@@ -574,7 +574,7 @@ async fn unknown_sender(ciphersuite: Ciphersuite, backend: &impl OpenMlsCryptoPr
         },
         group_alice.message_secrets_test_mut(),
         0,
-    )
+    ).await
     .expect("Encryption error");
 
     let received_message = group_charlie.decrypt(&enc_message.into(), backend, configuration);

diff --git a/openmls/src/group/core_group/mod.rs b/openmls/src/group/core_group/mod.rs
@@ -247,7 +247,7 @@ impl CoreGroupBuilder {
         signer: &impl Signer,
     ) -> Result<CoreGroup, CoreGroupBuildError<KeyStore::Error>> {
         let (public_group_builder, commit_secret, leaf_keypair) =
-            self.public_group_builder.get_secrets(backend, signer)?;
+            self.public_group_builder.get_secrets(backend, signer).await?;
 
         let ciphersuite = public_group_builder.crypto_config().ciphersuite;
         let config = self.config.unwrap_or_default();
@@ -266,7 +266,7 @@ impl CoreGroupBuilder {
         let joiner_secret = JoinerSecret::new(
             backend,
             commit_secret,
-            &InitSecret::random(ciphersuite, backend, version)
+            &InitSecret::random(ciphersuite, backend, version).await
                 .map_err(LibraryError::unexpected_crypto_error)?,
             &serialized_group_context,
         )
@@ -515,7 +515,7 @@ impl CoreGroup {
         .map_err(|e| e.into())
     }
     // Create application message
-    pub(crate) fn create_application_message(
+    pub(crate) async fn create_application_message(
         &mut self,
         aad: &[u8],
         msg: &[u8],
@@ -530,11 +530,11 @@ impl CoreGroup {
             self.context(),
             signer,
         )?;
-        self.encrypt(public_message, padding_size, backend)
+        self.encrypt(public_message, padding_size, backend).await
     }
 
     // Encrypt an PublicMessage into an PrivateMessage
-    pub(crate) fn encrypt(
+    pub(crate) async fn encrypt(
         &mut self,
         public_message: AuthenticatedContent,
         padding_size: usize,
@@ -546,7 +546,7 @@ impl CoreGroup {
             backend,
             self.message_secrets_store.message_secrets_mut(),
             padding_size,
-        )
+        ).await
     }
 
     /// Decrypt an PrivateMessage into an PublicMessage
@@ -986,7 +986,7 @@ impl CoreGroup {
                     signer,
                     params.take_credential_with_key(),
                     apply_proposals_values.extensions,
-                )?
+                ).await?
             } else {
                 // If path is not needed, update the group context and return
                 // empty path processing results
@@ -1135,7 +1135,7 @@ impl CoreGroup {
                 &encrypted_group_info,
                 backend,
                 self.own_leaf_index(),
-            )?;
+            ).await?;
 
             // Create welcome message
             let welcome = Welcome::new(self.ciphersuite(), encrypted_secrets, encrypted_group_info);

diff --git a/openmls/src/group/core_group/new_from_external_init.rs b/openmls/src/group/core_group/new_from_external_init.rs
@@ -65,7 +65,7 @@ impl CoreGroup {
             .external_pub();
 
         let (init_secret, kem_output) =
-            InitSecret::from_group_context(backend, group_context, external_pub.as_slice())
+            InitSecret::from_group_context(backend, group_context, external_pub.as_slice()).await
                 .map_err(|_| ExternalCommitError::UnsupportedCiphersuite)?;
 
         // The `EpochSecrets` we create here are essentially zero, with the

diff --git a/openmls/src/group/mls_group/application.rs b/openmls/src/group/mls_group/application.rs
@@ -11,7 +11,7 @@ impl MlsGroup {
     /// Returns `CreateMessageError::MlsGroupStateError::PendingProposal` if pending proposals
     /// exist. In that case `.process_pending_proposals()` must be called first
     /// and incoming messages from the DS must be processed afterwards.
-    pub fn create_message(
+    pub async fn create_message(
         &mut self,
         backend: &impl OpenMlsCryptoProvider,
         signer: &impl Signer,
@@ -36,7 +36,7 @@ impl MlsGroup {
                 self.configuration().padding_size(),
                 backend,
                 signer,
-            )
+            ).await
             // We know the application message is wellformed and we have the key material of the current epoch
             .map_err(|_| LibraryError::custom("Malformed plaintext"))?;
 

diff --git a/openmls/src/group/mls_group/creation.rs b/openmls/src/group/mls_group/creation.rs
@@ -31,7 +31,7 @@ impl MlsGroup {
             backend,
             signer,
             mls_group_config,
-            GroupId::random(backend),
+            GroupId::random(backend).await,
             credential_with_key,
         )
         .await

diff --git a/openmls/src/group/mls_group/extension.rs b/openmls/src/group/mls_group/extension.rs
@@ -19,7 +19,7 @@ impl MlsGroup {
     /// of the group but does not merge them yet.
     ///
     /// Returns an error if there is a pending commit.
-    pub fn propose_extensions(
+    pub async fn propose_extensions(
         &mut self,
         backend: &impl OpenMlsCryptoProvider,
         signer: &impl Signer,
@@ -43,7 +43,7 @@ impl MlsGroup {
 
         self.proposal_store.add(proposal);
 
-        let mls_message = self.content_to_mls_message(gce_proposal, backend)?;
+        let mls_message = self.content_to_mls_message(gce_proposal, backend).await?;
 
         // Since the state of the group might be changed, arm the state flag
         self.flag_state_change();
@@ -84,7 +84,7 @@ impl MlsGroup {
 
         // Convert PublicMessage messages to MLSMessage and encrypt them if required by
         // the configuration
-        let mls_messages = self.content_to_mls_message(create_commit_result.commit, backend)?;
+        let mls_messages = self.content_to_mls_message(create_commit_result.commit, backend).await?;
 
         // Set the current group state to [`MlsGroupState::PendingCommit`],
         // storing the current [`StagedCommit`] from the commit results

diff --git a/openmls/src/group/mls_group/membership.rs b/openmls/src/group/mls_group/membership.rs
@@ -76,7 +76,7 @@ impl MlsGroup {
 
         // Convert PublicMessage messages to MLSMessage and encrypt them if required by
         // the configuration
-        let mls_messages = self.content_to_mls_message(create_commit_result.commit, backend)?;
+        let mls_messages = self.content_to_mls_message(create_commit_result.commit, backend).await?;
 
         // Set the current group state to [`MlsGroupState::PendingCommit`],
         // storing the current [`StagedCommit`] from the commit results
@@ -149,7 +149,7 @@ impl MlsGroup {
 
         // Convert PublicMessage messages to MLSMessage and encrypt them if required by
         // the configuration
-        let mls_message = self.content_to_mls_message(create_commit_result.commit, backend)?;
+        let mls_message = self.content_to_mls_message(create_commit_result.commit, backend).await?;
 
         // Set the current group state to [`MlsGroupState::PendingCommit`],
         // storing the current [`StagedCommit`] from the commit results
@@ -175,7 +175,7 @@ impl MlsGroup {
     /// The Remove Proposal is returned as a [`MlsMessageOut`].
     ///
     /// Returns an error if there is a pending commit.
-    pub fn leave_group(
+    pub async fn leave_group(
         &mut self,
         backend: &impl OpenMlsCryptoProvider,
         signer: &impl Signer,
@@ -195,7 +195,7 @@ impl MlsGroup {
                 remove_proposal.clone(),
             )?);
 
-        Ok(self.content_to_mls_message(remove_proposal, backend)?)
+        Ok(self.content_to_mls_message(remove_proposal, backend).await?)
     }
 
     /// Returns a list of [`Member`]s in the group.

diff --git a/openmls/src/group/mls_group/mod.rs b/openmls/src/group/mls_group/mod.rs
@@ -357,7 +357,7 @@ impl MlsGroup {
     /// Converts PublicMessage to MlsMessage. Depending on whether handshake
     /// message should be encrypted, PublicMessage messages are encrypted to
     /// PrivateMessage first.
-    fn content_to_mls_message(
+    async fn content_to_mls_message(
         &mut self,
         mls_auth_content: AuthenticatedContent,
         backend: &impl OpenMlsCryptoProvider,
@@ -382,7 +382,7 @@ impl MlsGroup {
                         mls_auth_content,
                         self.configuration().padding_size(),
                         backend,
-                    )
+                    ).await
                     // We can be sure the encryption will work because the plaintext was created by us
                     .map_err(|_| LibraryError::custom("Malformed plaintext"))?;
                 MlsMessageOut::from_private_message(ciphertext, self.group.version())

diff --git a/openmls/src/group/mls_group/processing.rs b/openmls/src/group/mls_group/processing.rs
@@ -105,7 +105,7 @@ impl MlsGroup {
 
         // Convert PublicMessage messages to MLSMessage and encrypt them if required by
         // the configuration
-        let mls_message = self.content_to_mls_message(create_commit_result.commit, backend)?;
+        let mls_message = self.content_to_mls_message(create_commit_result.commit, backend).await?;
 
         // Set the current group state to [`MlsGroupState::PendingCommit`],
         // storing the current [`StagedCommit`] from the commit results