Add PSK support

[dongcarl]

A rebased and cleaned up version of #107

[dongcarl]

I don't think that the verify_chain failure is related, can anyone confirm?

[dongcarl]

Ping @raoulstrackx @Pagten

[raoulstrackx]

There doesn't seem to be a guarantee that psk_identity is always a valid utf8 string.

[dongcarl]

What's the best thing to do here? unwrap a checked from_utf8 so the error is more apparent?

[raoulstrackx]

No you could change the type of PskCallback to

callback!(PskCallback: Fn(&mut HandshakeContext, &[u8]) -> Result<()>);

so there isn't a need to convert it.

[raoulstrackx]

Why is this restricted to unix-like systems? This should also run correctly on for example x86_64-fortanix-unknown-sgx

[dongcarl]

Removed

[dongcarl]

See update in: #205 (comment)

[raoulstrackx]

Shouldn't be needed

[dongcarl]

Removed

[dongcarl]

See update in: #205 (comment)

[raoulstrackx]

I also fixed CI in #206, so could you rebase on top of that one?

[dongcarl]

Push f95e61d -> 8162ee4

• Addressed
  • Add PSK support #205 (comment)
  • Add PSK support #205 (comment)

@raoulstrackx let me know about #205 (comment)

[dongcarl]

Push 8162ee4 -> b71ec09

• Reverted fixes applied in Add PSK support #205 (comment)
• Add #[cfg(feature = "std")] to set_psk_callback since we use std::str

After running the CI, we see that we actually do need some kind of attribute guard for this test because x86_64-fortanix-unknown-sgx does not have crate::support::net, see:

• https://app.travis-ci.com/github/fortanix/rust-mbedtls/jobs/578847394#L556

There are more than one way to do the attribute guard that can be seen in existing tests:

• mbedtls/tests/ssl_conf_ca_cb.rs uses #![allow(dead_code)] and #[cfg(unix)] since client and server will be dead code on non-unix
• mbedtls/tests/client_server.rs uses a module level #![cfg(not(target_env = "sgx"))]

I ended up using a module level #![cfg(not(target_env = "sgx"))], but am happy to do either way.

Ping @raoulstrackx

[raoulstrackx]

No you could change the type of PskCallback to

callback!(PskCallback: Fn(&mut HandshakeContext, &[u8]) -> Result<()>);

so there isn't a need to convert it.

[raoulstrackx]

Could you pick a preshared key that is not valid utf8 and also contains a zero byte? It may trigger some weird code paths.

[zugzwang]

Also, could we add a case with a leading zero byte? I'm certain it is correctly handled, but I have seen way too many leading zero bugs in the wild/

(Orthogonal but also see https://mbed-tls.readthedocs.io/en/latest/security-advisories/advisories/mbedtls-security-advisory-2020-09-3/).

[dongcarl]

Huh! If it's not valid UTF-8, we should expect an error from from_utf8?

What kind of behaviour do we expect for leading zero bytes?

[zugzwang]

Why is there a requirement that pre-shared keys are valid UTF-8? At least in RFC4279, only PSK identities are assumed to be UTF-8 (Sec. 5.1). Also Sec. 4 states that PSK are the result of Diffie Hellman computations, so no UTF-8 expected.

[raoulstrackx]

After running the CI, we see that we actually do need some kind of attribute guard for this test because x86_64-fortanix-unknown-sgx does not have crate::support::net, see:

Oh I thought CI for x86_64-fortanix-unknown-sgx was better than it is. It could use some work, but that's out of scope for this PR. A module level is not ideal but I'd say it's acceptable until the CI for sgx gets straightened out.

@zugzwang could you also take a look when these two small comments of mine are addressed?

[zugzwang]

In the meantime we decided to merge #202 since it also added DTLS support.

[Taowyoo]

Thank you for contribution.
Because long time no updates on this PR and PSK support is added in #202.
So I decided to close this PR.