Skip to content

Add multi-part operations for asymmetric signature #335

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
athoelke wants to merge 5 commits into
base: main
Choose a base branch
from
Open

Add multi-part operations for asymmetric signature #335

athoelke wants to merge 5 commits into from
+680 −36

Conversation

@athoelke
Copy link
Contributor

@athoelke athoelke commented Jan 28, 2026

This adds the new operations for multipart sign and multi-part verify for asymmetric signatures (previous discussions suggested these should be ditinct types).

  • Updated the Functionality chapter to indicate the availability of multi-part operations for signature (and added two missed additions in 1.4).
  • Extended the introduction to Asymmetric Signatures to describe the multi-part operations, and how they extend multi-part capability to message-signature algorithms.
  • Added/modified text in signature algorithms to reflect their compatibility with the mluti-part operations.
  • Modified the Notes in the single-part functions which recommended the use of a multi-part hash operation for fragmented messages.
  • Add new operation types and functions.

Fixes #319

@athoelke athoelke added this to the Crypto 1.5 milestone Jan 28, 2026
@athoelke athoelke self-assigned this Jan 28, 2026
@athoelke athoelke added enhancement New feature or request Crypto API Issue or PR related to the Cryptography API labels Jan 28, 2026
@athoelke
Copy link
Contributor Author

athoelke commented Jan 28, 2026

This needs to wait for the 1.4.1 publication to be finalised.

One aspect of the proposed API that might be debatable:

  • I've added context parameters to the setup functions, which can be zero-length (as per the _with_context single part functions). This seems to be a better approach than adding an additional, optional to call, xxx_set_context()function to each operation - which adds additional states and complexity to the implementation.

@athoelke athoelke moved this to In Progress in PSA Certified API development Jan 28, 2026
MarcusJGStreets
MarcusJGStreets reviewed Feb 10, 2026
View reviewed changes
Copy link
Contributor

@MarcusJGStreets MarcusJGStreets left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks to be the obvious way to implement multipart sign and verify.

@athoelke
Copy link
Contributor Author

athoelke commented Feb 10, 2026

  • I've added context parameters to the setup functions, which can be zero-length (as per the _with_context single part functions). This seems to be a better approach than adding an additional, optional to call, xxx_set_context()function to each operation - which adds additional states and complexity to the implementation.

A fair counter-argument can be made for a separate function for a context based on the following observations:

  • The XOF operation API has setting a context as a separate function.
  • Many signature algorithms do not accept a context.
  • Most (all?) protocols with asymmetric signature do not use a context (because the protocol predates the development of signature algorithms that have a context parameter).

So I will update this PR to pass the context in an optional psa_{sign|verify}_set_context(). This will have the same behavior as passing a context in the _with_context() signature functions - for an algorithm that does not support a context, it is permitted to call psa_{sign|verify}_set_context() with a zero-length context. [Note that this differs from the behavior of psa_xof_set_context() with an algorithm for which PSA_ALG_XOF_HAS_CONTEXT(alg) == 0]

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@MarcusJGStreets MarcusJGStreets MarcusJGStreets left review comments

@gilles-peskine-arm gilles-peskine-arm Awaiting requested review from gilles-peskine-arm

Assignees

@athoelke athoelke

Labels

Crypto API Issue or PR related to the Cryptography API enhancement New feature or request

Projects

PSA Certified API development
Status: In Progress

Milestone

Crypto 1.5

Development

Successfully merging this pull request may close these issues.

Add multi-part sign-message and verify-message operations (was 'Allow external mu to MLDSA sign/verify PSA APIs')

2 participants

@athoelke @MarcusJGStreets