Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Onvej sl/legacy zkp #1897

Merged
merged 8 commits into from
Nov 18, 2021
Merged

Onvej sl/legacy zkp #1897

merged 8 commits into from
Nov 18, 2021

Conversation

onvej-sl
Copy link
Contributor

@onvej-sl onvej-sl commented Nov 4, 2021

Implements #1874.

Regarding 05351ea: The size of the context depends on architecture, it's 184 for 32-bit architecture and 208 for 64-bit architecture. SECP256K1_CONTEXT_SIZE must be at least the size (but doesn't have to be equal). In 05351ea I set SECP256K1_CONTEXT_SIZE to 184 for device build and to 208 for emulator build. There is no problem to have SECP256K1_CONTEXT_SIZE same for all builds if you think it's better.

@hiviah Please review f6268db and the changes in legacy/firmware/trezor.c
@andrewkozlik Please review the rest.

@onvej-sl onvej-sl removed the request for review from prusnak November 4, 2021 15:51
@onvej-sl onvej-sl mentioned this pull request Nov 8, 2021
Merged
andrewkozlik
andrewkozlik reviewed Nov 11, 2021
View reviewed changes
crypto/zkp_bip340.c Show resolved Hide resolved
legacy/Makefile.include Outdated Show resolved Hide resolved
legacy/Makefile.include Outdated Show resolved Hide resolved
andrewkozlik
andrewkozlik approved these changes Nov 13, 2021
View reviewed changes
Copy link
Contributor

@andrewkozlik andrewkozlik left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM. Haven't given much attention to the build script, but seems OK too.

@invd
Copy link
Contributor

invd commented Nov 13, 2021
edited
Loading

@onvej-sl : I've noticed a side problem in the current Makefile that is touched by 0b29dbc :

In file included from ../vendor/secp256k1-zkp/src/secp256k1.c:12:
In file included from ../vendor/secp256k1-zkp/src/assumptions.h:12:
../vendor/secp256k1-zkp/src/util.h:75:12: fatal error: 'valgrind/memcheck.h' file not found
#  include <valgrind/memcheck.h>
           ^~~~~~~~~~~~~~~~~~~~~
1 error generated.

From what I can see, the default Makefile settings assume that Valgrind libraries are installed on the system, and the above mentioned error turns up if they're not. VALGRIND is set to 1 by default, which makes the crypto test code #include it, so this error is triggered there as well.

trezor-firmware/crypto/Makefile

Lines 53 to 57 in fd0d1ed

VALGRIND ?= 1
CFLAGS += -I.
CFLAGS += -I..
CFLAGS += -DVALGRIND=$(VALGRIND)

Up until the secp256k1-zkp addition, the "normal" build did not require Valgrind libraries outside of the tests.

This has now changed when delivering the $(CFLAGS) to secp256k1-zkp since it also reacts to the VALGRIND define:
https://github.com/ElementsProject/secp256k1-zkp/blob/6db00f5b2e0986add852fa808ab485a25a9278f7/src/util.h#L74

Note that secp256k1-zkp includes the libraries on #if defined(VALGRIND) whereas the Trezor code uses #if VALGRIND, so the behavior for VALGRIND=0 or an undefined VALGRIND is conflicting between them.

I think it is reasonable to require the Valgrind libraries for the regular builds but recommend

  1. documenting the dependency
  2. evaluating if the VALGRIND logic can be improved

@prusnak
Copy link
Member

prusnak commented Nov 13, 2021

I am OK with changing our logic from #if VALGRIND to #ifdef VALGRIND to make things simpler.

@andrewkozlik andrewkozlik mentioned this pull request Nov 15, 2021
Merged
hiviah
hiviah approved these changes Nov 15, 2021
View reviewed changes
Copy link
Contributor

@hiviah hiviah left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes in firmware/trezor.c LGTM.

@onvej-sl
Copy link
Contributor Author

@hiviah Did you review f6268db as well?

@onvej-sl
Copy link
Contributor Author

Up until the secp256k1-zkp addition, the "normal" build did not require Valgrind libraries outside of the tests.

I'm not sure, what you mean by "normal" build. Unless I mess something up, this build of secp256k1-zkp shouldn't be used anywhere other than in tests.

@invd
Copy link
Contributor

invd commented Nov 15, 2021
edited
Loading

Up until the secp256k1-zkp addition, the "normal" build did not require Valgrind libraries outside of the tests.

I'm not sure, what you mean by "normal" build. Unless I mess something up, this build of secp256k1-zkp shouldn't be used anywhere other than in tests.

You're right, I was thinking of other legacy Makefile usage that is unrelated. Other parties may be using the crypto code for more than testing (it was formerly distributed as trezor-crypto for that purpose, after all) but I understand that this is not really supported. We previously discussed this area in the internal ticket no 86, but I think that is not as relevant to this PR.

@hiviah
Copy link
Contributor

hiviah commented Nov 15, 2021

@hiviah Did you review f6268db as well?

Yes, seems fine.

@onvej-sl
Copy link
Contributor Author

onvej-sl commented Nov 16, 2021
edited
Loading

You're right, I was thinking of other legacy Makefile usage that is unrelated. Other parties may be using the crypto code for more than testing (it was formerly distributed as trezor-crypto for that purpose, after all) but I understand that this is not really supported.

I understand. Are you OK with 562164a? If someone wants to compile the code without valgrind, they must use VALGRIND=0, which I think is intuitive. However, valgrind is on by default, since the main use case is testing.

@invd
Copy link
Contributor

invd commented Nov 16, 2021
edited
Loading

I understand. Are you OK with 562164a? If someone wants to compile the code without valgrind, they must use VALGRIND=0, which I think is intuitive. However, valgrind is on by default, since the main use case is testing.

I think the ifdef valgrind doesn't work as intended since

  • the variable use is case-sensitive
  • for ifdef VALGRIND in combination with VALGRIND ?= 1, VALGRIND=0 doesn't skip the ifdef. VALGRIND= works but is less intuitive, I think.

ifeq ($(VALGRIND),1) looks like a more direct way to test against the 1 default value.

@onvej-sl
Copy link
Contributor Author

@invd Is that OK? dc78566

@invd
Copy link
Contributor

invd commented Nov 17, 2021

@invd Is that OK? dc78566

Yes, I think that works. Thanks for the followup!

@onvej-sl onvej-sl merged commit 2e48841 into master Nov 18, 2021
@onvej-sl onvej-sl deleted the onvej-sl/legacy_zkp branch November 18, 2021 18:05
This was referenced Nov 19, 2021
Closed
Closed
@hynek-jina hynek-jina added this to the Taproot 🥕 milestone Dec 7, 2021
@prusnak prusnak mentioned this pull request Dec 17, 2021
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hiviah hiviah hiviah approved these changes

@andrewkozlik andrewkozlik andrewkozlik approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
Taproot 🥕
Development

Successfully merging this pull request may close these issues.
6 participants
@onvej-sl @invd @prusnak @hiviah @andrewkozlik @hynek-jina