Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update trussed and dependencies #248

Merged
merged 1 commit into from
Apr 27, 2023
Merged

Update trussed and dependencies #248

merged 1 commit into from
Apr 27, 2023

Conversation

robin-nitrokey
Copy link
Member

@robin-nitrokey robin-nitrokey commented Apr 23, 2023
edited
Loading

@robin-nitrokey robin-nitrokey force-pushed the update-trussed branch 7 times, most recently from 77cde3e to e479778 Compare April 27, 2023 09:49
@robin-nitrokey robin-nitrokey marked this pull request as ready for review April 27, 2023 09:49
@robin-nitrokey
Copy link
Member Author

Should we enable RSA-3072 key generation for opcard?

@sosthene-nitrokey
Copy link
Collaborator

It takes around 20min to generate an RSA3072 key. I'll rerun the test to take accurate timing information, and do it twice (once with the rsa and num-bigint-dig crates optimized with opt-level = 3 and not "z".

@robin-nitrokey robin-nitrokey changed the title Update trussed Update trussed and dependencies Apr 27, 2023
@sosthene-nitrokey
Copy link
Collaborator

Key generation takes around 20minutes for RSA3072. I don't think it's worth enabling it. Maybe in a future update it can be configurable through nitropy, so that only users that know about the slowness use it.

sosthene-nitrokey
sosthene-nitrokey requested changes Apr 27, 2023
View reviewed changes
components/apps/Cargo.toml Outdated Show resolved Hide resolved
components/apps/Cargo.toml Show resolved Hide resolved
components/apps/src/lib.rs
@@ -387,6 +387,7 @@ impl<R: Runner> App<R> for OpcardApp<R> {
const BACKENDS_OPCARD: &[BackendId<Backend>] = &[
BackendId::Custom(Backend::SoftwareRsa),
BackendId::Custom(Backend::Auth),
BackendId::Custom(Backend::Staging),
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You should add it to PIV too.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good point.

runners/embedded/src/ui.rs Outdated Show resolved Hide resolved
@robin-nitrokey
Update Trussed and dependencies
3d6f0c3 
This patch updates many dependencies, most importantly:
- Trussed to v0.1.0-nitrokey.11
- secrets-app to v0.10.0
- opcard to v1.0.0
- piv-authenticator to v0.2.0
- trussed-auth to v0.2.2

It also adds the trussed-staging backend for opcard and
piv-authenticator.
@robin-nitrokey robin-nitrokey merged commit b4f72f6 into main Apr 27, 2023
@robin-nitrokey robin-nitrokey deleted the update-trussed branch April 27, 2023 13:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sosthene-nitrokey sosthene-nitrokey sosthene-nitrokey approved these changes

@daringer daringer daringer approved these changes

@szszszsz szszszsz Awaiting requested review from szszszsz

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@robin-nitrokey @sosthene-nitrokey @daringer