ECDSA: Refactor mbedtls_ecdsa_signature_to_raw

Change mbedtls_ecdsa_signature_to_raw so that it does not use MPI. Add documentation changes.
2025-01-08 09:05:30 +00:00 · 2018-02-27 09:23:22 -05:00 · 2018-02-27 09:23:22 -05:00 · dfedd825c8
parent 6518fc8355
commit dfedd825c8
4 changed files with 60 additions and 43 deletions
--- a/include/mbedtls/ecdsa.h
+++ b/include/mbedtls/ecdsa.h
@ -256,8 +256,8 @@ int mbedtls_ecdsa_write_signature_det( mbedtls_ecdsa_context *ctx,
 */
 int mbedtls_ecdsa_signature_to_raw( const unsigned char *sig,
                            size_t ssize, uint16_t byte_len,
-                            unsigned char *buf, size_t bufsize,
+                            unsigned char *buf, size_t* buflen,
-                            size_t* buflen );
+                            size_t bufsize );
 /**
 * \brief           Convert a signature from numbers to ASN.1
 *
--- a/include/mbedtls/pkcs11_client.h
+++ b/include/mbedtls/pkcs11_client.h
@ -4,7 +4,7 @@
 * \brief Generic wrapper for Cryptoki (PKCS#11) support
 */
 /*
- *  Copyright (C) 2017, ARM Limited, All Rights Reserved
+ *  Copyright (C) 2017-2018, ARM Limited, All Rights Reserved
 *  SPDX-License-Identifier: Apache-2.0
 *
 *  Licensed under the Apache License, Version 2.0 (the "License"); you may
@ -70,10 +70,9 @@ extern "C" {
 * \return              0 on success,
 *                      or MBEDTLS_ERR_PK_XXX error code.
 *
- * \note                The session and the key(s) must remain valid until the
+ * \note                If any of the handles become invalid, then you may no
- *                      PK context is closed with mbedtls_pk_free(). As an
+ *                      longer do anything with the pk object except call
- *                      exception, it's ok to call mbedtls_pk_free() itself
+ *                      mbedtls_pk_free on it.
 *                      even if the Cryptoki handles have become invalid.
 */
 int mbedtls_pkcs11_setup_pk( mbedtls_pk_context *ctx,
                             CK_SESSION_HANDLE hSession,
@ -110,7 +109,7 @@ int mbedtls_pkcs11_setup_pk( mbedtls_pk_context *ctx,
 *                      - #MBEDTLS_PK_FLAG_VERIFY: if set, the public key
 *                        will be authorized for verification.
 *                      - #MBEDTLS_PK_FLAG_DECRYPT: if set, the private key
- *                        will be authorized for signing.
+ *                        will be authorized for decryption.
 *                      - #MBEDTLS_PK_FLAG_ENCRYPT: if set, the public key
 *                        will be authorized for encryption.
 *
--- a/library/ecdsa.c
+++ b/library/ecdsa.c
@ -291,60 +291,78 @@ cleanup:
 */
 int mbedtls_ecdsa_signature_to_raw( const unsigned char *sig,
                            size_t ssize, uint16_t byte_len,
-                            unsigned char *buf, size_t bufsize,
+                            unsigned char *buf, size_t* buflen,
-                            size_t* buflen )
+                            size_t bufsize)
 {
    int ret;
    unsigned char *p = (unsigned char *) sig;
    unsigned char *buf_ptr;
    const unsigned char *end = sig + ssize;
-    size_t len;
+    size_t len, bytes_skipped, i;
    mbedtls_mpi r, s;
    if( 2 * byte_len > bufsize )
    {
        return (MBEDTLS_ERR_ECP_BAD_INPUT_DATA);
    }
    mbedtls_mpi_init( &r );
    mbedtls_mpi_init( &s );
    if( ( ret = mbedtls_asn1_get_tag( &p, end, &len,
            MBEDTLS_ASN1_CONSTRUCTED | MBEDTLS_ASN1_SEQUENCE ) ) != 0 )
    {
        ret += MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
-        goto cleanup;
+        return ret;
    }
    if( p + len != end )
    {
-        ret = MBEDTLS_ERR_ECP_BAD_INPUT_DATA +
+        return MBEDTLS_ERR_ECP_BAD_INPUT_DATA +
                MBEDTLS_ERR_ASN1_LENGTH_MISMATCH;
        goto cleanup;
    }
-    if( ( ret = mbedtls_asn1_get_mpi( &p, end, &r ) ) != 0 ||
+    /*
-        ( ret = mbedtls_asn1_get_mpi( &p, end, &s ) ) != 0 )
+     * Step 1: write R
-    {
+     */
-        ret += MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
+    buf_ptr = buf;
-        goto cleanup;
+    if( ( ret = mbedtls_asn1_get_tag( &p, end, &len, MBEDTLS_ASN1_INTEGER ) ) != 0 )
-    }
+            return( ret );
    p = (unsigned char *) buf;
    if( ( ret = mbedtls_mpi_write_binary( &r, p, byte_len) ) )
    {
        ret += MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
        goto cleanup;
    }
    p += byte_len;
    if( ( ret = mbedtls_mpi_write_binary( &s, p, byte_len) ) )
    {
        ret += MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
        goto cleanup;
    }
    *buflen = 2*byte_len;
-cleanup:
+    for( bytes_skipped = 0; bytes_skipped < len; bytes_skipped++ )
-    mbedtls_mpi_free( &r );
+            if( p[bytes_skipped] != 0 )
-    mbedtls_mpi_free( &s );
+                break;
    if( len - bytes_skipped > bufsize )
    {
        return MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
    }
    *buflen = len - bytes_skipped;
    for( i = bytes_skipped; i < len; i++ )
    {
        buf_ptr[i - bytes_skipped] = p[i];
    }
    p += len;
    buf_ptr += *buflen;
    /*
     * Step 2: write S
     */
    if( ( ret = mbedtls_asn1_get_tag( &p, end, &len, MBEDTLS_ASN1_INTEGER ) ) != 0 )
                return( ret );
    for( bytes_skipped = 0; bytes_skipped < len; bytes_skipped++ )
            if( p[bytes_skipped] != 0 )
                break;
    if( len - bytes_skipped + *buflen > bufsize )
    {
        return MBEDTLS_ERR_ECP_BAD_INPUT_DATA;
    }
    *buflen += len - bytes_skipped;
    for( i = bytes_skipped; i < len; i++ )
    {
        buf_ptr[i - bytes_skipped] = p[i];
    }
    return( ret );
 }
--- a/library/pkcs11_client.c
+++ b/library/pkcs11_client.c
@ -1,7 +1,7 @@
 /*
 *  Generic wrapper for Cryptoki (PKCS#11) support
 *
- *  Copyright (C) 2017, ARM Limited, All Rights Reserved
+ *  Copyright (C) 2017-2018, ARM Limited, All Rights Reserved
 *  SPDX-License-Identifier: Apache-2.0
 *
 *  Licensed under the Apache License, Version 2.0 (the "License"); you may
@ -292,8 +292,8 @@ static int pkcs11_verify( void *ctx_arg,
            return( MBEDTLS_ERR_PK_ALLOC_FAILED );
        }
        if( mbedtls_ecdsa_signature_to_raw( sig, sig_len, byte_len,
-                                    decoded_sig, 2 * byte_len,
+                                    decoded_sig, &decoded_sig_len,
-                                    &decoded_sig_len ) != 0 )
+                                    2 * byte_len ) != 0 )
        {
            rv = CKR_GENERAL_ERROR;
            goto exit;