Skip to content

Commit

Permalink
Clean up EC_Group DER deserialization a bit
Browse files Browse the repository at this point in the history
Using peek to determine the next object type avoids having to create
a second BER_Decoder
  • Loading branch information
randombit committed Jan 19, 2025
1 parent 163ea01 commit ca93a89
Showing 1 changed file with 11 additions and 14 deletions.
25 changes: 11 additions & 14 deletions src/lib/pubkey/ec_group/ec_group.cpp
Original file line number Diff line number Diff line change
Expand Up @@ -205,29 +205,27 @@ std::shared_ptr<EC_Group_Data> EC_Group::load_EC_group_info(const char* p_str,
std::pair<std::shared_ptr<EC_Group_Data>, bool> EC_Group::BER_decode_EC_group(std::span<const uint8_t> bits,
EC_Group_Source source) {
BER_Decoder ber(bits);
BER_Object obj = ber.get_next_object();

if(obj.type() == ASN1_Type::ObjectId) {
auto next_obj_type = ber.peek_next_object().type_tag();

if(next_obj_type == ASN1_Type::ObjectId) {
OID oid;
BER_Decoder(bits).decode(oid);
ber.decode(oid);

auto data = ec_group_data().lookup(oid);
if(!data) {
throw Decoding_Error(fmt("Unknown namedCurve OID '{}'", oid.to_string()));
}

return std::make_pair(data, false);
}

if(obj.type() == ASN1_Type::Sequence) {
} else if(next_obj_type == ASN1_Type::Sequence) {
#if defined(BOTAN_HAS_LEGACY_EC_POINT)

BigInt p, a, b, order, cofactor;
std::vector<uint8_t> base_pt;
std::vector<uint8_t> seed;

BER_Decoder(bits)
.start_sequence()
ber.start_sequence()
.decode_and_check<size_t>(1, "Unknown ECC param version code")
.start_sequence()
.decode_and_check(OID("1.2.840.10045.1.1"), "Only prime ECC fields supported")
Expand Down Expand Up @@ -274,14 +272,13 @@ std::pair<std::shared_ptr<EC_Group_Data>, bool> EC_Group::BER_decode_EC_group(st
return std::make_pair(data, true);
#else
BOTAN_UNUSED(source);
throw Not_Implemented("Support for decoding explicit curve params is not supported in this build configuration");
throw Decoding_Error("Decoding explicit ECC parameters is not supported");
#endif
}

if(obj.type() == ASN1_Type::Null) {
throw Decoding_Error("Cannot handle ImplicitCA ECC parameters");
} else if(next_obj_type == ASN1_Type::Null) {
throw Decoding_Error("Decoding ImplicitCA ECC parameters is not supported");
} else {
throw Decoding_Error(fmt("Unexpected tag {} while decoding ECC domain params", asn1_tag_to_string(obj.type())));
throw Decoding_Error(
fmt("Unexpected tag {} while decoding ECC domain params", asn1_tag_to_string(next_obj_type)));
}
}

Expand Down

0 comments on commit ca93a89

Please sign in to comment.