smuellerDD
diff --git a/‎asn1/src/asym_key_dilithium_ed25519.c‎
Lines changed: 17 additions & 41 deletions b/‎asn1/src/asym_key_dilithium_ed25519.c‎
Lines changed: 17 additions & 41 deletions
diff --git a/‎asn1/src/asym_key_dilithium_ed448.c‎
Lines changed: 16 additions & 41 deletions b/‎asn1/src/asym_key_dilithium_ed448.c‎
Lines changed: 16 additions & 41 deletions
diff --git a/‎asn1/src/base64.h‎
Lines changed: 1 addition & 0 deletions b/‎asn1/src/base64.h‎
Lines changed: 1 addition & 0 deletions
@@ -253,37 +253,15 @@ public_key_dilithium_ed25519_get_data(const uint8_t **data_ptr,
 	}
 }
 
-static int lc_xof_authattr(const struct lc_hash *xof, const uint8_t *in,
-			   size_t inlen, uint8_t *digest, size_t digestlen,
-			   int authattrs_tag)
-{
-	LC_HASH_CTX_ON_STACK(hash_ctx, xof);
-	int ret;
-
-	CKINT(lc_hash_init(hash_ctx));
-	if (authattrs_tag) {
-		lc_hash_update(hash_ctx, &lc_pkcs7_authattr_tag,
-			       sizeof(lc_pkcs7_authattr_tag));
-	}
-	lc_hash_update(hash_ctx, in, inlen);
-	CKINT(lc_hash_set_digestsize(hash_ctx, digestlen));
-	lc_hash_final(hash_ctx, digest);
-
-out:
-	lc_hash_zero(hash_ctx);
-	return ret;
-}
-
 int public_key_verify_signature_dilithium_ed25519(
 	const struct lc_public_key *pkey,
 	const struct lc_public_key_signature *sig)
 {
 	struct workspace {
 		struct lc_dilithium_ed25519_pk dilithium_pk;
 		struct lc_dilithium_ed25519_sig dilithium_sig;
-		uint8_t ph_message[LC_SHA3_512_SIZE_DIGEST];
+		struct lc_dilithium_ed25519_ctx sign_ctx;
 	};
-	const struct lc_hash *hash_algo;
 	const uint8_t *dilithium_src, *ed25519_src, *data_ptr;
 	size_t dilithium_src_len, ed25519_src_len, data_len;
 	int ret, authattrs_tag;
@@ -322,17 +300,22 @@ int public_key_verify_signature_dilithium_ed25519(
 
 	printf_debug("Loaded composite signature of size %zu\n", sig->s_size);
 
-	CKINT(lc_x509_sig_type_to_hash(sig->pkey_algo, &hash_algo));
-	/* XOF works as digest size of 64 bytes is same as XOF size */
-	CKINT(lc_xof_authattr(hash_algo, data_ptr, data_len, ws->ph_message,
-			      sizeof(ws->ph_message), authattrs_tag));
-
 	/*
 	 * Verify the signature using Composite-ML-DSA
 	 */
-	CKINT(lc_dilithium_ed25519_verify(&ws->dilithium_sig, ws->ph_message,
-					  sizeof(ws->ph_message),
-					  &ws->dilithium_pk));
+	LC_DILITHIUM_ED25519_SET_CTX(&ws->sign_ctx);
+	CKINT(lc_dilithium_ed25519_verify_init(&ws->sign_ctx,
+					       &ws->dilithium_pk));
+	if (authattrs_tag) {
+		/* Add the authattr tag */
+		CKINT(lc_dilithium_ed25519_verify_update(
+			&ws->sign_ctx, &lc_pkcs7_authattr_tag,
+			sizeof(lc_pkcs7_authattr_tag)));
+	}
+	CKINT(lc_dilithium_ed25519_verify_update(&ws->sign_ctx, data_ptr,
+						 data_len));
+	CKINT(lc_dilithium_ed25519_verify_final(
+		&ws->dilithium_sig, &ws->sign_ctx, &ws->dilithium_pk));
 
 out:
 	LC_RELEASE_MEM(ws);
@@ -346,10 +329,8 @@ int public_key_generate_signature_dilithium_ed25519(
 {
 #ifdef LC_X509_GENERATOR
 	struct workspace {
-		uint8_t ph_message[LC_SHA3_512_SIZE_DIGEST];
 		struct lc_dilithium_ed25519_sig dilithium_ed25519_sig;
 	};
-	const struct lc_hash *hash_algo;
 	struct lc_dilithium_ed25519_sk *dilithium_ed25519_sk =
 		keys->sk.dilithium_ed25519_sk;
 	size_t ml_dsa_siglen, ed25519_siglen, data_len;
@@ -361,15 +342,10 @@ int public_key_generate_signature_dilithium_ed25519(
 	CKINT(public_key_dilithium_ed25519_get_data(&data_ptr, &data_len, NULL,
 						    sig));
 
-	CKINT(lc_x509_sig_type_to_hash(sig->pkey_algo, &hash_algo));
-	/* XOF works as digest size of 64 bytes is same as XOF size */
-	CKINT(lc_xof(hash_algo, data_ptr, data_len, ws->ph_message,
-		     sizeof(ws->ph_message)));
-
 	/* Sign the signature using Composite-ML-DSA */
-	CKINT(lc_dilithium_ed25519_sign(&ws->dilithium_ed25519_sig,
-					ws->ph_message, sizeof(ws->ph_message),
-					dilithium_ed25519_sk, lc_seeded_rng));
+	CKINT(lc_dilithium_ed25519_sign(&ws->dilithium_ed25519_sig, data_ptr,
+					data_len, dilithium_ed25519_sk,
+					lc_seeded_rng));
 
 	CKINT(lc_dilithium_ed25519_sig_ptr(&ml_dsa_ptr, &ml_dsa_siglen,
 					   &ed25519_ptr, &ed25519_siglen,
 
@@ -255,37 +255,15 @@ public_key_dilithium_ed448_get_data(const uint8_t **data_ptr, size_t *data_len,
 	}
 }
 
-static int lc_xof_authattr(const struct lc_hash *xof, const uint8_t *in,
-			   size_t inlen, uint8_t *digest, size_t digestlen,
-			   int authattrs_tag)
-{
-	LC_HASH_CTX_ON_STACK(hash_ctx, xof);
-	int ret;
-
-	CKINT(lc_hash_init(hash_ctx));
-	if (authattrs_tag) {
-		lc_hash_update(hash_ctx, &lc_pkcs7_authattr_tag,
-			       sizeof(lc_pkcs7_authattr_tag));
-	}
-	lc_hash_update(hash_ctx, in, inlen);
-	CKINT(lc_hash_set_digestsize(hash_ctx, digestlen));
-	lc_hash_final(hash_ctx, digest);
-
-out:
-	lc_hash_zero(hash_ctx);
-	return ret;
-}
-
 int public_key_verify_signature_dilithium_ed448(
 	const struct lc_public_key *pkey,
 	const struct lc_public_key_signature *sig)
 {
 	struct workspace {
 		struct lc_dilithium_ed448_pk dilithium_pk;
 		struct lc_dilithium_ed448_sig dilithium_sig;
-		uint8_t ph_message[LC_X509_COMP_ED448_MSG_SIZE];
+		struct lc_dilithium_ed448_ctx sign_ctx;
 	};
-	const struct lc_hash *hash_algo;
 	const uint8_t *dilithium_src, *ed448_src, *data_ptr;
 	size_t dilithium_src_len, ed448_src_len, data_len;
 	int ret, authattrs_tag;
@@ -324,17 +302,21 @@ int public_key_verify_signature_dilithium_ed448(
 
 	printf_debug("Loaded composite signature of size %zu\n", sig->s_size);
 
-	CKINT(lc_x509_sig_type_to_hash(sig->pkey_algo, &hash_algo));
-	/* XOF works as digest size of 64 bytes is same as XOF size */
-	CKINT(lc_xof_authattr(hash_algo, data_ptr, data_len, ws->ph_message,
-			      sizeof(ws->ph_message), authattrs_tag));
-
 	/*
 	 * Verify the signature using Composite-ML-DSA
 	 */
-	CKINT(lc_dilithium_ed448_verify(&ws->dilithium_sig, ws->ph_message,
-					sizeof(ws->ph_message),
-					&ws->dilithium_pk));
+	LC_DILITHIUM_ED448_SET_CTX(&ws->sign_ctx);
+	CKINT(lc_dilithium_ed448_verify_init(&ws->sign_ctx, &ws->dilithium_pk));
+	if (authattrs_tag) {
+		/* Add the authattr tag */
+		CKINT(lc_dilithium_ed448_verify_update(
+			&ws->sign_ctx, &lc_pkcs7_authattr_tag,
+			sizeof(lc_pkcs7_authattr_tag)));
+	}
+	CKINT(lc_dilithium_ed448_verify_update(&ws->sign_ctx, data_ptr,
+					       data_len));
+	CKINT(lc_dilithium_ed448_verify_final(&ws->dilithium_sig, &ws->sign_ctx,
+					      &ws->dilithium_pk));
 
 out:
 	LC_RELEASE_MEM(ws);
@@ -348,10 +330,8 @@ int public_key_generate_signature_dilithium_ed448(
 {
 #ifdef LC_X509_GENERATOR
 	struct workspace {
-		uint8_t ph_message[LC_X509_COMP_ED448_MSG_SIZE];
 		struct lc_dilithium_ed448_sig dilithium_ed448_sig;
 	};
-	const struct lc_hash *hash_algo;
 	struct lc_dilithium_ed448_sk *dilithium_ed448_sk =
 		keys->sk.dilithium_ed448_sk;
 	size_t ml_dsa_siglen, ed448_siglen, data_len;
@@ -363,15 +343,10 @@ int public_key_generate_signature_dilithium_ed448(
 	CKINT(public_key_dilithium_ed448_get_data(&data_ptr, &data_len, NULL,
 						  sig));
 
-	CKINT(lc_x509_sig_type_to_hash(sig->pkey_algo, &hash_algo));
-	/* XOF works as digest size of 64 bytes is same as XOF size */
-	CKINT(lc_xof(hash_algo, data_ptr, data_len, ws->ph_message,
-		     sizeof(ws->ph_message)));
-
 	/* Sign the signature using Composite-ML-DSA */
-	CKINT(lc_dilithium_ed448_sign(&ws->dilithium_ed448_sig, ws->ph_message,
-				      sizeof(ws->ph_message),
-				      dilithium_ed448_sk, lc_seeded_rng));
+	CKINT(lc_dilithium_ed448_sign(&ws->dilithium_ed448_sig, data_ptr,
+				      data_len, dilithium_ed448_sk,
+				      lc_seeded_rng));
 
 	CKINT(lc_dilithium_ed448_sig_ptr(&ml_dsa_ptr, &ml_dsa_siglen,
 					 &ed448_ptr, &ed448_siglen,
 
@@ -51,6 +51,7 @@ int lc_base64_encode_len(size_t ilen, size_t *olen, enum lc_base64_flags flags);
  * @param [in] idata Buffer holding the base64 encoded data
  * @param [in] ilen Length of the Base64 data
  * @param [out] olen Length of the output data
+ * @param [out] blank_chars Number of chars for CR and/or LF
  * @param [in] flags Flags to shape the operation
  *
  * @return 0 on success, < 0 on error
Original file line number	Diff line number	Diff line change
`@@ -51,6 +51,7 @@ int lc_base64_encode_len(size_t ilen, size_t *olen, enum lc_base64_flags flags);`
`51`	`51`	`* @param [in] idata Buffer holding the base64 encoded data`
`52`	`52`	`* @param [in] ilen Length of the Base64 data`
`53`	`53`	`* @param [out] olen Length of the output data`
	`54`	`+ * @param [out] blank_chars Number of chars for CR and/or LF`
`54`	`55`	`* @param [in] flags Flags to shape the operation`
`55`	`56`	`*`
`56`	`57`	`* @return 0 on success, < 0 on error`