Modify ECC pub param handling per review comments

Author: ColtonWilley

include/wolfprovider/wp_params.h

@@ -51,7 +51,8 @@ void wp_param_set_mp_buf(OSSL_PARAM* p, const char* key, unsigned char* num,
 
 int wp_params_get_digest(const OSSL_PARAM* params, char* name,
     OSSL_LIB_CTX* libCtx, enum wc_HashType* type, size_t* len);
-int wp_params_get_mp(const OSSL_PARAM* params, const char* key, mp_int* mp);
+int wp_params_get_mp(const OSSL_PARAM* params, const char* key, mp_int* mp,
+    int *set);
 int wp_params_get_octet_string(const OSSL_PARAM* params, const char* key,
     unsigned char** data, size_t* len, int secure);
 int wp_params_get_bn_be(const OSSL_PARAM* params, const char* key,
@@ -70,7 +71,8 @@ int wp_params_get_int(const OSSL_PARAM* params, const char* key, int* val);
 int wp_params_get_uint(const OSSL_PARAM* params, const char* key,
     unsigned int* val, int* set);
 
-int wp_params_set_mp(OSSL_PARAM params[], const char* key, mp_int* mp);
+int wp_params_set_mp(OSSL_PARAM params[], const char* key, mp_int* mp,
+    int allow);
 int wp_params_set_octet_string_be(OSSL_PARAM params[], const char* key,
     unsigned char* data, size_t len);
 

src/wp_dh_kmgmt.c

@@ -737,10 +737,12 @@ static int wp_dh_get_params(wp_Dh* dh, OSSL_PARAM params[])
             ok = 0;
         }
     }
-    if (ok && (!wp_params_set_mp(params, OSSL_PKEY_PARAM_FFC_P, &dh->key.p))) {
+    if (ok && (!wp_params_set_mp(params, OSSL_PKEY_PARAM_FFC_P,
+                                 &dh->key.p, 1))) {
         ok = 0;
     }
-    if (ok && (!wp_params_set_mp(params, OSSL_PKEY_PARAM_FFC_G, &dh->key.g))) {
+    if (ok && (!wp_params_set_mp(params, OSSL_PKEY_PARAM_FFC_G,
+                                 &dh->key.g, 1))) {
         ok = 0;
     }
     if (ok && (!wp_params_set_octet_string_be(params, OSSL_PKEY_PARAM_PUB_KEY,

src/wp_ecc_kmgmt.c

@@ -550,31 +550,24 @@ static int wp_ecc_set_params_enc_pub_key(wp_Ecc *ecc, const OSSL_PARAM params[],
 static int wp_ecc_set_params_pub(wp_Ecc *ecc, const OSSL_PARAM params[])
 {
     int ok = 1;
-    const OSSL_PARAM *p = NULL;
+    int set = 0;
 
-    p = OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_EC_PUB_X);
-    if (p != NULL) {
-        if (!wp_params_get_mp(params, OSSL_PKEY_PARAM_EC_PUB_X,
-                ecc->key.pubkey.x)) {
-            ok = 0;
-        }
-        if (ok && mp_iszero(ecc->key.pubkey.x)) {
+    if (!wp_params_get_mp(params, OSSL_PKEY_PARAM_EC_PUB_X,
+            ecc->key.pubkey.x, &set)) {
+        ok = 0;
+    }
+    if (ok && (set == 1)) {
+        if (mp_iszero(ecc->key.pubkey.x)) {
             ok = 0;
         }
         if (ok) {
             ecc->key.type = ECC_PUBLICKEY;
             ecc->hasPub = 1;
         }
     }
-    p = OSSL_PARAM_locate_const(params, OSSL_PKEY_PARAM_EC_PUB_Y);
-    if (p != NULL) {
-        if (!wp_params_get_mp(params, OSSL_PKEY_PARAM_EC_PUB_Y,
-                ecc->key.pubkey.y)) {
-            ok = 0;
-        }
-        if (ok && mp_iszero(ecc->key.pubkey.y)) {
-            ok = 0;
-        }
+    if (!wp_params_get_mp(params, OSSL_PKEY_PARAM_EC_PUB_Y,
+            ecc->key.pubkey.y, NULL)) {
+        ok = 0;
     }
     if (wp_ecc_set_params_enc_pub_key(ecc, params,
             OSSL_PKEY_PARAM_ENCODED_PUBLIC_KEY) != 1) {
@@ -736,43 +729,14 @@ static int wp_ecc_get_params_enc_pub_key(wp_Ecc* ecc, OSSL_PARAM params[],
 static int wp_ecc_get_params_pub(wp_Ecc* ecc, OSSL_PARAM params[])
 {
     int ok = 1;
-    OSSL_PARAM* p;
 
-    p = OSSL_PARAM_locate(params, OSSL_PKEY_PARAM_EC_PUB_X);
-    if ((p != NULL) && (ecc->hasPub == 0)) {
+    if (!wp_params_set_mp(params, OSSL_PKEY_PARAM_EC_PUB_X, ecc->key.pubkey.x,
+                          (ecc->hasPub == 1))) {
         ok = 0;
     }
-    if (ok && p != NULL) {
-        size_t outLen = mp_unsigned_bin_size(ecc->key.pubkey.x);
-        if (p->data != NULL) {
-            if (p->data_size < outLen) {
-                ok = 0;
-            }
-            if (ok && !wp_mp_to_unsigned_bin_le(ecc->key.pubkey.x,
-                                                p->data, outLen)) {
-                ok = 0;
-            }
-        }
-        p->return_size = outLen;
-    }
-    if (ok) {
-        p = OSSL_PARAM_locate(params, OSSL_PKEY_PARAM_EC_PUB_Y);
-        if ((p != NULL) && (ecc->hasPub == 0)) {
-            ok = 0;
-        }
-    }
-    if (ok && p != NULL) {
-        size_t outLen = mp_unsigned_bin_size(ecc->key.pubkey.y);
-        if (p->data != NULL) {
-            if (p->data_size < outLen) {
-                ok = 0;
-            }
-            if (ok && !wp_mp_to_unsigned_bin_le(ecc->key.pubkey.y,
-                                                p->data, outLen)) {
-                ok = 0;
-            }
-        }
-        p->return_size = outLen;
+    if (!wp_params_set_mp(params, OSSL_PKEY_PARAM_EC_PUB_Y, ecc->key.pubkey.y,
+                          (ecc->hasPub == 1))) {
+        ok = 0;
     }
     /* Encoded public key. */
     if (ok && (!wp_ecc_get_params_enc_pub_key(ecc, params,
@@ -850,11 +814,11 @@ static int wp_ecc_get_params(wp_Ecc* ecc, OSSL_PARAM params[])
     }
     if (ok && (!wp_params_set_mp(params, OSSL_PKEY_PARAM_PRIV_KEY,
 #if (!defined(HAVE_FIPS) || FIPS_VERSION_GE(5,3)) && LIBWOLFSSL_VERSION_HEX >= 0x05006002
-            wc_ecc_key_get_priv(&ecc->key)
+            wc_ecc_key_get_priv(&ecc->key),
 #else
-            &(ecc->key.k)
+            &(ecc->key.k),
 #endif
-            ))) {
+            1))) {
         ok = 0;
     }
     /* Private key. */
@@ -1107,11 +1071,11 @@ static int wp_ecc_import_keypair(wp_Ecc* ecc, const OSSL_PARAM params[],
     }
     if (ok && priv && (!wp_params_get_mp(params, OSSL_PKEY_PARAM_PRIV_KEY,
 #if (!defined(HAVE_FIPS) || FIPS_VERSION_GE(5,3)) && LIBWOLFSSL_VERSION_HEX >= 0x05006002
-            wc_ecc_key_get_priv(&ecc->key)
+            wc_ecc_key_get_priv(&ecc->key),
 #else
-            &(ecc->key.k)
+            &(ecc->key.k),
 #endif
-            ))) {
+            NULL))) {
         ok = 0;
     }
     if (ok &&

src/wp_params.c

@@ -254,22 +254,34 @@ int wp_params_get_digest(const OSSL_PARAM* params, char* name,
  * @param [in]  params  Array of parameters.
  * @param [in]  key     String key to look for.
  * @param [out] mp      Multi-precision number.
+ * @param [out] set     Indicates if mp has been set.
  * @return  1 on success.
  * @return  0 on failure.
  */
-int wp_params_get_mp(const OSSL_PARAM* params, const char* key, mp_int* mp)
+int wp_params_get_mp(const OSSL_PARAM* params, const char* key, mp_int* mp,
+                     int *set)
 {
     int ok = 1;
     const OSSL_PARAM* p;
 
+    if (set != NULL) {
+        *set = 0;
+    }
+
     p = OSSL_PARAM_locate_const(params, key);
     if ((p != NULL) && (p->data_type != OSSL_PARAM_UNSIGNED_INTEGER)) {
-            ok = 0;
-    }
-    if ((p != NULL) && ok && (!wp_mp_read_unsigned_bin_le(mp, p->data,
-            p->data_size))) {
         ok = 0;
     }
+    if (ok && (p != NULL)) {
+        if (!wp_mp_read_unsigned_bin_le(mp, p->data, p->data_size)) {
+            ok = 0;
+        }
+        else {
+            if (set != NULL) {
+                *set = 1;
+            }
+        }
+    }
 
     WOLFPROV_LEAVE(WP_LOG_PROVIDER, __FILE__ ":" WOLFPROV_STRINGIZE(__LINE__), ok);
     return ok;
@@ -577,16 +589,21 @@ int wp_params_get_uint(const OSSL_PARAM* params, const char* key,
  * @param [in, out] params  Array of parameters.
  * @param [in]      key     String key to look for.
  * @param [in]      mp      Multi-precision number.
+ * @param [in]      allow   This mp is allowed to be set.
  * @return  1 on success.
  * @return  0 on failure.
  */
-int wp_params_set_mp(OSSL_PARAM params[], const char* key, mp_int* mp)
+int wp_params_set_mp(OSSL_PARAM params[], const char* key, mp_int* mp,
+                     int allow)
 {
     int ok = 1;
     OSSL_PARAM* p;
 
     p = OSSL_PARAM_locate(params, key);
-    if (p != NULL) {
+    if ((p != NULL) && (allow != 1)) {
+        ok = 0;
+    }
+    if (ok && (p != NULL)) {
         size_t outLen = mp_unsigned_bin_size(mp);
         if (p->data != NULL) {
             if (p->data_size < outLen) {