Fix decoder error on SM2 private key

author Jamie Cui <jamie.cui@outlook.com>

Thu, 22 Aug 2024 03:41:50 +0000 (11:41 +0800)

committer Tomas Mraz <tomas@openssl.org>

Thu, 29 Aug 2024 13:28:27 +0000 (15:28 +0200)
author Jamie Cui <jamie.cui@outlook.com>
Thu, 22 Aug 2024 03:41:50 +0000 (11:41 +0800)
committer Tomas Mraz <tomas@openssl.org>
Thu, 29 Aug 2024 13:28:27 +0000 (15:28 +0200)
diff --git a/providers/implementations/encode_decode/decode_der2key.c b/providers/implementations/encode_decode/decode_der2key.c

index 6880e32328b239304c0ac1fbf4b4d1ec33739f08..4ae8f1aad0f95d1aed80a6cd35150dd17a027528 100644 (file)
--- a/providers/implementations/encode_decode/decode_der2key.c
+++ b/providers/implementations/encode_decode/decode_der2key.c
@@ -32,6 +32,7 @@
  #include "crypto/ecx.h"
  #include "crypto/rsa.h"
  #include "crypto/x509.h"
+#include "openssl/obj_mac.h"
  #include "prov/bio.h"
  #include "prov/implementations.h"
  #include "endecoder_local.h"
@@ -109,7 +110,10 @@ static void *der2key_decode_p8(const unsigned char **input_der,
  
      if ((p8inf = d2i_PKCS8_PRIV_KEY_INFO(NULL, input_der, input_der_len)) != NULL
          && PKCS8_pkey_get0(NULL, NULL, NULL, &alg, p8inf)
-        && OBJ_obj2nid(alg->algorithm) == ctx->desc->evp_type)
+        && (OBJ_obj2nid(alg->algorithm) == ctx->desc->evp_type
+            /* Allow decoding sm2 private key with id_ecPublicKey */
+            || (OBJ_obj2nid(alg->algorithm) == NID_X9_62_id_ecPublicKey
+                && ctx->desc->evp_type == NID_sm2)))
          key = key_from_pkcs8(p8inf, PROV_LIBCTX_OF(ctx->provctx), ctx->propq);
      PKCS8_PRIV_KEY_INFO_free(p8inf);
  
@@ -312,10 +316,19 @@ static int der2key_decode(void *vctx, OSSL_CORE_BIO *cin, int selection,
  
          params[0] =
              OSSL_PARAM_construct_int(OSSL_OBJECT_PARAM_TYPE, &object_type);
-        params[1] =
-            OSSL_PARAM_construct_utf8_string(OSSL_OBJECT_PARAM_DATA_TYPE,
-                                             (char *)ctx->desc->keytype_name,
-                                             0);
+
+#ifndef OPENSSL_NO_SM2
+        if (strcmp(ctx->desc->keytype_name, "EC") == 0
+            && (EC_KEY_get_flags(key) & EC_FLAG_SM2_RANGE) != 0)
+            params[1] =
+                OSSL_PARAM_construct_utf8_string(OSSL_OBJECT_PARAM_DATA_TYPE,
+                                                 "SM2", 0);
+        else
+#endif
+            params[1] =
+                OSSL_PARAM_construct_utf8_string(OSSL_OBJECT_PARAM_DATA_TYPE,
+                                                 (char *)ctx->desc->keytype_name,
+                                                 0);
          /* The address of the key becomes the octet string */
          params[2] =
              OSSL_PARAM_construct_octet_string(OSSL_OBJECT_PARAM_REFERENCE,
@@ -435,10 +448,16 @@ static void *ec_d2i_PKCS8(void **key, const unsigned char **der, long der_len,
  static int ec_check(void *key, struct der2key_ctx_st *ctx)
  {
      /* We're trying to be clever by comparing two truths */
-
+    int ret = 0;
      int sm2 = (EC_KEY_get_flags(key) & EC_FLAG_SM2_RANGE) != 0;
  
-    return sm2 == (ctx->desc->evp_type == EVP_PKEY_SM2);
+    if (sm2)
+        ret = ctx->desc->evp_type == EVP_PKEY_SM2
+            || ctx->desc->evp_type == NID_X9_62_id_ecPublicKey;
+    else
+        ret = ctx->desc->evp_type != EVP_PKEY_SM2;
+
+    return ret;
  }
  
  static void ec_adjust(void *key, struct der2key_ctx_st *ctx)
diff --git a/test/endecode_test.c b/test/endecode_test.c

index e28fd41b7558b6069e4c05a606a4acc2ac57462f..97576cedc7433b4304a59bcb9023430ffa85fc12 100644 (file)
--- a/test/endecode_test.c
+++ b/test/endecode_test.c
@@ -1032,6 +1032,10 @@ DOMAIN_KEYS(ECExplicitTri2G);
  IMPLEMENT_TEST_SUITE(ECExplicitTri2G, "EC", 0)
  IMPLEMENT_TEST_SUITE_LEGACY(ECExplicitTri2G, "EC")
  # endif
+# ifndef OPENSSL_NO_SM2
+KEYS(SM2);
+IMPLEMENT_TEST_SUITE(SM2, "SM2", 0)
+# endif
  KEYS(ED25519);
  IMPLEMENT_TEST_SUITE(ED25519, "ED25519", 1)
  KEYS(ED448);
@@ -1396,6 +1400,9 @@ int setup_tests(void)
  # ifndef OPENSSL_NO_EC2M
      MAKE_DOMAIN_KEYS(ECExplicitTriNamedCurve, "EC", ec_explicit_tri_params_nc);
      MAKE_DOMAIN_KEYS(ECExplicitTri2G, "EC", ec_explicit_tri_params_explicit);
+# endif
+# ifndef OPENSSL_NO_SM2
+    MAKE_KEYS(SM2, "SM2", NULL);
  # endif
      MAKE_KEYS(ED25519, "ED25519", NULL);
      MAKE_KEYS(ED448, "ED448", NULL);
@@ -1442,6 +1449,9 @@ int setup_tests(void)
          ADD_TEST_SUITE_LEGACY(ECExplicitTriNamedCurve);
          ADD_TEST_SUITE(ECExplicitTri2G);
          ADD_TEST_SUITE_LEGACY(ECExplicitTri2G);
+# endif
+# ifndef OPENSSL_NO_SM2
+        ADD_TEST_SUITE(SM2);
  # endif
          ADD_TEST_SUITE(ED25519);
          ADD_TEST_SUITE(ED448);
@@ -1499,6 +1509,9 @@ void cleanup_tests(void)
  # ifndef OPENSSL_NO_EC2M
      FREE_DOMAIN_KEYS(ECExplicitTriNamedCurve);
      FREE_DOMAIN_KEYS(ECExplicitTri2G);
+# endif
+# ifndef OPENSSL_NO_SM2
+    FREE_KEYS(SM2);
  # endif
      FREE_KEYS(ED25519);
      FREE_KEYS(ED448);
author	Jamie Cui <jamie.cui@outlook.com>
	Thu, 22 Aug 2024 03:41:50 +0000 (11:41 +0800)
committer	Tomas Mraz <tomas@openssl.org>
	Thu, 29 Aug 2024 13:28:27 +0000 (15:28 +0200)
providers/implementations/encode_decode/decode_der2key.c		patch \| blob \| blame \| history
test/endecode_test.c		patch \| blob \| blame \| history