[v2,06/10] tls: Add helper to find hash function by id

Message ID	20220718180045.5845-6-denkenz@gmail.com (mailing list archive)
State	New
Headers	show Received: from mail-oa1-f50.google.com (mail-oa1-f50.google.com [209.85.160.50]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id 766EA33DE for <ell@lists.linux.dev>; Mon, 18 Jul 2022 18:07:14 +0000 (UTC) From: Denis Kenzior <denkenz@gmail.com> To: ell@lists.linux.dev Cc: Denis Kenzior <denkenz@gmail.com> Subject: [PATCH v2 06/10] tls: Add helper to find hash function by id Date: Mon, 18 Jul 2022 13:00:41 -0500 Message-Id: <20220718180045.5845-6-denkenz@gmail.com> In-Reply-To: <20220718180045.5845-1-denkenz@gmail.com> References: <20220718180045.5845-1-denkenz@gmail.com> Precedence: bulk MIME-Version: 1.0 Content-Transfer-Encoding: 8bit
Series	[v2,01/10] cert/key: Add support for EC based certificates \| expand [v2,01/10] cert/key: Add support for EC based certificates [v2,02/10] unit: Add basic EC-DSA verification test [v2,03/10] key: ECDSA data is given in x962 format [v2,04/10] tls: Support peer certificates that use ECDSA [v2,05/10] tls: Add helper for DigitallySigned validation [v2,06/10] tls: Add helper to find hash function by id [v2,07/10] tls-suites: Add ECDSA suites from RFC 8422 [v2,08/10] unit: Skip ECDSA cipher suite tests [v2,09/10] useful: Add maxsize() [v2,10/10] tls: Do not set verify_data_length unless needed

Message ID

20220718180045.5845-6-denkenz@gmail.com (mailing list archive)

State

New

Headers

From: Denis Kenzior <denkenz@gmail.com>
To: ell@lists.linux.dev
Cc: Denis Kenzior <denkenz@gmail.com>
Subject: [PATCH v2 06/10] tls: Add helper to find hash function by id
Date: Mon, 18 Jul 2022 13:00:41 -0500
Message-Id: <20220718180045.5845-6-denkenz@gmail.com>
In-Reply-To: <20220718180045.5845-1-denkenz@gmail.com>
References: <20220718180045.5845-1-denkenz@gmail.com>
Precedence: bulk
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit

Series

[v2,01/10] cert/key: Add support for EC based certificates | expand

Context	Check	Description
tedd_an/pre-ci_am	success	Success

Context

Check

Description

tedd_an/pre-ci_am

success

Success

Commit Message

Denis Kenzior July 18, 2022, 6 p.m. UTC

Instead of open-coding a loop to map the hash id from
SignatureAndHashAlgorithm structure to a supported hash function.
---
 ell/tls-suites.c | 17 ++++++++++++-----
 1 file changed, 12 insertions(+), 5 deletions(-)

diff --git a/ell/tls-suites.c b/ell/tls-suites.c
index d5d2ec8f741f..bc6a756422b3 100644
--- a/ell/tls-suites.c
+++ b/ell/tls-suites.c
@@ -47,6 +47,17 @@  enum signature_algorithm {
 	SIGNATURE_ALGORITHM_ECDSA = 3,
 };
 
+static enum handshake_hash_type find_hash_by_id(uint8_t id)
+{
+	enum handshake_hash_type hash;
+
+	for (hash = 0; hash < __HANDSHAKE_HASH_COUNT; hash++)
+		if (tls_handshake_hash_data[hash].tls_id == id)
+			break;
+
+	return hash;
+}
+
 /*
  * Sanitize DigitallySigned struct input, making sure the lengths
  * are valid and correspond to what we expect.
@@ -182,11 +193,7 @@  static bool tls_rsa_verify(struct l_tls *tls, const uint8_t *in, size_t in_len,
 	}
 
 	if (tls->negotiated_version >= L_TLS_V12) {
-		enum handshake_hash_type hash;
-
-		for (hash = 0; hash < __HANDSHAKE_HASH_COUNT; hash++)
-			if (tls_handshake_hash_data[hash].tls_id == in[0])
-				break;
+		enum handshake_hash_type hash = find_hash_by_id(in[0]);
 
 		if (hash == __HANDSHAKE_HASH_COUNT) {
 			TLS_DISCONNECT(TLS_ALERT_DECRYPT_ERROR, 0,

[v2,06/10] tls: Add helper to find hash function by id

Checks

Commit Message

Patch