mirror/zig
1
0
Fork 0
mirror of https://github.com/ziglang/zig.git synced 2025-12-06 14:23:09 +00:00
Code Issues Packages Projects Releases Wiki Activity
zig/lib/std
History
Igor Anić c41b9d7508
ECDSA signature der encoding should produce smallest number of octets (#25177) 
I noticed this by stress testing my tls server implementation. From time to time curl (and other tools: ab, vegeta) will report invalid signature. I trace the problem to the way how std lib is encoding raw signature into der format. Using raw signature I got in some cases different encoding using std and openssl. Std is not producing minimal der when signature `r` or `s` integers has leading zero(es).

Here is an example to illustrate difference. Notice leading 00 in `s`
integer which is removed in openssl encoding but not in std encoding.

```Zig
const std = @import("std");

test "ecdsa signature to der" {
    // raw signature r and s bytes
    const raw = hexToBytes(
        \\ 49  63  0c  94  95  2e  ff  4b  02  bf  35  c4  97  9e  a7  24
        \\ 20  dc  94  de  aa  1b  17  ff  e1  49  25  3e  34  ef  e8  d0
        \\ c4  43  aa  7b  a9  f3  9c  b9  f8  72  7d  d7  0c  9a  13  1e
        \\
        \\ 00  56  85  43  d3  d4  05  62  a1  1d  d8  a1  45  44  b5  dd
        \\ 62  9f  d1  e0  ab  f1  cd  4a  85  d0  1f  5d  11  d9  f8  89
        \\ 89  d4  59  0c  b0  6e  ea  3c  19  6a  f7  0b  1a  4a  ce  f1
    );
    // encoded by openssl
    const expected = hexToBytes(
        \\ 30  63  02  30
        \\ 49  63  0c  94  95  2e  ff  4b  02  bf  35  c4  97  9e  a7  24
        \\ 20  dc  94  de  aa  1b  17  ff  e1  49  25  3e  34  ef  e8  d0
        \\ c4  43  aa  7b  a9  f3  9c  b9  f8  72  7d  d7  0c  9a  13  1e
        \\
        \\ 02  2f
        \\ 56  85  43  d3  d4  05  62  a1  1d  d8  a1  45  44  b5  dd
        \\ 62  9f  d1  e0  ab  f1  cd  4a  85  d0  1f  5d  11  d9  f8  89
        \\ 89  d4  59  0c  b0  6e  ea  3c  19  6a  f7  0b  1a  4a  ce  f1
    );
    // encoded by std
    const actual = hexToBytes(
        \\ 30  64  02  30
        \\ 49  63  0c  94  95  2e  ff  4b  02  bf  35  c4  97  9e  a7  24
        \\ 20  dc  94  de  aa  1b  17  ff  e1  49  25  3e  34  ef  e8  d0
        \\ c4  43  aa  7b  a9  f3  9c  b9  f8  72  7d  d7  0c  9a  13  1e
        \\
        \\ 02  30
        \\ 00  56  85  43  d3  d4  05  62  a1  1d  d8  a1  45  44  b5  dd
        \\ 62  9f  d1  e0  ab  f1  cd  4a  85  d0  1f  5d  11  d9  f8  89
        \\ 89  d4  59  0c  b0  6e  ea  3c  19  6a  f7  0b  1a  4a  ce  f1
    );
    _ = actual;

    const Ecdsa = std.crypto.sign.ecdsa.EcdsaP384Sha384;
    const sig = Ecdsa.Signature.fromBytes(raw);
    var buf: [Ecdsa.Signature.der_encoded_length_max]u8 = undefined;
    const encoded = sig.toDer(&buf);

    try std.testing.expectEqualSlices(u8, &expected, encoded);
}

pub fn hexToBytes(comptime hex: []const u8) [removeNonHex(hex).len / 2]u8 {
    @setEvalBranchQuota(1000 * 100);
    const hex2 = comptime removeNonHex(hex);
    comptime var res: [hex2.len / 2]u8 = undefined;
    _ = comptime std.fmt.hexToBytes(&res, hex2) catch unreachable;
    return res;
}
fn removeNonHex(comptime hex: []const u8) []const u8 {
    @setEvalBranchQuota(1000 * 100);
    var res: [hex.len]u8 = undefined;
    var i: usize = 0;
    for (hex) |c| {
        if (std.ascii.isHex(c)) {
            res[i] = c;
            i += 1;
        }
    }
    return res[0..i];
}
```

Trimming leading zeroes from signature integers fixes encoding.
2025-09-08 22:53:03 +02:00
..
Build
std.elf: change STV enum from u2 to u3
2025-09-04 01:16:23 +02:00
builtin
start adding big endian RISC-V support
2025-08-25 16:15:17 +02:00
c
Fix cmsghdr struct for the *nixes
2025-09-03 21:45:03 -07:00
compress
lzma2: fix premature finish
2025-09-03 01:48:46 -07:00
crypto
ECDSA signature der encoding should produce smallest number of octets (#25177)
2025-09-08 22:53:03 +02:00
debug
rework std.Io.Writer.Allocating to support runtime-known alignment
2025-08-30 00:48:50 -07:00
dwarf
Dwarf: remove redundant debug info
2024-12-19 17:10:03 -05:00
fmt
std.fmt: breaking API changes
2025-07-07 22:43:51 -07:00
fs
Revert "Merge pull request #24905 from gooncreeper/file-reader-buffered"
2025-09-05 11:26:38 -07:00
hash
std.hash.xxhash: disable xxhash3 test on all mips64 targets
2025-08-30 06:36:41 +02:00
heap
std.ArrayList: make unmanaged the default
2025-08-11 15:52:49 -07:00
http
std.http.Client.Connection: make host() public
2025-09-06 19:23:27 -07:00
Io
Revert "Merge pull request #24905 from gooncreeper/file-reader-buffered"
2025-09-05 11:26:38 -07:00
json
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
math
Merge pull request #25077 from ziglang/GenericReader
2025-08-30 12:43:52 -07:00
mem
Add allocator that always fails
2025-09-03 21:46:01 -07:00
meta
std: eradicate u29 and embrace std.mem.Alignment
2025-04-13 02:20:32 -04:00
net
std.net: update to new I/O API
2025-07-14 00:16:49 -07:00
os
Fix cmsghdr struct for the *nixes
2025-09-03 21:45:03 -07:00
posix
Merge pull request #25077 from ziglang/GenericReader
2025-08-30 12:43:52 -07:00
process
Compilation: remove last instance of deprecatedReader
2025-08-16 14:46:20 -07:00
Random
std.fmt: breaking API changes
2025-07-07 22:43:51 -07:00
sort
compiler,lib,test,langref: migrate @setCold to @branchHint
2024-08-27 00:44:35 +01:00
tar
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
Target
std.Target.x86: purge avx10.n-256, rename avx10.n_512 to avx10.n, require evex512 for avx512f
2025-08-30 06:36:41 +02:00
testing
FailingAllocator: remove outdated doc comments, move doc comment example to decltest
2025-04-23 19:28:28 -04:00
Thread
Remove numerous things deprecated during the 0.14 release cycle
2025-07-11 08:17:43 +02:00
time
std.time.epoch: change getDaysInMonth to accept the year as an argument
2025-03-08 14:25:28 -05:00
tz
unicode
std.fmt: breaking API changes
2025-07-07 22:43:51 -07:00
valgrind
Remove numerous things deprecated during the 0.14 release cycle
2025-07-11 08:17:43 +02:00
zig
BitcodeReader: parse blockinfo inside block
2025-09-03 21:47:32 -07:00
zon
Adds non allocating alternatives to ZON parse functions (#22916)
2025-08-25 18:03:08 +02:00
array_hash_map.zig
std: introduce orderedRemoveMany
2025-08-11 13:32:12 -07:00
array_list.zig
upgrade more old API uses
2025-08-30 00:48:50 -07:00
ascii.zig
std.fmt: delete deprecated APIs
2025-08-31 12:49:18 -07:00
atomic.zig
start adding big endian RISC-V support
2025-08-25 16:15:17 +02:00
base64.zig
std.Io: delete GenericWriter
2025-08-28 18:30:57 -07:00
bit_set.zig
std.bit_set: Disable IntegerBitSet decltest on RISC-V with vector support
2025-07-01 23:03:15 +02:00
BitStack.zig
std.ArrayList: make unmanaged the default
2025-08-11 15:52:49 -07:00
buf_map.zig
buf_set.zig
Build.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
builtin.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
c.zig
Fix cmsghdr struct for the *nixes
2025-09-03 21:45:03 -07:00
coff.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
compress.zig
std.compress: rework flate to new I/O API
2025-07-31 22:10:11 -07:00
crypto.zig
std.crypto: fix Sha1 namespace
2025-07-14 00:14:21 -07:00
debug.zig
std.debug.assertAligned: support const pointers
2025-09-07 20:22:38 -07:00
DoublyLinkedList.zig
std.DoublyLinkedList: remove length tracking
2025-04-03 15:57:35 -07:00
dwarf.zig
Dwarf: cleanup emitted debug info
2024-08-22 08:44:08 +02:00
dynamic_library.zig
x86_64: add support for pie executables
2025-06-06 23:42:14 -07:00
elf.zig
std.elf: change STV enum from u2 to u3
2025-09-04 01:16:23 +02:00
enums.zig
std.enums: fix EnumIndexer branch quota
2025-07-31 22:10:22 +01:00
fmt.zig
Reenable vector tests for armeb/thumbeb
2025-09-04 16:23:18 +02:00
fs.zig
Remove numerous things deprecated during the 0.14 release cycle
2025-07-11 08:17:43 +02:00
gpu.zig
spirv: error when execution mode is set more than once
2025-05-21 13:01:21 +03:30
hash_map.zig
std.ArrayList: make unmanaged the default
2025-08-11 15:52:49 -07:00
hash.zig
simplify std.hash.Adler32
2025-07-31 22:10:11 -07:00
heap.zig
std.c.darwin: cleanup, expose everything in std.c
2025-08-20 18:21:32 +02:00
http.zig
http.BodyWriter: improve clarity of chunked state machine
2025-08-17 14:42:57 +02:00
Io.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
json.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
leb128.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
log.zig
std.log.defaultLog: provide a small buffer
2025-07-10 16:52:29 -07:00
macho.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
math.zig
std: skip some failing tests on hexagon
2025-08-30 06:36:41 +02:00
mem.zig
std.mem.indexOfSentinel: eliminate unnecessary @ptrCast
2025-09-07 20:23:36 -07:00
meta.zig
std: update for new packed union rules
2025-09-05 19:45:07 -07:00
multi_array_list.zig
std: introduce orderedRemoveMany
2025-08-11 13:32:12 -07:00
net.zig
Fix bugs in Windows readVec implementations
2025-08-19 16:18:02 -07:00
once.zig
compiler,lib,test,langref: migrate @setCold to @branchHint
2024-08-27 00:44:35 +01:00
os.zig
std.fmt: breaking API changes
2025-07-07 22:43:51 -07:00
pdb.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
pie.zig
start adding big endian RISC-V support
2025-08-25 16:15:17 +02:00
posix.zig
Return runtime err for EISCONN when connecting
2025-09-03 22:01:45 +02:00
priority_dequeue.zig
std.ArrayList: make unmanaged the default
2025-08-11 15:52:49 -07:00
priority_queue.zig
std.priority_queue: add useful functions from ArrayList API
2025-02-01 19:02:39 +01:00
process.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
Progress.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
Random.zig
Allocator/Random: document that comparing ptr may result in illegal behavior
2025-02-03 17:07:28 -08:00
segmented_list.zig
std: update std.builtin.Type fields to follow naming conventions
2024-08-28 08:39:59 +01:00
SemanticVersion.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
simd.zig
Reenable vector tests for armeb/thumbeb
2025-09-04 16:23:18 +02:00
SinglyLinkedList.zig
de-genericify SinglyLinkedList
2025-04-03 14:55:04 -07:00
sort.zig
std.equalRange: Compute lower and upper bounds simultaneously
2024-09-23 13:03:06 -07:00
start.zig
start adding big endian RISC-V support
2025-08-25 16:15:17 +02:00
static_string_map.zig
std.static_string_map: Cast length of input for runtime initialization
2024-06-20 23:22:39 +00:00
std.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
tar.zig
std.tar: update to new I/O API
2025-07-22 09:41:44 -07:00
Target.zig
Merge pull request #25077 from ziglang/GenericReader
2025-08-30 12:43:52 -07:00
testing.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
Thread.zig
Merge pull request #25077 from ziglang/GenericReader
2025-08-30 12:43:52 -07:00
time.zig
std.os.uefi.tables: ziggify boot and runtime services (#23441)
2025-07-12 17:18:53 +00:00
treap.zig
std.ArrayList: make unmanaged the default
2025-08-11 15:52:49 -07:00
tz.zig
std.tz: fix redundant endian handling
2025-08-28 18:30:57 -07:00
unicode.zig
std.fmt: delete deprecated APIs
2025-08-31 12:49:18 -07:00
Uri.zig
std.fmt: delete deprecated APIs
2025-08-31 12:49:18 -07:00
valgrind.zig
remove condition codes
2025-07-16 10:27:39 -07:00
wasm.zig
wasm linker: implement @tagName for sparse enums
2025-01-15 15:11:36 -08:00
zig.zig
std.fmt: delete deprecated APIs
2025-08-31 12:49:18 -07:00
zip.zig
std.Io: delete GenericReader
2025-08-29 17:14:26 -07:00
zon.zig
zon: Add anonymous struct literal in the example
2025-08-15 23:35:16 +02:00