Revert PK_Verifier change (don't require RNG there).

Verification is deterministic and public, so really no RNG is ever needed. Change provider handling - accepts "base", "openssl", or empty, otherwise throws a Provider_Not_Found exception.
author: Jack Lloyd <[email protected]> 2016-09-14 16:33:37 -0400
committer: Jack Lloyd <[email protected]> 2016-10-07 19:27:58 -0400
commit: 239bdf36a617df86dc97efb11ec96d7c6d357534 (patch)
tree: 1011ccccee0a4aad5e58943fa3a4af621c968b8a /src/lib/pubkey/ecdsa/ecdsa.cpp
parent: 25b6fb53eec30620d084411fb1dbc8913142fc6d (diff)
1 files changed, 31 insertions, 13 deletions
diff --git a/src/lib/pubkey/ecdsa/ecdsa.cpp b/src/lib/pubkey/ecdsa/ecdsa.cpp
index 6a81ababf..f93fcc7a5 100644
--- a/src/lib/pubkey/ecdsa/ecdsa.cpp
+++ b/src/lib/pubkey/ecdsa/ecdsa.cpp
@@ -159,36 +159,54 @@ bool ECDSA_Verification_Operation::verify(const byte msg[], size_t msg_len,
 }
 
 std::unique_ptr<PK_Ops::Verification>
-ECDSA_PublicKey::create_verification_op(RandomNumberGenerator& rng,
-                                        const std::string& params,
+ECDSA_PublicKey::create_verification_op(const std::string& params,
                                         const std::string& provider) const
    {
 #if defined(BOTAN_HAS_OPENSSL)
-   if(provider == "openssl")
+   if(provider == "openssl" || provider.empty())
       {
-      std::unique_ptr<PK_Ops::Verification> res = make_openssl_ecdsa_ver_op(*this, params);
-      if(res)
-         return res;
+      try
+         {
+         return make_openssl_ecdsa_ver_op(*this, params);
+         }
+      catch(Exception& e)
+         {
+         if(provider == "openssl")
+            throw Exception("OpenSSL provider refused ECDSA pubkey", e.what());
+         }
       }
 #endif
-   return std::unique_ptr<PK_Ops::Verification>(new ECDSA_Verification_Operation(*this, params));
+
+   if(provider == "base" || provider.empty())
+      return std::unique_ptr<PK_Ops::Verification>(new ECDSA_Verification_Operation(*this, params));
+
+   throw Provider_Not_Found(algo_name(), provider);
    }
 
 std::unique_ptr<PK_Ops::Signature>
-ECDSA_PrivateKey::create_signature_op(RandomNumberGenerator& rng,
+ECDSA_PrivateKey::create_signature_op(RandomNumberGenerator& /*rng*/,
                                       const std::string& params,
                                       const std::string& provider) const
    {
 #if defined(BOTAN_HAS_OPENSSL)
-   if(provider == "openssl")
+   if(provider == "openssl" || provider.empty())
       {
-      std::unique_ptr<PK_Ops::Signature> res = make_openssl_ecdsa_sig_op(*this, params);
-      if(res)
-         return res;
+      try
+         {
+         return make_openssl_ecdsa_sig_op(*this, params);
+         }
+      catch(Exception& e)
+         {
+         if(provider == "openssl")
+            throw Exception("OpenSSL provider refused ECDSA privkey", e.what());
+         }
       }
 #endif
 
-   return std::unique_ptr<PK_Ops::Signature>(new ECDSA_Signature_Operation(*this, params));
+   if(provider == "base" || provider.empty())
+      return std::unique_ptr<PK_Ops::Signature>(new ECDSA_Signature_Operation(*this, params));
+
+   throw Provider_Not_Found(algo_name(), provider);
    }
 
 }
author	Jack Lloyd <[email protected]>	2016-09-14 16:33:37 -0400
committer	Jack Lloyd <[email protected]>	2016-10-07 19:27:58 -0400
commit	239bdf36a617df86dc97efb11ec96d7c6d357534 (patch)
tree	1011ccccee0a4aad5e58943fa3a4af621c968b8a /src/lib/pubkey/ecdsa/ecdsa.cpp
parent	25b6fb53eec30620d084411fb1dbc8913142fc6d (diff)