Patch #1 for 2.3 release-2.3.1 release/v2.3

- TLS: fix timing side-channel for RSA key exchange - fix method Write(ReadOnlySpan<byte>) in LimitedBuffer - ASN.1: Limit OID contents to 4096 bytes - EdDSA: fix verification infinite loop - EC: restrict m value in F2m curves
author: Peter Dettman <peter.dettman@bouncycastle.org> 2024-05-07 22:44:37 +0700
committer: Peter Dettman <peter.dettman@bouncycastle.org> 2024-05-07 22:44:37 +0700
commit: 45c6b993945f01076e386cb59988b1836a329999 (patch)
tree: af2cfef4965004df69538b330db2923d3f4e7b20 /crypto/src/asn1/Asn1InputStream.cs
parent: Set version to '2.3' (diff)
download: BouncyCastle.NET-ed25519-release/v2.3.tar.xz
1 files changed, 9 insertions, 2 deletions
diff --git a/crypto/src/asn1/Asn1InputStream.cs b/crypto/src/asn1/Asn1InputStream.cs
index 96b0a1c66..3b5eaaa95 100644
--- a/crypto/src/asn1/Asn1InputStream.cs
+++ b/crypto/src/asn1/Asn1InputStream.cs
@@ -377,7 +377,9 @@ namespace Org.BouncyCastle.Asn1
             switch (tagNo)
             {
             case Asn1Tags.BmpString:
+            {
                 return CreateDerBmpString(defIn);
+            }
             case Asn1Tags.Boolean:
             {
                 GetBuffer(defIn, tmpBuffers, out var contents);
@@ -390,9 +392,16 @@ namespace Org.BouncyCastle.Asn1
             }
             case Asn1Tags.ObjectIdentifier:
             {
+                DerObjectIdentifier.CheckContentsLength(defIn.Remaining);
                 bool usedBuffer = GetBuffer(defIn, tmpBuffers, out var contents);
                 return DerObjectIdentifier.CreatePrimitive(contents, clone: usedBuffer);
             }
+            case Asn1Tags.RelativeOid:
+            {
+                Asn1RelativeOid.CheckContentsLength(defIn.Remaining);
+                bool usedBuffer = GetBuffer(defIn, tmpBuffers, out var contents);
+                return Asn1RelativeOid.CreatePrimitive(contents, clone: usedBuffer);
+            }
             }
 
             byte[] bytes = defIn.ToArray();
@@ -421,8 +430,6 @@ namespace Org.BouncyCastle.Asn1
                 return Asn1OctetString.CreatePrimitive(bytes);
             case Asn1Tags.PrintableString:
                 return DerPrintableString.CreatePrimitive(bytes);
-            case Asn1Tags.RelativeOid:
-                return Asn1RelativeOid.CreatePrimitive(bytes, false);
             case Asn1Tags.T61String:
                 return DerT61String.CreatePrimitive(bytes);
             case Asn1Tags.UniversalString:
author	Peter Dettman <peter.dettman@bouncycastle.org>	2024-05-07 22:44:37 +0700
committer	Peter Dettman <peter.dettman@bouncycastle.org>	2024-05-07 22:44:37 +0700
commit	45c6b993945f01076e386cb59988b1836a329999 (patch)
tree	af2cfef4965004df69538b330db2923d3f4e7b20 /crypto/src/asn1/Asn1InputStream.cs
parent	Set version to '2.3' (diff)
download	BouncyCastle.NET-ed25519-release/v2.3.tar.xz