Update deprecated mem_ops.h func calls to use std::span-based versions and make others todo

Author: KaganCanSit

src/lib/mac/cmac/cmac.cpp

@@ -25,13 +25,13 @@ void CMAC::add_data(std::span<const uint8_t> input) {
    copy_mem(m_buffer.data() + m_position, input.data(), initial_fill);
 
    if(m_position + input.size() > bs) {
-      xor_buf(m_state, m_buffer, bs);
+      xor_buf(m_state, std::span{m_buffer}.first(bs));
       m_cipher->encrypt(m_state);
 
       BufferSlicer in(input);
       in.skip(bs - m_position);
       while(in.remaining() > bs) {
-         xor_buf(m_state, in.take(bs), bs);
+         xor_buf(m_state, in.take(bs));
          m_cipher->encrypt(m_state);
       }
 
@@ -47,13 +47,13 @@ void CMAC::add_data(std::span<const uint8_t> input) {
 * Finalize an CMAC Calculation
 */
 void CMAC::final_result(std::span<uint8_t> mac) {
-   xor_buf(m_state, m_buffer, m_position);
+   xor_buf(std::span{m_state}.first(m_position), std::span{m_buffer}.first(m_position));
 
    if(m_position == output_length()) {
-      xor_buf(m_state, m_B, output_length());
+      xor_buf(m_state, m_B);
    } else {
       m_state[m_position] ^= 0x80;
-      xor_buf(m_state, m_P, output_length());
+      xor_buf(m_state, m_P);
    }
 
    m_cipher->encrypt(m_state);

src/lib/mac/x919_mac/x919_mac.cpp

@@ -21,7 +21,7 @@ void ANSI_X919_MAC::add_data(std::span<const uint8_t> input) {
    BufferSlicer in(input);
 
    const auto to_be_xored = in.take(std::min(8 - m_position, in.remaining()));
-   xor_buf(&m_state[m_position], to_be_xored.data(), to_be_xored.size());
+   xor_buf(std::span{m_state}.subspan(m_position, to_be_xored.size()), to_be_xored);
    m_position += to_be_xored.size();
 
    if(m_position < 8) {
@@ -30,12 +30,12 @@ void ANSI_X919_MAC::add_data(std::span<const uint8_t> input) {
 
    m_des1->encrypt(m_state);
    while(in.remaining() >= 8) {
-      xor_buf(m_state, in.take(8).data(), 8);
+      xor_buf(std::span{m_state}.first<8>(), in.take<8>());
       m_des1->encrypt(m_state);
    }
 
    const auto remaining = in.take(in.remaining());
-   xor_buf(m_state, remaining.data(), remaining.size());
+   xor_buf(std::span{m_state}.first(remaining.size()), remaining);
    m_position = remaining.size();
 }
 

src/lib/misc/roughtime/roughtime.cpp

@@ -13,6 +13,7 @@
 #include <botan/pubkey.h>
 #include <botan/rng.h>
 #include <botan/internal/socket_udp.h>
+#include <botan/internal/stl_util.h>
 
 #include <cmath>
 #include <map>
@@ -47,7 +48,8 @@ template <typename T>
 T copy(const uint8_t* t)
    requires(is_array<T>::value)
 {
-   return typecast_copy<T>(t);  //arrays are endianess independent, so we do a memcpy
+   //arrays are endianess independent, so we do a memcpy
+   return typecast_copy<T>(std::span<const uint8_t, sizeof(T)>(t, sizeof(T)));
 }
 
 template <typename T>
@@ -146,10 +148,7 @@ void hashNode(std::array<uint8_t, 64>& hash, const std::array<uint8_t, 64>& node
 
 template <size_t N, typename T>
 std::array<uint8_t, N> vector_to_array(std::vector<uint8_t, T> vec) {
-   if(vec.size() != N) {
-      throw std::logic_error("Invalid vector size");
-   }
-   return typecast_copy<std::array<uint8_t, N>>(vec.data());
+   return typecast_copy<std::array<uint8_t, N>>(vec);
 }
 }  // namespace
 
@@ -159,7 +158,7 @@ Nonce::Nonce(const std::vector<uint8_t>& nonce) : m_nonce{} {
    if(nonce.size() != 64) {
       throw Invalid_Argument("Roughtime nonce must be 64 bytes long");
    }
-   m_nonce = typecast_copy<std::array<uint8_t, 64>>(nonce.data());
+   m_nonce = typecast_copy<std::array<uint8_t, 64>>(nonce);
 }
 
 Nonce::Nonce(RandomNumberGenerator& rng) : m_nonce(rng.random_array<64>()) {}
@@ -201,10 +200,10 @@ Response Response::from_bits(const std::vector<uint8_t>& response, const Nonce&
 
    auto hash = hashLeaf(nonce.get_nonce());
    auto index = indx;
-   size_t level = 0;
-   while(level < levels) {
-      hashNode(hash, typecast_copy<std::array<uint8_t, 64>>(path.data() + level * 64), index & 1);
-      ++level;
+
+   BufferSlicer slicer(path);
+   for(size_t level = 0; level < levels; ++level) {
+      hashNode(hash, typecast_copy<std::array<uint8_t, 64>>(slicer.take<64>()), index & 1);
       index >>= 1;
    }
 

src/lib/modes/aead/eax/eax.cpp

@@ -133,13 +133,13 @@ void EAX_Encryption::finish_msg(secure_vector<uint8_t>& buffer, size_t offset) {
    update(buffer, offset);
 
    secure_vector<uint8_t> data_mac = m_cmac->final();
-   xor_buf(data_mac, m_nonce_mac, data_mac.size());
+   xor_buf(data_mac, m_nonce_mac);
 
    if(m_ad_mac.empty()) {
       m_ad_mac = eax_prf(1, block_size(), *m_cmac, nullptr, 0);
    }
 
-   xor_buf(data_mac, m_ad_mac, data_mac.size());
+   xor_buf(data_mac, m_ad_mac);
 
    buffer += std::make_pair(data_mac.data(), tag_size());
 

src/lib/modes/xts/xts.cpp

@@ -155,19 +155,19 @@ void XTS_Encryption::finish_msg(secure_vector<uint8_t>& buffer, size_t offset) {
       buffer.resize(full_blocks + offset);
       update(buffer, offset);
 
-      xor_buf(last, tweak(), BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak(), BS));
       cipher().encrypt(last);
-      xor_buf(last, tweak(), BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak(), BS));
 
       for(size_t i = 0; i != final_bytes - BS; ++i) {
          last[i] ^= last[i + BS];
          last[i + BS] ^= last[i];
          last[i] ^= last[i + BS];
       }
 
-      xor_buf(last, tweak() + BS, BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak() + BS, BS));
       cipher().encrypt(last);
-      xor_buf(last, tweak() + BS, BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak() + BS, BS));
 
       buffer += last;
    }
@@ -190,9 +190,9 @@ size_t XTS_Decryption::process_msg(uint8_t buf[], size_t sz) {
       const size_t to_proc = std::min(blocks, blocks_in_tweak);
       const size_t proc_bytes = to_proc * BS;
 
-      xor_buf(buf, tweak(), proc_bytes);
+      xor_buf(std::span(buf, proc_bytes), std::span(tweak(), proc_bytes));
       cipher().decrypt_n(buf, buf, to_proc);
-      xor_buf(buf, tweak(), proc_bytes);
+      xor_buf(std::span(buf, proc_bytes), std::span(tweak(), proc_bytes));
 
       buf += proc_bytes;
       blocks -= to_proc;
@@ -224,19 +224,19 @@ void XTS_Decryption::finish_msg(secure_vector<uint8_t>& buffer, size_t offset) {
       buffer.resize(full_blocks + offset);
       update(buffer, offset);
 
-      xor_buf(last, tweak() + BS, BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak() + BS, BS));
       cipher().decrypt(last);
-      xor_buf(last, tweak() + BS, BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak() + BS, BS));
 
       for(size_t i = 0; i != final_bytes - BS; ++i) {
          last[i] ^= last[i + BS];
          last[i + BS] ^= last[i];
          last[i] ^= last[i + BS];
       }
 
-      xor_buf(last, tweak(), BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak(), BS));
       cipher().decrypt(last);
-      xor_buf(last, tweak(), BS);
+      xor_buf(std::span(last).first(BS), std::span(tweak(), BS));
 
       buffer += last;
    }

src/lib/pubkey/dlies/dlies.cpp

@@ -70,7 +70,7 @@ std::vector<uint8_t> DLIES_Encryptor::enc(const uint8_t in[], size_t length, Ran
       m_cipher->start(m_iv.bits_of());
       m_cipher->finish(ciphertext);
    } else {
-      xor_buf(ciphertext, secret_keys, cipher_key_len);
+      xor_buf(std::span{ciphertext}.first(cipher_key_len), std::span{secret_keys}.first(cipher_key_len));
    }
 
    // calculate MAC
@@ -183,7 +183,7 @@ secure_vector<uint8_t> DLIES_Decryptor::do_decrypt(uint8_t& valid_mask, const ui
          return secure_vector<uint8_t>();
       }
    } else {
-      xor_buf(ciphertext, secret_keys.data(), cipher_key_len);
+      xor_buf(std::span{ciphertext}.first(cipher_key_len), std::span{secret_keys}.first(cipher_key_len));
    }
 
    return ciphertext;

src/lib/tls/tls12/tls_record.cpp

@@ -16,6 +16,7 @@
 #include <botan/internal/ct_utils.h>
 #include <botan/internal/fmt.h>
 #include <botan/internal/loadstor.h>
+#include <botan/internal/stl_util.h>
 #include <botan/internal/tls_seq_numbers.h>
 #include <botan/internal/tls_session_key.h>
 #include <sstream>
@@ -108,16 +109,13 @@ std::vector<uint8_t> Connection_Cipher_State::aead_nonce(uint64_t seq, RandomNum
       }
       case Nonce_Format::AEAD_XOR_12: {
          std::vector<uint8_t> nonce(12);
-         store_be(seq, nonce.data() + 4);
-         xor_buf(nonce, m_nonce.data(), m_nonce.size());
+         store_be(seq, std::span{nonce}.last<8>());
+         xor_buf(nonce, m_nonce);
          return nonce;
       }
       case Nonce_Format::AEAD_IMPLICIT_4: {
          BOTAN_ASSERT_NOMSG(m_nonce.size() == 4);
-         std::vector<uint8_t> nonce(12);
-         copy_mem(&nonce[0], m_nonce.data(), 4);  // NOLINT(*container-data-pointer)
-         store_be(seq, &nonce[nonce_bytes_from_handshake()]);
-         return nonce;
+         return concat(m_nonce, store_be(seq));
       }
    }
 
@@ -143,19 +141,16 @@ std::vector<uint8_t> Connection_Cipher_State::aead_nonce(const uint8_t record[],
       }
       case Nonce_Format::AEAD_XOR_12: {
          std::vector<uint8_t> nonce(12);
-         store_be(seq, nonce.data() + 4);
-         xor_buf(nonce, m_nonce.data(), m_nonce.size());
+         store_be(seq, std::span{nonce}.last<8>());
+         xor_buf(nonce, m_nonce);
          return nonce;
       }
       case Nonce_Format::AEAD_IMPLICIT_4: {
          BOTAN_ASSERT_NOMSG(m_nonce.size() == 4);
          if(record_len < nonce_bytes_from_record()) {
             throw Decoding_Error("Invalid AEAD packet too short to be valid");
          }
-         std::vector<uint8_t> nonce(12);
-         copy_mem(&nonce[0], m_nonce.data(), 4);  // NOLINT(*container-data-pointer)
-         copy_mem(&nonce[nonce_bytes_from_handshake()], record, nonce_bytes_from_record());
-         return nonce;
+         return concat(m_nonce, std::span{record, record_len}.first(nonce_bytes_from_record()));
       }
    }
 

src/lib/utils/mem_ops.h

@@ -214,7 +214,7 @@ inline constexpr ToT typecast_copy(const FromR& src) {
    return dst;
 }
 
-// TODO: deprecate and replace
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename T>
 inline constexpr void typecast_copy(uint8_t out[], T in[], size_t N)
    requires std::is_trivially_copyable_v<T>
@@ -223,7 +223,7 @@ inline constexpr void typecast_copy(uint8_t out[], T in[], size_t N)
    typecast_copy(std::span<uint8_t>(out, sizeof(T) * N), std::span<const T>(in, N));
 }
 
-// TODO: deprecate and replace
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename T>
 inline constexpr void typecast_copy(T out[], const uint8_t in[], size_t N)
    requires std::is_trivial_v<T>
@@ -232,22 +232,22 @@ inline constexpr void typecast_copy(T out[], const uint8_t in[], size_t N)
    typecast_copy(std::span<T>(out, N), std::span<const uint8_t>(in, N * sizeof(T)));
 }
 
-// TODO: deprecate and replace
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename T>
 inline constexpr void typecast_copy(uint8_t out[], const T& in) {
    // asserts that *out points to the correct amount of memory
    typecast_copy(std::span<uint8_t, sizeof(T)>(out, sizeof(T)), in);
 }
 
-// TODO: deprecate and replace
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename T>
    requires std::is_trivial_v<std::decay_t<T>>
 inline constexpr void typecast_copy(T& out, const uint8_t in[]) {
    // asserts that *in points to the correct amount of memory
    typecast_copy(out, std::span<const uint8_t, sizeof(T)>(in, sizeof(T)));
 }
 
-// TODO: deprecate and replace
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename To>
    requires std::is_trivial_v<To>
 inline constexpr To typecast_copy(const uint8_t src[]) noexcept {
@@ -416,22 +416,22 @@ inline void xor_buf(uint8_t out[], const uint8_t in[], const uint8_t in2[], size
    xor_buf(std::span{out, length}, std::span{in, length}, std::span{in2, length});
 }
 
-// TODO: deprecate and replace, use .subspan()
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 inline void xor_buf(std::span<uint8_t> out, std::span<const uint8_t> in, size_t n) {
    BOTAN_ARG_CHECK(out.size() >= n, "output span is too small");
    BOTAN_ARG_CHECK(in.size() >= n, "input span is too small");
    xor_buf(out.first(n), in.first(n));
 }
 
-// TODO: deprecate and replace, use .subspan()
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename Alloc>
 void xor_buf(std::vector<uint8_t, Alloc>& out, const uint8_t* in, size_t n) {
    BOTAN_ARG_CHECK(out.size() >= n, "output vector is too small");
    // simply assumes that *in points to "n" allocated bytes at least
    xor_buf(std::span{out}.first(n), std::span{in, n});
 }
 
-// TODO: deprecate and replace
+BOTAN_DEPRECATED("This function is deprecated, use range-based version instead")
 template <typename Alloc, typename Alloc2>
 void xor_buf(std::vector<uint8_t, Alloc>& out, const uint8_t* in, const std::vector<uint8_t, Alloc2>& in2, size_t n) {
    BOTAN_ARG_CHECK(out.size() >= n, "output vector is too small");

src/tests/test_roughtime.cpp

@@ -34,8 +34,7 @@ class Roughtime_Request_Tests final : public Text_Based_Test {
 
          const auto request = Botan::Roughtime::encode_request(nonce);
          result.test_eq(
-            "encode", type == "Valid", request == Botan::typecast_copy<std::array<uint8_t, 1024>>(request_v.data()));
-
+            "encode", type == "Valid", request == Botan::typecast_copy<std::array<uint8_t, 1024>>(request_v));
          return result;
       }
 };
@@ -114,10 +113,10 @@ class Roughtime final : public Test {
          auto rand64 = Botan::unlock(rng.random_vec(64));
          Botan::Roughtime::Nonce nonce_v(rand64);
          result.confirm("nonce from vector",
-                        nonce_v.get_nonce() == Botan::typecast_copy<std::array<uint8_t, 64>>(rand64.data()));
-         Botan::Roughtime::Nonce nonce_a(Botan::typecast_copy<std::array<uint8_t, 64>>(rand64.data()));
+                        nonce_v.get_nonce() == Botan::typecast_copy<std::array<uint8_t, 64>>(rand64));
+         Botan::Roughtime::Nonce nonce_a(Botan::typecast_copy<std::array<uint8_t, 64>>(rand64));
          result.confirm("nonce from array",
-                        nonce_v.get_nonce() == Botan::typecast_copy<std::array<uint8_t, 64>>(rand64.data()));
+                        nonce_v.get_nonce() == Botan::typecast_copy<std::array<uint8_t, 64>>(rand64));
          rand64.push_back(10);
          result.test_throws("vector oversize", [&rand64]() { Botan::Roughtime::Nonce nonce_v2(rand64); });  //size 65
          rand64.pop_back();
@@ -135,9 +134,8 @@ class Roughtime final : public Test {
 
          auto rand64 = Botan::unlock(rng.random_vec(64));
          Botan::Roughtime::Nonce nonce_v(rand64);
-         result.confirm(
-            "empty chain nonce is blind",
-            c1.next_nonce(nonce_v).get_nonce() == Botan::typecast_copy<std::array<uint8_t, 64>>(rand64.data()));
+         result.confirm("empty chain nonce is blind",
+                        c1.next_nonce(nonce_v).get_nonce() == Botan::typecast_copy<std::array<uint8_t, 64>>(rand64));
 
          const std::string chain_str =
             "ed25519 bbT+RPS7zKX6w71ssPibzmwWqU9ffRV5oj2OresSmhE= eu9yhsJfVfguVSqGZdE8WKIxaBBM0ZG3Vmuc+IyZmG2YVmrIktUByDdwIFw6F4rZqmSFsBO85ljoVPz5bVPCOw== BQAAAEAAAABAAAAApAAAADwBAABTSUcAUEFUSFNSRVBDRVJUSU5EWBnGOEajOwPA6G7oL47seBP4C7eEpr57H43C2/fK/kMA0UGZVUdf4KNX8oxOK6JIcsbVk8qhghTwA70qtwpYmQkDAAAABAAAAAwAAABSQURJTUlEUFJPT1RAQg8AJrA8tEqPBQAqisiuAxgy2Pj7UJAiWbCdzGz1xcCnja3T+AqhC8fwpeIwW4GPy/vEb/awXW2DgSLKJfzWIAz+2lsR7t4UjNPvAgAAAEAAAABTSUcAREVMRes9Ch4X0HIw5KdOTB8xK4VDFSJBD/G9t7Et/CU7UW61OiTBXYYQTG2JekWZmGa0OHX1JPGG+APkpbsNw0BKUgYDAAAAIAAAACgAAABQVUJLTUlOVE1BWFR/9BWjpsWTQ1f6iUJea3EfZ1MkX3ftJiV3ABqNLpncFwAAAAAAAAAA//////////8AAAAA\n"