Do you have an example that resulted in that spurious error queue entry?

Do you have an example that resulted in that spurious error queue entry?

Sure.

wget 'http://pki.certificate.fi:8081/install-ca-cert.html/ca-certificate.crt?ca-id=632&download-certificate=1' -O insta.ca.crt
apps/openssl ecparam -genkey -name prime256v1 -out insta.priv.pem
apps/openssl cmp -config apps/openssl.cnf -section insta

yields

cmp_main:apps/cmp.c:2581:CMP info: using section(s) 'insta' of OpenSSL configuration file 'apps/openssl.cnf'
setup_client_ctx:apps/cmp.c:1891:CMP info: will contact http://pki.certificate.fi:8700/pkix/
ossl_store_handle_load_result:crypto/store/store_result.c:151:CMP error: unsupported:
asn1_check_tlen:crypto/asn1/tasn_dec.c:1156:CMP error: wrong tag:
asn1_item_embed_d2i:crypto/asn1/tasn_dec.c:322:CMP error: nested asn1 error:Type=EC_PRIVATEKEY
send_receive_check:crypto/cmp/cmp_client.c:167:CMP info: sending IR
send_receive_check:crypto/cmp/cmp_client.c:187:CMP info: received IP
send_receive_check:crypto/cmp/cmp_client.c:167:CMP info: sending CERTCONF
send_receive_check:crypto/cmp/cmp_client.c:187:CMP info: received PKICONF
save_free_certs:apps/cmp.c:1940:CMP info: received 1 extra certificate(s), saving to file 'insta.extracerts.pem'
save_free_certs:apps/cmp.c:1940:CMP info: received 1 enrolled certificate(s), saving to file 'insta.cert.pem'

When loading RSA keys instead this does not happen.

Update: A simpler way to reproduce this is:

apps/openssl ecparam -genkey -name prime256v1 -out privkey-with-params.pem
apps/openssl pkey -in  privkey-with-params.pem

With the proposed changes there is a test failure on

make run_tests TESTS=test_x509

which appears to indicate a different type of uncleanness regarding the error queue:

25-test_x509.t .. 1/18 
../../util/wrap.pl ../../apps/openssl x509 -in ../../test/certs/v3-certs-RC2.p12 -passin 'pass:v3-certs' 2> out.txt => 1
Could not read certificate from ../../test/certs/v3-certs-RC2.p12
Unable to load certificate
not ok 17 - load v3-certs-RC2 no asn1 errors
25-test_x509.t .. 17/18 --------------------------------------------------------
25-test_x509.t .. Dubious, test returned 1 (wstat 256, 0x100)
Failed 1/18 subtests 

Ah, the spurious error happens because insta.priv.pem holds two items, demonstrated like this:

$ ./util/wrap.pl apps/openssl storeutl insta.priv.pem 
0: Parameters
-----BEGIN EC PARAMETERS-----
BggqhkjOPQMBBw==
-----END EC PARAMETERS-----
1: Pkey
-----BEGIN PRIVATE KEY-----
MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgB3KN9BGnVLlGtTRR
QJTqyn2fS1OH390SzH5NRSLpZB+hRANCAAT95NrJeMI0BP50A/Yx0G88ZY1EJiP7
wOi12pAaMM+nN5iyed17ro8Y4JgIEJcSAt0rNo24FPHb013p/PrEeLXb
-----END PRIVATE KEY-----
Total found: 2

The point where this file is loaded is here:

That will, of course, only accept private keys, not key params.

This has me think about recent development, where we're taking a closer look at the extected STORE_INFO type in ossl_store_handle_load_result() and its sub-functions. It seems to me that the semantics of what this function returns has shifted slightly because we're not making a difference between an error when decoding the contents and that the data doesn't match the expected STORE_INFO type. ossl_store_handle_load_result() should return true, with a NULL *v for the latter, and since it currently doesn't, the NULL STORE_INFO is returned all the way here, and you get that spurious error printed:

So, it seems to come down to store_result.c and what it does when the data doesn't match expectations.

Indeed the errors occur only with the

 -----BEGIN EC PARAMETERS-----
BggqhkjOPQMBBw==
-----END EC PARAMETERS-----

portion of the private key file!
And their

ossl_store_handle_load_result:crypto/store/store_result.c:151:CMP error: unsupported:

part is unclear (if given at all, it should mention that it does not like the parameters found), while

asn1_check_tlen:crypto/asn1/tasn_dec.c:1156:CMP error: wrong tag:
asn1_item_embed_d2i:crypto/asn1/tasn_dec.c:322:CMP error: nested asn1 error:Type=EC_PRIVATEKEY

is misleading because the problem is not the EC PRIVATE KEY part but the EC PARAMETERS part.

Actually also

ossl_store_handle_load_result:crypto/store/store_result.c:151:CMP error: unsupported:

is misleading in my view since EC PARAMETERS are not unsupported, just unexpected.

So I suspect that in

    ERR_set_mark();
    if (*v == NULL && !try_name(&helper_data, v))
        goto err;
    ERR_pop_to_mark();
    ERR_set_mark();
    if (*v == NULL && !try_key(&helper_data, v, ctx, provider, libctx, propq))
        goto err;
    ERR_pop_to_mark();
    ERR_set_mark();
    if (*v == NULL && !try_cert(&helper_data, v, libctx, propq))
        goto err;
    ERR_pop_to_mark();
    ERR_set_mark();
    if (*v == NULL && !try_crl(&helper_data, v, libctx, propq))
        goto err;
    ERR_pop_to_mark();
    ERR_set_mark();
    if (*v == NULL && !try_pkcs12(&helper_data, v, ctx, libctx, propq))
        goto err;
    ERR_pop_to_mark();

a handling for the (EC) PARAMETERS case (OSSL_STORE_INFO_PARAMS) is missing?

I've just found a very simple preliminary fix for the reported spurious update: 'unsupported' error problem,
but not for the deeper ones we discovered here during the analysis.

@levitte, will you take care of a deeper/proper solution (which is not urgent in my view)?

Please drop your changes to providers/implementations/encode_decode/decode_der2key.c

Please drop your changes to providers/implementations/encode_decode/decode_der2key.c

Unfortunately these are still needed to prevent

asn1_check_tlen:crypto/asn1/tasn_dec.c:1156:CMP error: wrong tag:
asn1_item_embed_d2i:crypto/asn1/tasn_dec.c:322:CMP error: nested asn1 error:Type=EC_PRIVATEKEY

Or what else do you concretely suggest to get rid of those?

And is my latest quick-fix change to ossl_store_handle_load_result():

    if (*v == NULL && helper_data.object_type == OSSL_OBJECT_PKEY)
        return 0;

acceptable (for the time being) after all?

Or what else do you concretely suggest to get rid of those?

I would have a ERR_set_mark() / ERR_pop_to_mark() pair in here:

and simply remove the error printing

@levitte, will you take care of a deeper/proper solution (which is not urgent in my view)?

Yes, I plan on doing so.

@levitte, will you take care of a deeper/proper solution (which is not urgent in my view)?

Yes, I plan on doing so.

Pleased to hear.

Or what else do you concretely suggest to get rid of those?

I would have a ERR_set_mark() / ERR_pop_to_mark() pair in here:

openssl/apps/lib/apps.c

Lines 978 to 991 in 773f1c3

	/*
	* This can happen (for example) if we attempt to load a file with
	* multiple different types of things in it - but the thing we just
	* tried to load wasn't one of the ones we wanted, e.g. if we're trying
	* to load a certificate but the file has both the private key and the
	* certificate in it. We just retry until eof.
	*/
	if (info == NULL) {
	if (OSSL_STORE_error(ctx)) {
	ERR_print_errors(bio_err);
	ERR_clear_error();
	}
	continue;
	}

and simply remove the error printing

This appears strange to me. For instance like this?

            ERR_set_mark();
            if (OSSL_STORE_error(ctx)) {
#if 0
                ERR_print_errors(bio_err);
                ERR_clear_error();
#endif
            }
            ERR_pop_to_mark();

As expected, this (or having the pair outside the block) does not prevent the error printed by

apps/openssl cmp -config apps/openssl.cnf -section insta

As explained above, I am pretty sure that the trial-and-error construct in der2key_decode() needs to be adapted.

How if we simply defer this (as WIP) to the beta phase?
Or if we commit my preliminary solution but mark it as, e.g. "TODO(3.0) improve" and open an issue for that?

I would like to ask you for a little patience. I intend to use the weekend for something else.

This PR is in a state where it requires action by @openssl/otc but the last update was 30 days ago

This PR is in a state where it requires action by @openssl/otc but the last update was 61 days ago

Is this needed for 3.0? It does not have the 3.0 milestone at the moment

I lost track of this PR on September,
but after yesterday's reminder by the openssl-machine,
I've just brushed it up, making it ready for further (hopefully final) reviewing.

@t8m, can we please finalize this now,
since the changes still under discussion have been moved to #17354?

This pull request is ready to merge

Merged - thanks @levitte and @t8m