Wrapping EverCBOR

[maxtropets]

This's purely reading CBORs, and lacking more exhausting tests, but is a good starting point, maybe?

[Copilot]

Pull request overview

This PR replaces the direct use of EverCBOR with a new CBOR wrapper abstraction (ccf::cbor). The primary purpose is to simplify CBOR parsing operations throughout the codebase by providing a higher-level, type-safe API.

Key Changes:

• Introduces a new CBOR wrapper library (src/crypto/cbor.h and src/crypto/cbor.cpp) that encapsulates EverCBOR operations
• Refactors UVM endorsement parsing to use the new wrapper, significantly reducing code complexity (from ~400 lines to ~100 lines in the decode functions)
• Updates error handling to use the new CBORDecodeError type consistently

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.

File	Description
src/crypto/cbor.h	Defines the new CBOR wrapper API with types and parsing functions
src/crypto/cbor.cpp	Implements the CBOR wrapper, including parsing and value extraction methods
src/node/uvm_endorsements.cpp	Refactors protected header decoding to use the new CBOR wrapper instead of raw EverCBOR calls
cmake/crypto.cmake	Adds the new cbor.cpp to the build configuration

Comments suppressed due to low confidence (1)

src/node/uvm_endorsements.cpp:343

• Missing closing brace for the namespace ccf block. The namespace opened at line 9 should be closed after line 168.

  }
}

[Copilot]

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated 5 comments.

[Copilot]

The validation for empty x5chain array has been removed. The old implementation threw an error if the parsed x5chain was empty. This validation should be restored to ensure at least one certificate is present in the chain.

Suggested change

	}
	}
	if (chain.empty())
	{
	throw ccf::cbor::CBORDecodeError(
	"x5chain must contain at least one certificate");
	}

[Copilot]

Inconsistent string conversion from string_view. Line 99 and 114 use explicit std::string conversion, while line 109 relies on implicit conversion. For consistency and clarity, all string assignments should use the same approach.

Suggested change

	result.iss = iss->as_string(iss_context);
	result.iss = std::string(iss->as_string(iss_context));

[Copilot]

Magic number 259 should be replaced with a named constant. Based on the context and comparison with line 96-98 which uses headers::PARAM_CONTENT_TYPE, this appears to be a content type parameter. Consider defining this constant in the headers namespace or using the existing constant if 259 is the correct value for PARAM_CONTENT_TYPE.

Suggested change

	const auto ct_context = "phdr: " + std::to_string(259);
	const auto& content_type =
	parsed_phdr->map_at(ccf::cbor::make_unsigned(259), ct_context);
	const auto ct_context =
	"phdr: " + std::to_string(headers::PARAM_CONTENT_TYPE);
	const auto& content_type = parsed_phdr->map_at(
	ccf::cbor::make_unsigned(headers::PARAM_CONTENT_TYPE), ct_context);

[Copilot]

The comment says "Return all as one bytes" but the function returns a Simple value (uint8_t), not bytes. The comment should be corrected to accurately describe the function's behavior.

Suggested change

	// Return all as one bytes, leave detailed parsing to the user. EverCBOR
	// does not support more granular parsing, as well as floating point numbers
	// with extra payload yet.
	// Return the raw simple value (single byte) and leave detailed interpretation
	// to the caller. EverCBOR does not yet support more granular parsing, or
	// floating point numbers with extra payload.

[Copilot]

The print_value_impl function is missing a handler for the Simple type in the std::visit. This means Simple values won't be printed, which could cause silent failures or undefined behavior during debugging. Add a handler for Simple values similar to other types.