mirror of
				https://github.com/smaeul/u-boot.git
				synced 2025-10-25 18:18:19 +01:00 
			
		
		
		
	Define a UCLASS API for verifying ECDSA signatures. Unlike UCLASS_MOD_EXP, which focuses strictly on modular exponentiation, the ECDSA class focuses on verification. This is done so that it better aligns with mach-specific implementations, such as stm32mp. Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> Reviewed-by: Patrick Delaunay <patrick.delaunay@foss.st.com>
		
			
				
	
	
		
			40 lines
		
	
	
		
			1.2 KiB
		
	
	
	
		
			C
		
	
	
	
	
	
			
		
		
	
	
			40 lines
		
	
	
		
			1.2 KiB
		
	
	
	
		
			C
		
	
	
	
	
	
| /* SPDX-License-Identifier: GPL-2.0+ */
 | |
| /*
 | |
|  * Copyright (c) 2020, Alexandru Gagniuc <mr.nuke.me@gmail.com>
 | |
|  */
 | |
| 
 | |
| #include <dm/device.h>
 | |
| 
 | |
| /**
 | |
|  * struct ecdsa_public_key - ECDSA public key properties
 | |
|  *
 | |
|  * The struct has pointers to the (x, y) curve coordinates to an ECDSA public
 | |
|  * key, as well as the name of the ECDSA curve. The size of the key is inferred
 | |
|  * from the 'curve_name'
 | |
|  */
 | |
| struct ecdsa_public_key {
 | |
| 	const char *curve_name;	/* Name of curve, e.g. "prime256v1" */
 | |
| 	const void *x;		/* x coordinate of public key */
 | |
| 	const void *y;		/* y coordinate of public key */
 | |
| 	unsigned int size_bits;	/* key size in bits, derived from curve name */
 | |
| };
 | |
| 
 | |
| struct ecdsa_ops {
 | |
| 	/**
 | |
| 	 * Verify signature of hash against given public key
 | |
| 	 *
 | |
| 	 * @dev:	ECDSA Device
 | |
| 	 * @pubkey:	ECDSA public key
 | |
| 	 * @hash:	Hash of binary image
 | |
| 	 * @hash_len:	Length of hash in bytes
 | |
| 	 * @signature:	Signature in a raw (R, S) point pair
 | |
| 	 * @sig_len:	Length of signature in bytes
 | |
| 	 *
 | |
| 	 * This function verifies that the 'signature' of the given 'hash' was
 | |
| 	 * signed by the private key corresponding to 'pubkey'.
 | |
| 	 */
 | |
| 	int (*verify)(struct udevice *dev, const struct ecdsa_public_key *pubkey,
 | |
| 		      const void *hash, size_t hash_len,
 | |
| 		      const void *signature, size_t sig_len);
 | |
| };
 |