wolfSSL/wolfssl
1
0
Fork 1
mirror of https://github.com/wolfSSL/wolfssl.git synced 2025-07-30 18:57:27 +02:00
Code Issues Packages Projects Releases Wiki Activity

Added psoc6 ECDSA verification support

Browse Source
This commit is contained in:
Daniele Lacamera
2020-06-05 11:00:28 +02:00
parent b1947478bb
commit 76ab8bfb6b
3 changed files with 106 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
wolfcrypt/src/ecc.c
View File

@ -141,6 +141,10 @@ ECC Curve Sizes:
#include <wolfssl/wolfcrypt/port/st/stm32.h> #include <wolfssl/wolfcrypt/port/st/stm32.h>
#endif #endif
#if defined(WOLFSSL_PSOC6_CRYPTO)
#include <wolfssl/wolfcrypt/port/cypress/psoc6_crypto.h>
#endif
#ifdef WOLFSSL_SP_MATH #ifdef WOLFSSL_SP_MATH
#define GEN_MEM_ERR MP_MEM #define GEN_MEM_ERR MP_MEM
#elif defined(USE_FAST_MATH) #elif defined(USE_FAST_MATH)
@ -5846,6 +5850,10 @@ int wc_ecc_verify_hash_ex(mp_int *r, mp_int *s, const byte* hash,
{ {
return stm32_ecc_verify_hash_ex(r, s, hash, hashlen, res, key); return stm32_ecc_verify_hash_ex(r, s, hash, hashlen, res, key);
} }
#elif defined(WOLFSSL_PSOC6_CRYPTO)
{
return psoc6_ecc_verify_hash_ex(r, s, hash, hashlen, res, key);
}
#else #else
{ {
int err; int err;

92
wolfcrypt/src/port/cypress/psoc6_crypto.c
View File

@ -32,6 +32,16 @@
#endif #endif
#if defined(WOLFSSL_PSOC6_CRYPTO) #if defined(WOLFSSL_PSOC6_CRYPTO)
#ifdef WOLFSSL_SP_MATH
struct sp_int;
#define MATH_INT_T struct sp_int
#elif defined(USE_FAST_MATH)
struct fp_int;
#define MATH_INT_T struct fp_int
#else
struct mp_int;
#define MATH_INT_T struct mp_int
#endif
#include <wolfssl/wolfcrypt/port/cypress/psoc6_crypto.h> #include <wolfssl/wolfcrypt/port/cypress/psoc6_crypto.h>
#include <wolfssl/wolfcrypt/random.h> #include <wolfssl/wolfcrypt/random.h>
@ -48,6 +58,8 @@ int psoc6_crypto_port_init(void)
return 0; return 0;
} }
/* Sha-512 */
#ifdef WOLFSSL_SHA512 #ifdef WOLFSSL_SHA512
int wc_InitSha512(wc_Sha512* sha) int wc_InitSha512(wc_Sha512* sha)
{ {
@ -103,9 +115,9 @@ void wc_Sha512Free(wc_Sha512* sha)
#endif #endif
/* Sha-256 */
#ifndef NO_SHA256 #ifndef NO_SHA256
int wc_InitSha256(wc_Sha256* sha) int wc_InitSha256(wc_Sha256* sha)
{ {
cy_en_crypto_status_t res; cy_en_crypto_status_t res;
@ -159,5 +171,81 @@ void wc_Sha256Free(wc_Sha256* sha)
} }
#endif /* NO_SHA256 */ #endif /* NO_SHA256 */
/* ECDSA */
#ifdef HAVE_ECC
#define MAX_ECC_KEYSIZE 66 /* Supports up to secp521r1 */
static cy_en_crypto_ecc_curve_id_t psoc6_get_curve_id(int size)
{
switch(size) {
case 24:
return CY_CRYPTO_ECC_ECP_SECP192R1;
case 28:
return CY_CRYPTO_ECC_ECP_SECP224R1;
case 32:
return CY_CRYPTO_ECC_ECP_SECP256R1;
case 48:
return CY_CRYPTO_ECC_ECP_SECP384R1;
case 66:
return CY_CRYPTO_ECC_ECP_SECP521R1;
default:
return CY_CRYPTO_ECC_ECP_NONE;
}
}
#include <wolfssl/wolfcrypt/ecc.h>
int psoc6_ecc_verify_hash_ex(MATH_INT_T *r, MATH_INT_T *s, const byte* hash,
word32 hashlen, int* verif_res, ecc_key* key)
{
uint8_t signature_buf[MAX_ECC_KEYSIZE * 2];
cy_stc_crypto_ecc_key ecc_key;
uint8_t stat = 0;
int res = -1;
int szModulus;
int szkbin;
uint8_t x[MAX_ECC_KEYSIZE], y[MAX_ECC_KEYSIZE];
if (!key || !verif_res || !r || !s || !hash)
return -BAD_FUNC_ARG;
/* retrieve and check sizes */
szModulus = mp_unsigned_bin_size(key->pubkey.x);
szkbin = mp_unsigned_bin_size(r);
if (szModulus > MAX_ECC_KEYSIZE)
return -BAD_FUNC_ARG;
/* Prepare ECC key */
ecc_key.type = PK_PUBLIC;
ecc_key.curveID = psoc6_get_curve_id(szModulus);
ecc_key.k = NULL;
ecc_key.pubkey.x = x;
ecc_key.pubkey.y = y;
res = mp_to_unsigned_bin(key->pubkey.x, x);
if (res == MP_OKAY)
res = mp_to_unsigned_bin(key->pubkey.y, y);
Cy_Crypto_Core_InvertEndianness(x, szModulus);
Cy_Crypto_Core_InvertEndianness(y, szModulus);
/* Prepare signature buffer */
if (res == MP_OKAY)
res = mp_to_unsigned_bin(r, signature_buf);
if (res == MP_OKAY)
res = mp_to_unsigned_bin(s, signature_buf + szkbin);
Cy_Crypto_Core_InvertEndianness(signature_buf, szkbin);
Cy_Crypto_Core_InvertEndianness(signature_buf + szkbin, szkbin);
/* perform HW ECDSA */
if (res == MP_OKAY)
res = Cy_Crypto_Core_ECC_VerifyHash(crypto_base, signature_buf, hash, hashlen, &stat, &ecc_key);
if (res == 0) {
*verif_res = stat;
}
return res;
}
#endif /* HAVE_ECC */
#endif /* defined(WOLFSSL_PSOC6_CRYPTO) */ #endif /* defined(WOLFSSL_PSOC6_CRYPTO) */

11
wolfssl/wolfcrypt/port/cypress/psoc6_crypto.h
View File

@ -55,11 +55,16 @@ typedef struct wc_Sha256 {
cy_stc_crypto_v2_sha256_buffers_t sha_buffers; cy_stc_crypto_v2_sha256_buffers_t sha_buffers;
} wc_Sha256; } wc_Sha256;
#endif /* !def NO_SHA256 */
#include <wolfssl/wolfcrypt/sha.h> #include <wolfssl/wolfcrypt/sha.h>
#include <wolfssl/wolfcrypt/sha256.h> #include <wolfssl/wolfcrypt/sha256.h>
#endif /* !def NO_SHA256 */
#ifdef HAVE_ECC
#include <wolfssl/wolfcrypt/ecc.h>
int psoc6_ecc_verify_hash_ex(mp_int *r, mp_int *s, const byte* hash,
word32 hashlen, int* verif_res, ecc_key* key);
#endif /* HAVE_ECC */
#define PSOC6_CRYPTO_BASE ((CRYPTO_Type*) CRYPTO_BASE) #define PSOC6_CRYPTO_BASE ((CRYPTO_Type*) CRYPTO_BASE)