mirror of
https://source.denx.de/u-boot/u-boot.git
synced 2025-11-04 10:21:25 +01:00
1d54af1392
Define a UCLASS API for verifying ECDSA signatures. Unlike UCLASS_MOD_EXP, which focuses strictly on modular exponentiation, the ECDSA class focuses on verification. This is done so that it better aligns with mach-specific implementations, such as stm32mp. Signed-off-by: Alexandru Gagniuc <mr.nuke.me@gmail.com> Reviewed-by: Patrick Delaunay <patrick.delaunay@foss.st.com>
40 lines
1.2 KiB
C
40 lines
1.2 KiB
C
/* SPDX-License-Identifier: GPL-2.0+ */
|
|
/*
|
|
* Copyright (c) 2020, Alexandru Gagniuc <mr.nuke.me@gmail.com>
|
|
*/
|
|
|
|
#include <dm/device.h>
|
|
|
|
/**
|
|
* struct ecdsa_public_key - ECDSA public key properties
|
|
*
|
|
* The struct has pointers to the (x, y) curve coordinates to an ECDSA public
|
|
* key, as well as the name of the ECDSA curve. The size of the key is inferred
|
|
* from the 'curve_name'
|
|
*/
|
|
struct ecdsa_public_key {
|
|
const char *curve_name; /* Name of curve, e.g. "prime256v1" */
|
|
const void *x; /* x coordinate of public key */
|
|
const void *y; /* y coordinate of public key */
|
|
unsigned int size_bits; /* key size in bits, derived from curve name */
|
|
};
|
|
|
|
struct ecdsa_ops {
|
|
/**
|
|
* Verify signature of hash against given public key
|
|
*
|
|
* @dev: ECDSA Device
|
|
* @pubkey: ECDSA public key
|
|
* @hash: Hash of binary image
|
|
* @hash_len: Length of hash in bytes
|
|
* @signature: Signature in a raw (R, S) point pair
|
|
* @sig_len: Length of signature in bytes
|
|
*
|
|
* This function verifies that the 'signature' of the given 'hash' was
|
|
* signed by the private key corresponding to 'pubkey'.
|
|
*/
|
|
int (*verify)(struct udevice *dev, const struct ecdsa_public_key *pubkey,
|
|
const void *hash, size_t hash_len,
|
|
const void *signature, size_t sig_len);
|
|
};
|