Skip to content

Commit

Permalink
Merge pull request tock#4159 from alistair23/alistair/atecc508a-verify
Browse files Browse the repository at this point in the history
atecc508a: Support the SignatureVerify HIL
  • Loading branch information
alevy authored Nov 6, 2024
2 parents f363a97 + 9a7981a commit 460f5f2
Show file tree
Hide file tree
Showing 3 changed files with 395 additions and 4 deletions.
169 changes: 169 additions & 0 deletions boards/apollo3/lora_things_plus/src/tests/verify_sig.rs
Original file line number Diff line number Diff line change
@@ -0,0 +1,169 @@
// Licensed under the Apache License, Version 2.0 or the MIT License.
// SPDX-License-Identifier: Apache-2.0 OR MIT
// Copyright Tock Contributors 2022.

use crate::tests::run_kernel_op;
use crate::ATECC508A;
use core::cell::Cell;
use kernel::hil::public_key_crypto::signature::ClientVerify;
use kernel::hil::public_key_crypto::signature::SignatureVerify;
use kernel::static_init;
use kernel::utilities::cells::TakeCell;
use kernel::{debug, ErrorCode};

struct HmacTestCallback {
verify_done: Cell<bool>,
message_buffer: TakeCell<'static, [u8; 32]>,
signature_buffer: TakeCell<'static, [u8; 64]>,
pub_key_buffer: TakeCell<'static, [u8; 64]>,
}

impl<'a> HmacTestCallback {
fn new(
message_buffer: &'static mut [u8; 32],
signature_buffer: &'static mut [u8; 64],
pub_key_buffer: &'static mut [u8; 64],
) -> Self {
HmacTestCallback {
verify_done: Cell::new(false),
message_buffer: TakeCell::new(message_buffer),
signature_buffer: TakeCell::new(signature_buffer),
pub_key_buffer: TakeCell::new(pub_key_buffer),
}
}

fn reset(&self) {
self.verify_done.set(false);
}
}

impl<'a> ClientVerify<32, 64> for HmacTestCallback {
fn verification_done(
&self,
result: Result<bool, ErrorCode>,
hash: &'static mut [u8; 32],
signature: &'static mut [u8; 64],
) {
debug!("Verification Complete");

self.message_buffer.replace(hash);
self.signature_buffer.replace(signature);
assert_eq!(result, Ok(true));
self.verify_done.set(true);
}
}

/// The below values are generated from the following Python code
///
/// ```python
/// import ecdsa
/// from ecdsa import SigningKey, NIST256p
/// from hashlib import sha256
///
/// sk = ecdsa.SigningKey.generate(curve=NIST256p, hashfunc=sha256)
///
/// # Write the keys in PEM for future reference
/// with open("priv_key.pem", "wb") as f:
/// f.write(sk.to_pem(format="pkcs8"))
/// with open("pub_key.pem", "wb") as f:
/// f.write(public_key.to_pem())
///
/// # Public Key with X and Y values in a single 64-byte hex array
/// sk.verifying_key.to_string().hex()
///
/// # Dump the Private Key so we have it in hex
/// sk.to_string().hex()
///
/// # Prints the R and the S value in a single 64-byte hex array
/// sk.sign_deterministic(b"This is a test message to sign!!").hex()
///
/// # The ATECC508A operates on a hash of the message, so calculate that
/// sha = sha256()
/// sha.update(b"This is a test message to sign!!")
/// sha.digest().hex()
/// ```
///
// These are the generated test keys used below, please do not use them
// for anything important!!!!
//
// These keys are not leaked, they are only used for this test case.
//
// -----BEGIN PRIVATE KEY-----
// MIGHAgEBMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQgWClhguWHtAK85Kqc
// /BucDBQMGQw6R2PEQkyISHkn5xWhRANCAAQUFMTFoNL9oFpGmg6Cp351hQMq9hol
// KpEdQfjP1nYF1jxqz52YjPpFHvudkK/fFsik5Rd0AevNkQqjBdWEqmpW
// -----END PRIVATE KEY-----
//
// -----BEGIN PUBLIC KEY-----
// MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEFBTExaDS/aBaRpoOgqd+dYUDKvYa
// JSqRHUH4z9Z2BdY8as+dmIz6RR77nZCv3xbIpOUXdAHrzZEKowXVhKpqVg==
// -----END PUBLIC KEY-----
macro_rules! static_init_test_cb {
() => {{
let message_data = static_init!(
[u8; 32],
[
// The SHA256 of the message: 5468697320697320612074657374206d65737361676520746f207369676e2121
0x61, 0xff, 0x79, 0x61, 0x27, 0xe5, 0xf8, 0xe4, 0x61, 0x8d, 0xde, 0x14, 0x4f,
0x5b, 0x91, 0xcc, 0xa4, 0x47, 0x16, 0xda, 0xc8, 0x75, 0x8b, 0xe2, 0x85, 0x9e,
0xbf, 0x1d, 0xb1, 0x2f, 0xe2, 0xc7,
]
);
let signature_data = static_init!(
[u8; 64],
[
0xd7, 0x09, 0xd8, 0x2a, 0xdc, 0x15, 0x3c, 0xc4, 0x2e, 0x37, 0xd3, 0x91, 0x92,
0xe2, 0x0d, 0x6a, 0xa9, 0x68, 0xf7, 0x10, 0xbb, 0x38, 0xc2, 0x16, 0xf3, 0x4f,
0x59, 0xdc, 0x69, 0x72, 0x59, 0xc2, 0xe3, 0x9c, 0x27, 0x7f, 0x32, 0x63, 0xc8,
0xbf, 0x27, 0x26, 0x5b, 0x8a, 0x11, 0x68, 0x90, 0x02, 0xa6, 0x7b, 0x3e, 0x72,
0x59, 0x9e, 0x6c, 0x85, 0xda, 0x00, 0xc8, 0xca, 0x87, 0x37, 0x7d, 0x1a
]
);
// Note that the private key is: 58296182e587b402bce4aa9cfc1b9c0c140c190c3a4763c4424c88487927e715
let public_key = static_init!(
[u8; 64],
[
0x14, 0x14, 0xc4, 0xc5, 0xa0, 0xd2, 0xfd, 0xa0, 0x5a, 0x46, 0x9a, 0x0e, 0x82,
0xa7, 0x7e, 0x75, 0x85, 0x03, 0x2a, 0xf6, 0x1a, 0x25, 0x2a, 0x91, 0x1d, 0x41,
0xf8, 0xcf, 0xd6, 0x76, 0x05, 0xd6, 0x3c, 0x6a, 0xcf, 0x9d, 0x98, 0x8c, 0xfa,
0x45, 0x1e, 0xfb, 0x9d, 0x90, 0xaf, 0xdf, 0x16, 0xc8, 0xa4, 0xe5, 0x17, 0x74,
0x01, 0xeb, 0xcd, 0x91, 0x0a, 0xa3, 0x05, 0xd5, 0x84, 0xaa, 0x6a, 0x56

]
);

static_init!(
HmacTestCallback,
HmacTestCallback::new(message_data, signature_data, public_key)
)
}};
}

#[test_case]
fn hmac_check_load_binary() {
let atecc508a = unsafe { ATECC508A.unwrap() };

let callback = unsafe { static_init_test_cb!() };

debug!("check signature verify... ");
run_kernel_op(100);

SignatureVerify::set_verify_client(atecc508a, callback);
callback.reset();

atecc508a.set_public_key(Some(callback.pub_key_buffer.take().unwrap()));

assert_eq!(
atecc508a.verify(
callback.message_buffer.take().unwrap(),
callback.signature_buffer.take().unwrap()
),
Ok(())
);

run_kernel_op(20_000);
assert_eq!(callback.verify_done.get(), true);

debug!(" [ok]");
run_kernel_op(100);
}
6 changes: 3 additions & 3 deletions boards/components/src/atecc508a.rs
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ macro_rules! atecc508a_component_static {
($I:ty $(,)?) => {{
let i2c_device =
kernel::static_buf!(capsules_core::virtualizers::virtual_i2c::I2CDevice<'static, $I>);
let i2c_buffer = kernel::static_buf!([u8; 72]);
let i2c_buffer = kernel::static_buf!([u8; 140]);
let entropy_buffer = kernel::static_buf!([u8; 32]);
let digest_buffer = kernel::static_buf!([u8; 64]);
let atecc508a = kernel::static_buf!(capsules_extra::atecc508a::Atecc508a<'static>);
Expand Down Expand Up @@ -57,7 +57,7 @@ impl<I: 'static + i2c::I2CMaster<'static>> Atecc508aComponent<I> {
impl<I: 'static + i2c::I2CMaster<'static>> Component for Atecc508aComponent<I> {
type StaticInput = (
&'static mut MaybeUninit<I2CDevice<'static, I>>,
&'static mut MaybeUninit<[u8; 72]>,
&'static mut MaybeUninit<[u8; 140]>,
&'static mut MaybeUninit<[u8; 32]>,
&'static mut MaybeUninit<[u8; 64]>,
&'static mut MaybeUninit<Atecc508a<'static>>,
Expand All @@ -67,7 +67,7 @@ impl<I: 'static + i2c::I2CMaster<'static>> Component for Atecc508aComponent<I> {
fn finalize(self, s: Self::StaticInput) -> Self::Output {
let atecc508a_i2c = s.0.write(I2CDevice::new(self.i2c_mux, self.i2c_address));

let i2c_buffer = s.1.write([0; 72]);
let i2c_buffer = s.1.write([0; 140]);
let entropy_buffer = s.2.write([0; 32]);
let digest_buffer = s.3.write([0; 64]);

Expand Down
Loading

0 comments on commit 460f5f2

Please sign in to comment.