Google Git
Sign in
coral / a71ch-crypto-support / 8dc1f1434da50a4b7361d651239c1f3f4f8cc25b / . / demos / a71ch / ex_a71ch_sss_ecc.c
blob: 2ed11400b98adc462045220a312ab6131157fc3a [file] [log] [blame]
/*
*
* Copyright 2018-2020 NXP
* SPDX-License-Identifier: Apache-2.0
*/
/* ************************************************************************** */
/* Includes */
/* ************************************************************************** */
#include <a71ch_api.h>
#include <ex_sss.h>
#include <ex_sss_boot.h>
#include <fsl_sss_se05x_apis.h>
#include <nxEnsure.h>
#include <nxLog_App.h>
/* ************************************************************************** */
/* Local Defines */
/* ************************************************************************** */
#define EC_KEY_BIT_LEN 256
/* ************************************************************************** */
/* Structures and Typedefs */
/* ************************************************************************** */
/* ************************************************************************** */
/* Global Variables */
/* ************************************************************************** */
/* clang-format off */
const uint8_t keyPairData[] = { 0x30, 0x81, 0x87, 0x02, 0x01, 0x00, 0x30, 0x13,
0x06, 0x07, 0x2A, 0x86, 0x48, 0xCE, 0x3D, 0x02,
0x01, 0x06, 0x08, 0x2A, 0x86, 0x48, 0xCE, 0x3D,
0x03, 0x01, 0x07, 0x04, 0x6D, 0x30, 0x6B, 0x02,
0x01, 0x01, 0x04, 0x20, 0x78, 0xE5, 0x20, 0x6A,
0x08, 0xED, 0xD2, 0x52, 0x36, 0x33, 0x8A, 0x24,
0x84, 0xE4, 0x2F, 0x1F, 0x7D, 0x1F, 0x6D, 0x94,
0x37, 0xA9, 0x95, 0x86, 0xDA, 0xFC, 0xD2, 0x23,
0x6F, 0xA2, 0x87, 0x35, 0xA1, 0x44, 0x03, 0x42,
0x00, 0x04, 0xED, 0xA7, 0xE9, 0x0B, 0xF9, 0x20,
0xCF, 0xFB, 0x9D, 0xF6, 0xDB, 0xCE, 0xF7, 0x20,
0xE1, 0x23, 0x8B, 0x3C, 0xEE, 0x84, 0x86, 0xD2,
0x50, 0xE4, 0xDF, 0x30, 0x11, 0x50, 0x1A, 0x15,
0x08, 0xA6, 0x2E, 0xD7, 0x49, 0x52, 0x78, 0x63,
0x6E, 0x61, 0xE8, 0x5F, 0xED, 0xB0, 0x6D, 0x87,
0x92, 0x0A, 0x04, 0x19, 0x14, 0xFE, 0x76, 0x63,
0x55, 0xDF, 0xBD, 0x68, 0x61, 0x59, 0x31, 0x8E,
0x68, 0x7C };
const uint8_t extPubKeyData[] = {
0x30, 0x59, 0x30, 0x13, 0x06, 0x07, 0x2A, 0x86,
0x48, 0xCE, 0x3D, 0x02, 0x01, 0x06, 0x08, 0x2A,
0x86, 0x48, 0xCE, 0x3D, 0x03, 0x01, 0x07, 0x03,
0x42, 0x00, 0x04, 0xED, 0xA7, 0xE9, 0x0B, 0xF9,
0x20, 0xCF, 0xFB, 0x9D, 0xF6, 0xDB, 0xCE, 0xF7,
0x20, 0xE1, 0x23, 0x8B, 0x3C, 0xEE, 0x84, 0x86,
0xD2, 0x50, 0xE4, 0xDF, 0x30, 0x11, 0x50, 0x1A,
0x15, 0x08, 0xA6, 0x2E, 0xD7, 0x49, 0x52, 0x78,
0x63, 0x6E, 0x61, 0xE8, 0x5F, 0xED, 0xB0, 0x6D,
0x87, 0x92, 0x0A, 0x04, 0x19, 0x14, 0xFE, 0x76,
0x63, 0x55, 0xDF, 0xBD, 0x68, 0x61, 0x59, 0x31,
0x8E, 0x68, 0x7C
};
/* clang-format on */
static ex_sss_boot_ctx_t gex_sss_ecc_boot_ctx;
/* ************************************************************************** */
/* Static function declarations */
/* ************************************************************************** */
/* ************************************************************************** */
/* Private Functions */
/* ************************************************************************** */
/* ************************************************************************** */
/* Public Functions */
/* ************************************************************************** */
#define EX_SSS_BOOT_PCONTEXT (&gex_sss_ecc_boot_ctx)
#define EX_SSS_BOOT_DO_ERASE 1
#define EX_SSS_BOOT_EXPOSE_ARGC_ARGV 0
#include <ex_sss_main_inc.h>
#include "a71ch_util.h"
#include "sm_types.h"
#include "tst_sm_util.h"
sss_status_t ex_sss_entry(ex_sss_boot_ctx_t *pCtx)
{
sss_status_t status = kStatus_SSS_Success;
uint8_t digest[32] = "Hello World";
size_t digestLen;
uint8_t signature[256] = {0};
size_t signatureLen;
sss_object_t keyPair;
sss_object_t key_pub;
sss_asymmetric_t ctx_asymm = {0};
sss_asymmetric_t ctx_verify = {0};
// Variables used by calls to legacy API
U16 sw = 0;
LOG_I(
"Running Mixed SSS/A71CH Host API Elliptic Curve Cryptography Example "
"ex_a71ch_sss_ecc.c");
digestLen = sizeof(digest);
/* doc:start ex_sss_asymmetric-allocate-key */
/* Pre-requisite for Signing Part*/
status = sss_key_object_init(&keyPair, &pCtx->ks);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
status = sss_key_object_allocate_handle(&keyPair,
MAKE_TEST_ID(__LINE__),
kSSS_KeyPart_Pair,
kSSS_CipherType_EC_NIST_P,
sizeof(keyPairData),
kKeyObject_Mode_Persistent);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
status = sss_key_store_set_key(&pCtx->ks, &keyPair, keyPairData, sizeof(keyPairData), EC_KEY_BIT_LEN, NULL, 0);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
/* doc:end ex_sss_asymmetric-allocate-key */
/* doc:start ex_sss_asymmetric-asym-sign */
status = sss_asymmetric_context_init(&ctx_asymm, &pCtx->session, &keyPair, kAlgorithm_SSS_SHA256, kMode_SSS_Sign);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
signatureLen = sizeof(signature);
/* Do Signing */
LOG_I("Do Signing");
LOG_MAU8_I("digest", digest, digestLen);
status = sss_asymmetric_sign_digest(&ctx_asymm, digest, digestLen, signature, &signatureLen);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
LOG_MAU8_I("signature", signature, signatureLen);
LOG_I("Signing Successful !!!");
sss_asymmetric_context_free(&ctx_asymm);
/* doc:end ex_sss_asymmetric-asym-sign */
/* Pre requiste for Verifying Part*/
status = sss_key_object_init(&key_pub, &pCtx->ks);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
status = sss_key_object_allocate_handle(&key_pub,
MAKE_TEST_ID(__LINE__),
kSSS_KeyPart_Public,
kSSS_CipherType_EC_NIST_P,
sizeof(extPubKeyData),
kKeyObject_Mode_Persistent);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
status = sss_key_store_set_key(&pCtx->ks, &key_pub, extPubKeyData, sizeof(extPubKeyData), EC_KEY_BIT_LEN, NULL, 0);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
/* doc:start ex_sss_asymmetric-asym-verify */
status =
sss_asymmetric_context_init(&ctx_verify, &pCtx->session, &key_pub, kAlgorithm_SSS_SHA256, kMode_SSS_Verify);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
LOG_I("Do Verify");
LOG_MAU8_I("digest", digest, digestLen);
LOG_MAU8_I("signature", signature, signatureLen);
status = sss_asymmetric_verify_digest(&ctx_verify, digest, digestLen, signature, signatureLen);
ENSURE_OR_GO_CLEANUP(status == kStatus_SSS_Success);
LOG_I("Verification Successful !!!");
/* doc:end ex_sss_asymmetric-asym-verify */
/* doc:start a71ch-with-hostlib-apis */
/* Access the A71CH with the (legacy) Host API */
SST_Index_t keyIdx = (((sss_sscp_object_t *)&keyPair)->slotId) & 0x0F;
U8 pubEccKeyScratch[128];
U16 pubEccKeyScratchLen = 0;
LOG_I("A71_GetPublicKeyEccKeyPair(0x%02x)", keyIdx);
pubEccKeyScratchLen = sizeof(pubEccKeyScratch);
sw = A71_GetPublicKeyEccKeyPair(keyIdx, pubEccKeyScratch, &pubEccKeyScratchLen);
status = ((sw == SW_OK) ? kStatus_SSS_Success : kStatus_SSS_Fail);
/* doc:end a71ch-with-hostlib-apis */
ENSURE_OR_GO_CLEANUP(sw == SW_OK);
LOG_MAU8_I("Pub Key from pair", pubEccKeyScratch, pubEccKeyScratchLen);
cleanup:
if (kStatus_SSS_Success == status) {
LOG_I("ex_a71ch_sss_ecc Example Success !!!...");
}
else {
LOG_E("ex_a71ch_sss_ecc Example Failed !!!...");
}
if (ctx_asymm.session != NULL)
sss_asymmetric_context_free(&ctx_asymm);
if (ctx_verify.session != NULL)
sss_asymmetric_context_free(&ctx_verify);
return status;
}