commit 9771028579749bf5fbfd32490d56529473bddeba
author Fabio Utzig <utzig@apache.org> Fri May 24 17:44:49 2019 -0300
committer Fabio Utzig <utzig@utzig.org> Thu Jun 13 19:21:05 2019 -0300
tree fcf4038d1b27901996255d95b444497d32e664d5
parent 4876484bce36cb030e1ec1acee0669ef996187cf

Add ed25519 verification to sim

Signed-off-by: Fabio Utzig <utzig@apache.org>

sim/src/caps.rs

diff --git a/sim/src/caps.rs b/sim/src/caps.rs
index f316fd6..fa7c41e 100644
--- a/sim/src/caps.rs
+++ b/sim/src/caps.rs
@@ -13,6 +13,7 @@
     EncKw                = (1 << 6),
     ValidatePrimarySlot  = (1 << 7),
     RSA3072              = (1 << 8),
+    Ed25519              = (1 << 9),
 }
 
 impl Caps {

sim/src/ed25519_pub_key-rs.txt

diff --git a/sim/src/ed25519_pub_key-rs.txt b/sim/src/ed25519_pub_key-rs.txt
new file mode 100644
index 0000000..f624fe3
--- /dev/null
+++ b/sim/src/ed25519_pub_key-rs.txt
@@ -0,0 +1,8 @@
+static ED25519_PUB_KEY: &'static [u8] = &[
+    0x30, 0x2a, 0x30, 0x05, 0x06, 0x03, 0x2b, 0x65,
+    0x70, 0x03, 0x21, 0x00, 0xd4, 0xb3, 0x1b, 0xa4,
+    0x9a, 0x3a, 0xdd, 0x3f, 0x82, 0x5d, 0x10, 0xca,
+    0x7f, 0x31, 0xb5, 0x0b, 0x0d, 0xe8, 0x7f, 0x37,
+    0xcc, 0xc4, 0x9f, 0x1a, 0x40, 0x3a, 0x5c, 0x13,
+    0x20, 0xff, 0xb4, 0xe0,
+];

sim/src/image.rs

diff --git a/sim/src/image.rs b/sim/src/image.rs
index 99fb3fb..b5a68dd 100644
--- a/sim/src/image.rs
+++ b/sim/src/image.rs
@@ -1168,6 +1168,8 @@
             TlvGen::new_rsa3072_pss()
         } else if Caps::EcdsaP256.present() {
             TlvGen::new_ecdsa()
+        } else if Caps::Ed25519.present() {
+            TlvGen::new_ed25519()
         } else {
             TlvGen::new_hash_only()
         }

sim/src/tlv.rs

diff --git a/sim/src/tlv.rs b/sim/src/tlv.rs
index 9896df6..1af8618 100644
--- a/sim/src/tlv.rs
+++ b/sim/src/tlv.rs
@@ -16,6 +16,7 @@
     RSA_PSS_SHA256,
     EcdsaKeyPair,
     ECDSA_P256_SHA256_ASN1_SIGNING,
+    Ed25519KeyPair,
 };
 use untrusted;
 use mcuboot_sys::c;
@@ -30,6 +31,7 @@
     ECDSA224 = 0x21,
     ECDSA256 = 0x22,
     RSA3072 = 0x23,
+    ED25519 = 0x24,
     ENCRSA2048 = 0x30,
     ENCKW128 = 0x31,
 }
@@ -111,6 +113,16 @@
     }
 
     #[allow(dead_code)]
+    pub fn new_ed25519() -> TlvGen {
+        TlvGen {
+            flags: 0,
+            kinds: vec![TlvKinds::SHA256, TlvKinds::ED25519],
+            size: 4 + 32 + 4 + 32 + 4 + 64,
+            payload: vec![],
+        }
+    }
+
+    #[allow(dead_code)]
     pub fn new_enc_rsa() -> TlvGen {
         TlvGen {
             flags: TlvFlags::ENCRYPTED as u32,
@@ -288,6 +300,38 @@
             result.extend_from_slice(signature.as_ref());
         }
 
+        if self.kinds.contains(&TlvKinds::ED25519) {
+            let keyhash = digest::digest(&digest::SHA256, ED25519_PUB_KEY);
+            let keyhash = keyhash.as_ref();
+
+            assert!(keyhash.len() == 32);
+            result.push(TlvKinds::KEYHASH as u8);
+            result.push(0);
+            result.push(32);
+            result.push(0);
+            result.extend_from_slice(keyhash);
+
+            let hash = digest::digest(&digest::SHA256, &self.payload);
+            let hash = hash.as_ref();
+            assert!(hash.len() == 32);
+
+            let key_bytes = pem::parse(include_bytes!("../../root-ed25519.pem").as_ref()).unwrap();
+            assert_eq!(key_bytes.tag, "PRIVATE KEY");
+
+            let seed = untrusted::Input::from(&key_bytes.contents[16..48]);
+            let public = untrusted::Input::from(&ED25519_PUB_KEY[12..44]);
+            let key_pair = Ed25519KeyPair::from_seed_and_public_key(seed, public).unwrap();
+            let signature = key_pair.sign(&hash);
+
+            result.push(TlvKinds::ED25519 as u8);
+            result.push(0);
+
+            let signature = signature.as_ref().to_vec();
+            result.push((signature.len() & 0xFF) as u8);
+            result.push(((signature.len() >> 8) & 0xFF) as u8);
+            result.extend_from_slice(signature.as_ref());
+        }
+
         if self.kinds.contains(&TlvKinds::ENCRSA2048) {
             let key_bytes = pem::parse(include_bytes!("../../enc-rsa2048-pub.pem")
                                        .as_ref()).unwrap();
@@ -330,3 +374,4 @@
 include!("rsa_pub_key-rs.txt");
 include!("rsa3072_pub_key-rs.txt");
 include!("ecdsa_pub_key-rs.txt");
+include!("ed25519_pub_key-rs.txt");