From: Ahmad Fatoum <a.fatoum@pengutronix.de>
To: Sascha Hauer <s.hauer@pengutronix.de>,
Barebox List <barebox@lists.infradead.org>
Subject: Re: [PATCH v4 10/16] crypto: add public_key functions
Date: Fri, 27 Sep 2024 10:20:36 +0200 [thread overview]
Message-ID: <a87cea41-c783-4d3d-a755-265ebcdfcffa@pengutronix.de> (raw)
In-Reply-To: <20240913075924.1652866-11-s.hauer@pengutronix.de>
On 13.09.24 09:59, Sascha Hauer wrote:
> Now that we have a struct public_key as a general container for keys
> create and use functions making use of it. Move the list from struct
> rsa_public_key to struct public_key, add public_key_verify() and use
> it instead of rsa_verify(), move key_name_hint to struct public_key.
>
> With this we do not need to bother the FIT image code when adding
> support for ECDSA keys.
>
> Signed-off-by: Sascha Hauer <s.hauer@pengutronix.de>
Reviewed-by: Ahmad Fatoum <a.fatoum@pengutronix.de>
> ---
> common/image-fit.c | 20 ++++----
> crypto/public-keys.c | 92 ++++++++++++++++++++++++++++++-------
> crypto/rsa.c | 74 +++++++++--------------------
> include/crypto/public_key.h | 15 ++++++
> include/rsa.h | 16 +------
> scripts/keytoc.c | 3 +-
> 6 files changed, 126 insertions(+), 94 deletions(-)
>
> diff --git a/common/image-fit.c b/common/image-fit.c
> index 4a69049abc..c5d2196bda 100644
> --- a/common/image-fit.c
> +++ b/common/image-fit.c
> @@ -20,7 +20,7 @@
> #include <errno.h>
> #include <linux/err.h>
> #include <stringlist.h>
> -#include <rsa.h>
> +#include <crypto/public_key.h>
> #include <uncompress.h>
> #include <image-fit.h>
>
> @@ -253,10 +253,10 @@ static struct digest *fit_alloc_digest(struct device_node *sig_node,
> return digest;
> }
>
> -static int fit_check_rsa_signature(struct device_node *sig_node,
> - enum hash_algo algo, void *hash)
> +static int fit_check_signature(struct device_node *sig_node,
> + enum hash_algo algo, void *hash)
> {
> - const struct rsa_public_key *key;
> + const struct public_key *key;
> const char *key_name = NULL;
> int sig_len;
> const char *sig_value;
> @@ -270,19 +270,19 @@ static int fit_check_rsa_signature(struct device_node *sig_node,
>
> of_property_read_string(sig_node, "key-name-hint", &key_name);
> if (key_name) {
> - key = rsa_get_key(key_name);
> + key = public_key_get(key_name);
> if (key) {
> - ret = rsa_verify(key, sig_value, sig_len, hash, algo);
> + ret = public_key_verify(key, sig_value, sig_len, hash, algo);
> if (!ret)
> goto ok;
> }
> }
>
> - for_each_rsa_key(key) {
> + for_each_public_key(key) {
> if (key_name && !strcmp(key->key_name_hint, key_name))
> continue;
>
> - ret = rsa_verify(key, sig_value, sig_len, hash, algo);
> + ret = public_key_verify(key, sig_value, sig_len, hash, algo);
> if (!ret)
> goto ok;
> }
> @@ -341,7 +341,7 @@ static int fit_verify_signature(struct device_node *sig_node, const void *fit)
> hash = xzalloc(digest_length(digest));
> digest_final(digest, hash);
>
> - ret = fit_check_rsa_signature(sig_node, algo, hash);
> + ret = fit_check_signature(sig_node, algo, hash);
> if (ret)
> goto out_free_hash;
>
> @@ -464,7 +464,7 @@ static int fit_image_verify_signature(struct fit_handle *handle,
> hash = xzalloc(digest_length(digest));
> digest_final(digest, hash);
>
> - ret = fit_check_rsa_signature(sig_node, algo, hash);
> + ret = fit_check_signature(sig_node, algo, hash);
>
> free(hash);
>
> diff --git a/crypto/public-keys.c b/crypto/public-keys.c
> index a3ef3bafc8..36c308908d 100644
> --- a/crypto/public-keys.c
> +++ b/crypto/public-keys.c
> @@ -2,31 +2,91 @@
> #include <crypto/public_key.h>
> #include <rsa.h>
>
> +static LIST_HEAD(public_keys);
> +
> +const struct public_key *public_key_next(const struct public_key *prev)
> +{
> + prev = list_prepare_entry(prev, &public_keys, list);
> + list_for_each_entry_continue(prev, &public_keys, list)
> + return prev;
> +
> + return NULL;
> +}
> +
> +const struct public_key *public_key_get(const char *name)
> +{
> + const struct public_key *key;
> +
> + list_for_each_entry(key, &public_keys, list) {
> + if (!strcmp(key->key_name_hint, name))
> + return key;
> + }
> +
> + return NULL;
> +}
> +
> +int public_key_add(struct public_key *key)
> +{
> + if (public_key_get(key->key_name_hint))
> + return -EEXIST;
> +
> + list_add_tail(&key->list, &public_keys);
> +
> + return 0;
> +}
> +
> +static struct public_key *public_key_dup(const struct public_key *key)
> +{
> + struct public_key *k = xzalloc(sizeof(*k));
> +
> + k->type = key->type;
> + if (key->key_name_hint)
> + k->key_name_hint = xstrdup(key->key_name_hint);
> +
> + switch (key->type) {
> + case PUBLIC_KEY_TYPE_RSA:
> + k->rsa = rsa_key_dup(key->rsa);
> + if (!k->rsa)
> + goto err;
> + break;
> + default:
> + goto err;
> + }
> +
> + return k;
> +err:
> + free(k->key_name_hint);
> + free(k);
> +
> + return NULL;
> +}
> +
> +int public_key_verify(const struct public_key *key, const uint8_t *sig,
> + const uint32_t sig_len, const uint8_t *hash,
> + enum hash_algo algo)
> +{
> + switch (key->type) {
> + case PUBLIC_KEY_TYPE_RSA:
> + return rsa_verify(key->rsa, sig, sig_len, hash, algo);
> + }
> +
> + return -ENOKEY;
> +}
> +
> extern const struct public_key * const __public_keys_start;
> extern const struct public_key * const __public_keys_end;
>
> static int init_public_keys(void)
> {
> const struct public_key * const *iter;
> - int ret;
>
> for (iter = &__public_keys_start; iter != &__public_keys_end; iter++) {
> - struct rsa_public_key *rsa_key;
> -
> - switch ((*iter)->type) {
> - case PUBLIC_KEY_TYPE_RSA:
> - rsa_key = rsa_key_dup((*iter)->rsa);
> - if (!rsa_key)
> - continue;
> -
> - ret = rsa_key_add(rsa_key);
> - if (ret)
> - pr_err("Cannot add rsa key: %pe\n", ERR_PTR(ret));
> - break;
> - default:
> - pr_err("Ignoring unknown key type %u\n", (*iter)->type);
> - }
> + struct public_key *key = public_key_dup(*iter);
> +
> + if (!key)
> + continue;
>
> + public_key_add(key);
> }
>
> return 0;
> diff --git a/crypto/rsa.c b/crypto/rsa.c
> index 8eab07beed..969dbfb32b 100644
> --- a/crypto/rsa.c
> +++ b/crypto/rsa.c
> @@ -15,6 +15,7 @@
> #include <asm/byteorder.h>
> #include <errno.h>
> #include <rsa.h>
> +#include <crypto/public_key.h>
> #include <asm/unaligned.h>
>
> #define UINT64_MULT32(v, multby) (((uint64_t)(v)) * ((uint32_t)(multby)))
> @@ -380,105 +381,74 @@ static void rsa_convert_big_endian(uint32_t *dst, const uint32_t *src, int len)
> dst[i] = fdt32_to_cpu(src[len - 1 - i]);
> }
>
> -struct rsa_public_key *rsa_of_read_key(struct device_node *node)
> +struct public_key *rsa_of_read_key(struct device_node *node)
> {
> const void *modulus, *rr;
> const uint64_t *public_exponent;
> int length;
> - struct rsa_public_key *key;
> + struct public_key *key;
> + struct rsa_public_key *rsa;
> int err;
>
> if (strncmp(node->name, "key-", 4))
> return ERR_PTR(-EINVAL);
>
> key = xzalloc(sizeof(*key));
> + rsa = key->rsa = xzalloc(sizeof(*rsa));
>
> key->key_name_hint = xstrdup(node->name + 4);
>
> - of_property_read_u32(node, "rsa,num-bits", &key->len);
> - of_property_read_u32(node, "rsa,n0-inverse", &key->n0inv);
> + of_property_read_u32(node, "rsa,num-bits", &rsa->len);
> + of_property_read_u32(node, "rsa,n0-inverse", &rsa->n0inv);
>
> public_exponent = of_get_property(node, "rsa,exponent", &length);
> if (!public_exponent || length < sizeof(*public_exponent))
> - key->exponent = RSA_DEFAULT_PUBEXP;
> + rsa->exponent = RSA_DEFAULT_PUBEXP;
> else
> - key->exponent = fdt64_to_cpu(*public_exponent);
> + rsa->exponent = fdt64_to_cpu(*public_exponent);
>
> modulus = of_get_property(node, "rsa,modulus", NULL);
> rr = of_get_property(node, "rsa,r-squared", NULL);
>
> - if (!key->len || !modulus || !rr) {
> + if (!rsa->len || !modulus || !rr) {
> pr_debug("%s: Missing RSA key info", __func__);
> err = -EFAULT;
> goto out;
> }
>
> /* Sanity check for stack size */
> - if (key->len > RSA_MAX_KEY_BITS || key->len < RSA_MIN_KEY_BITS) {
> + if (rsa->len > RSA_MAX_KEY_BITS || rsa->len < RSA_MIN_KEY_BITS) {
> pr_debug("RSA key bits %u outside allowed range %d..%d\n",
> - key->len, RSA_MIN_KEY_BITS, RSA_MAX_KEY_BITS);
> + rsa->len, RSA_MIN_KEY_BITS, RSA_MAX_KEY_BITS);
> err = -EFAULT;
> goto out;
> }
>
> - key->len /= sizeof(uint32_t) * 8;
> + rsa->len /= sizeof(uint32_t) * 8;
>
> - key->modulus = xzalloc(RSA_MAX_KEY_BITS / 8);
> - key->rr = xzalloc(RSA_MAX_KEY_BITS / 8);
> + rsa->modulus = xzalloc(RSA_MAX_KEY_BITS / 8);
> + rsa->rr = xzalloc(RSA_MAX_KEY_BITS / 8);
>
> - rsa_convert_big_endian(key->modulus, modulus, key->len);
> - rsa_convert_big_endian(key->rr, rr, key->len);
> + rsa_convert_big_endian(rsa->modulus, modulus, rsa->len);
> + rsa_convert_big_endian(rsa->rr, rr, rsa->len);
>
> err = 0;
> out:
> - if (err)
> + if (err) {
> free(key);
> + free(rsa);
> + }
>
> return err ? ERR_PTR(err) : key;
> }
>
> void rsa_key_free(struct rsa_public_key *key)
> {
> - list_del(&key->list);
> -
> free(key->modulus);
> free(key->rr);
> free(key);
> }
>
> -static LIST_HEAD(rsa_keys);
> -
> -const struct rsa_public_key *rsa_key_next(const struct rsa_public_key *prev)
> -{
> - prev = list_prepare_entry(prev, &rsa_keys, list);
> - list_for_each_entry_continue(prev, &rsa_keys, list)
> - return prev;
> -
> - return NULL;
> -}
> -
> -const struct rsa_public_key *rsa_get_key(const char *name)
> -{
> - const struct rsa_public_key *key;
> -
> - list_for_each_entry(key, &rsa_keys, list) {
> - if (!strcmp(key->key_name_hint, name))
> - return key;
> - }
> -
> - return NULL;
> -}
> -
> -int rsa_key_add(struct rsa_public_key *key)
> -{
> - if (rsa_get_key(key->key_name_hint))
> - return -EEXIST;
> -
> - list_add_tail(&key->list, &rsa_keys);
> -
> - return 0;
> -}
> -
> struct rsa_public_key *rsa_key_dup(const struct rsa_public_key *key)
> {
> struct rsa_public_key *new;
> @@ -493,7 +463,7 @@ struct rsa_public_key *rsa_key_dup(const struct rsa_public_key *key)
> static void rsa_init_keys_of(void)
> {
> struct device_node *sigs, *sig;
> - struct rsa_public_key *key;
> + struct public_key *key;
> int ret;
>
> if (!IS_ENABLED(CONFIG_OFTREE))
> @@ -511,7 +481,7 @@ static void rsa_init_keys_of(void)
> continue;
> }
>
> - ret = rsa_key_add(key);
> + ret = public_key_add(key);
> if (ret)
> pr_err("Cannot add rsa key %s: %s\n",
> key->key_name_hint, strerror(-ret));
> diff --git a/include/crypto/public_key.h b/include/crypto/public_key.h
> index 83e8401aed..1b91063042 100644
> --- a/include/crypto/public_key.h
> +++ b/include/crypto/public_key.h
> @@ -1,6 +1,8 @@
> #ifndef __CRYPTO_PUBLIC_KEY_H
> #define __CRYPTO_PUBLIC_KEY_H
>
> +#include <digest.h>
> +
> struct rsa_public_key;
> struct ecdsa_public_key;
>
> @@ -10,6 +12,8 @@ enum pulic_key_type {
>
> struct public_key {
> enum pulic_key_type type;
> + struct list_head list;
> + char *key_name_hint;
>
> union {
> struct rsa_public_key *rsa;
> @@ -17,4 +21,15 @@ struct public_key {
> };
> };
>
> +int public_key_add(struct public_key *key);
> +const struct public_key *public_key_get(const char *name);
> +const struct public_key *public_key_next(const struct public_key *prev);
> +
> +#define for_each_public_key(key) \
> + for (key = public_key_next(NULL); key; key = public_key_next(key))
> +
> +int public_key_verify(const struct public_key *key, const uint8_t *sig,
> + const uint32_t sig_len, const uint8_t *hash,
> + enum hash_algo algo);
> +
> #endif /* __CRYPTO_PUBLIC_KEY_H */
> diff --git a/include/rsa.h b/include/rsa.h
> index ecb2f42957..ef03a925b8 100644
> --- a/include/rsa.h
> +++ b/include/rsa.h
> @@ -29,8 +29,6 @@ struct rsa_public_key {
> uint32_t *modulus; /* modulus as little endian array */
> uint32_t *rr; /* R^2 as little endian array */
> uint64_t exponent; /* public exponent */
> - char *key_name_hint;
> - struct list_head list;
> };
>
> /**
> @@ -54,24 +52,12 @@ int rsa_verify(const struct rsa_public_key *key, const uint8_t *sig,
>
> struct device_node;
>
> -struct rsa_public_key *rsa_of_read_key(struct device_node *node);
> +struct public_key *rsa_of_read_key(struct device_node *node);
> void rsa_key_free(struct rsa_public_key *key);
> -const struct rsa_public_key *rsa_get_key(const char *name);
> -
> -const struct rsa_public_key *rsa_key_next(const struct rsa_public_key *prev);
> -
> -#define for_each_rsa_key(key) \
> - for (key = rsa_key_next(NULL); key; key = rsa_key_next(key))
>
> #ifdef CONFIG_CRYPTO_RSA
> -int rsa_key_add(struct rsa_public_key *key);
> struct rsa_public_key *rsa_key_dup(const struct rsa_public_key *key);
> #else
> -static inline int rsa_key_add(struct rsa_public_key *key)
> -{
> - return -ENOSYS;
> -}
> -
> static inline struct rsa_public_key *rsa_key_dup(const struct rsa_public_key *key);
> {
> return NULL;
> diff --git a/scripts/keytoc.c b/scripts/keytoc.c
> index e66c5989bf..8b29118c95 100644
> --- a/scripts/keytoc.c
> +++ b/scripts/keytoc.c
> @@ -491,6 +491,7 @@ static int gen_key_ecdsa(EVP_PKEY *key, const char *key_name, const char *key_na
> if (!standalone) {
> fprintf(outfilep, "\nstatic struct public_key %s_public_key = {\n", key_name_c);
> fprintf(outfilep, "\t.type = PUBLIC_KEY_TYPE_ECDSA,\n");
> + fprintf(outfilep, "\t.key_name_hint = \"%s\",\n", key_name);
> fprintf(outfilep, "\t.ecdsa = &%s,\n", key_name_c);
> fprintf(outfilep, "};");
> fprintf(outfilep, "\nstruct public_key *%s_ecdsa_p __attribute__((section(\".public_keys.rodata.%s\"))) = &%s_public_key;\n",
> @@ -551,12 +552,12 @@ static int gen_key_rsa(EVP_PKEY *key, const char *key_name, const char *key_name
> fprintf(outfilep, "\t.modulus = %s_modulus,\n", key_name_c);
> fprintf(outfilep, "\t.rr = %s_rr,\n", key_name_c);
> fprintf(outfilep, "\t.exponent = 0x%0lx,\n", exponent);
> - fprintf(outfilep, "\t.key_name_hint = \"%s\",\n", key_name);
> fprintf(outfilep, "};\n");
>
> if (!standalone) {
> fprintf(outfilep, "\nstatic struct public_key %s_public_key = {\n", key_name_c);
> fprintf(outfilep, "\t.type = PUBLIC_KEY_TYPE_RSA,\n");
> + fprintf(outfilep, "\t.key_name_hint = \"%s\",\n", key_name);
> fprintf(outfilep, "\t.rsa = &%s,\n", key_name_c);
> fprintf(outfilep, "};");
> fprintf(outfilep, "\nstruct public_key *%sp __attribute__((section(\".public_keys.rodata.%s\"))) = &%s_public_key;\n",
--
Pengutronix e.K. | |
Steuerwalder Str. 21 | http://www.pengutronix.de/ |
31137 Hildesheim, Germany | Phone: +49-5121-206917-0 |
Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 |
next prev parent reply other threads:[~2024-09-27 8:21 UTC|newest]
Thread overview: 33+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-09-13 7:59 [PATCH v4 00/16] Add ECDSA support for FIT image verification Sascha Hauer
2024-09-13 7:59 ` [PATCH v4 01/16] keytoc: remove ECDSA dts support Sascha Hauer
2024-09-25 8:53 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 02/16] keytoc: fail in case gen_key() fails Sascha Hauer
2024-09-25 8:53 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 03/16] keytoc: fix ECDSA endianess problems Sascha Hauer
2024-09-27 8:11 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 04/16] keytoc: remove duplicate __ENV__ check Sascha Hauer
2024-09-27 6:59 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 05/16] crypto: Makefile: make simpler Sascha Hauer
2024-09-27 7:01 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 06/16] crypto/Makefile: Drop unnecessary dependencies Sascha Hauer
2024-09-27 7:03 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 07/16] keytoc: make key name hint optional Sascha Hauer
2024-09-27 8:18 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 08/16] crypto: rsa: include key name hint into CONFIG_CRYPTO_RSA_KEY Sascha Hauer
2024-09-27 7:55 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 09/16] crypto: rsa: encapsulate rsa keys in public keys struct Sascha Hauer
2024-09-27 8:02 ` Ahmad Fatoum
2024-09-27 11:11 ` Sascha Hauer
2024-09-13 7:59 ` [PATCH v4 10/16] crypto: add public_key functions Sascha Hauer
2024-09-27 8:20 ` Ahmad Fatoum [this message]
2024-09-13 7:59 ` [PATCH v4 11/16] crypto: builtin_keys: Allow to specify multiple keys in CONFIG_CRYPTO_PUBLIC_KEYS Sascha Hauer
2024-09-25 8:22 ` Sascha Hauer
2024-09-13 7:59 ` [PATCH v4 12/16] crypto: public-keys: use array of public_keys Sascha Hauer
2024-09-13 7:59 ` [PATCH v4 13/16] crypto: rsa: create static inline wrapper for rsa_verify() Sascha Hauer
2024-09-27 8:09 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 14/16] Add elliptic curve cryptography (ECC) helper functions Sascha Hauer
2024-09-13 7:59 ` [PATCH v4 15/16] crypto: add ECDSA support Sascha Hauer
2024-09-27 8:07 ` Ahmad Fatoum
2024-09-13 7:59 ` [PATCH v4 16/16] crypto: make RSA a visible option Sascha Hauer
2024-09-27 11:23 ` [PATCH v4 00/16] Add ECDSA support for FIT image verification Sascha Hauer
2024-09-27 11:23 ` Sascha Hauer
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=a87cea41-c783-4d3d-a755-265ebcdfcffa@pengutronix.de \
--to=a.fatoum@pengutronix.de \
--cc=barebox@lists.infradead.org \
--cc=s.hauer@pengutronix.de \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox