src/platform/vboot_reference/crypto/rsa_utility.c - Issue 650105: Vboot Reference: Add the "real" reference firmware verification function (VerifyFirmware).

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: src/platform/vboot_reference/crypto/rsa_utility.c

Issue 650105: Vboot Reference: Add the "real" reference firmware verification function (VerifyFirmware). (Closed)

Patch Set: Review fixes. Created 10 years, 10 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: src/platform/vboot_reference/crypto/rsa_utility.c

diff --git a/src/platform/vboot_reference/crypto/rsa_utility.c b/src/platform/vboot_reference/crypto/rsa_utility.c

index 2215b7cec220181b2102ae702fcf26758bfbaeaf..a64b0620aab362a7b5e3b03d5283e79bf217ed4f 100644

--- a/src/platform/vboot_reference/crypto/rsa_utility.c

+++ b/src/platform/vboot_reference/crypto/rsa_utility.c

@@ -7,6 +7,7 @@

#include "padding.h"

#include "rsa_utility.h"

+#include "sha_utility.h"

#include "utility.h"

int RSAProcessedKeySize(int algorithm) {

@@ -19,12 +20,20 @@ int RSAProcessedKeySize(int algorithm) {

return (2 * key_len + sizeof(int) + sizeof(uint32_t));

}

-RSAPublicKey* RSAPublicKeyFromBuf(uint8_t* buf, int len) {

+void RSAPublicKeyFree(RSAPublicKey* key) {

+ if (key) {

+ Free(key->n);

+ Free(key->rr);

+ Free(key);

+ }

+RSAPublicKey* RSAPublicKeyFromBuf(const uint8_t* buf, int len) {

RSAPublicKey* key = (RSAPublicKey*) Malloc(sizeof(RSAPublicKey));

MemcpyState st;

int key_len;

- st.remaining_buf = buf;

+ st.remaining_buf = (uint8_t*) buf;

st.remaining_len = len;

StatefulMemcpy(&st, &key->len, sizeof(key->len));

@@ -44,3 +53,36 @@ RSAPublicKey* RSAPublicKeyFromBuf(uint8_t* buf, int len) {

return key;

}

+int RSAVerifyBinary_f(const uint8_t* key_blob,

+ const RSAPublicKey* key,

+ const uint8_t* buf,

+ int len,

+ const uint8_t* sig,

+ int algorithm) {

+ RSAPublicKey* verification_key = NULL;

+ uint8_t* digest = NULL;

+ int key_size;

+ int sig_size;

+ int success;

+ if (algorithm >= kNumAlgorithms)

+ return 0; /* Invalid algorithm. */

+ key_size = RSAProcessedKeySize(algorithm);

+ sig_size = siglen_map[algorithm] * sizeof(uint32_t);

+ if (key_blob && !key)

+ verification_key = RSAPublicKeyFromBuf(key_blob, key_size);

+ else if (!key_blob && key)

+ verification_key = (RSAPublicKey*) key; /* Supress const warning. */

+ else

+ return 0; /* Both can't be NULL or non-NULL. */

+ digest = DigestBuf(buf, len, algorithm);

+ success = RSA_verify(verification_key, sig, sig_size, algorithm, digest);

+ Free(digest);

+ if (!key)

+ RSAPublicKeyFree(verification_key); /* Only free if we allocated it. */

+ return success;

« no previous file with comments | « src/platform/vboot_reference/common/utility_stub.c ('k') | src/platform/vboot_reference/crypto/sha_utility.c » ('j') | no next file with comments »