Fixed order of SHA digests. Working hybrid auth.

+ minor fixes.

Author: danielinux

Makefile

@@ -207,14 +207,13 @@ $(PRIVATE_KEY):
 	$(Q)(test $(SIGN) = NONE) && (echo "// SIGN=NONE" >  src/keystore.c) || true
 	$(Q)(test "$(FLASH_OTP_KEYSTORE)" = "1") && (make -C tools/keytools/otp) || true
 
-$(SECONDARY_PRIVATE_KEY): $(PRIVATE_KEY)
+$(SECONDARY_PRIVATE_KEY): $(PRIVATE_KEY) keystore.der
 	$(Q)$(MAKE) keytools_check
 	$(Q)rm -f src/keystore.c
-	$(Q)mv $(PRIVATE_KEY) primary.$(PRIVATE_KEY)
+	$(Q)dd if=keystore.der of=pubkey_1.der bs=1 skip=16
 	$(Q)(test $(SIGN_SECONDARY) = NONE) || ("$(KEYGEN_TOOL)" \
-		$(KEYGEN_OPTIONS) -i primary.$(PRIVATE_KEY) $(SECONDARY_KEYGEN_OPTIONS) \
+		$(KEYGEN_OPTIONS) -i pubkey_1.der $(SECONDARY_KEYGEN_OPTIONS) \
 		-g $(SECONDARY_PRIVATE_KEY)) || true
-	$(Q)mv primary.$(PRIVATE_KEY) $(PRIVATE_KEY)
 	$(Q)(test "$(FLASH_OTP_KEYSTORE)" = "1") && (make -C tools/keytools/otp) || true
 
 keytools: include/target.h

arch.mk

@@ -25,8 +25,13 @@ SPI_TARGET=$(TARGET)
 # Default UART driver name
 UART_TARGET=$(TARGET)
 
-# Include SHA256 module because it's implicitly needed by RSA
-WOLFCRYPT_OBJS+=./lib/wolfssl/wolfcrypt/src/sha256.o
+# Include some modules by default
+WOLFCRYPT_OBJS+=./lib/wolfssl/wolfcrypt/src/sha256.o \
+                ./lib/wolfssl/wolfcrypt/src/hash.o \
+                ./lib/wolfssl/wolfcrypt/src/memory.o \
+                ./lib/wolfssl/wolfcrypt/src/wc_port.o \
+                ./lib/wolfssl/wolfcrypt/src/wolfmath.o
+
 
 ifeq ($(ARCH),x86_64)
   CFLAGS+=-DARCH_x86_64

…nfig/examples/sim-ml-dsa-ecc-hybrid.conf …ig/examples/sim-ml-dsa-ecc-hybrid.configconfig/examples/sim-ml-dsa-ecc-hybrid.conf renamed to config/examples/sim-ml-dsa-ecc-hybrid.config config/examples/sim-ml-dsa-ecc-hybrid.conf renamed to config/examples/sim-ml-dsa-ecc-hybrid.config

@@ -40,6 +40,7 @@
 
 #include "wolfboot/wolfboot.h"
 #include "target.h"
+#include "printf.h"
 
 /* Global pointer to the internal and external flash base */
 uint8_t *sim_ram_base;
@@ -72,7 +73,7 @@ static int mmap_file(const char *path, uint8_t *address, uint8_t** ret_address)
 
     fd = open(path, O_RDWR);
     if (fd == -1) {
-        fprintf(stderr, "can't open %s\n", path);
+        wolfBoot_printf( "can't open %s\n", path);
         return -1;
     }
 
@@ -81,7 +82,7 @@ static int mmap_file(const char *path, uint8_t *address, uint8_t** ret_address)
     if (mmaped_addr == MAP_FAILED)
         return -1;
 
-    fprintf(stderr, "Simulator assigned %s to base %p\n", path, mmaped_addr);
+    wolfBoot_printf( "Simulator assigned %s to base %p\n", path, mmaped_addr);
 
     *ret_address = mmaped_addr;
 
@@ -119,8 +120,8 @@ int hal_flash_write(uintptr_t address, const uint8_t *data, int len)
             uint8_t *addr = (uint8_t *)address;
             if (addr[i] != FLASH_BYTE_ERASED) {
                 /* no writing to non-erased page in NVM_FLASH_WRITEONCE */
-                printf("NVM_FLASH_WRITEONCE non-erased write detected at address %p!\n", addr);
-                printf("Address[%d] = %02x\n", i, addr[i]);
+                wolfBoot_printf("NVM_FLASH_WRITEONCE non-erased write detected at address %p!\n", addr);
+                wolfBoot_printf("Address[%d] = %02x\n", i, addr[i]);
                 return -1;
             }
 #endif
@@ -137,9 +138,9 @@ int hal_flash_write(uintptr_t address, const uint8_t *data, int len)
 int hal_flash_erase(uintptr_t address, int len)
 {
     /* implicit cast abide compiler warning */
-    fprintf(stderr, "hal_flash_erase addr %p len %d\n", (void*)address, len);
+    wolfBoot_printf( "hal_flash_erase addr %p len %d\n", (void*)address, len);
     if (address == erasefail_address + WOLFBOOT_PARTITION_BOOT_ADDRESS) {
-        fprintf(stderr, "POWER FAILURE\n");
+        wolfBoot_printf( "POWER FAILURE\n");
         /* Corrupt page */
         memset((void*)address, 0xEE, len);
         exit(0);
@@ -156,23 +157,23 @@ void hal_init(void)
     ret = mmap_file(INTERNAL_FLASH_FILE,
         (uint8_t*)ARCH_FLASH_OFFSET, &sim_ram_base);
     if (ret != 0) {
-        fprintf(stderr, "failed to load internal flash file\n");
+        wolfBoot_printf( "failed to load internal flash file\n");
         exit(-1);
     }
 
 #ifdef EXT_FLASH
     ret = mmap_file(EXTERNAL_FLASH_FILE,
         (uint8_t*)ARCH_FLASH_OFFSET + 0x10000000, &flash_base);
     if (ret != 0) {
-        fprintf(stderr, "failed to load external flash file\n");
+        wolfBoot_printf( "failed to load external flash file\n");
         exit(-1);
     }
 #endif /* EXT_FLASH */
 
     for (i = 1; i < main_argc; i++) {
         if (strcmp(main_argv[i], "powerfail") == 0) {
             erasefail_address = strtol(main_argv[++i], NULL,  16);
-            fprintf(stderr, "Set power fail to erase at address %x\n",
+            wolfBoot_printf( "Set power fail to erase at address %x\n",
                 erasefail_address);
         }
         /* force a bad write of the boot partition to trigger and test the
@@ -262,15 +263,15 @@ void do_boot(const uint32_t *app_offset)
 
     ret = NSCreateObjectFileImageFromMemory(app_buf, app_size, &fileImage);
     if (ret != 1 || fileImage == NULL) {
-        fprintf(stderr, "Error loading object memory!\n");
+        wolfBoot_printf( "Error loading object memory!\n");
         exit(-1);
     }
     module = NSLinkModule(fileImage, "module",
         (NSLINKMODULE_OPTION_PRIVATE | NSLINKMODULE_OPTION_BINDNOW));
     symbol = NSLookupSymbolInModule(module, "__mh_execute_header");
     pSymbolAddress = NSAddressOfSymbol(symbol);
     if (!find_epc(pSymbolAddress, &epc)) {
-        fprintf(stderr, "Error finding entry point!\n");
+        wolfBoot_printf( "Error finding entry point!\n");
         exit(-1);
     }
 
@@ -283,17 +284,17 @@ void do_boot(const uint32_t *app_offset)
     char *envp[1] = {NULL};
     int fd = memfd_create("test_app", 0);
     if (fd == -1) {
-        fprintf(stderr, "memfd error\n");
+        wolfBoot_printf( "memfd error\n");
         exit(-1);
     }
 
     if ((size_t)write(fd, app_offset, app_size) != app_size) {
-        fprintf(stderr, "can't write test-app to memfd\n");
+        wolfBoot_printf( "can't write test-app to memfd\n");
         exit(-1);
     }
 
     ret = fexecve(fd, main_argv, envp);
-    fprintf(stderr, "fexecve error\n");
+    wolfBoot_printf( "fexecve error\n");
 #endif
     exit(1);
 }

hal/sim.c

@@ -80,29 +80,55 @@ int wolfBot_get_dts_size(void *dts_addr);
 #endif
 
 #ifdef WOLFBOOT_SIGN_PRIMARY_ED25519
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ed25519
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_ed25519
 #endif
 #ifdef WOLFBOOT_SIGN_PRIMARY_ED448
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ed448
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_ed448
 #endif
 #if defined (WOLFBOOT_SIGN_PRIMARY_RSA2048) || \
     defined (WOLFBOOT_SIGN_PRIMARY_RSA3072) || \
     defined (WOLFBOOT_SIGN_PRIMARY_RSA4096)
-#define wolfBoot_verify_signature wolfBoot_verify_signature_rsa
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_rsa
 #endif
 #if defined (WOLFBOOT_SIGN_PRIMARY_ECC256) || \
         defined (WOLFBOOT_SIGN_PRIMARY_ECC384) || \
         defined (WOLFBOOT_SIGN_PRIMARY_ECC521)
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ecc
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_ecc
 #endif
 #ifdef WOLFBOOT_SIGN_PRIMARY_LMS
-#define wolfBoot_verify_signature wolfBoot_verify_signature_lms
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_lms
 #endif
 #ifdef WOLFBOOT_SIGN_PRIMARY_XMSS
-#define wolfBoot_verify_signature wolfBoot_verify_signature_xmss
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_xmss
 #endif
 #ifdef WOLFBOOT_SIGN_PRIMARY_ML_DSA
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ml_dsa
+#define wolfBoot_verify_signature_primary wolfBoot_verify_signature_ml_dsa
+#endif
+
+#ifdef WOLFBOOT_SIGN_SECONDARY_ED25519
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_ed25519
+#endif
+#ifdef WOLFBOOT_SIGN_SECONDARY_ED448
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_ed448
+#endif
+#if defined (WOLFBOOT_SIGN_SECONDARY_RSA2048) || \
+    defined (WOLFBOOT_SIGN_SECONDARY_RSA3072) || \
+    defined (WOLFBOOT_SIGN_SECONDARY_RSA4096)
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_rsa
+#endif
+#if defined (WOLFBOOT_SIGN_SECONDARY_ECC256) || \
+        defined (WOLFBOOT_SIGN_SECONDARY_ECC384) || \
+        defined (WOLFBOOT_SIGN_SECONDARY_ECC521)
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_ecc
+#endif
+#ifdef WOLFBOOT_SIGN_SECONDARY_LMS
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_lms
+#endif
+#ifdef WOLFBOOT_SIGN_SECONDARY_XMSS
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_xmss
+#endif
+#ifdef WOLFBOOT_SIGN_SECONDARY_ML_DSA
+#define wolfBoot_verify_signature_secondary wolfBoot_verify_signature_ml_dsa
 #endif
 
 

include/image.h

@@ -29,74 +29,57 @@
 extern "C" {
 #endif
 
+#define ED25519_IMAGE_SIGNATURE_SIZE (64)
+#define ED448_IMAGE_SIGNATURE_SIZE (114)
+
+#if defined(WOLFBOOT_SIGN_ECC256) || defined(WOLFBOOT_SECONDARY_SIGN_ECC256)
+#define ECC_IMAGE_SIGNATURE_SIZE (64)
+#elif defined(WOLFBOOT_SIGN_ECC384) || defined(WOLFBOOT_SECONDARY_SIGN_ECC384)
+#define ECC_IMAGE_SIGNATURE_SIZE (96)
+#elif defined(WOLFBOOT_SIGN_ECC521) || defined(WOLFBOOT_SECONDARY_SIGN_ECC521)
+#define ECC_IMAGE_SIGNATURE_SIZE (132)
+#endif
+
+#if defined(WOLFBOOT_SIGN_RSA2048) || defined(WOLFBOOT_SECONDARY_SIGN_RSA2048)
+#define RSA_IMAGE_SIGNATURE_SIZE (256)
+#elif defined(WOLFBOOT_SIGN_RSA3072) || defined(WOLFBOOT_SECONDARY_SIGN_RSA3072)
+#define RSA_IMAGE_SIGNATURE_SIZE (384)
+#elif defined(WOLFBOOT_SIGN_RSA4096) || defined(WOLFBOOT_SECONDARY_SIGN_RSA4096)
+#define RSA_IMAGE_SIGNATURE_SIZE (512)
+#endif
+
+#ifndef ML_DSA_IMAGE_SIGNATURE_SIZE
+#define ML_DSA_IMAGE_SIGNATURE_SIZE (3309)
+#endif
+
+
+
+#if 0
 #if defined(WOLFBOOT_SIGN_ED25519)
-    extern const unsigned char ed25519_pub_key[];
-    extern unsigned int ed25519_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (64)
 #elif defined(WOLFBOOT_SIGN_ED448)
-    extern const unsigned char ed448_pub_key[];
-    extern unsigned int ed448_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (114)
 #elif defined(WOLFBOOT_SIGN_ECC256)
-    extern const unsigned char ecc256_pub_key[];
-    extern unsigned int ecc256_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (64)
 #elif defined(WOLFBOOT_SIGN_ECC384)
-    extern const unsigned char ecc384_pub_key[];
-    extern unsigned int ecc384_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (96)
 #elif defined(WOLFBOOT_SIGN_ECC521)
-    extern const unsigned char ecc521_pub_key[];
-    extern unsigned int ecc521_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (132)
 #elif defined(WOLFBOOT_SIGN_RSA2048)
-    extern const unsigned char rsa2048_pub_key[];
-    extern unsigned int rsa2048_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (256)
 #elif defined(WOLFBOOT_SIGN_RSA3072)
-    extern const unsigned char rsa3072_pub_key[];
-    extern unsigned int rsa3072_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (384)
 #elif defined(WOLFBOOT_SIGN_RSA4096)
-    extern const unsigned char rsa4096_pub_key[];
-    extern unsigned int rsa4096_pub_key_len;
 #   define IMAGE_SIGNATURE_SIZE (512)
 /* In PQC methods the signature size is a function of
  * the parameters. Therefore IMAGE_SIGNATURE_SIZE is
  * set in options.mk from the .config file. */
 #elif defined(WOLFBOOT_SIGN_LMS)
-    extern const unsigned char lms_pub_key[];
-    extern unsigned int lms_pub_key_len;
 #elif defined(WOLFBOOT_SIGN_XMSS)
-    extern const unsigned char xmss_pub_key[];
-    extern unsigned int xmss_pub_key_len;
 #elif defined(WOLFBOOT_SIGN_ML_DSA)
-    extern const unsigned char ml_dsa_pub_key[];
-    extern unsigned int ml_dsa_pub_key_len;
 #elif !defined(WOLFBOOT_NO_SIGN)
 #   error "No public key available for given signing algorithm."
 #endif /* Algorithm selection */
-
-#ifdef WOLFBOOT_SIGN_PRIMARY_ED25519
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ed25519
-#endif
-#ifdef WOLFBOOT_SIGN_PRIMARY_ED448
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ed448
-#endif
-#ifdef WOLFBOOT_SIGN_PRIMARY_RSA
-#define wolfBoot_verify_signature wolfBoot_verify_signature_rsa
-#endif
-#ifdef WOLFBOOT_SIGN_PRIMARY_ECC
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ecc
-#endif
-#ifdef WOLFBOOT_SIGN_PRIMARY_LMS
-#define wolfBoot_verify_signature wolfBoot_verify_signature_lms
-#endif
-#ifdef WOLFBOOT_SIGN_PRIMARY_XMSS
-#define wolfBoot_verify_signature wolfBoot_verify_signature_xmss
-#endif
-#ifdef WOLFBOOT_SIGN_PRIMARY_ML_DSA
-#define wolfBoot_verify_signature wolfBoot_verify_signature_ml_dsa
 #endif
 
 void wolfBoot_start(void);