impl secp256r1_verify_signature

hero78119 · hero78119 · commit 8d340bcbe074 · 2025-12-29T16:36:39.000+08:00
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/guest_libs/crypto/Cargo.toml b/guest_libs/crypto/Cargo.toml
@@ -15,6 +15,7 @@ ceno_keccak = { path = "../keccak" }
 ceno_sha2 = { path = "../sha2" }
 ceno_syscall.workspace = true
 k256 = { git = "https://github.com/scroll-tech/elliptic-curves", branch = "ceno/k256-13.4", default-features = false, features = ["std", "ecdsa"] }
+p256 = { git = "https://github.com/scroll-tech/elliptic-curves", branch = "ceno/k256-13.4", default-features = false, features = ["std", "ecdsa"] }
 thiserror.workspace = true
 
 [dev-dependencies]
diff --git a/guest_libs/crypto/src/macros.rs b/guest_libs/crypto/src/macros.rs
@@ -137,7 +137,7 @@ macro_rules! ceno_crypto {
                 sig: &[u8; 64],
                 pk: &[u8; 64],
             ) -> bool {
-                $crate::secp256r1::secp256r1_verify_signature(msg, sig, pk)
+                $crate::secp256r1::secp256r1_verify_signature(msg, sig, pk).is_some()
             }
         }
 
diff --git a/guest_libs/crypto/src/secp256r1.rs b/guest_libs/crypto/src/secp256r1.rs
@@ -1,5 +1,27 @@
+use p256::{
+    EncodedPoint,
+    ecdsa::{Signature, VerifyingKey, signature::hazmat::PrehashVerifier},
+};
+
 /// secp256r1 (P-256) signature verification.
 #[inline]
-pub fn secp256r1_verify_signature(_msg: &[u8; 32], _sig: &[u8; 64], _pk: &[u8; 64]) -> bool {
-    unimplemented!()
+pub fn secp256r1_verify_signature(msg: &[u8; 32], sig: &[u8; 64], pk: &[u8; 64]) -> Option<()> {
+    #[cfg(feature = "profiling")]
+    ceno_syscall::syscall_phantom_log_pc_cycle("secp256r1_verify_signature start");
+    // Can fail only if the input is not exact length.
+    let signature = Signature::from_slice(sig).ok()?;
+    // Decode the public key bytes (x,y coordinates) using EncodedPoint
+    let encoded_point = EncodedPoint::from_untagged_bytes(pk.into());
+    // Create VerifyingKey from the encoded point
+    let public_key = VerifyingKey::from_encoded_point(&encoded_point).ok()?;
+
+    #[cfg(feature = "profiling")]
+    {
+        ceno_syscall::syscall_phantom_log_pc_cycle("secp256r1_verify_signature end");
+        public_key.verify_prehash(msg, &signature).ok()
+    }
+    #[cfg(not(feature = "profiling"))]
+    {
+        public_key.verify_prehash(msg, &signature).ok()
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -137,7 +137,7 @@ macro_rules! ceno_crypto {`
`137`	`137`	`sig: &[u8; 64],`
`138`	`138`	`pk: &[u8; 64],`
`139`	`139`	`) -> bool {`
`140`		`- $crate::secp256r1::secp256r1_verify_signature(msg, sig, pk)`
	`140`	`+ $crate::secp256r1::secp256r1_verify_signature(msg, sig, pk).is_some()`
`141`	`141`	`}`
`142`	`142`	`}`
`143`	`143`