wolfhsm: add support for Ed25519 signature algorithm

Author: rizlik

src/wh_client_crypto.c

@@ -357,6 +357,50 @@ int wh_Client_CryptoCb(int devId, wc_CryptoInfo* info, void* inCtx)
                 *out_len = len;
             }
         } break;
+
+#ifdef HAVE_ED25519
+        case WC_PK_TYPE_ED25519_KEYGEN: {
+            ed25519_key* key = info->pk.ed25519kg.key;
+            /* Only default Ed25519 supported */
+            ret = wh_Client_Ed25519MakeExportKey(ctx, key);
+        } break;
+
+        case WC_PK_TYPE_ED25519_SIGN: {
+            ed25519_key* key    = info->pk.ed25519sign.key;
+            const byte*  in     = info->pk.ed25519sign.in;
+            word32       inLen  = info->pk.ed25519sign.inLen;
+            byte*        out    = info->pk.ed25519sign.out;
+            word32*      outLen = info->pk.ed25519sign.outLen;
+            byte         type   = info->pk.ed25519sign.type;
+
+            /* only plain ed25519 supported for now */
+            if (type != (byte)Ed25519) {
+                ret = BAD_FUNC_ARG;
+                break;
+            }
+
+            ret = wh_Client_Ed25519Sign(ctx, key, in, inLen, out, outLen);
+        } break;
+
+        case WC_PK_TYPE_ED25519_VERIFY: {
+            ed25519_key* key    = info->pk.ed25519verify.key;
+            const byte*  sig    = info->pk.ed25519verify.sig;
+            word32       sigLen = info->pk.ed25519verify.sigLen;
+            const byte*  msg    = info->pk.ed25519verify.msg;
+            word32       msgLen = info->pk.ed25519verify.msgLen;
+            int*         res    = info->pk.ed25519verify.res;
+            byte         type   = info->pk.ed25519verify.type;
+
+            /* only plain ed25519 supported for now */
+            if (type != (byte)Ed25519) {
+                ret = CRYPTOCB_UNAVAILABLE;
+                break;
+            }
+
+            ret = wh_Client_Ed25519Verify(ctx, key, sig, sigLen, msg, msgLen,
+                                          res);
+        } break;
+#endif /* HAVE_ED25519 */
 #endif /* HAVE_CURVE25519 */
 
 #if defined(HAVE_DILITHIUM) || defined(HAVE_FALCON)

src/wh_client_cryptocb.c

@@ -39,6 +39,7 @@
 #include "wolfssl/wolfcrypt/rsa.h"
 #include "wolfssl/wolfcrypt/curve25519.h"
 #include "wolfssl/wolfcrypt/ecc.h"
+#include "wolfssl/wolfcrypt/ed25519.h"
 #include "wolfssl/wolfcrypt/dilithium.h"
 
 #include "wolfhsm/wh_error.h"
@@ -247,6 +248,55 @@ int wh_Crypto_Curve25519DeserializeKey(const uint8_t* derBuffer,
 }
 #endif /* HAVE_CURVE25519 */
 
+#ifdef HAVE_ED25519
+int wh_Crypto_Ed25519SerializeKeyDer(ed25519_key* key, uint16_t max_size,
+                                     uint8_t* buffer, uint16_t* out_size)
+{
+    int ret = 0;
+
+    if ((key == NULL) || (buffer == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+
+    if (key->privKeySet) {
+        ret = wc_Ed25519KeyToDer(key, buffer, max_size);
+    }
+    else if (key->pubKeySet) {
+        ret = wc_Ed25519PublicKeyToDer(key, buffer, max_size, 1);
+    }
+    else {
+        ret = WH_ERROR_BADARGS;
+    }
+
+    if (ret > 0) {
+        if (out_size != NULL) {
+            *out_size = (uint16_t)ret;
+        }
+        ret = WH_ERROR_OK;
+    }
+    return ret;
+}
+
+int wh_Crypto_Ed25519DeserializeKeyDer(const uint8_t* buffer, uint16_t size,
+                                       ed25519_key* key)
+{
+    word32 idx = 0;
+    int    ret;
+
+    if ((buffer == NULL) || (key == NULL) || (size == 0)) {
+        return WH_ERROR_BADARGS;
+    }
+
+    /* Try private key first; fall back to public key */
+    ret = wc_Ed25519PrivateKeyDecode(buffer, &idx, key, size);
+    if (ret != 0) {
+        idx = 0;
+        ret = wc_Ed25519PublicKeyDecode(buffer, &idx, key, size);
+    }
+    return ret;
+}
+#endif /* HAVE_ED25519 */
+
 #ifdef HAVE_DILITHIUM
 int wh_Crypto_MlDsaSerializeKeyDer(MlDsaKey* key, uint16_t max_size,
                                    uint8_t* buffer, uint16_t* out_size)

src/wh_crypto.c

@@ -538,6 +538,89 @@ int wh_MessageCrypto_TranslateCurve25519Response(
     return 0;
 }
 
+/* Ed25519 Key Generation Request translation */
+int wh_MessageCrypto_TranslateEd25519KeyGenRequest(
+    uint16_t magic, const whMessageCrypto_Ed25519KeyGenRequest* src,
+    whMessageCrypto_Ed25519KeyGenRequest* dest)
+{
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+    WH_T32(magic, dest, src, flags);
+    WH_T32(magic, dest, src, keyId);
+    WH_T32(magic, dest, src, access);
+    if (src != dest) {
+        memcpy(dest->label, src->label, sizeof(src->label));
+    }
+    return 0;
+}
+
+/* Ed25519 Key Generation Response translation */
+int wh_MessageCrypto_TranslateEd25519KeyGenResponse(
+    uint16_t magic, const whMessageCrypto_Ed25519KeyGenResponse* src,
+    whMessageCrypto_Ed25519KeyGenResponse* dest)
+{
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+    WH_T32(magic, dest, src, keyId);
+    WH_T32(magic, dest, src, outSz);
+    return 0;
+}
+
+/* Ed25519 Sign Request translation */
+int wh_MessageCrypto_TranslateEd25519SignRequest(
+    uint16_t magic, const whMessageCrypto_Ed25519SignRequest* src,
+    whMessageCrypto_Ed25519SignRequest* dest)
+{
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+    WH_T32(magic, dest, src, options);
+    WH_T32(magic, dest, src, keyId);
+    WH_T32(magic, dest, src, msgSz);
+    return 0;
+}
+
+/* Ed25519 Sign Response translation */
+int wh_MessageCrypto_TranslateEd25519SignResponse(
+    uint16_t magic, const whMessageCrypto_Ed25519SignResponse* src,
+    whMessageCrypto_Ed25519SignResponse* dest)
+{
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+    WH_T32(magic, dest, src, sigSz);
+    return 0;
+}
+
+/* Ed25519 Verify Request translation */
+int wh_MessageCrypto_TranslateEd25519VerifyRequest(
+    uint16_t magic, const whMessageCrypto_Ed25519VerifyRequest* src,
+    whMessageCrypto_Ed25519VerifyRequest* dest)
+{
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+    WH_T32(magic, dest, src, options);
+    WH_T32(magic, dest, src, keyId);
+    WH_T32(magic, dest, src, sigSz);
+    WH_T32(magic, dest, src, msgSz);
+    return 0;
+}
+
+/* Ed25519 Verify Response translation */
+int wh_MessageCrypto_TranslateEd25519VerifyResponse(
+    uint16_t magic, const whMessageCrypto_Ed25519VerifyResponse* src,
+    whMessageCrypto_Ed25519VerifyResponse* dest)
+{
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+    WH_T32(magic, dest, src, res);
+    return 0;
+}
+
 /* SHA256 Request translation */
 int wh_MessageCrypto_TranslateSha256Request(
     uint16_t magic, const whMessageCrypto_Sha256Request* src,
@@ -1002,6 +1085,112 @@ int wh_MessageCrypto_TranslateMlDsaVerifyDmaResponse(
     return 0;
 }
 
+/* Ed25519 DMA Sign Request translation */
+int wh_MessageCrypto_TranslateEd25519SignDmaRequest(
+    uint16_t magic, const whMessageCrypto_Ed25519SignDmaRequest* src,
+    whMessageCrypto_Ed25519SignDmaRequest* dest)
+{
+    int ret;
+
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaBuffer(magic, &src->msg, &dest->msg);
+    if (ret != 0) {
+        return ret;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaBuffer(magic, &src->sig, &dest->sig);
+    if (ret != 0) {
+        return ret;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaBuffer(magic, &src->pub, &dest->pub);
+    if (ret != 0) {
+        return ret;
+    }
+
+    WH_T32(magic, dest, src, options);
+    WH_T32(magic, dest, src, keyId);
+    return 0;
+}
+
+/* Ed25519 DMA Sign Response translation */
+int wh_MessageCrypto_TranslateEd25519SignDmaResponse(
+    uint16_t magic, const whMessageCrypto_Ed25519SignDmaResponse* src,
+    whMessageCrypto_Ed25519SignDmaResponse* dest)
+{
+    int ret;
+
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaAddrStatus(magic, &src->dmaAddrStatus,
+                                                  &dest->dmaAddrStatus);
+    if (ret != 0) {
+        return ret;
+    }
+
+    WH_T32(magic, dest, src, sigSz);
+    WH_T32(magic, dest, src, pubSz);
+    return 0;
+}
+
+/* Ed25519 DMA Verify Request translation */
+int wh_MessageCrypto_TranslateEd25519VerifyDmaRequest(
+    uint16_t magic, const whMessageCrypto_Ed25519VerifyDmaRequest* src,
+    whMessageCrypto_Ed25519VerifyDmaRequest* dest)
+{
+    int ret;
+
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaBuffer(magic, &src->sig, &dest->sig);
+    if (ret != 0) {
+        return ret;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaBuffer(magic, &src->msg, &dest->msg);
+    if (ret != 0) {
+        return ret;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaBuffer(magic, &src->pub, &dest->pub);
+    if (ret != 0) {
+        return ret;
+    }
+
+    WH_T32(magic, dest, src, options);
+    WH_T32(magic, dest, src, keyId);
+    return 0;
+}
+
+/* Ed25519 DMA Verify Response translation */
+int wh_MessageCrypto_TranslateEd25519VerifyDmaResponse(
+    uint16_t magic, const whMessageCrypto_Ed25519VerifyDmaResponse* src,
+    whMessageCrypto_Ed25519VerifyDmaResponse* dest)
+{
+    int ret;
+
+    if ((src == NULL) || (dest == NULL)) {
+        return WH_ERROR_BADARGS;
+    }
+
+    ret = wh_MessageCrypto_TranslateDmaAddrStatus(magic, &src->dmaAddrStatus,
+                                                  &dest->dmaAddrStatus);
+    if (ret != 0) {
+        return ret;
+    }
+
+    WH_T32(magic, dest, src, verifyResult);
+    WH_T32(magic, dest, src, pubSz);
+    return 0;
+}
+
 /* AES DMA Request translation */
 int wh_MessageCrypto_TranslateAesDmaRequest(
     uint16_t magic, const whMessageCrypto_AesDmaRequest* src,