opentitanlib: accept ECDSA signatures as ASN.1 blobs #25998

vbendeb · 2025-01-24T02:42:11Z

Support processing of ECDSA signatures represented as ASN.1 DER blobs.

When processing ECDSA signatures consider the input file to be either a raw signature, with 32 bytes R and S values in little endian format concatenated into a single 64 bytes blob, or an ASN.1 encoded ECDSA signature, which is a sequence of two big endian big number values, which could be anywhere from one to 33 bytes long. In case input is in ASN .1 format Convert the values into little endian and truncate/expand as necessary to generated the internal representation of R and S of exactly 32 bytes each. Tested by attaching the Crypto4a HSM produced ECDSA signature to an owner binary image and verifying the signature, both using opentitantool. Signed-off-by: Vadim Bendebury <[email protected]>

vbendeb requested a review from a team as a code owner January 24, 2025 02:42

vbendeb requested review from HU90m, pamaury and cfrantz and removed request for a team January 24, 2025 02:42

vbendeb force-pushed the ecdsa-asn1 branch from ab7d888 to 40de369 Compare January 24, 2025 05:40

vbendeb force-pushed the ecdsa-asn1 branch from 40de369 to 14a58fc Compare January 24, 2025 05:43

vbendeb closed this Jan 24, 2025

vbendeb deleted the ecdsa-asn1 branch January 24, 2025 06:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

opentitanlib: accept ECDSA signatures as ASN.1 blobs #25998

opentitanlib: accept ECDSA signatures as ASN.1 blobs #25998

vbendeb commented Jan 24, 2025

opentitanlib: accept ECDSA signatures as ASN.1 blobs #25998

opentitanlib: accept ECDSA signatures as ASN.1 blobs #25998

Conversation

vbendeb commented Jan 24, 2025