mirror of
https://github.com/yuzu-emu/mbedtls.git
synced 2024-11-22 22:55:39 +01:00
Add ecjpake_zpk_read()
Not really tested yet
This commit is contained in:
Manuel Pégourié-Gonnard
parent
c618195bc4
commit
6029a85572
@ -346,6 +346,21 @@ int mbedtls_ecp_set_zero( mbedtls_ecp_point *pt );
|
|||||||
*/
|
*/
|
||||||
int mbedtls_ecp_is_zero( mbedtls_ecp_point *pt );
|
int mbedtls_ecp_is_zero( mbedtls_ecp_point *pt );
|
||||||
|
|
||||||
|
/**
|
||||||
|
* \brief Compare two points
|
||||||
|
*
|
||||||
|
* \note This assumes the points are normalized. Otherwise,
|
||||||
|
* they may compare as "not equal" even if they are.
|
||||||
|
*
|
||||||
|
* \param P First point to compare
|
||||||
|
* \param Q Second point to compare
|
||||||
|
*
|
||||||
|
* \return 0 if the points are equal,
|
||||||
|
* MBEDTLS_ERR_ECP_BAD_INPUT_DATA otherwise
|
||||||
|
*/
|
||||||
|
int mbedtls_ecp_point_cmp( const mbedtls_ecp_point *P,
|
||||||
|
const mbedtls_ecp_point *Q );
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* \brief Import a non-zero point from two ASCII strings
|
* \brief Import a non-zero point from two ASCII strings
|
||||||
*
|
*
|
||||||
|
|||||||
@ -121,7 +121,7 @@ cleanup:
|
|||||||
/*
|
/*
|
||||||
* Generate ZKP (7.4.2.3.2) and write it as ECSchnorrZKP (7.4.2.2.2)
|
* Generate ZKP (7.4.2.3.2) and write it as ECSchnorrZKP (7.4.2.2.2)
|
||||||
*/
|
*/
|
||||||
static int ecjpake_write_zkp( const mbedtls_md_info_t *md_info,
|
static int ecjpake_zkp_write( const mbedtls_md_info_t *md_info,
|
||||||
const mbedtls_ecp_group *grp,
|
const mbedtls_ecp_group *grp,
|
||||||
const mbedtls_ecp_point *G,
|
const mbedtls_ecp_point *G,
|
||||||
const mbedtls_mpi *x,
|
const mbedtls_mpi *x,
|
||||||
@ -174,6 +174,69 @@ cleanup:
|
|||||||
return( ret );
|
return( ret );
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Parse a ECShnorrZKP (7.4.2.2.2) and verify it (7.4.2.3.3)
|
||||||
|
*/
|
||||||
|
static int ecjpake_zkp_read( const mbedtls_md_info_t *md_info,
|
||||||
|
const mbedtls_ecp_group *grp,
|
||||||
|
const mbedtls_ecp_point *G,
|
||||||
|
const mbedtls_ecp_point *X,
|
||||||
|
const char *id,
|
||||||
|
unsigned char **p,
|
||||||
|
const unsigned char *end )
|
||||||
|
{
|
||||||
|
int ret;
|
||||||
|
mbedtls_ecp_point V, VV;
|
||||||
|
mbedtls_mpi r, h;
|
||||||
|
size_t r_len;
|
||||||
|
|
||||||
|
mbedtls_ecp_point_init( &V );
|
||||||
|
mbedtls_ecp_point_init( &VV );
|
||||||
|
mbedtls_mpi_init( &r );
|
||||||
|
mbedtls_mpi_init( &h );
|
||||||
|
|
||||||
|
/*
|
||||||
|
* struct {
|
||||||
|
* ECPoint V;
|
||||||
|
* opaque r<1..2^8-1>;
|
||||||
|
* } ECSchnorrZKP;
|
||||||
|
*/
|
||||||
|
if( end < *p )
|
||||||
|
return( MBEDTLS_ERR_ECP_BAD_INPUT_DATA );
|
||||||
|
|
||||||
|
MBEDTLS_MPI_CHK( mbedtls_ecp_tls_read_point( grp, &V,
|
||||||
|
(const unsigned char **) p, end - *p ) );
|
||||||
|
|
||||||
|
if( end < *p || (size_t)( end - *p ) < 1 )
|
||||||
|
return( MBEDTLS_ERR_ECP_BAD_INPUT_DATA );
|
||||||
|
|
||||||
|
r_len = *(*p)++;
|
||||||
|
if( end < *p || (size_t)( end - *p ) < r_len )
|
||||||
|
return( MBEDTLS_ERR_ECP_BAD_INPUT_DATA );
|
||||||
|
|
||||||
|
MBEDTLS_MPI_CHK( mbedtls_mpi_read_binary( &r, *p, r_len ) );
|
||||||
|
*p += r_len;
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Verification
|
||||||
|
*/
|
||||||
|
MBEDTLS_MPI_CHK( ecjpake_hash( md_info, grp, G, &V, X, id, &h ) );
|
||||||
|
MBEDTLS_MPI_CHK( mbedtls_ecp_muladd( (mbedtls_ecp_group *) grp,
|
||||||
|
&VV, &h, X, &r, G ) );
|
||||||
|
|
||||||
|
if( mbedtls_ecp_point_cmp( &VV, &V ) != 0 )
|
||||||
|
return( MBEDTLS_ERR_ECP_VERIFY_FAILED );
|
||||||
|
|
||||||
|
cleanup:
|
||||||
|
mbedtls_ecp_point_free( &V );
|
||||||
|
mbedtls_ecp_point_free( &VV );
|
||||||
|
mbedtls_mpi_free( &r );
|
||||||
|
mbedtls_mpi_free( &h );
|
||||||
|
|
||||||
|
return( ret );
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
#if defined(MBEDTLS_SELF_TEST)
|
#if defined(MBEDTLS_SELF_TEST)
|
||||||
|
|
||||||
#if defined(MBEDTLS_PLATFORM_C)
|
#if defined(MBEDTLS_PLATFORM_C)
|
||||||
@ -293,16 +356,20 @@ int mbedtls_ecjpake_self_test( int verbose )
|
|||||||
mbedtls_printf( "passed\n" );
|
mbedtls_printf( "passed\n" );
|
||||||
|
|
||||||
if( verbose != 0 )
|
if( verbose != 0 )
|
||||||
mbedtls_printf( " ECJPAKE test #2 (zkp, WIP): " );
|
mbedtls_printf( " ECJPAKE test #2 (zkp write/read): " );
|
||||||
|
|
||||||
MBEDTLS_MPI_CHK( mbedtls_ecp_gen_keypair_base( &grp, &G, &x, &X,
|
MBEDTLS_MPI_CHK( mbedtls_ecp_gen_keypair_base( &grp, &G, &x, &X,
|
||||||
ecjpake_lgc, NULL ) );
|
ecjpake_lgc, NULL ) );
|
||||||
|
|
||||||
p = buf;
|
p = buf;
|
||||||
MBEDTLS_MPI_CHK( ecjpake_write_zkp( md_info, &grp, &G, &x, &X, "client",
|
MBEDTLS_MPI_CHK( ecjpake_zkp_write( md_info, &grp, &G, &x, &X, "client",
|
||||||
&p, buf + sizeof( buf ),
|
&p, buf + sizeof( buf ),
|
||||||
ecjpake_lgc, NULL ) );
|
ecjpake_lgc, NULL ) );
|
||||||
|
|
||||||
|
p = buf;
|
||||||
|
MBEDTLS_MPI_CHK( ecjpake_zkp_read( md_info, &grp, &G, &X, "client",
|
||||||
|
&p, buf + sizeof( buf ) ) );
|
||||||
|
|
||||||
if( verbose != 0 )
|
if( verbose != 0 )
|
||||||
mbedtls_printf( "passed\n" );
|
mbedtls_printf( "passed\n" );
|
||||||
|
|
||||||
|
|||||||
@ -402,6 +402,22 @@ int mbedtls_ecp_is_zero( mbedtls_ecp_point *pt )
|
|||||||
return( mbedtls_mpi_cmp_int( &pt->Z, 0 ) == 0 );
|
return( mbedtls_mpi_cmp_int( &pt->Z, 0 ) == 0 );
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/*
|
||||||
|
* Compare two points lazyly
|
||||||
|
*/
|
||||||
|
int mbedtls_ecp_point_cmp( const mbedtls_ecp_point *P,
|
||||||
|
const mbedtls_ecp_point *Q )
|
||||||
|
{
|
||||||
|
if( mbedtls_mpi_cmp_mpi( &P->X, &Q->X ) == 0 &&
|
||||||
|
mbedtls_mpi_cmp_mpi( &P->Y, &Q->Y ) == 0 &&
|
||||||
|
mbedtls_mpi_cmp_mpi( &P->Z, &Q->Z ) == 0 )
|
||||||
|
{
|
||||||
|
return( 0 );
|
||||||
|
}
|
||||||
|
|
||||||
|
return( MBEDTLS_ERR_ECP_BAD_INPUT_DATA );
|
||||||
|
}
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* Import a non-zero point from ASCII strings
|
* Import a non-zero point from ASCII strings
|
||||||
*/
|
*/
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user