Skip to content

[opentitantool] Enable use of raw keys with the ecdsa command #28849

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: earlgrey_1.0.0
Choose a base branch
from
Open

[opentitantool] Enable use of raw keys with the ecdsa command #28849

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 18 additions & 3 deletions sw/host/opentitantool/src/command/ecdsa.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ use clap::{Args, Subcommand};
use regex::Regex;
use serde_annotate::Annotate;
use std::any::Any;
use std::ffi::OsStr;
use std::fs::File;
use std::io::Write;
use std::path::{Path, PathBuf};
Expand All @@ -23,6 +24,17 @@ use opentitanlib::crypto::sha256::Sha256Digest;
/// the path to a private key, extracts the public key from the private
/// key and returns the public key.
fn load_pub_or_priv_key(path: &Path) -> Result<EcdsaPublicKey> {
if path.extension() == Some(OsStr::new("bin")) {
let mut f = File::open(path)?;
let k = EcdsaRawPublicKey::read(&mut f)?;
return Ok(EcdsaPublicKey::try_from(&k)?);
}
if path.extension() == Some(OsStr::new("hex")) {
let data = std::fs::read_to_string(path)?;
let mut data = std::io::Cursor::new(hex::decode(data.trim())?);
let k = EcdsaRawPublicKey::read(&mut data)?;
return Ok(EcdsaPublicKey::try_from(&k)?);
}
if let Ok(key) = EcdsaPublicKey::load(path) {
return Ok(key);
}
Expand All @@ -33,7 +45,8 @@ fn load_pub_or_priv_key(path: &Path) -> Result<EcdsaPublicKey> {
/// Show public information of a private or public ECDSA key
#[derive(Debug, Args)]
pub struct EcdsaKeyShowCommand {
/// ECDSA public or private key file in DER format.
/// ECDSA public key file in DER format or a raw little-endian key in binary (.bin)
/// or hexadecimal (.hex) form..
der_file: PathBuf,
}

Expand Down Expand Up @@ -112,7 +125,8 @@ impl CommandDispatch for EcdsaKeyGenerateCommand {
/// to a C header that can be used in the ROM or ROM_EXT
#[derive(Debug, Args)]
pub struct EcdsaKeyExportCommand {
/// ECDSA public or private key file in DER format.
/// ECDSA public or private key file in DER format or a raw little-endian key in binary (.bin)
/// or hexadecimal (.hex) form..
der_file: PathBuf,
/// output header file to generate.
output_file: Option<PathBuf>,
Expand Down Expand Up @@ -255,7 +269,8 @@ pub struct EcdsaVerifyCommand {
/// Digest to be verified (binary file)
#[arg(long, short, conflicts_with = "signature")]
digest_file: Option<PathBuf>,
/// Key file in DER format.
/// ECDSA public key file in DER format or a raw little-endian key in binary (.bin)
/// or hexadecimal (.hex) form..
#[arg(value_name = "KEY")]
der_file: PathBuf,
/// SHA256 digest of the message as a hex string.
Expand Down
Loading