blob: 38326db1bba13af80714415366edc95e7cbb1539 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
|
// Copyright 2021 The Pigweed Authors
//
// Licensed under the Apache License, Version 2.0 (the "License"); you may not
// use this file except in compliance with the License. You may obtain a copy of
// the License at
//
// https://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
// WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
// License for the specific language governing permissions and limitations under
// the License.
#pragma once
#include "pw_bytes/span.h"
#include "pw_status/status.h"
namespace pw::crypto::ecdsa {
/// Verifies the `signature` of `digest` using `public_key`.
///
/// Example:
///
/// @code{.cpp}
/// #include "pw_crypto/sha256.h"
///
/// // Verify a digital signature signed with ECDSA over the NIST P256 curve.
/// std::byte digest[32];
/// if (!pw::crypto::sha256::Hash(message, digest).ok()) {
/// // handle errors.
/// }
///
/// if (!pw::crypto::ecdsa::VerifyP256Signature(public_key, digest,
/// signature).ok()) {
/// // handle errors.
/// }
/// @endcode
///
/// @param[in] public_key A byte string in SEC 1 uncompressed form
/// ``(0x04||X||Y)``, which is exactly 65 bytes. Compressed forms
/// ``(02/03||X)`` *may* not be supported by some backends, e.g. Mbed TLS.
///
/// @param[in] digest A raw byte string, truncated to 32 bytes.
///
/// @param[in] signature A raw byte string ``(r||s)`` of exactly 64 bytes.
///
/// @returns @pw_status{OK} for a successful verification, or an error
/// ``Status`` otherwise.
Status VerifyP256Signature(ConstByteSpan public_key,
ConstByteSpan digest,
ConstByteSpan signature);
} // namespace pw::crypto::ecdsa
|
