cryptnox-sdk-arduino/ArduinoCryptoProvider_8cpp_source.html

/*

 * SPDX-License-Identifier: LGPL-3.0-or-later

 * Copyright (c) 2026 Cryptnox SA

 */


#include "ArduinoCryptoProvider.h"

#include <trng.h>

#if CW_VERIFY_CERT

#include <SHA256.h>

#endif

#include <SHA512.h>

#include <AES.h>


ArduinoCryptoProvider::ArduinoCryptoProvider() {

    uECC_set_rng(&ArduinoCryptoProvider::trngCallback);

}


const uECC_Curve_t* ArduinoCryptoProvider::toUEccCurve(CW_Curve curve) {

    switch (curve) {

        case CW_CURVE_SECP256R1: return uECC_secp256r1();

#if uECC_SUPPORTS_secp256k1

        case CW_CURVE_SECP256K1: return uECC_secp256k1();

#endif

        default:                 return NULL;

    }

}


uint8_t ArduinoCryptoProvider::trngByte() {

    /* Lazy init: the RA4M1 TRNG peripheral is enabled on first read so

     * the constructor stays cheap and order-of-construction-safe with

     * other global objects in the sketch. */

    static bool initialized = false;

    if (!initialized) {

        TRNG.begin();

        initialized = true;

    }

    uint8_t out = 0U;

    TRNG.random8(&out);

    return out;

}


int ArduinoCryptoProvider::trngCallback(uint8_t* dest, unsigned size) {

    int ret = 0;

    if ((dest != NULL) && (size > 0U)) {

        for (unsigned i = 0U; i < size; i++) {

            dest[i] = trngByte();

        }

        ret = 1;

    }

    return ret;

}


bool ArduinoCryptoProvider::sha256(const uint8_t* data, size_t len, uint8_t* out) {

    if (out == NULL) { return false; }

#if CW_VERIFY_CERT

    if ((data == NULL) && (len > 0U)) { return false; }

    SHA256 sha;

    sha.update(data, len);

    sha.finalize(out, 32U);

#else

    /* Card-certificate verification compiled out: keep the symbol but skip

     * the work so the SHA256 dependency is not pulled in by the linker. */

    (void)data; (void)len; (void)out;

#endif

    return true;

}


bool ArduinoCryptoProvider::sha512(const uint8_t* data, size_t len, uint8_t* out) {

    if (out == NULL) { return false; }

    if ((data == NULL) && (len > 0U)) { return false; }

    SHA512 sha;

    sha.update(data, len);

    sha.finalize(out, 64U);

    return true;

}


uint16_t ArduinoCryptoProvider::aesCbcEncrypt(const uint8_t* in, uint16_t len, uint8_t* out,

                                               const uint8_t* key, uint8_t keyLen,

                                               uint8_t* iv, bool bitPadding) {

    _aes.set_paddingmode(bitPadding ? paddingMode::Bit : paddingMode::Null);

    return _aes.encrypt(reinterpret_cast<const byte*>(in), len, out,

                        reinterpret_cast<const byte*>(key), static_cast<int>(keyLen), iv);

}


uint16_t ArduinoCryptoProvider::aesCbcDecrypt(uint8_t* in, uint16_t len, uint8_t* out,

                                               const uint8_t* key, uint8_t keyLen,

                                               uint8_t* iv, bool bitPadding) {

    _aes.set_paddingmode(bitPadding ? paddingMode::Bit : paddingMode::Null);

    return _aes.decrypt(in, len, out,

                        reinterpret_cast<const byte*>(key), static_cast<int>(keyLen), iv);

}


bool ArduinoCryptoProvider::ecdh(const uint8_t* pubKey, const uint8_t* privKey,

                                  uint8_t* secret, CW_Curve curve) {

    const uECC_Curve_t* uc = toUEccCurve(curve);

    if (uc == NULL) { return false; }

    return (uECC_shared_secret(pubKey, privKey, secret, uc) != 0);

}


bool ArduinoCryptoProvider::makeKey(uint8_t* pubKey, uint8_t* privKey,

                                     CW_Curve curve) {

    const uECC_Curve_t* uc = toUEccCurve(curve);

    if (uc == NULL) { return false; }

    return (uECC_make_key(pubKey, privKey, uc) != 0);

}


bool ArduinoCryptoProvider::random(uint8_t* dest, unsigned size) {

    return (trngCallback(dest, size) == 1);

}


bool ArduinoCryptoProvider::ecdsaVerify(const uint8_t* pubKey64,

                                        const uint8_t* hash, size_t hashLen,

                                        const uint8_t* sig, CW_Curve curve) {

    const uECC_Curve_t* uc = toUEccCurve(curve);

    if (uc == NULL) { return false; }

    return (uECC_verify(pubKey64, hash, static_cast<unsigned>(hashLen), sig, uc) != 0);

}


ArduinoCryptoProvider.h
Concrete CW_CryptoProvider for the Arduino UNO R4 (RA4M1).

CW_CURVE_SECP256K1
@ CW_CURVE_SECP256K1
Definition CW_Defs.h:153

CW_CURVE_SECP256R1
@ CW_CURVE_SECP256R1
Definition CW_Defs.h:152

ArduinoCryptoProvider::aesCbcDecrypt
uint16_t aesCbcDecrypt(uint8_t *in, uint16_t len, uint8_t *out, const uint8_t *key, uint8_t keyLen, uint8_t *iv, bool bitPadding) override
AES-CBC decrypt (selectable bit / null padding).
Definition ArduinoCryptoProvider.cpp:126

ArduinoCryptoProvider::trngByte
static uint8_t trngByte()
Generate one random byte from the RA4M1 hardware TRNG.
Definition ArduinoCryptoProvider.cpp:54

ArduinoCryptoProvider::makeKey
bool makeKey(uint8_t *pubKey, uint8_t *privKey, CW_Curve curve) override
Generate a fresh EC keypair via micro-ecc.
Definition ArduinoCryptoProvider.cpp:147

ArduinoCryptoProvider::toUEccCurve
static const uECC_Curve_t * toUEccCurve(CW_Curve curve)
Translate a portable CW_Curve to the matching micro-ecc descriptor.
Definition ArduinoCryptoProvider.cpp:41

ArduinoCryptoProvider::aesCbcEncrypt
uint16_t aesCbcEncrypt(const uint8_t *in, uint16_t len, uint8_t *out, const uint8_t *key, uint8_t keyLen, uint8_t *iv, bool bitPadding) override
AES-CBC encrypt (selectable bit / null padding).
Definition ArduinoCryptoProvider.cpp:115

ArduinoCryptoProvider::sha512
bool sha512(const uint8_t *data, size_t len, uint8_t *out) override
Compute SHA-512 over a contiguous buffer.
Definition ArduinoCryptoProvider.cpp:103

ArduinoCryptoProvider::ecdsaVerify
bool ecdsaVerify(const uint8_t *pubKey64, const uint8_t *hash, size_t hashLen, const uint8_t *sig, CW_Curve curve) override
Verify a raw r||s ECDSA signature against a message hash.
Definition ArduinoCryptoProvider.cpp:164

ArduinoCryptoProvider::_aes
AESLib _aes
AESLib engine instance reused across all aesCbc* calls.
Definition ArduinoCryptoProvider.h:205

ArduinoCryptoProvider::sha256
bool sha256(const uint8_t *data, size_t len, uint8_t *out) override
Compute SHA-256 over a contiguous buffer.
Definition ArduinoCryptoProvider.cpp:85

ArduinoCryptoProvider::trngCallback
static int trngCallback(uint8_t *dest, unsigned size)
Static RNG callback registered with uECC_set_rng().
Definition ArduinoCryptoProvider.cpp:71

ArduinoCryptoProvider::ArduinoCryptoProvider
ArduinoCryptoProvider()
Construct the provider and install the RA4M1 TRNG into micro-ecc.
Definition ArduinoCryptoProvider.cpp:27

ArduinoCryptoProvider::random
bool random(uint8_t *dest, unsigned size) override
Fill a buffer with random bytes from the RA4M1 hardware TRNG.
Definition ArduinoCryptoProvider.cpp:157

ArduinoCryptoProvider::ecdh
bool ecdh(const uint8_t *pubKey, const uint8_t *privKey, uint8_t *secret, CW_Curve curve) override
Compute the ECDH shared secret on a portable curve identifier.
Definition ArduinoCryptoProvider.cpp:137

CW_Curve
CW_Curve
Portable curve identifier used throughout the SDK.
Definition CW_Defs.h:151