avb2.0: add Android Verified Boot 2.0 library

Add libavb lib (3rd party library from AOSP), that implements support of AVB 2.0. This library is used for integrity checking of Android partitions on eMMC. libavb was added as it is and minimal changes were introduced to reduce maintenance cost, because it will be deviated from AOSP upstream in the future. Changes: - license headers changed to conform SPDX-style - avb_crc32.c dropped - updates in avb_sysdeps_posix.c/avb_sysdeps.h For additional details check [1] AVB 2.0 README. [1] https://android.googlesource.com/platform/external/avb/+/master/README.md Signed-off-by: Igor Opaniuk <igor.opaniuk@linaro.org>
author: Igor Opaniuk <igor.opaniuk@linaro.org> 2018-06-03 21:56:36 +0300
committer: Tom Rini <trini@konsulko.com> 2018-06-18 13:55:13 -0400
commit: d8f9d2af96b38f494b3991d5021d72f7c3cec54c (patch)
tree: 1c9180431c9c827ed1189004f07c62949e8fdb16 /lib/libavb/avb_rsa.h
parent: 378b29cbc6607ad8246b1381bc74ec62bdb19105 (diff)
1 files changed, 55 insertions, 0 deletions
diff --git a/lib/libavb/avb_rsa.h b/lib/libavb/avb_rsa.h
new file mode 100644
index 0000000000..f5c6a9c7c7
--- /dev/null
+++ b/lib/libavb/avb_rsa.h
@@ -0,0 +1,55 @@
+/*
+ * Copyright (C) 2016 The Android Open Source Project
+ *
+ * SPDX-License-Identifier:	(MIT or BSD-3-Clause)
+ */
+
+/* Copyright (c) 2011 The Chromium OS Authors. All rights reserved.
+ * Use of this source code is governed by a BSD-style license that can be
+ * found in the LICENSE file.
+ */
+
+#ifdef AVB_INSIDE_LIBAVB_H
+#error "You can't include avb_rsa.h in the public header libavb.h."
+#endif
+
+#ifndef AVB_COMPILATION
+#error "Never include this file, it may only be used from internal avb code."
+#endif
+
+#ifndef AVB_RSA_H_
+#define AVB_RSA_H_
+
+#ifdef __cplusplus
+extern "C" {
+#endif
+
+#include "avb_crypto.h"
+#include "avb_sysdeps.h"
+
+/* Using the key given by |key|, verify a RSA signature |sig| of
+ * length |sig_num_bytes| against an expected |hash| of length
+ * |hash_num_bytes|. The padding to expect must be passed in using
+ * |padding| of length |padding_num_bytes|.
+ *
+ * The data in |key| must match the format defined in
+ * |AvbRSAPublicKeyHeader|, including the two large numbers
+ * following. The |key_num_bytes| must be the size of the entire
+ * serialized key.
+ *
+ * Returns false if verification fails, true otherwise.
+ */
+bool avb_rsa_verify(const uint8_t* key,
+                    size_t key_num_bytes,
+                    const uint8_t* sig,
+                    size_t sig_num_bytes,
+                    const uint8_t* hash,
+                    size_t hash_num_bytes,
+                    const uint8_t* padding,
+                    size_t padding_num_bytes) AVB_ATTR_WARN_UNUSED_RESULT;
+
+#ifdef __cplusplus
+}
+#endif
+
+#endif /* AVB_RSA_H_ */
author	Igor Opaniuk <igor.opaniuk@linaro.org>	2018-06-03 21:56:36 +0300
committer	Tom Rini <trini@konsulko.com>	2018-06-18 13:55:13 -0400
commit	d8f9d2af96b38f494b3991d5021d72f7c3cec54c (patch)
tree	1c9180431c9c827ed1189004f07c62949e8fdb16 /lib/libavb/avb_rsa.h
parent	378b29cbc6607ad8246b1381bc74ec62bdb19105 (diff)