Failed to use curve25519 in M52810https://devzone.nordicsemi.com/f/nordic-q-a/42099/failed-to-use-curve25519-in-m52810Hi, I am testing curve25519 in M52810. The following is snippet. nrf_crypto_ecc_curve25519_private_key_t bob_private_key; nrf_crypto_ecc_curve25519_public_key_t bob_public_key; nrf_crypto_ecc_key_pair_generate( NULL, (nrf_crypto_ecc_curve_info_ten-USTelligent Community 13Tue, 01 Sep 2020 09:56:17 GMTRE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/267417?ContentTypeID=1Tue, 01 Sep 2020 09:56:17 GMT137ad170-7792-4731-bb38-c0d22fbe4515:b892c7e2-7e5d-44fe-942d-fa1050cc36d1Vishwas Jain<p>Hello,</p> <p>I am using nRF52840, SDK16 &amp; SoftDevice140.</p> <p>I am integrating pm_init()(Peer Manager) into my project and I am getting error <strong>0xFFFFB180</strong> from<strong> mbedtls_ecp_gen_keypair()</strong>.</p> <p>Kindly help me out!</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/164098?ContentTypeID=1Sat, 05 Jan 2019 18:03:46 GMT137ad170-7792-4731-bb38-c0d22fbe4515:c48f0f6b-a572-437e-a4fe-59ce707a9852hejianxuan<p>Dear Thorsrud,</p> <p>Thanks for your great support!</p> <p>I have not traced&nbsp;<span>the error into mbed TLS.</span></p> <p>I need mbed TLS because of AES CCM.&nbsp;I would encrypt/decrypt data by AES CCM after got secret key by ECDH.</p> <p>It seems that 52810 cannot meet my demand. I should try 52832.</p> <p>Thank you!</p> <p>Jianxuan</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163900?ContentTypeID=1Fri, 04 Jan 2019 09:02:20 GMT137ad170-7792-4731-bb38-c0d22fbe4515:6f89be11-b527-47a6-8199-320d9f022e17Einar Thorsrud<p>Hi Jianxuan,</p> <p>Ah, I did not spot that. The mbed TLS code is somewhat obfuscated. It seems likely that there is a memory allocation failure. Have you verified it by tracing the error further into mbed TLS?</p> <p>We have not tested ECDH properly on the nRF52810 (only the combinations which there are examples for in the SDK are part of the release testing). Fitting this into a nRF52810 with the S112 SoftDevice will be quite tight, though it depend on the amount of RAM needed for S112 (depending on configuration).</p> <p>You will probably have better luck by using the <span>Oberon&nbsp;</span>backend instead of mbed TLS as is less far memory hungry. Here (<a href="https://devzone.nordicsemi.com/cfs-file/__key/support-attachments/beef5d1b77644c448dabff31668f3a47-0289561e324e43ee942354eb66b79081/nrf_5F00_crypto_5F00_ecdh_5F00_examples_5F00_more_5F00_boards.zip">devzone.nordicsemi.com/.../nrf_5F00_crypto_5F00_ecdh_5F00_examples_5F00_more_5F00_boards.zip</a>) are&nbsp;<em>untested</em> project files of the ECDH example for more boards with and without a SoftDevice configured to use the Oberon backend. This includes a pca10040e project with SoftDevice. Note that the example is not updated to enable and use the SoftDevice, and that the application start address is probably too low for practical BLE applications (except for beacons), but you have some headroom when using the Oberon backend.</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163815?ContentTypeID=1Thu, 03 Jan 2019 15:52:46 GMT137ad170-7792-4731-bb38-c0d22fbe4515:3db84040-9d78-4421-bb27-5296e97a8f17hejianxuan<p>Dear Thorsrud,</p> <p>We know that ECDH need a lot of RAM and flash. I am worried that limitation of M52810 resource should cause uncertain problem while ECDH. You know, there is no&nbsp;pca10040e&nbsp; support in ECDH example.</p> <p>Thus, I want to know whether Nordic ran ECDH on M52810? If true, could you share ECDH project for pca10040e?</p> <p>Especially, ECDH project with softdevice for pca10040e would be highly appreciated! I could copy your project directly.&nbsp; That is great!</p> <p>Thanks,</p> <p>Jianxuan&nbsp;&nbsp;</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163812?ContentTypeID=1Thu, 03 Jan 2019 15:34:33 GMT137ad170-7792-4731-bb38-c0d22fbe4515:99a75002-ce24-49d4-9aad-3d27b6377ca9hejianxuan<p>In&nbsp;nRF5_SDK_15.2.0\external\mbedtls\include\mbedtls\bignum.h:</p> <p>#define MBEDTLS_MPI_CHK(f) do { if( ( ret = f ) != 0 ) goto cleanup; } while( 0 )</p> <p>This macro assign f to ret. In other words, the variable &quot;ret&quot; has been set before it is read.</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163794?ContentTypeID=1Thu, 03 Jan 2019 14:45:02 GMT137ad170-7792-4731-bb38-c0d22fbe4515:1404a871-c1a2-4245-90b8-9b3e8f76a3baEinar Thorsrud<p>There seems to be a bug in mbed TLS. You can see in &lt;SDK15.2&gt;\external\mbedtls\library\ecp_curves.c, on line 660 there is a variable &quot;ret&quot; which is defined, but it is never set before it is read.&nbsp;I suspect the proper fix is to delete line 660 and line 680-684, and always return 0 from&nbsp;ecp_use_curve25519().</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163788?ContentTypeID=1Thu, 03 Jan 2019 14:27:31 GMT137ad170-7792-4731-bb38-c0d22fbe4515:02f3deca-daee-4cb3-b577-42733ef9793ahejianxuan<p><span>The error is returned on line 124. The return value is&nbsp;0xfffffff0.</span></p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163774?ContentTypeID=1Thu, 03 Jan 2019 13:57:09 GMT137ad170-7792-4731-bb38-c0d22fbe4515:752d9b72-09b0-42bf-8d97-2664f4048297Einar Thorsrud<p>I see. Then the&nbsp;NRF_ERROR_CRYPTO_INTERNAL return value should come from either line 124 or line 141 in &lt;SDK 15.2&gt;\components\libraries\crypto\backend\mbedtls\mbedtls_backend_ecc.c. Can you check using a debugger which it is?</p> <p>If the error is returned on line 124, then can you see the return value from&nbsp;mbedtls_ecp_group_load() on line 75? And if&nbsp;it comes from the call to&nbsp;mbedtls_ecp_gen_keypair(), what is the return value from it?</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163766?ContentTypeID=1Thu, 03 Jan 2019 13:41:37 GMT137ad170-7792-4731-bb38-c0d22fbe4515:9071183b-f793-4950-a53c-93881577ec31hejianxuan<p><span>mbed TLS backend.</span></p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163761?ContentTypeID=1Thu, 03 Jan 2019 13:23:31 GMT137ad170-7792-4731-bb38-c0d22fbe4515:c2da6df4-0822-436a-8d0d-57b41c422ad6Einar Thorsrud<p>Hi&nbsp;Jianxuan,</p> <p>The error code is&nbsp;NRF_ERROR_CRYPTO_INTERNAL. Which crypto backend have you enabled for Curve25519 in your projects sdk_config.h?</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163758?ContentTypeID=1Thu, 03 Jan 2019 13:17:18 GMT137ad170-7792-4731-bb38-c0d22fbe4515:2e2f9c11-1cae-4315-8c0f-93a15a14b7d3hejianxuan<p>Dear&nbsp;Thorsrud,</p> <p>SDK version is 15.2.0. The error code is&nbsp;0x00008516.</p> <p>By the way, crypto init snippet is listed below:</p> <p>err_code = nrf_mem_init();<br /> APP_ERROR_CHECK(err_code);</p> <p>err_code = nrf_crypto_init();<br /> APP_ERROR_CHECK(err_code);</p> <p>Thanks,</p> <p>Jianxuan</p><div style="clear:both;"></div>RE: Failed to use curve25519 in M52810https://devzone.nordicsemi.com/thread/163663?ContentTypeID=1Thu, 03 Jan 2019 08:50:24 GMT137ad170-7792-4731-bb38-c0d22fbe4515:09aed83a-f05c-44f2-a5a7-9f388d6dae76Einar Thorsrud<p>Hi,</p> <p>Which SDK version are you using?&nbsp;What is the error code returned from the call to&nbsp;nrf_crypto_ecc_key_pair_generate()?</p><div style="clear:both;"></div>