diff options
author | David Howells <dhowells@redhat.com> | 2013-08-30 11:18:02 -0400 |
---|---|---|
committer | David Howells <dhowells@redhat.com> | 2013-09-25 12:17:00 -0400 |
commit | b426beb6eeb0c81aeaa419f7444064abc9cb04ae (patch) | |
tree | e704ed37a19ac0d9f572a8a45f4cf6228dd3ae5f /crypto/asymmetric_keys | |
parent | 57be4a784bf58eb41784aa3431165b455cf7e9c6 (diff) |
X.509: Embed public_key_signature struct and create filler function
Embed a public_key_signature struct in struct x509_certificate, eliminating
now unnecessary fields, and split x509_check_signature() to create a filler
function for it that attaches a digest of the signed data and an MPI that
represents the signature data. x509_free_certificate() is then modified to
deal with these.
Whilst we're at it, export both x509_check_signature() and the new
x509_get_sig_params().
Signed-off-by: David Howells <dhowells@redhat.com>
Reviewed-by: Kees Cook <keescook@chromium.org>
Reviewed-by: Josh Boyer <jwboyer@redhat.com>
Diffstat (limited to 'crypto/asymmetric_keys')
-rw-r--r-- | crypto/asymmetric_keys/x509_cert_parser.c | 30 | ||||
-rw-r--r-- | crypto/asymmetric_keys/x509_parser.h | 16 | ||||
-rw-r--r-- | crypto/asymmetric_keys/x509_public_key.c | 83 |
3 files changed, 74 insertions, 55 deletions
diff --git a/crypto/asymmetric_keys/x509_cert_parser.c b/crypto/asymmetric_keys/x509_cert_parser.c index 8cc253d2dc92..144201ccba0c 100644 --- a/crypto/asymmetric_keys/x509_cert_parser.c +++ b/crypto/asymmetric_keys/x509_cert_parser.c | |||
@@ -47,6 +47,8 @@ void x509_free_certificate(struct x509_certificate *cert) | |||
47 | kfree(cert->subject); | 47 | kfree(cert->subject); |
48 | kfree(cert->fingerprint); | 48 | kfree(cert->fingerprint); |
49 | kfree(cert->authority); | 49 | kfree(cert->authority); |
50 | kfree(cert->sig.digest); | ||
51 | mpi_free(cert->sig.rsa.s); | ||
50 | kfree(cert); | 52 | kfree(cert); |
51 | } | 53 | } |
52 | } | 54 | } |
@@ -152,33 +154,33 @@ int x509_note_pkey_algo(void *context, size_t hdrlen, | |||
152 | return -ENOPKG; /* Unsupported combination */ | 154 | return -ENOPKG; /* Unsupported combination */ |
153 | 155 | ||
154 | case OID_md4WithRSAEncryption: | 156 | case OID_md4WithRSAEncryption: |
155 | ctx->cert->sig_hash_algo = PKEY_HASH_MD5; | 157 | ctx->cert->sig.pkey_hash_algo = PKEY_HASH_MD5; |
156 | ctx->cert->sig_pkey_algo = PKEY_ALGO_RSA; | 158 | ctx->cert->sig.pkey_algo = PKEY_ALGO_RSA; |
157 | break; | 159 | break; |
158 | 160 | ||
159 | case OID_sha1WithRSAEncryption: | 161 | case OID_sha1WithRSAEncryption: |
160 | ctx->cert->sig_hash_algo = PKEY_HASH_SHA1; | 162 | ctx->cert->sig.pkey_hash_algo = PKEY_HASH_SHA1; |
161 | ctx->cert->sig_pkey_algo = PKEY_ALGO_RSA; | 163 | ctx->cert->sig.pkey_algo = PKEY_ALGO_RSA; |
162 | break; | 164 | break; |
163 | 165 | ||
164 | case OID_sha256WithRSAEncryption: | 166 | case OID_sha256WithRSAEncryption: |
165 | ctx->cert->sig_hash_algo = PKEY_HASH_SHA256; | 167 | ctx->cert->sig.pkey_hash_algo = PKEY_HASH_SHA256; |
166 | ctx->cert->sig_pkey_algo = PKEY_ALGO_RSA; | 168 | ctx->cert->sig.pkey_algo = PKEY_ALGO_RSA; |
167 | break; | 169 | break; |
168 | 170 | ||
169 | case OID_sha384WithRSAEncryption: | 171 | case OID_sha384WithRSAEncryption: |
170 | ctx->cert->sig_hash_algo = PKEY_HASH_SHA384; | 172 | ctx->cert->sig.pkey_hash_algo = PKEY_HASH_SHA384; |
171 | ctx->cert->sig_pkey_algo = PKEY_ALGO_RSA; | 173 | ctx->cert->sig.pkey_algo = PKEY_ALGO_RSA; |
172 | break; | 174 | break; |
173 | 175 | ||
174 | case OID_sha512WithRSAEncryption: | 176 | case OID_sha512WithRSAEncryption: |
175 | ctx->cert->sig_hash_algo = PKEY_HASH_SHA512; | 177 | ctx->cert->sig.pkey_hash_algo = PKEY_HASH_SHA512; |
176 | ctx->cert->sig_pkey_algo = PKEY_ALGO_RSA; | 178 | ctx->cert->sig.pkey_algo = PKEY_ALGO_RSA; |
177 | break; | 179 | break; |
178 | 180 | ||
179 | case OID_sha224WithRSAEncryption: | 181 | case OID_sha224WithRSAEncryption: |
180 | ctx->cert->sig_hash_algo = PKEY_HASH_SHA224; | 182 | ctx->cert->sig.pkey_hash_algo = PKEY_HASH_SHA224; |
181 | ctx->cert->sig_pkey_algo = PKEY_ALGO_RSA; | 183 | ctx->cert->sig.pkey_algo = PKEY_ALGO_RSA; |
182 | break; | 184 | break; |
183 | } | 185 | } |
184 | 186 | ||
@@ -203,8 +205,8 @@ int x509_note_signature(void *context, size_t hdrlen, | |||
203 | return -EINVAL; | 205 | return -EINVAL; |
204 | } | 206 | } |
205 | 207 | ||
206 | ctx->cert->sig = value; | 208 | ctx->cert->raw_sig = value; |
207 | ctx->cert->sig_size = vlen; | 209 | ctx->cert->raw_sig_size = vlen; |
208 | return 0; | 210 | return 0; |
209 | } | 211 | } |
210 | 212 | ||
diff --git a/crypto/asymmetric_keys/x509_parser.h b/crypto/asymmetric_keys/x509_parser.h index 2d0118214770..87d9cc26f630 100644 --- a/crypto/asymmetric_keys/x509_parser.h +++ b/crypto/asymmetric_keys/x509_parser.h | |||
@@ -21,12 +21,11 @@ struct x509_certificate { | |||
21 | char *authority; /* Authority key fingerprint as hex */ | 21 | char *authority; /* Authority key fingerprint as hex */ |
22 | struct tm valid_from; | 22 | struct tm valid_from; |
23 | struct tm valid_to; | 23 | struct tm valid_to; |
24 | enum pkey_algo sig_pkey_algo : 8; /* Signature public key algorithm */ | ||
25 | enum pkey_hash_algo sig_hash_algo : 8; /* Signature hash algorithm */ | ||
26 | const void *tbs; /* Signed data */ | 24 | const void *tbs; /* Signed data */ |
27 | size_t tbs_size; /* Size of signed data */ | 25 | unsigned tbs_size; /* Size of signed data */ |
28 | const void *sig; /* Signature data */ | 26 | unsigned raw_sig_size; /* Size of sigature */ |
29 | size_t sig_size; /* Size of sigature */ | 27 | const void *raw_sig; /* Signature data */ |
28 | struct public_key_signature sig; /* Signature parameters */ | ||
30 | }; | 29 | }; |
31 | 30 | ||
32 | /* | 31 | /* |
@@ -34,3 +33,10 @@ struct x509_certificate { | |||
34 | */ | 33 | */ |
35 | extern void x509_free_certificate(struct x509_certificate *cert); | 34 | extern void x509_free_certificate(struct x509_certificate *cert); |
36 | extern struct x509_certificate *x509_cert_parse(const void *data, size_t datalen); | 35 | extern struct x509_certificate *x509_cert_parse(const void *data, size_t datalen); |
36 | |||
37 | /* | ||
38 | * x509_public_key.c | ||
39 | */ | ||
40 | extern int x509_get_sig_params(struct x509_certificate *cert); | ||
41 | extern int x509_check_signature(const struct public_key *pub, | ||
42 | struct x509_certificate *cert); | ||
diff --git a/crypto/asymmetric_keys/x509_public_key.c b/crypto/asymmetric_keys/x509_public_key.c index 8cb2f7075479..b7c81d8df08b 100644 --- a/crypto/asymmetric_keys/x509_public_key.c +++ b/crypto/asymmetric_keys/x509_public_key.c | |||
@@ -24,72 +24,83 @@ | |||
24 | #include "x509_parser.h" | 24 | #include "x509_parser.h" |
25 | 25 | ||
26 | /* | 26 | /* |
27 | * Check the signature on a certificate using the provided public key | 27 | * Set up the signature parameters in an X.509 certificate. This involves |
28 | * digesting the signed data and extracting the signature. | ||
28 | */ | 29 | */ |
29 | static int x509_check_signature(const struct public_key *pub, | 30 | int x509_get_sig_params(struct x509_certificate *cert) |
30 | const struct x509_certificate *cert) | ||
31 | { | 31 | { |
32 | struct public_key_signature *sig; | ||
33 | struct crypto_shash *tfm; | 32 | struct crypto_shash *tfm; |
34 | struct shash_desc *desc; | 33 | struct shash_desc *desc; |
35 | size_t digest_size, desc_size; | 34 | size_t digest_size, desc_size; |
35 | void *digest; | ||
36 | int ret; | 36 | int ret; |
37 | 37 | ||
38 | pr_devel("==>%s()\n", __func__); | 38 | pr_devel("==>%s()\n", __func__); |
39 | 39 | ||
40 | if (cert->sig.rsa.s) | ||
41 | return 0; | ||
42 | |||
43 | cert->sig.rsa.s = mpi_read_raw_data(cert->raw_sig, cert->raw_sig_size); | ||
44 | if (!cert->sig.rsa.s) | ||
45 | return -ENOMEM; | ||
46 | cert->sig.nr_mpi = 1; | ||
47 | |||
40 | /* Allocate the hashing algorithm we're going to need and find out how | 48 | /* Allocate the hashing algorithm we're going to need and find out how |
41 | * big the hash operational data will be. | 49 | * big the hash operational data will be. |
42 | */ | 50 | */ |
43 | tfm = crypto_alloc_shash(pkey_hash_algo_name[cert->sig_hash_algo], 0, 0); | 51 | tfm = crypto_alloc_shash(pkey_hash_algo_name[cert->sig.pkey_hash_algo], 0, 0); |
44 | if (IS_ERR(tfm)) | 52 | if (IS_ERR(tfm)) |
45 | return (PTR_ERR(tfm) == -ENOENT) ? -ENOPKG : PTR_ERR(tfm); | 53 | return (PTR_ERR(tfm) == -ENOENT) ? -ENOPKG : PTR_ERR(tfm); |
46 | 54 | ||
47 | desc_size = crypto_shash_descsize(tfm) + sizeof(*desc); | 55 | desc_size = crypto_shash_descsize(tfm) + sizeof(*desc); |
48 | digest_size = crypto_shash_digestsize(tfm); | 56 | digest_size = crypto_shash_digestsize(tfm); |
49 | 57 | ||
50 | /* We allocate the hash operational data storage on the end of our | 58 | /* We allocate the hash operational data storage on the end of the |
51 | * context data. | 59 | * digest storage space. |
52 | */ | 60 | */ |
53 | ret = -ENOMEM; | 61 | ret = -ENOMEM; |
54 | sig = kzalloc(sizeof(*sig) + desc_size + digest_size, GFP_KERNEL); | 62 | digest = kzalloc(digest_size + desc_size, GFP_KERNEL); |
55 | if (!sig) | 63 | if (!digest) |
56 | goto error_no_sig; | 64 | goto error; |
57 | 65 | ||
58 | sig->pkey_hash_algo = cert->sig_hash_algo; | 66 | cert->sig.digest = digest; |
59 | sig->digest = (u8 *)sig + sizeof(*sig) + desc_size; | 67 | cert->sig.digest_size = digest_size; |
60 | sig->digest_size = digest_size; | ||
61 | 68 | ||
62 | desc = (void *)sig + sizeof(*sig); | 69 | desc = digest + digest_size; |
63 | desc->tfm = tfm; | 70 | desc->tfm = tfm; |
64 | desc->flags = CRYPTO_TFM_REQ_MAY_SLEEP; | 71 | desc->flags = CRYPTO_TFM_REQ_MAY_SLEEP; |
65 | 72 | ||
66 | ret = crypto_shash_init(desc); | 73 | ret = crypto_shash_init(desc); |
67 | if (ret < 0) | 74 | if (ret < 0) |
68 | goto error; | 75 | goto error; |
76 | might_sleep(); | ||
77 | ret = crypto_shash_finup(desc, cert->tbs, cert->tbs_size, digest); | ||
78 | error: | ||
79 | crypto_free_shash(tfm); | ||
80 | pr_devel("<==%s() = %d\n", __func__, ret); | ||
81 | return ret; | ||
82 | } | ||
83 | EXPORT_SYMBOL_GPL(x509_get_sig_params); | ||
69 | 84 | ||
70 | ret = -ENOMEM; | 85 | /* |
71 | sig->rsa.s = mpi_read_raw_data(cert->sig, cert->sig_size); | 86 | * Check the signature on a certificate using the provided public key |
72 | if (!sig->rsa.s) | 87 | */ |
73 | goto error; | 88 | int x509_check_signature(const struct public_key *pub, |
89 | struct x509_certificate *cert) | ||
90 | { | ||
91 | int ret; | ||
74 | 92 | ||
75 | ret = crypto_shash_finup(desc, cert->tbs, cert->tbs_size, sig->digest); | 93 | pr_devel("==>%s()\n", __func__); |
76 | if (ret < 0) | ||
77 | goto error_mpi; | ||
78 | 94 | ||
79 | ret = public_key_verify_signature(pub, sig); | 95 | ret = x509_get_sig_params(cert); |
96 | if (ret < 0) | ||
97 | return ret; | ||
80 | 98 | ||
99 | ret = public_key_verify_signature(pub, &cert->sig); | ||
81 | pr_debug("Cert Verification: %d\n", ret); | 100 | pr_debug("Cert Verification: %d\n", ret); |
82 | |||
83 | error_mpi: | ||
84 | mpi_free(sig->rsa.s); | ||
85 | error: | ||
86 | kfree(sig); | ||
87 | error_no_sig: | ||
88 | crypto_free_shash(tfm); | ||
89 | |||
90 | pr_devel("<==%s() = %d\n", __func__, ret); | ||
91 | return ret; | 101 | return ret; |
92 | } | 102 | } |
103 | EXPORT_SYMBOL_GPL(x509_check_signature); | ||
93 | 104 | ||
94 | /* | 105 | /* |
95 | * Attempt to parse a data blob for a key as an X509 certificate. | 106 | * Attempt to parse a data blob for a key as an X509 certificate. |
@@ -118,8 +129,8 @@ static int x509_key_preparse(struct key_preparsed_payload *prep) | |||
118 | cert->valid_to.tm_mday, cert->valid_to.tm_hour, | 129 | cert->valid_to.tm_mday, cert->valid_to.tm_hour, |
119 | cert->valid_to.tm_min, cert->valid_to.tm_sec); | 130 | cert->valid_to.tm_min, cert->valid_to.tm_sec); |
120 | pr_devel("Cert Signature: %s + %s\n", | 131 | pr_devel("Cert Signature: %s + %s\n", |
121 | pkey_algo_name[cert->sig_pkey_algo], | 132 | pkey_algo_name[cert->sig.pkey_algo], |
122 | pkey_hash_algo_name[cert->sig_hash_algo]); | 133 | pkey_hash_algo_name[cert->sig.pkey_hash_algo]); |
123 | 134 | ||
124 | if (!cert->fingerprint || !cert->authority) { | 135 | if (!cert->fingerprint || !cert->authority) { |
125 | pr_warn("Cert for '%s' must have SubjKeyId and AuthKeyId extensions\n", | 136 | pr_warn("Cert for '%s' must have SubjKeyId and AuthKeyId extensions\n", |