Gitiles
Code Review Sign In
review.coreboot.org / vboot / bf6263d52994937033b397833be836d081b61958 / . / host / lib / host_keyblock.c
blob: dde8fe6c909141f7ed1633900689125177e891d9 [file] [log] [blame]
Randall Spangler32a65262011-06-27 10:49:11 -0700[diff] [blame]1/* Copyright (c) 2011 The Chromium OS Authors. All rights reserved.
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]2 * Use of this source code is governed by a BSD-style license that can be
3 * found in the LICENSE file.
4 *
5 * Host functions for verified boot.
6 */
7
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]8#include <stdio.h>
9
Randall Spangler7c3ae422016-05-11 13:50:18 -0700[diff] [blame]10#include "2sysincludes.h"
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]11
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]12#include "2api.h"
Randall Spangler7c3ae422016-05-11 13:50:18 -0700[diff] [blame]13#include "2common.h"
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]14#include "2rsa.h"
Randall Spangler7c3ae422016-05-11 13:50:18 -0700[diff] [blame]15#include "2sha.h"
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]16#include "cryptolib.h"
17#include "host_common.h"
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]18#include "host_key.h"
19#include "host_key2.h"
Randall Spangler32a65262011-06-27 10:49:11 -0700[diff] [blame]20#include "host_keyblock.h"
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]21#include "vb2_common.h"
22#include "vb2_struct.h"
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]23#include "vboot_common.h"
24
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]25struct vb2_keyblock *vb2_create_keyblock(
26 const struct vb2_packed_key *data_key,
27 const struct vb2_private_key *signing_key,
28 uint32_t flags)
29{
30 /* Allocate key block */
31 uint32_t signed_size = sizeof(struct vb2_keyblock) + data_key->key_size;
32 uint32_t sig_data_size =
33 (signing_key ? vb2_rsa_sig_size(signing_key->sig_alg) : 0);
34 uint32_t block_size =
35 signed_size + VB2_SHA512_DIGEST_SIZE + sig_data_size;
36 struct vb2_keyblock *h = (struct vb2_keyblock *)calloc(block_size, 1);
37 if (!h)
38 return NULL;
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]39
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]40 uint8_t *data_key_dest = (uint8_t *)(h + 1);
41 uint8_t *block_chk_dest = data_key_dest + data_key->key_size;
42 uint8_t *block_sig_dest = block_chk_dest + VB2_SHA512_DIGEST_SIZE;
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]43
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]44 memcpy(h->magic, KEY_BLOCK_MAGIC, KEY_BLOCK_MAGIC_SIZE);
45 h->header_version_major = KEY_BLOCK_HEADER_VERSION_MAJOR;
46 h->header_version_minor = KEY_BLOCK_HEADER_VERSION_MINOR;
47 h->keyblock_size = block_size;
48 h->keyblock_flags = flags;
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]49
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]50 /* Copy data key */
51 vb2_init_packed_key(&h->data_key, data_key_dest, data_key->key_size);
52 vb2_copy_packed_key(&h->data_key, data_key);
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]53
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]54 /* Set up signature structs so we can calculate the signatures */
55 vb2_init_signature(&h->keyblock_hash, block_chk_dest,
56 VB2_SHA512_DIGEST_SIZE, signed_size);
57 if (signing_key) {
58 vb2_init_signature(&h->keyblock_signature, block_sig_dest,
59 sig_data_size, signed_size);
60 } else {
61 memset(&h->keyblock_signature, 0,
62 sizeof(h->keyblock_signature));
63 }
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]64
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]65 /* Calculate hash */
66 struct vb2_signature *chk =
67 vb2_sha512_signature((uint8_t*)h, signed_size);
68 vb2_copy_signature(&h->keyblock_hash, chk);
69 free(chk);
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]70
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]71 /* Calculate signature */
72 if (signing_key) {
73 struct vb2_signature *sigtmp =
74 vb2_calculate_signature((uint8_t*)h,
75 signed_size,
76 signing_key);
77 vb2_copy_signature(&h->keyblock_signature, sigtmp);
78 free(sigtmp);
79 }
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]80
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]81 /* Return the header */
82 return h;
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]83}
84
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]85/* TODO(gauravsh): This could easily be integrated into the function above
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]86 * since the code is almost a mirror - I have kept it as such to avoid changing
87 * the existing interface. */
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]88struct vb2_keyblock *vb2_create_keyblock_external(
89 const struct vb2_packed_key *data_key,
90 const char *signing_key_pem_file,
91 uint32_t algorithm,
92 uint32_t flags,
93 const char *external_signer)
94{
Randall Spanglerd8a9ede2016-09-02 12:25:27 -0700[diff] [blame]95 if (!signing_key_pem_file || !data_key || !external_signer)
96 return NULL;
97
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]98 uint32_t signed_size = sizeof(struct vb2_keyblock) + data_key->key_size;
99 uint32_t sig_data_size = vb2_rsa_sig_size(algorithm);
100 uint32_t block_size =
101 signed_size + VB2_SHA512_DIGEST_SIZE + sig_data_size;
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]102
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]103 /* Allocate key block */
104 struct vb2_keyblock *h = (struct vb2_keyblock *)calloc(block_size, 1);
105 if (!h)
106 return NULL;
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]107
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]108 uint8_t *data_key_dest = (uint8_t *)(h + 1);
109 uint8_t *block_chk_dest = data_key_dest + data_key->key_size;
110 uint8_t *block_sig_dest = block_chk_dest + VB2_SHA512_DIGEST_SIZE;
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]111
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]112 memcpy(h->magic, KEY_BLOCK_MAGIC, KEY_BLOCK_MAGIC_SIZE);
113 h->header_version_major = KEY_BLOCK_HEADER_VERSION_MAJOR;
114 h->header_version_minor = KEY_BLOCK_HEADER_VERSION_MINOR;
115 h->keyblock_size = block_size;
116 h->keyblock_flags = flags;
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]117
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]118 /* Copy data key */
119 vb2_init_packed_key(&h->data_key, data_key_dest, data_key->key_size);
120 vb2_copy_packed_key(&h->data_key, data_key);
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]121
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]122 /* Set up signature structs so we can calculate the signatures */
123 vb2_init_signature(&h->keyblock_hash, block_chk_dest,
124 VB2_SHA512_DIGEST_SIZE, signed_size);
125 vb2_init_signature(&h->keyblock_signature, block_sig_dest,
126 sig_data_size, signed_size);
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]127
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]128 /* Calculate checksum */
129 struct vb2_signature *chk =
130 vb2_sha512_signature((uint8_t*)h, signed_size);
131 vb2_copy_signature(&h->keyblock_hash, chk);
132 free(chk);
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]133
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]134 /* Calculate signature */
Randall Spangler7d0cc742016-06-30 11:30:32 -0700[diff] [blame]135 struct vb2_signature *sigtmp =
136 vb2_external_signature((uint8_t*)h, signed_size,
137 signing_key_pem_file, algorithm,
138 external_signer);
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]139 free(sigtmp);
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]140
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]141 /* Return the header */
142 return h;
Gaurav Shah068fc6f2010-10-29 10:59:50 -0700[diff] [blame]143}
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]144
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]145struct vb2_keyblock *vb2_read_keyblock(const char *filename)
146{
147 uint8_t workbuf[VB2_WORKBUF_RECOMMENDED_SIZE];
148 struct vb2_workbuf wb;
149 vb2_workbuf_init(&wb, workbuf, sizeof(workbuf));
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]150
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]151 struct vb2_keyblock *block;
152 uint32_t file_size;
153 if (VB2_SUCCESS !=
154 vb2_read_file(filename, (uint8_t **)&block, &file_size)) {
155 fprintf(stderr, "Error reading key block file: %s\n", filename);
156 return NULL;
157 }
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]158
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]159 /* Verify the hash of the key block, since we can do that without
160 * the public signing key. */
161 if (VB2_SUCCESS != vb2_verify_keyblock_hash(block, file_size, &wb)) {
162 fprintf(stderr, "Invalid key block file: %s\n", filename);
163 free(block);
164 return NULL;
165 }
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]166
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]167 return block;
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]168}
169
170
Randall Spangler939cc3a2016-06-21 15:23:32 -0700[diff] [blame]171int vb2_write_keyblock(const char *filename,
172 const struct vb2_keyblock *keyblock)
173{
174 return vb2_write_file(filename, keyblock, keyblock->keyblock_size);
Randall Spangler729b8722010-06-11 11:16:20 -0700[diff] [blame]175}