The Android Open Source Project | c24a8e6 | 2009-03-03 19:28:42 -0800 | [diff] [blame] | 1 | /* |
| 2 | * Copyright (C) 2008 The Android Open Source Project |
| 3 | * |
| 4 | * Licensed under the Apache License, Version 2.0 (the "License"); |
| 5 | * you may not use this file except in compliance with the License. |
| 6 | * You may obtain a copy of the License at |
| 7 | * |
| 8 | * http://www.apache.org/licenses/LICENSE-2.0 |
| 9 | * |
| 10 | * Unless required by applicable law or agreed to in writing, software |
| 11 | * distributed under the License is distributed on an "AS IS" BASIS, |
| 12 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 13 | * See the License for the specific language governing permissions and |
| 14 | * limitations under the License. |
| 15 | */ |
| 16 | |
| 17 | #ifndef _RECOVERY_VERIFIER_H |
| 18 | #define _RECOVERY_VERIFIER_H |
| 19 | |
Tianjie Xu | 8256698 | 2018-10-10 15:44:17 -0700 | [diff] [blame] | 20 | #include <stdint.h> |
| 21 | |
Tao Bao | 5e53501 | 2017-03-16 17:37:38 -0700 | [diff] [blame] | 22 | #include <functional> |
Tao Bao | 71e3e09 | 2016-02-02 14:02:27 -0800 | [diff] [blame] | 23 | #include <memory> |
| 24 | #include <vector> |
| 25 | |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 26 | #include <openssl/ec_key.h> |
| 27 | #include <openssl/rsa.h> |
| 28 | #include <openssl/sha.h> |
The Android Open Source Project | c24a8e6 | 2009-03-03 19:28:42 -0800 | [diff] [blame] | 29 | |
xunchang | f07ed2e | 2019-02-25 14:14:01 -0800 | [diff] [blame] | 30 | using HasherUpdateCallback = std::function<void(const uint8_t* addr, uint64_t size)>; |
| 31 | |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 32 | struct RSADeleter { |
Mikhail Lappo | b49767c | 2017-03-23 21:44:26 +0100 | [diff] [blame] | 33 | void operator()(RSA* rsa) const { |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 34 | RSA_free(rsa); |
| 35 | } |
| 36 | }; |
| 37 | |
| 38 | struct ECKEYDeleter { |
Mikhail Lappo | b49767c | 2017-03-23 21:44:26 +0100 | [diff] [blame] | 39 | void operator()(EC_KEY* ec_key) const { |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 40 | EC_KEY_free(ec_key); |
| 41 | } |
| 42 | }; |
Kenny Root | 7a4adb5 | 2013-10-09 10:14:35 -0700 | [diff] [blame] | 43 | |
Tao Bao | 71e3e09 | 2016-02-02 14:02:27 -0800 | [diff] [blame] | 44 | struct Certificate { |
Kenny Root | 7a4adb5 | 2013-10-09 10:14:35 -0700 | [diff] [blame] | 45 | typedef enum { |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 46 | KEY_TYPE_RSA, |
| 47 | KEY_TYPE_EC, |
Kenny Root | 7a4adb5 | 2013-10-09 10:14:35 -0700 | [diff] [blame] | 48 | } KeyType; |
| 49 | |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 50 | Certificate(int hash_len_, |
| 51 | KeyType key_type_, |
| 52 | std::unique_ptr<RSA, RSADeleter>&& rsa_, |
| 53 | std::unique_ptr<EC_KEY, ECKEYDeleter>&& ec_) |
| 54 | : hash_len(hash_len_), |
| 55 | key_type(key_type_), |
| 56 | rsa(std::move(rsa_)), |
| 57 | ec(std::move(ec_)) {} |
Tao Bao | 71e3e09 | 2016-02-02 14:02:27 -0800 | [diff] [blame] | 58 | |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 59 | // SHA_DIGEST_LENGTH (SHA-1) or SHA256_DIGEST_LENGTH (SHA-256) |
| 60 | int hash_len; |
Kenny Root | 7a4adb5 | 2013-10-09 10:14:35 -0700 | [diff] [blame] | 61 | KeyType key_type; |
Mattias Nissler | 452df6d | 2016-04-04 16:17:01 +0200 | [diff] [blame] | 62 | std::unique_ptr<RSA, RSADeleter> rsa; |
| 63 | std::unique_ptr<EC_KEY, ECKEYDeleter> ec; |
Tao Bao | 71e3e09 | 2016-02-02 14:02:27 -0800 | [diff] [blame] | 64 | }; |
Doug Zongker | 30362a6 | 2013-04-10 11:32:17 -0700 | [diff] [blame] | 65 | |
xunchang | f07ed2e | 2019-02-25 14:14:01 -0800 | [diff] [blame] | 66 | class VerifierInterface { |
| 67 | public: |
| 68 | virtual ~VerifierInterface() = default; |
| 69 | |
| 70 | // Returns the package size in bytes. |
| 71 | virtual uint64_t GetPackageSize() const = 0; |
| 72 | |
| 73 | // Reads |byte_count| data starting from |offset|, and puts the result in |buffer|. |
| 74 | virtual bool ReadFullyAtOffset(uint8_t* buffer, uint64_t byte_count, uint64_t offset) = 0; |
| 75 | |
| 76 | // Updates the hash contexts for |length| bytes data starting from |start|. |
| 77 | virtual bool UpdateHashAtOffset(const std::vector<HasherUpdateCallback>& hashers, uint64_t start, |
| 78 | uint64_t length) = 0; |
| 79 | |
| 80 | // Updates the progress in fraction during package verification. |
| 81 | virtual void SetProgress(float progress) = 0; |
| 82 | }; |
| 83 | |
| 84 | // Looks for an RSA signature embedded in the .ZIP file comment given the path to the zip. |
| 85 | // Verifies that it matches one of the given public keys. Returns VERIFY_SUCCESS or |
| 86 | // VERIFY_FAILURE (if any error is encountered or no key matches the signature). |
| 87 | int verify_file(VerifierInterface* package, const std::vector<Certificate>& keys); |
Doug Zongker | 60151a2 | 2009-08-12 18:30:03 -0700 | [diff] [blame] | 88 | |
Tianjie Xu | b5110de | 2018-10-23 23:31:43 -0700 | [diff] [blame] | 89 | // Checks that the RSA key has a modulus of 2048 bits long, and public exponent is 3 or 65537. |
| 90 | bool CheckRSAKey(const std::unique_ptr<RSA, RSADeleter>& rsa); |
| 91 | |
| 92 | // Checks that the field size of the curve for the EC key is 256 bits. |
| 93 | bool CheckECKey(const std::unique_ptr<EC_KEY, ECKEYDeleter>& ec_key); |
| 94 | |
Tianjie Xu | 8256698 | 2018-10-10 15:44:17 -0700 | [diff] [blame] | 95 | // Parses a PEM-encoded x509 certificate from the given buffer and saves it into |cert|. Returns |
| 96 | // false if there is a parsing failure or the signature's encryption algorithm is not supported. |
| 97 | bool LoadCertificateFromBuffer(const std::vector<uint8_t>& pem_content, Certificate* cert); |
| 98 | |
Tianjie Xu | 0dd9685 | 2018-10-15 11:44:14 -0700 | [diff] [blame] | 99 | // Iterates over the zip entries with the suffix "x509.pem" and returns a list of recognized |
| 100 | // certificates. Returns an empty list if we fail to parse any of the entries. |
| 101 | std::vector<Certificate> LoadKeysFromZipfile(const std::string& zip_name); |
| 102 | |
Doug Zongker | 60151a2 | 2009-08-12 18:30:03 -0700 | [diff] [blame] | 103 | #define VERIFY_SUCCESS 0 |
| 104 | #define VERIFY_FAILURE 1 |
The Android Open Source Project | c24a8e6 | 2009-03-03 19:28:42 -0800 | [diff] [blame] | 105 | |
| 106 | #endif /* _RECOVERY_VERIFIER_H */ |