Home Explore Help
Sign In
seokj
/
vboot
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: a609478d1a
Branches Tags
vboot
/
futility
/
cmd_vbutil_keyblock.c

cmd_vbutil_keyblock.c 8.7 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354 
  1. /* Copyright (c) 2011 The Chromium OS Authors. All rights reserved.
    2. 

  2.  * Use of this source code is governed by a BSD-style license that can be
    3. 

  3.  * found in the LICENSE file.
    4. 

  4.  *
    5. 

  5.  * Verified boot key block utility
    6. 

  6.  */
    7. 

  7. 

  8. #include <getopt.h>
    9. 

  9. #include <stdint.h>
    10. 

  10. #include <stdio.h>
    11. 

  11. #include <stdlib.h>
    12. 

  12. #include <string.h>
    13. 

  13. 

  14. #include "2sysincludes.h"
    15. 

  15. #include "2common.h"
    16. 

  16. #include "2rsa.h"
    17. 

  17. #include "futility.h"
    18. 

  18. #include "host_common.h"
    19. 

  19. #include "host_key2.h"
    20. 

  20. #include "util_misc.h"
    21. 

  21. #include "vb1_helper.h"
    22. 

  22. #include "vb2_common.h"
    23. 

  23. #include "vboot_common.h"
    24. 

  24. 

  25. /* Command line options */
    26. 

  26. enum {
    27. 

  27. 	OPT_MODE_PACK = 1000,
    28. 

  28. 	OPT_MODE_UNPACK,
    29. 

  29. 	OPT_DATAPUBKEY,
    30. 

  30. 	OPT_SIGNPUBKEY,
    31. 

  31. 	OPT_SIGNPRIVATE,
    32. 

  32. 	OPT_SIGNPRIVATE_PEM,
    33. 

  33. 	OPT_PEM_ALGORITHM,
    34. 

  34. 	OPT_EXTERNAL_SIGNER,
    35. 

  35. 	OPT_FLAGS,
    36. 

  36. 	OPT_HELP,
    37. 

  37. };
    38. 

  38. 

  39. static const struct option long_opts[] = {
    40. 

  40. 	{"pack", 1, 0, OPT_MODE_PACK},
    41. 

  41. 	{"unpack", 1, 0, OPT_MODE_UNPACK},
    42. 

  42. 	{"datapubkey", 1, 0, OPT_DATAPUBKEY},
    43. 

  43. 	{"signpubkey", 1, 0, OPT_SIGNPUBKEY},
    44. 

  44. 	{"signprivate", 1, 0, OPT_SIGNPRIVATE},
    45. 

  45. 	{"signprivate_pem", 1, 0, OPT_SIGNPRIVATE_PEM},
    46. 

  46. 	{"pem_algorithm", 1, 0, OPT_PEM_ALGORITHM},
    47. 

  47. 	{"externalsigner", 1, 0, OPT_EXTERNAL_SIGNER},
    48. 

  48. 	{"flags", 1, 0, OPT_FLAGS},
    49. 

  49. 	{"help", 0, 0, OPT_HELP},
    50. 

  50. 	{NULL, 0, 0, 0}
    51. 

  51. };
    52. 

  52. 

  53. static const char usage[] =
    54. 

  54. 	"\n"
    55. 

  55. 	"Usage:  " MYNAME " %s <--pack|--unpack> <file> [OPTIONS]\n"
    56. 

  56. 	"\n"
    57. 

  57. 	"For '--pack <file>', required OPTIONS are:\n"
    58. 

  58. 	"  --datapubkey <file>         Data public key in .vbpubk format\n"
    59. 

  59. 	"\n"
    60. 

  60. 	"Optional OPTIONS are:\n"
    61. 

  61. 	"  --signprivate <file>"
    62. 

  62. 	"        Signing private key in .vbprivk format.\n"
    63. 

  63. 	"OR\n"
    64. 

  64. 	"  --signprivate_pem <file>\n"
    65. 

  65. 	"  --pem_algorithm <algo>\n"
    66. 

  66. 	"        Signing private key in .pem format and algorithm id.\n"
    67. 

  67. 	"(If one of the above arguments is not specified, the keyblock will\n"
    68. 

  68. 	"not be signed.)\n"
    69. 

  69. 	"\n"
    70. 

  70. 	"  --flags <number>            Specifies allowed use conditions.\n"
    71. 

  71. 	"  --externalsigner \"cmd\""
    72. 

  72. 	"        Use an external program cmd to calculate the signatures.\n"
    73. 

  73. 	"\n"
    74. 

  74. 	"For '--unpack <file>', optional OPTIONS are:\n"
    75. 

  75. 	"  --signpubkey <file>"
    76. 

  76. 	"        Signing public key in .vbpubk format. This is required to\n"
    77. 

  77. 	"                                verify a signed keyblock.\n"
    78. 

  78. 	"  --datapubkey <file>"
    79. 

  79. 	"        Write the data public key to this file.\n\n";
    80. 

  80. 

  81. static void print_help(int argc, char *argv[])
    82. 

  82. {
    83. 

  83. 	printf(usage, argv[0]);
    84. 

  84. }
    85. 

  85. 

  86. /* Pack a .keyblock */
    87. 

  87. static int Pack(const char *outfile, const char *datapubkey,
    88. 

  88. 		const char *signprivate,
    89. 

  89. 		const char *signprivate_pem, uint64_t pem_algorithm,
    90. 

  90. 		uint64_t flags, const char *external_signer)
    91. 

  91. {
    92. 

  92. 	struct vb2_private_key *signing_key = NULL;
    93. 

  93. 	struct vb2_keyblock *block;
    94. 

  94. 

  95. 	if (!outfile) {
    96. 

  96. 		fprintf(stderr,
    97. 

  97. 			"vbutil_keyblock: Must specify output filename.\n");
    98. 

  98. 		return 1;
    99. 

  99. 	}
    100. 

  100. 	if (!datapubkey) {
    101. 

  101. 		fprintf(stderr,
    102. 

  102. 			"vbutil_keyblock: Must specify data public key.\n");
    103. 

  103. 		return 1;
    104. 

  104. 	}
    105. 

  105. 

  106. 	struct vb2_packed_key *data_key = vb2_read_packed_key(datapubkey);
    107. 

  107. 	if (!data_key) {
    108. 

  108. 		fprintf(stderr, "vbutil_keyblock: Error reading data key.\n");
    109. 

  109. 		return 1;
    110. 

  110. 	}
    111. 

  111. 

  112. 	if (signprivate_pem) {
    113. 

  113. 		if (pem_algorithm >= VB2_ALG_COUNT) {
    114. 

  114. 			fprintf(stderr,
    115. 

  115. 				"vbutil_keyblock: Invalid --pem_algorithm %"
    116. 

  116. 				PRIu64 "\n", pem_algorithm);
    117. 

  117. 			return 1;
    118. 

  118. 		}
    119. 

  119. 		if (external_signer) {
    120. 

  120. 			/* External signing uses the PEM file directly. */
    121. 

  121. 			block = vb2_create_keyblock_external(data_key,
    122. 

  122. 							     signprivate_pem,
    123. 

  123. 							     pem_algorithm,
    124. 

  124. 							     flags,
    125. 

  125. 							     external_signer);
    126. 

  126. 		} else {
    127. 

  127. 			signing_key =
    128. 

  128. 				vb2_read_private_key_pem(signprivate_pem,
    129. 

  129. 							 pem_algorithm);
    130. 

  130. 			if (!signing_key) {
    131. 

  131. 				fprintf(stderr, "vbutil_keyblock:"
    132. 

  132. 					" Error reading signing key.\n");
    133. 

  133. 				return 1;
    134. 

  134. 			}
    135. 

  135. 			block = vb2_create_keyblock(data_key, signing_key,
    136. 

  136. 						    flags);
    137. 

  137. 		}
    138. 

  138. 	} else {
    139. 

  139. 		if (signprivate) {
    140. 

  140. 			signing_key = vb2_read_private_key(signprivate);
    141. 

  141. 			if (!signing_key) {
    142. 

  142. 				fprintf(stderr, "vbutil_keyblock:"
    143. 

  143. 					" Error reading signing key.\n");
    144. 

  144. 				return 1;
    145. 

  145. 			}
    146. 

  146. 		}
    147. 

  147. 		block = vb2_create_keyblock(data_key, signing_key, flags);
    148. 

  148. 	}
    149. 

  149. 

  150. 	free(data_key);
    151. 

  151. 	if (signing_key)
    152. 

  152. 		free(signing_key);
    153. 

  153. 

  154. 	if (VB2_SUCCESS != vb2_write_keyblock(outfile, block)) {
    155. 

  155. 		fprintf(stderr, "vbutil_keyblock: Error writing key block.\n");
    156. 

  156. 		return 1;
    157. 

  157. 	}
    158. 

  158. 	free(block);
    159. 

  159. 	return 0;
    160. 

  160. }
    161. 

  161. 

  162. static int Unpack(const char *infile, const char *datapubkey,
    163. 

  163. 		  const char *signpubkey)
    164. 

  164. {
    165. 

  165. 	struct vb2_packed_key *sign_key = NULL;
    166. 

  166. 

  167. 	if (!infile) {
    168. 

  168. 		fprintf(stderr, "vbutil_keyblock: Must specify filename\n");
    169. 

  169. 		return 1;
    170. 

  170. 	}
    171. 

  171. 

  172. 	struct vb2_keyblock *block = vb2_read_keyblock(infile);
    173. 

  173. 	if (!block) {
    174. 

  174. 		fprintf(stderr, "vbutil_keyblock: Error reading key block.\n");
    175. 

  175. 		return 1;
    176. 

  176. 	}
    177. 

  177. 

  178. 	/* If the block is signed, then verify it with the signing public key,
    179. 

  179. 	 * since vb2_read_keyblock() only verified the hash. */
    180. 

  180. 	if (block->keyblock_signature.sig_size && signpubkey) {
    181. 

  181. 		static uint8_t workbuf[VB2_WORKBUF_RECOMMENDED_SIZE];
    182. 

  182. 		static struct vb2_workbuf wb;
    183. 

  183. 		vb2_workbuf_init(&wb, workbuf, sizeof(workbuf));
    184. 

  184. 

  185. 		sign_key = vb2_read_packed_key(signpubkey);
    186. 

  186. 		if (!sign_key) {
    187. 

  187. 			fprintf(stderr,
    188. 

  188. 				"vbutil_keyblock: Error reading signpubkey.\n");
    189. 

  189. 			return 1;
    190. 

  190. 		}
    191. 

  191. 		struct vb2_public_key key;
    192. 

  192. 		if (VB2_SUCCESS != vb2_unpack_key(&key, sign_key)) {
    193. 

  193. 			fprintf(stderr,
    194. 

  194. 				"vbutil_keyblock: Error reading signpubkey.\n");
    195. 

  195. 			return 1;
    196. 

  196. 		}
    197. 

  197. 

  198. 		if (VB2_SUCCESS !=
    199. 

  199. 		    vb2_verify_keyblock(block, block->keyblock_size,
    200. 

  200. 					&key, &wb)) {
    201. 

  201. 			fprintf(stderr, "vbutil_keyblock:"
    202. 

  202. 				" Error verifying key block.\n");
    203. 

  203. 			return 1;
    204. 

  204. 		}
    205. 

  205. 		free(sign_key);
    206. 

  206. 	}
    207. 

  207. 

  208. 	printf("Key block file:       %s\n", infile);
    209. 

  209. 	printf("Signature             %s\n", sign_key ? "valid" : "ignored");
    210. 

  210. 	printf("Flags:                %u ", block->keyblock_flags);
    211. 

  211. 	if (block->keyblock_flags & KEY_BLOCK_FLAG_DEVELOPER_0)
    212. 

  212. 		printf(" !DEV");
    213. 

  213. 	if (block->keyblock_flags & KEY_BLOCK_FLAG_DEVELOPER_1)
    214. 

  214. 		printf(" DEV");
    215. 

  215. 	if (block->keyblock_flags & KEY_BLOCK_FLAG_RECOVERY_0)
    216. 

  216. 		printf(" !REC");
    217. 

  217. 	if (block->keyblock_flags & KEY_BLOCK_FLAG_RECOVERY_1)
    218. 

  218. 		printf(" REC");
    219. 

  219. 	printf("\n");
    220. 

  220. 

  221. 	struct vb2_packed_key *data_key = &block->data_key;
    222. 

  222. 	printf("Data key algorithm:   %u %s\n", data_key->algorithm,
    223. 

  223. 	       vb2_get_crypto_algorithm_name(data_key->algorithm));
    224. 

  224. 	printf("Data key version:     %u\n", data_key->key_version);
    225. 

  225. 	printf("Data key sha1sum:     %s\n",
    226. 

  226. 	       packed_key_sha1_string(data_key));
    227. 

  227. 

  228. 	if (datapubkey &&
    229. 

  229. 	    VB2_SUCCESS != vb2_write_packed_key(datapubkey, data_key)) {
    230. 

  230. 		fprintf(stderr, "vbutil_keyblock: error writing public key\n");
    231. 

  231. 		return 1;
    232. 

  232. 	}
    233. 

  233. 

  234. 	free(block);
    235. 

  235. 	return 0;
    236. 

  236. }
    237. 

  237. 

  238. static int do_vbutil_keyblock(int argc, char *argv[])
    239. 

  239. {
    240. 

  240. 

  241. 	char *filename = NULL;
    242. 

  242. 	char *datapubkey = NULL;
    243. 

  243. 	char *signpubkey = NULL;
    244. 

  244. 	char *signprivate = NULL;
    245. 

  245. 	char *signprivate_pem = NULL;
    246. 

  246. 	char *external_signer = NULL;
    247. 

  247. 	uint64_t flags = 0;
    248. 

  248. 	uint64_t pem_algorithm = 0;
    249. 

  249. 	int is_pem_algorithm = 0;
    250. 

  250. 	int mode = 0;
    251. 

  251. 	int parse_error = 0;
    252. 

  252. 	char *e;
    253. 

  253. 	int i;
    254. 

  254. 

  255. 	while ((i = getopt_long(argc, argv, "", long_opts, NULL)) != -1) {
    256. 

  256. 		switch (i) {
    257. 

  257. 		case '?':
    258. 

  258. 			/* Unhandled option */
    259. 

  259. 			printf("Unknown option\n");
    260. 

  260. 			parse_error = 1;
    261. 

  261. 			break;
    262. 

  262. 		case OPT_HELP:
    263. 

  263. 			print_help(argc, argv);
    264. 

  264. 			return !!parse_error;
    265. 

  265. 

  266. 		case OPT_MODE_PACK:
    267. 

  267. 		case OPT_MODE_UNPACK:
    268. 

  268. 			mode = i;
    269. 

  269. 			filename = optarg;
    270. 

  270. 			break;
    271. 

  271. 

  272. 		case OPT_DATAPUBKEY:
    273. 

  273. 			datapubkey = optarg;
    274. 

  274. 			break;
    275. 

  275. 

  276. 		case OPT_SIGNPUBKEY:
    277. 

  277. 			signpubkey = optarg;
    278. 

  278. 			break;
    279. 

  279. 

  280. 		case OPT_SIGNPRIVATE:
    281. 

  281. 			signprivate = optarg;
    282. 

  282. 			break;
    283. 

  283. 

  284. 		case OPT_SIGNPRIVATE_PEM:
    285. 

  285. 			signprivate_pem = optarg;
    286. 

  286. 			break;
    287. 

  287. 

  288. 		case OPT_PEM_ALGORITHM:
    289. 

  289. 			pem_algorithm = strtoul(optarg, &e, 0);
    290. 

  290. 			if (!*optarg || (e && *e)) {
    291. 

  291. 				fprintf(stderr, "Invalid --pem_algorithm\n");
    292. 

  292. 				parse_error = 1;
    293. 

  293. 			} else {
    294. 

  294. 				is_pem_algorithm = 1;
    295. 

  295. 			}
    296. 

  296. 			break;
    297. 

  297. 

  298. 		case OPT_EXTERNAL_SIGNER:
    299. 

  299. 			external_signer = optarg;
    300. 

  300. 			break;
    301. 

  301. 

  302. 		case OPT_FLAGS:
    303. 

  303. 			flags = strtoul(optarg, &e, 0);
    304. 

  304. 			if (!*optarg || (e && *e)) {
    305. 

  305. 				fprintf(stderr, "Invalid --flags\n");
    306. 

  306. 				parse_error = 1;
    307. 

  307. 			}
    308. 

  308. 			break;
    309. 

  309. 		}
    310. 

  310. 	}
    311. 

  311. 

  312. 	/* Check if the right combination of options was provided. */
    313. 

  313. 	if (signprivate && signprivate_pem) {
    314. 

  314. 		fprintf(stderr,
    315. 

  315. 			"Only one of --signprivate or --signprivate_pem must"
    316. 

  316. 			" be specified\n");
    317. 

  317. 		parse_error = 1;
    318. 

  318. 	}
    319. 

  319. 

  320. 	if (signprivate_pem && !is_pem_algorithm) {
    321. 

  321. 		fprintf(stderr, "--pem_algorithm must be used with"
    322. 

  322. 			" --signprivate_pem\n");
    323. 

  323. 		parse_error = 1;
    324. 

  324. 	}
    325. 

  325. 

  326. 	if (external_signer && !signprivate_pem) {
    327. 

  327. 		fprintf(stderr,
    328. 

  328. 			"--externalsigner must be used with --signprivate_pem"
    329. 

  329. 			"\n");
    330. 

  330. 		parse_error = 1;
    331. 

  331. 	}
    332. 

  332. 

  333. 	if (parse_error) {
    334. 

  334. 		print_help(argc, argv);
    335. 

  335. 		return 1;
    336. 

  336. 	}
    337. 

  337. 

  338. 	switch (mode) {
    339. 

  339. 	case OPT_MODE_PACK:
    340. 

  340. 		return Pack(filename, datapubkey, signprivate,
    341. 

  341. 			    signprivate_pem, pem_algorithm,
    342. 

  342. 			    flags, external_signer);
    343. 

  343. 	case OPT_MODE_UNPACK:
    344. 

  344. 		return Unpack(filename, datapubkey, signpubkey);
    345. 

  345. 	default:
    346. 

  346. 		printf("Must specify a mode.\n");
    347. 

  347. 		print_help(argc, argv);
    348. 

  348. 		return 1;
    349. 

  349. 	}
    350. 

  350. }
    351. 

  351. 

  352. DECLARE_FUTIL_COMMAND(vbutil_keyblock, do_vbutil_keyblock, VBOOT_VERSION_1_0,
    353. 

  353. 		      "Creates, signs, and verifies a keyblock");
    354. 

  354.