1 /* SPDX-License-Identifier: BSD-2-Clause */
2 /*******************************************************************************
3 * Copyright 2017-2018, Fraunhofer SIT sponsored by Infineon Technologies AG
4 * All rights reserved.
5 *******************************************************************************/
6
7 #ifdef HAVE_CONFIG_H
8 #include <config.h>
9 #endif
10
11 #include <stdlib.h>
12 #include <stdio.h>
13 #include <string.h>
14 #include <unistd.h>
15
16 #include <openssl/evp.h>
17 #include <openssl/rsa.h>
18 #include <openssl/engine.h>
19 #include <openssl/pem.h>
20
21 #include "tss2_fapi.h"
22
23 #include "test-fapi.h"
24
25 #define LOGMODULE test
26 #include "util/log.h"
27 #include "util/aux_util.h"
28
29 #define SIZE 128
30
31 const char *priv_pem =
32 "-----BEGIN PRIVATE KEY-----\n"
33 "MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQCgYvoisJIDOeYg\n"
34 "jMF6ywiZbu085TLvy5ZMhq5vfYqdgefvwpemutnfKSnpYOs5B4yO/gAD7XiYluDv\n"
35 "tqlVhfISeQV04xrWGzNImenpwm/HsgueAu8VTHNtWSL96G+BLedGTrs2NqX6cxN7\n"
36 "yGl7dQpB5X8iP4XSvpjP3Vb7gs+adwCJR6xFkt60jYFmwrAdhEzOeakhimi5rU21\n"
37 "LxCkRdEyaxS57X15L9dEA+aYJ+dvkFfZOfTqIKmTrA75F8yj161xflwtIC4hgRBg\n"
38 "K9Xb/RdN8TDrTu+20E3RjngutU4qejW9Fd3mzHJGV8HRYvjYXhUblN9wmjm7Veru\n"
39 "T2b0rnvzAgMBAAECggEBAIwHvoJ5DRJ6A50Zp3dROxHTEphfOEi6xF/OGxBGWLbK\n"
40 "C7l+eS9d5gj8BJa5QsXI/IR/6X2EYQ1AdeV04oVD7CUKuqPiALU8jFrv3pV0aGm+\n"
41 "3nu37gv3crPe5jkvLeNoM4tkA/oCXom63SDuyoG6nxkHiSdatLlaJUse4em3vRAL\n"
42 "QivziZIMyswcleMe0xAoMi7LO+nUFFxBS8/xGya0vsU0dsMQEl1SRITv1VCXmPQD\n"
43 "T4dEI4+1cufv6Ax0EDbFKmnjyiGTjOeQKrGIqETUSQolbg5PgL1XZehaaxM822OY\n"
44 "Qpnp5T0XhUEmVrOb2Wrboj+dC/2tgAN/fWXjAAxnm2ECgYEA02UTZuZ+QnD6tqo3\n"
45 "/y3n5kaM9uA2mdOIqgECI9psGF1IBIC/iP2diKyuvmQL8hzymComb5YzZl3TOAga\n"
46 "WHQYbIeU3JhnYTG75/Dv5Zh32H4NjkIJHT2/8LUM25Ove9u6QAniVgIQpBZ47LjX\n"
47 "9jHjTYCW5n79qNSfu0egYJUvypECgYEAwjqWzzEINqnX/xIVCoB4XpuDuSdkM0JW\n"
48 "MZDIH9xHjZPp07/5XYEoITylk6Zwbh+djvWDNP4gzPtuK26VsqrNxoWMsFZeXn6U\n"
49 "xSOYL2UNCZiOgchdZCOr+6r8LRUuo8xHjbawVoJVK1+tZ2WsR3ilt3Gw34O8Z5ep\n"
50 "f4v7GOXw+EMCgYAUHjFrgJIRhqkFi0uK+HZyXtJ5iDsKBqyh6Tin6tiQtQfujcYs\n"
51 "pl5ArJZwvhq47vJTcud3hSbdHh7E3ViMhHfylDChkct833vPhgl+ozT8oHpvyG8P\n"
52 "nlnO8ZwIpZR0yCOAhrBImSe2RgE6HhlHb9X/ATbbNsizMZEGBLoJlwkWUQKBgQCy\n"
53 "4U7fh2LvJUF+82JZh7RUPZn1Pmg0JVZI0/TcEv37UEy77kR1b2xMIBTGhTVq1sc/\n"
54 "ULIEbkA7SR1P9sr7//8AZSMLjJ/hG2dcoMmabNCzE8O7l5MblRbh87nIs4d+57bG\n"
55 "t4h0RBi4l6eWYLdoI59L8fNaB3PPXIiIpZ0eczeZDQKBgQC2vuFYpUZqDb9CaJsn\n"
56 "Luee6P6n5v3ZBTAT4E+GG1kWS28BiebcCuLKNAY4ZtLo08ozaTWcMxooOTeka2ux\n"
57 "fQDE4M/LTNpam8QOJ2hqECF5a0uBYNcbmaGtfA9KwIgwCZZYuwb5IDq/DRPuR690\n"
58 "i8Kp6jR2wY0suObmZHKvbCB1Dw==\n"
59 "-----END PRIVATE KEY-----\n";
60
61 const char *pub_pem =
62 "-----BEGIN PUBLIC KEY-----\n"
63 "MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGL6IrCSAznmIIzBessI\n"
64 "mW7tPOUy78uWTIaub32KnYHn78KXprrZ3ykp6WDrOQeMjv4AA+14mJbg77apVYXy\n"
65 "EnkFdOMa1hszSJnp6cJvx7ILngLvFUxzbVki/ehvgS3nRk67Njal+nMTe8hpe3UK\n"
66 "QeV/Ij+F0r6Yz91W+4LPmncAiUesRZLetI2BZsKwHYRMznmpIYpoua1NtS8QpEXR\n"
67 "MmsUue19eS/XRAPmmCfnb5BX2Tn06iCpk6wO+RfMo9etcX5cLSAuIYEQYCvV2/0X\n"
68 "TfEw607vttBN0Y54LrVOKno1vRXd5sxyRlfB0WL42F4VG5TfcJo5u1Xq7k9m9K57\n"
69 "8wIDAQAB\n"
70 "-----END PUBLIC KEY-----\n";
71
72 #define RSA_SIG_SCHEME RSA_PKCS1_PSS_PADDING
73
74 char *userDataTest = "test";
75
76 #define chknull(X) if (!X) { LOG_ERROR(str(X) "should not be null"); \
77 r = TSS2_FAPI_RC_GENERAL_FAILURE; \
78 goto error_cleanup; }
79
80 static TSS2_RC
signatureCallback(FAPI_CONTEXT * context,char const * description,char const * publicKey,char const * publicKeyHint,uint32_t hashAlg,uint8_t const * dataToSign,size_t dataToSignSize,uint8_t ** signature,size_t * signatureSize,void * userData)81 signatureCallback(
82 FAPI_CONTEXT *context,
83 char const *description,
84 char const *publicKey,
85 char const *publicKeyHint,
86 uint32_t hashAlg,
87 uint8_t const *dataToSign,
88 size_t dataToSignSize,
89 uint8_t **signature,
90 size_t *signatureSize,
91 void *userData)
92 {
93 (void)description;
94 (void)publicKey;
95 (void)publicKeyHint;
96
97 if (userData != userDataTest) {
98 LOG_ERROR("userData is not correct, %p != %p", userData, userDataTest);
99 return TSS2_FAPI_RC_GENERAL_FAILURE;
100 }
101
102 if (hashAlg != TPM2_ALG_SHA1) {
103 LOG_ERROR("hashAlg is not correct, %u != %u", hashAlg, TPM2_ALG_SHA1);
104 return TSS2_FAPI_RC_GENERAL_FAILURE;
105 }
106
107 TSS2_RC r = TSS2_RC_SUCCESS;
108 EVP_PKEY *priv_key = NULL;
109 BIO *bufio = NULL;
110 EVP_MD_CTX *mdctx =NULL;
111 EVP_PKEY_CTX *pctx = NULL;
112
113 const EVP_MD *ossl_hash = EVP_sha1();
114 chknull(ossl_hash);
115
116 LOGBLOB_DEBUG(dataToSign, dataToSignSize, "Data to be signed");
117
118 bufio = BIO_new_mem_buf((void *)priv_pem, strlen(priv_pem));
119 priv_key = PEM_read_bio_PrivateKey(bufio, NULL, NULL, NULL);
120 chknull(priv_key);
121
122 mdctx = EVP_MD_CTX_create();
123 chknull(mdctx);
124
125 if (1 != EVP_DigestSignInit(mdctx, &pctx, NULL, NULL, priv_key)) {
126 goto_error(r, TSS2_FAPI_RC_GENERAL_FAILURE, "OSSL digest sign init.",
127 error_cleanup);
128 }
129 if (EVP_PKEY_type(EVP_PKEY_id(priv_key)) == EVP_PKEY_RSA) {
130 int signing_scheme = RSA_SIG_SCHEME;
131 if (1 != EVP_PKEY_CTX_set_rsa_padding(pctx, signing_scheme)) {
132 goto_error(r, TSS2_FAPI_RC_GENERAL_FAILURE, "OSSL set RSA padding.",
133 error_cleanup);
134 }
135 }
136 if (1 != EVP_DigestSignInit(mdctx, &pctx, ossl_hash, NULL, priv_key)) {
137 goto_error(r, TSS2_FAPI_RC_GENERAL_FAILURE, "OSSL sign init.",
138 error_cleanup);
139 }
140 if (1 != EVP_DigestSignUpdate(mdctx, dataToSign, dataToSignSize)) {
141 goto_error(r, TSS2_FAPI_RC_GENERAL_FAILURE, "OSSL sign update.",
142 error_cleanup);
143 }
144 if (1 != EVP_DigestSignFinal(mdctx, NULL, signatureSize)) {
145 goto_error(r, TSS2_FAPI_RC_GENERAL_FAILURE, "OSSL sign final.",
146 error_cleanup);
147 }
148 *signature = malloc(*signatureSize);
149 chknull(*signature);
150 if (1 != EVP_DigestSignFinal(mdctx, *signature, signatureSize)) {
151 goto_error(r, TSS2_FAPI_RC_GENERAL_FAILURE, "OSSL sign final.",
152 error_cleanup);
153 }
154 error_cleanup:
155 if (priv_key)
156 EVP_PKEY_free(priv_key);
157 if (mdctx)
158 EVP_MD_CTX_destroy(mdctx);
159 if (bufio)
160 BIO_free(bufio);
161 return r;
162 }
163
164 /** Test the FAPI functions for encryption and decryption.
165 *
166 * Tested FAPI commands:
167 * - Fapi_Provision()
168 * - Fapi_Import()
169 * - Fapi_CreateKey()
170 * - Fapi_SetSignCB()
171 * - Fapi_Encrypt()
172 * - Fapi_Decrypt()
173 * - Fapi_Free()
174 *
175 * Tested Policies:
176 * - PolicySigned
177 *
178 * @param[in,out] context The FAPI_CONTEXT.
179 * @retval EXIT_FAILURE
180 * @retval EXIT_SUCCESS
181 */
182 int
test_fapi_data_crypt(FAPI_CONTEXT * context)183 test_fapi_data_crypt(FAPI_CONTEXT *context)
184 {
185
186 TSS2_RC r;
187 long policy_size;
188 const char *policy_name = "/policy/pol_signed";
189 const char *policy_file = TOP_SOURCEDIR "/test/data/fapi/policy/pol_signed.json";
190 FILE *stream = NULL;
191 char *json_policy = NULL;
192
193 uint8_t *cipherText = NULL;
194 size_t cipherTextSize;
195
196 r = Fapi_Provision(context, NULL, NULL, NULL);
197 goto_if_error(r, "Error Fapi_Provision", error);
198
199 r = pcr_reset(context, 16);
200 goto_if_error(r, "Error pcr_reset", error);
201
202 stream = fopen(policy_file, "r");
203 if (!stream) {
204 LOG_ERROR("File %s does not exist", policy_file);
205 goto error;
206 }
207 fseek(stream, 0L, SEEK_END);
208 policy_size = ftell(stream);
209 fclose(stream);
210 json_policy = malloc(policy_size + 1);
211 goto_if_null(json_policy,
212 "Could not allocate memory for the JSON policy",
213 TSS2_FAPI_RC_MEMORY, error);
214 stream = fopen(policy_file, "r");
215 ssize_t ret = read(fileno(stream), json_policy, policy_size);
216 if (ret != policy_size) {
217 LOG_ERROR("IO error %s.", policy_file);
218 goto error;
219 }
220 json_policy[policy_size] = '\0';
221
222 r = Fapi_Import(context, policy_name, json_policy);
223 goto_if_error(r, "Error Fapi_Import", error);
224
225 r = Fapi_CreateKey(context, "HS/SRK/myRsaCryptKey", "decrypt",
226 policy_name, NULL);
227 goto_if_error(r, "Error Fapi_CreateKey", error);
228
229 uint8_t plainText[SIZE];
230 int i;
231
232 for (i = 0; i < SIZE; i++)
233 plainText[i] = i % 256;
234
235 r = Fapi_SetSignCB(context, signatureCallback, userDataTest);
236 goto_if_error(r, "Error SetPolicySignatureCallback", error);
237
238 r = Fapi_Encrypt(context, "HS/SRK/myRsaCryptKey", &plainText[0],
239 SIZE, &cipherText, &cipherTextSize);
240
241 if (r == TSS2_FAPI_RC_NOT_IMPLEMENTED) {
242 goto skip;
243 }
244
245 goto_if_error(r, "Error Fapi_Encrypt", error);
246
247 uint8_t *plainText2 = NULL;
248 size_t plainText2_size = 0;
249
250 r = Fapi_Decrypt(context, "HS/SRK/myRsaCryptKey", cipherText, cipherTextSize,
251 &plainText2, &plainText2_size);
252 goto_if_error(r, "Error Fapi_Encrypt", error);
253
254 if (plainText2_size != SIZE ||
255 memcmp(plainText, plainText2, plainText2_size) != 0) {
256 LOG_ERROR("Error: decrypted text not equal to origin");
257 goto error;
258 }
259
260 Fapi_Free(cipherText);
261 Fapi_Free(plainText2);
262 Fapi_Free(json_policy);
263 Fapi_Delete(context, "/");
264
265 return EXIT_SUCCESS;
266
267 error:
268 Fapi_Free(cipherText);
269 Fapi_Free(json_policy);
270 Fapi_Delete(context, "/");
271
272 return EXIT_FAILURE;
273
274 skip:
275 Fapi_Free(json_policy);
276 Fapi_Delete(context, "/");
277
278 return EXIT_SKIP;
279 }
280
281 int
test_invoke_fapi(FAPI_CONTEXT * fapi_context)282 test_invoke_fapi(FAPI_CONTEXT *fapi_context)
283 {
284 return test_fapi_data_crypt(fapi_context);
285 }
286