Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Explicitly set ECDSA signature scheme on Windows #5

Merged
merged 3 commits into from
Oct 10, 2024
Merged

Explicitly set ECDSA signature scheme on Windows #5

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
9e65326
Explicitly set ECDSA signature scheme on Windows
hslatman Oct 10, 2024
7cdd0ac
Allow passing ECDSA hash algorithm via `crypto.SignerOpts`
hslatman Oct 10, 2024
82220f4
Fix missing `opts` for Windows keys
hslatman Oct 10, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion attest/key_windows.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -271,7 +271,7 @@ func (k *windowsAK20) sign(tb tpmBase, digest []byte, pub crypto.PublicKey, opts

switch p := pub.(type) {
case *ecdsa.PublicKey:
return signECDSA(rw, hnd, digest, p.Curve)
return signECDSA(rw, hnd, digest, p.Curve, opts)
case *rsa.PublicKey:
return signRSA(rw, hnd, digest, opts)
}
Expand Down
40 changes: 37 additions & 3 deletions attest/wrapped_tpm20.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ import (
"fmt"
"io"
"math/big"
"runtime"

"github.com/google/go-tpm/legacy/tpm2"
"github.com/google/go-tpm/tpmutil"
Expand Down Expand Up @@ -560,14 +561,47 @@ func (k *wrappedKey20) sign(tb tpmBase, digest []byte, pub crypto.PublicKey, opt
}
switch p := pub.(type) {
case *ecdsa.PublicKey:
return signECDSA(t.rwc, k.hnd, digest, p.Curve)
return signECDSA(t.rwc, k.hnd, digest, p.Curve, opts)
case *rsa.PublicKey:
return signRSA(t.rwc, k.hnd, digest, opts)
}
return nil, fmt.Errorf("unsupported signing key type: %T", pub)
}

func signECDSA(rw io.ReadWriter, key tpmutil.Handle, digest []byte, curve elliptic.Curve) ([]byte, error) {
func signECDSA(rw io.ReadWriter, key tpmutil.Handle, digest []byte, curve elliptic.Curve, opts crypto.SignerOpts) ([]byte, error) {
var scheme *tpm2.SigScheme
if runtime.GOOS == "windows" {
// On Windows, if no scheme is specified, error code 0x12
// "unsupported or incompatible scheme" will be returned.
// By selecting an appropriate signature scheme this is prevented.
// TODO(hs): specify algorithm explicitly on Linux too?
// TODO(hs): determine if basing this off of the curve is OK; it's
// possible the TPM in fact doesn't support the hash algorithm.
h := tpm2.AlgSHA256
switch curve {
case elliptic.P384():
h = tpm2.AlgSHA384
case elliptic.P521():
h = tpm2.AlgSHA512
}
scheme = &tpm2.SigScheme{
Alg: tpm2.AlgECDSA,
Hash: h,
}
}

// if opts is provided, it can override the hash function to use.
if opts != nil {
h, err := tpm2.HashToAlgorithm(opts.HashFunc())
if err != nil {
return nil, fmt.Errorf("incorrect hash algorithm: %v", err)
}
scheme = &tpm2.SigScheme{
Alg: tpm2.AlgECDSA,
Hash: h,
}
}

// https://cs.opensource.google/go/go/+/refs/tags/go1.19.2:src/crypto/ecdsa/ecdsa.go;l=181
orderBits := curve.Params().N.BitLen()
orderBytes := (orderBits + 7) / 8
Expand All @@ -581,7 +615,7 @@ func signECDSA(rw io.ReadWriter, key tpmutil.Handle, digest []byte, curve ellipt
}
digest = ret.Bytes()

sig, err := tpm2.Sign(rw, key, "", digest, nil, nil)
sig, err := tpm2.Sign(rw, key, "", digest, nil, scheme)
if err != nil {
return nil, fmt.Errorf("cannot sign: %v", err)
}
Expand Down
Loading