SaiTLS/src/certificate.rs

use num_enum::IntoPrimitive;
use num_enum::TryFromPrimitive;

use crate::parse::parse_asn1_der_rsa_public_key;
use crate::Error as TlsError;

use sha1::{Sha1, Digest};
use rsa::{PublicKey, RSAPublicKey, PaddingScheme, BigUint, Hash};

use alloc::vec::Vec;

#[derive(Debug, Clone)]
pub struct Certificate<'a> {
    pub tbs_certificate: TBSCertificate<'a>,
    pub signature_algorithm: AlgorithmIdentifier<'a>,
    pub signature_value: &'a [u8],
    pub tbs_certificate_encoded: &'a [u8],
}

#[derive(Debug, Clone)]
pub struct TBSCertificate<'a> {
    pub version: Version,
    pub serial_number: &'a [u8],
    pub signature: AlgorithmIdentifier<'a>,
    pub issuer: &'a [u8],
    pub validity: Validity<'a>,
    pub subject: &'a [u8],
    pub subject_public_key_info: SubjectPublicKeyInfo<'a>,
    pub issuer_unique_id: Option<&'a [u8]>,
    pub subject_unique_id: Option<&'a [u8]>,
    pub extensions: Extensions<'a>,
}

#[allow(non_camel_case_types)]
#[derive(Debug, PartialEq, Eq, Clone, Copy, IntoPrimitive, TryFromPrimitive)]
#[repr(u8)]
pub enum Version {
    #[num_enum(default)]
    v1 = 0,
    v2 = 1,
    v3 = 2,
}

#[derive(Debug, Clone)]
pub struct Validity<'a> {
    pub not_before: Time<'a>,
    pub not_after: Time<'a>,
}

#[derive(Debug, Clone)]
pub enum Time<'a> {
    UTCTime(&'a [u8]),
    GeneralizedTime(&'a [u8]),
}

#[derive(Debug, Clone)]
pub struct SubjectPublicKeyInfo<'a> {
    pub algorithm: AlgorithmIdentifier<'a>,
    pub subject_public_key: &'a [u8],
}

#[derive(Debug, Clone)]
pub struct Extensions<'a> {
    // TODO: Give a limit to the number of policies, migrate to heapless vec
    // An arbitrary upper limit does not violate RFC5280
    pub extensions: Vec<Extension<'a>>
}

#[derive(Debug, Clone)]
pub struct Extension<'a> {
    pub extension_id: &'a [u8],
    pub critical: bool,
    pub extension_value: ExtensionValue<'a>,
}

#[derive(Debug, Clone)]
pub enum ExtensionValue<'a> {
    KeyUsage {
        // Acceptable usage of this certificate
        // Cross verify with ExtendedKeyUsage
        // MSb is bit 0
        usage: u16
    },

    CertificatePolicies {
        // Policies listed in an extension
        // Need to verify its validity
        // TODO: Give a limit to the number of policies, migrate to heapless vec
        // An arbitrary upper limit does not violate RFC5280
        info: Vec<PolicyInformation<'a>>
    },

    // Permitted subtrees and excluded subtrees are not implemented
    // SubjectAlternativeName,

    BasicConstraints {
        is_ca: bool,
        path_len_constraint: Option<u8>,
    },

    // Permitted subtrees and excluded subtrees are not implemented
    // NameConstraints,

    // Policy mapping will not be supported
    // PolicyConstraints,

    ExtendedKeyUsage {
        // A list of all possible extended key usage in OID
        // Cross check validity with regular KeyUsage
        any_extended_key_usage: bool,
        id_kp_server_auth: bool,
        id_kp_client_auth: bool,
        id_kp_code_signing: bool,
        id_kp_email_protection: bool,
        id_kp_time_stamping: bool,
        id_kp_oscp_signing: bool,
    },

    InhibitAnyPolicy {
        // Number of certificates in the path that may still allow AnyPolicy
        // Certificate chain size should be limited to a small number
        skip_certs: u8
    },

    // Extension data from an unsupported extension type
    Unrecognized,
}

#[derive(Debug, Clone)]
pub struct PolicyInformation<'a> {
    pub id: &'a [u8],
    pub qualifier: &'a [u8],
}

#[derive(Debug, Clone)]
pub struct AlgorithmIdentifier<'a> {
    pub algorithm: &'a [u8],
    pub parameters: &'a [u8],
}

// TODO: MOve this to impl block of Certificate
// Verify self-signed root certificate parsed certificate
pub fn validate_root_certificate(cert: &Certificate) -> Result<bool, TlsError> {
    // Verify Signature
    match cert.signature_algorithm.algorithm {
        SHA1_WITH_RSA_ENCRYPTION => {
            let mut hasher = Sha1::new();
            hasher.update(cert.tbs_certificate_encoded);

            let (_, (modulus, exponent)) = parse_asn1_der_rsa_public_key(
                cert.tbs_certificate.subject_public_key_info.subject_public_key
            ).map_err(|_| TlsError::ParsingError)?;

            let rsa_public_key = RSAPublicKey::new(
                BigUint::from_bytes_be(modulus),
                BigUint::from_bytes_be(exponent)
            ).map_err(|_| TlsError::SignatureValidationError)?;

            let padding = PaddingScheme::new_pkcs1v15_sign(Some(Hash::SHA1));
            let verify_result = rsa_public_key.verify(
                padding,
                &hasher.finalize(),
                cert.signature_value
            );
            Ok(verify_result.is_ok())
        }
    }
}

impl<'a> Certificate<'a> {
    // Return the public key, if used for RSA
    pub fn return_rsa_public_key(&self) -> Result<RSAPublicKey, ()> {
        if self.signature_algorithm.algorithm != oid::SHA1_WITH_RSA_ENCRYPTION {
            return Err(());
        }
        let (_, (modulus, exponent)) = parse_asn1_der_rsa_public_key(
            self.tbs_certificate.subject_public_key_info.subject_public_key
        ).map_err(|_| ())?;

        RSAPublicKey::new(
            BigUint::from_bytes_be(modulus),
            BigUint::from_bytes_be(exponent)
        ).map_err(|_| ())
    }
}

mod oid {
    // ECDSA signature algorithms
    pub const SHA1_WITH_RSA_ENCRYPTION: &'static [u8] = &[0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x05];
}
certificate: init 2020-10-21 18:17:55 +08:00			`use num_enum::IntoPrimitive;`
			`use num_enum::TryFromPrimitive;`

cert: add key verify 2020-10-28 17:33:00 +08:00			`use crate::parse::parse_asn1_der_rsa_public_key;`
			`use crate::Error as TlsError;`

			`use sha1::{Sha1, Digest};`
			`use rsa::{PublicKey, RSAPublicKey, PaddingScheme, BigUint, Hash};`

certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`use alloc::vec::Vec;`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: init 2020-10-21 18:17:55 +08:00			`pub struct Certificate<'a> {`
certificate: parseable 2020-10-23 17:06:31 +08:00			`pub tbs_certificate: TBSCertificate<'a>,`
			`pub signature_algorithm: AlgorithmIdentifier<'a>,`
cert: add key verify 2020-10-28 17:33:00 +08:00			`pub signature_value: &'a [u8],`
			`pub tbs_certificate_encoded: &'a [u8],`
certificate: init 2020-10-21 18:17:55 +08:00			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: init 2020-10-21 18:17:55 +08:00			`pub struct TBSCertificate<'a> {`
certificate: parseable 2020-10-23 17:06:31 +08:00			`pub version: Version,`
			`pub serial_number: &'a [u8],`
			`pub signature: AlgorithmIdentifier<'a>,`
			`pub issuer: &'a [u8],`
			`pub validity: Validity<'a>,`
			`pub subject: &'a [u8],`
			`pub subject_public_key_info: SubjectPublicKeyInfo<'a>,`
			`pub issuer_unique_id: Option<&'a [u8]>,`
			`pub subject_unique_id: Option<&'a [u8]>,`
			`pub extensions: Extensions<'a>,`
certificate: init 2020-10-21 18:17:55 +08:00			`}`

fix: some warning 2020-11-02 17:19:02 +08:00			`#[allow(non_camel_case_types)]`
certificate: init 2020-10-21 18:17:55 +08:00			`#[derive(Debug, PartialEq, Eq, Clone, Copy, IntoPrimitive, TryFromPrimitive)]`
			`#[repr(u8)]`
			`pub enum Version {`
			`#[num_enum(default)]`
			`v1 = 0,`
			`v2 = 1,`
			`v3 = 2,`
			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: init 2020-10-21 18:17:55 +08:00			`pub struct Validity<'a> {`
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`pub not_before: Time<'a>,`
			`pub not_after: Time<'a>,`
certificate: init 2020-10-21 18:17:55 +08:00			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: init 2020-10-21 18:17:55 +08:00			`pub enum Time<'a> {`
			`UTCTime(&'a [u8]),`
			`GeneralizedTime(&'a [u8]),`
			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: init 2020-10-21 18:17:55 +08:00			`pub struct SubjectPublicKeyInfo<'a> {`
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`pub algorithm: AlgorithmIdentifier<'a>,`
			`pub subject_public_key: &'a [u8],`
			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`pub struct Extensions<'a> {`
certificate: parseable 2020-10-23 17:06:31 +08:00			`// TODO: Give a limit to the number of policies, migrate to heapless vec`
			`// An arbitrary upper limit does not violate RFC5280`
			`pub extensions: Vec<Extension<'a>>`
certificate: init 2020-10-21 18:17:55 +08:00			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
			`pub struct Extension<'a> {`
			`pub extension_id: &'a [u8],`
			`pub critical: bool,`
			`pub extension_value: ExtensionValue<'a>,`
			`}`

			`#[derive(Debug, Clone)]`
			`pub enum ExtensionValue<'a> {`
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`KeyUsage {`
			`// Acceptable usage of this certificate`
			`// Cross verify with ExtendedKeyUsage`
certificate: parseable 2020-10-23 17:06:31 +08:00			`// MSb is bit 0`
			`usage: u16`
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`},`
certificate: parseable 2020-10-23 17:06:31 +08:00
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`CertificatePolicies {`
			`// Policies listed in an extension`
			`// Need to verify its validity`
certificate: parseable 2020-10-23 17:06:31 +08:00			`// TODO: Give a limit to the number of policies, migrate to heapless vec`
			`// An arbitrary upper limit does not violate RFC5280`
			`info: Vec<PolicyInformation<'a>>`
certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`},`
certificate: parseable 2020-10-23 17:06:31 +08:00
			`// Permitted subtrees and excluded subtrees are not implemented`
			`// SubjectAlternativeName,`

certificate: parse sig-alg 2020-10-22 17:41:33 +08:00			`BasicConstraints {`
			`is_ca: bool,`
			`path_len_constraint: Option<u8>,`
			`},`

certificate: parseable 2020-10-23 17:06:31 +08:00			`// Permitted subtrees and excluded subtrees are not implemented`
			`// NameConstraints,`

			`// Policy mapping will not be supported`
			`// PolicyConstraints,`

			`ExtendedKeyUsage {`
			`// A list of all possible extended key usage in OID`
			`// Cross check validity with regular KeyUsage`
			`any_extended_key_usage: bool,`
			`id_kp_server_auth: bool,`
			`id_kp_client_auth: bool,`
			`id_kp_code_signing: bool,`
			`id_kp_email_protection: bool,`
			`id_kp_time_stamping: bool,`
			`id_kp_oscp_signing: bool,`
			`},`

			`InhibitAnyPolicy {`
			`// Number of certificates in the path that may still allow AnyPolicy`
			`// Certificate chain size should be limited to a small number`
			`skip_certs: u8`
			`},`

			`// Extension data from an unsupported extension type`
			`Unrecognized,`
			`}`

			`#[derive(Debug, Clone)]`
			`pub struct PolicyInformation<'a> {`
			`pub id: &'a [u8],`
			`pub qualifier: &'a [u8],`
certificate: init 2020-10-21 18:17:55 +08:00			`}`

certificate: parseable 2020-10-23 17:06:31 +08:00			`#[derive(Debug, Clone)]`
certificate: init 2020-10-21 18:17:55 +08:00			`pub struct AlgorithmIdentifier<'a> {`
			`pub algorithm: &'a [u8],`
			`pub parameters: &'a [u8],`
			`}`
cert: add key verify 2020-10-28 17:33:00 +08:00
			`// TODO: MOve this to impl block of Certificate`
			`// Verify self-signed root certificate parsed certificate`
			`pub fn validate_root_certificate(cert: &Certificate) -> Result<bool, TlsError> {`
			`// Verify Signature`
			`match cert.signature_algorithm.algorithm {`
			`SHA1_WITH_RSA_ENCRYPTION => {`
			`let mut hasher = Sha1::new();`
			`hasher.update(cert.tbs_certificate_encoded);`

			`let (_, (modulus, exponent)) = parse_asn1_der_rsa_public_key(`
			`cert.tbs_certificate.subject_public_key_info.subject_public_key`
			`).map_err(\|_\| TlsError::ParsingError)?;`

			`let rsa_public_key = RSAPublicKey::new(`
			`BigUint::from_bytes_be(modulus),`
			`BigUint::from_bytes_be(exponent)`
			`).map_err(\|_\| TlsError::SignatureValidationError)?;`

			`let padding = PaddingScheme::new_pkcs1v15_sign(Some(Hash::SHA1));`
			`let verify_result = rsa_public_key.verify(`
			`padding,`
			`&hasher.finalize(),`
			`cert.signature_value`
			`);`
			`Ok(verify_result.is_ok())`
			`}`
			`}`
			`}`

			`impl<'a> Certificate<'a> {`
			`// Return the public key, if used for RSA`
			`pub fn return_rsa_public_key(&self) -> Result<RSAPublicKey, ()> {`
			`if self.signature_algorithm.algorithm != oid::SHA1_WITH_RSA_ENCRYPTION {`
			`return Err(());`
			`}`
			`let (_, (modulus, exponent)) = parse_asn1_der_rsa_public_key(`
			`self.tbs_certificate.subject_public_key_info.subject_public_key`
			`).map_err(\|_\| ())?;`

			`RSAPublicKey::new(`
			`BigUint::from_bytes_be(modulus),`
			`BigUint::from_bytes_be(exponent)`
			`).map_err(\|_\| ())`
			`}`
			`}`

			`mod oid {`
			`// ECDSA signature algorithms`
			`pub const SHA1_WITH_RSA_ENCRYPTION: &'static [u8] = &[0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x05];`
			`}`