attestation_validator/yubico/

openpgp.rs

//! Yubikey OpenPGP Attestation.
//!
//! See [OpenPGP Attestation](https://developers.yubico.com/PGP/Attestation.html) for more details.
//!
//! # Examples
//!
//! The following example validates attestation certificate and displays attestation info:
//!
//! ```
//! # fn main() -> testresult::TestResult {
//! use std::fs::File;
//! use std::io::Cursor;
//!
//! use attestation_validator::Validator;
//! use attestation_validator::yubico::openpgp::{
//!     YUBICO_OPENPGP_ATTESTATION_CA_PEM, YubikeyOpenPgpAttestation,
//! };
//!
//! let mut validator = Validator::default();
//! validator.add_from_pem(Cursor::new(YUBICO_OPENPGP_ATTESTATION_CA_PEM))?;
//! validator.add_from_pem(File::open("openpgp-card-pem")?)?;
//! validator.add_from_pem(File::open("key-statement-pem")?)?;
//!
//! eprintln!(
//!     "Extensions: {:#?}",
//!     YubikeyOpenPgpAttestation::new(&validator.leaf_extensions()?)?
//! );
//!
//! eprintln!("Raw public key (DER): {:?}", validator.leaf_public_key()?);
//! # Ok(()) }
//! ```

use std::{
    fmt::Display,
    time::{Duration, SystemTime, UNIX_EPOCH},
};

#[cfg(doc)]
use crate::Error;
use crate::{Extensions, Result};

/// Root Certification Authority for Yubikey's OpenPGP certificate chains for firmware prior to 5.7.4.
///
/// The contents of this constant are fetched from <https://developers.yubico.com/PKI/yubico-opgp-ca-1.pem>
/// as referenced in [OpenPGP Attestation](https://developers.yubico.com/PGP/Attestation.html).
pub const YUBICO_OPENPGP_ATTESTATION_CA_PEM: &[u8] = include_bytes!("yubico-opgp-ca-1-pem");

/// User Interaction Flag for given key.
#[repr(u8)]
#[derive(Debug, PartialEq, Eq, Clone, Copy)]
#[non_exhaustive]
pub enum UserInteractionFlag {
    /// Touch has been disabled.
    TouchDisabled = 0x00,

    /// Touch is enabled, but can be changed.
    TouchEnabled = 0x01,

    /// Touch is permanently enabled.
    TouchPermanent = 0x02,

    /// Touch is cached for a given number of seconds.
    TouchCached = 0x03,

    /// Touch is permanently enabled and is cached for a given number of seconds.
    TouchPermanentCached = 0x04,

    /// Unknown value of the UIF flag.
    Unknown(u8),
}

impl Display for UserInteractionFlag {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.write_str(match self {
            UserInteractionFlag::TouchDisabled => "Touch disabled",
            UserInteractionFlag::TouchEnabled => "Touch enabled",
            UserInteractionFlag::TouchPermanent => "Touch permanent",
            UserInteractionFlag::TouchCached => "Touch cached",
            UserInteractionFlag::TouchPermanentCached => "Touch permanent, cached",
            UserInteractionFlag::Unknown(value) => return write!(f, "Unknown UIF ({value:X})"),
        })
    }
}

impl From<u8> for UserInteractionFlag {
    fn from(value: u8) -> Self {
        match value {
            0x00 => Self::TouchDisabled,
            0x01 => Self::TouchEnabled,
            0x02 => Self::TouchPermanent,
            0x03 => Self::TouchCached,
            0x04 => Self::TouchPermanentCached,
            _ => Self::Unknown(value),
        }
    }
}

impl From<UserInteractionFlag> for u8 {
    fn from(value: UserInteractionFlag) -> Self {
        match value {
            UserInteractionFlag::TouchDisabled => 0x00,
            UserInteractionFlag::TouchEnabled => 0x01,
            UserInteractionFlag::TouchPermanent => 0x02,
            UserInteractionFlag::TouchCached => 0x03,
            UserInteractionFlag::TouchPermanentCached => 0x04,
            UserInteractionFlag::Unknown(value) => value,
        }
    }
}

/// Key source.
#[repr(u8)]
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
#[non_exhaustive]
pub enum KeySource {
    /// Key has been imported (this value is not permitted).
    Imported = 0x00,

    /// Key has been generated on device.
    GeneratedOnDevice = 0x01,

    /// Other, unknown value.
    Unknown(u8),
}

impl Display for KeySource {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.write_str(match self {
            KeySource::Imported => "Imported",
            KeySource::GeneratedOnDevice => "Generated on device",
            KeySource::Unknown(value) => return write!(f, "Unknown key source ({value:X})"),
        })
    }
}

impl From<u8> for KeySource {
    fn from(value: u8) -> Self {
        match value {
            0x00 => Self::Imported,
            0x01 => Self::GeneratedOnDevice,
            _ => Self::Unknown(value),
        }
    }
}

impl From<KeySource> for u8 {
    fn from(value: KeySource) -> Self {
        match value {
            KeySource::Imported => 0x00,
            KeySource::GeneratedOnDevice => 0x01,
            KeySource::Unknown(value) => value,
        }
    }
}

/// Token form factor.
#[repr(u8)]
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
#[non_exhaustive]
pub enum FormFactor {
    /// Unspecified form factor.
    Unspecified = 0x00,

    /// USB-A Keychain.
    UsbAKeychain = 0x01,

    /// USB-A Nano.
    UsbANano = 0x02,

    /// USB-C Keychain.
    UsbCKeychain = 0x03,

    /// USB-C Nano.
    UsbCNano = 0x04,

    /// USB-C/Lightning Keychain.
    UsbCLightningKeychain = 0x05,

    /// Other, unknown variant.
    Unknown(u8),
}

impl Display for FormFactor {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.write_str(match self {
            FormFactor::Unspecified => "Unspecified",
            FormFactor::UsbAKeychain => "USB-A Keychain",
            FormFactor::UsbANano => "USB-A Nano",
            FormFactor::UsbCKeychain => "USB-C Keychain",
            FormFactor::UsbCNano => "USB-C Nano",
            FormFactor::UsbCLightningKeychain => "USB-C/Lightning Keychain",
            FormFactor::Unknown(value) => return write!(f, "Unknown form factor ({value:X})"),
        })
    }
}

impl From<u8> for FormFactor {
    fn from(value: u8) -> Self {
        match value {
            0x00 => Self::Unspecified,
            0x01 => Self::UsbAKeychain,
            0x02 => Self::UsbANano,
            0x03 => Self::UsbCKeychain,
            0x04 => Self::UsbCNano,
            0x05 => Self::UsbCLightningKeychain,
            _ => Self::Unknown(value),
        }
    }
}

impl From<FormFactor> for u8 {
    fn from(value: FormFactor) -> Self {
        match value {
            FormFactor::Unspecified => 0x00,
            FormFactor::UsbAKeychain => 0x01,
            FormFactor::UsbANano => 0x02,
            FormFactor::UsbCKeychain => 0x03,
            FormFactor::UsbCNano => 0x04,
            FormFactor::UsbCLightningKeychain => 0x05,
            FormFactor::Unknown(value) => value,
        }
    }
}

/// Yubikey's OpenPGP specific attestation values.
///
/// See [OpenPGP Attestation](https://developers.yubico.com/PGP/Attestation.html) for more details.
#[non_exhaustive]
#[derive(Debug)]
pub struct YubikeyOpenPgpAttestation {
    /// Firmware version.
    pub firmware_version: (u8, u8, u8),

    /// Device serial number.
    pub serial_number: u32,

    /// Cardholder name.
    pub cardholder_name: String,

    /// Attested key’s source.
    pub key_source: KeySource,

    /// Attested key’s fingerprint.
    pub key_fingerprint: [u8; 20],

    /// Attested key’s generation date in seconds since the Unix epoch.
    pub generation_date: SystemTime,

    /// Attested key’s signature counter (if applicable).
    pub signature_counter: u32,

    /// User Interaction Flag (UIF).
    pub user_interaction_flag: UserInteractionFlag,

    /// Form factor.
    pub form_factor: FormFactor,
}

impl Display for YubikeyOpenPgpAttestation {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        writeln!(
            f,
            "Yubikey OpenPGP Attestation for device with serial number {}",
            self.serial_number
        )?;
        writeln!(
            f,
            "Firmware version: {}.{}.{}",
            self.firmware_version.0, self.firmware_version.1, self.firmware_version.2
        )?;
        writeln!(f, "Cardholder's name: {}", self.cardholder_name)?;
        writeln!(f, "Key source: {}", self.key_source)?;
        write!(f, "Key fingerprint: ")?;
        for byte in self.key_fingerprint {
            write!(f, "{byte:02x}")?;
        }
        writeln!(f)?;

        if let Ok(diff) = self.generation_date.duration_since(UNIX_EPOCH) {
            writeln!(
                f,
                "Key generated {} seconds from the Unix Epoch",
                diff.as_secs()
            )?;
        }

        writeln!(f, "Number of signatures made: {}", self.signature_counter)?;
        writeln!(f, "User Interaction Flag: {}", self.user_interaction_flag)?;
        writeln!(f, "Device form factor: {}", self.form_factor)?;

        Ok(())
    }
}

impl YubikeyOpenPgpAttestation {
    /// Creates an attestation object specific to Yubico's OpenPGP applet.
    ///
    /// See [OpenPGP Attestation](https://developers.yubico.com/PGP/Attestation.html) for a detailed list of inspected certificate extensions.
    ///
    /// # Errors
    ///
    /// If the value for given `oid` is missing this function returns [`Error::OidMissing`].
    /// If field values have unexpected values [`Error::UnexpectedFieldValue`] is returned.
    pub fn new(extensions: &Extensions) -> Result<Self> {
        let cardholder_name = extensions.get("1.3.6.1.4.1.41482.5.1")?;
        cardholder_name.assert_value_byte(0, 12, "utf-8 string")?;
        let cardholder_name = String::from_utf8_lossy(&cardholder_name[2..]).into_owned();

        let key_source = extensions.get("1.3.6.1.4.1.41482.5.2")?;
        key_source.assert_value_byte(0, 2, "integer")?;
        key_source.assert_value_byte(1, 1, "length")?;
        let key_source = key_source[2].into();

        let firmware_version = extensions.get("1.3.6.1.4.1.41482.5.3")?;
        firmware_version.assert_value_byte(0, 4, "octet string")?;
        firmware_version.assert_value_byte(1, 3, "length")?;
        let firmware_version = (
            firmware_version[2],
            firmware_version[3],
            firmware_version[4],
        );

        let key_fingerprint = extensions.get("1.3.6.1.4.1.41482.5.4")?;
        key_fingerprint.assert_value_byte(0, 4, "octet string")?;
        key_fingerprint.assert_value_byte(1, 20, "length")?;
        let key_fingerprint = {
            let mut tmp = [0; 20];
            tmp.copy_from_slice(&key_fingerprint[2..22]);
            tmp
        };

        let generation_date = extensions.get("1.3.6.1.4.1.41482.5.5")?;
        generation_date.assert_value_byte(0, 4, "octet string")?;
        generation_date.assert_value_byte(1, 4, "length")?;
        let generation_date = {
            let mut tmp = [0; 4];
            tmp.copy_from_slice(&generation_date[2..6]);
            u32::from_be_bytes(tmp)
        };
        let generation_date = UNIX_EPOCH + Duration::from_secs(generation_date.into());

        let signature_counter = extensions.get("1.3.6.1.4.1.41482.5.6")?;
        signature_counter.assert_value_byte(0, 2, "integer")?;
        let signature_counter = {
            let mut tmp = [0; 4];
            let start = tmp.len() - (signature_counter[1] as usize);
            tmp[start..].copy_from_slice(&signature_counter[2..]);
            u32::from_be_bytes(tmp)
        };

        let serial_number = extensions.get("1.3.6.1.4.1.41482.5.7")?;
        serial_number.assert_value_byte(0, 2, "integer")?;
        serial_number.assert_value_byte(1, 4, "length")?;
        let serial_number = {
            let mut sn: [u8; 4] = [0; 4];
            sn.copy_from_slice(&serial_number[2..6]);
            u32::from_be_bytes(sn)
        };

        let user_interaction_flag = extensions.get("1.3.6.1.4.1.41482.5.8")?;
        user_interaction_flag.assert_value_byte(0, 4, "octet string")?;
        user_interaction_flag.assert_value_byte(1, 1, "length")?;
        let user_interaction_flag = user_interaction_flag[2].into();

        let form_factor = extensions.get("1.3.6.1.4.1.41482.5.9")?;
        form_factor.assert_value_byte(0, 4, "octet string")?;
        form_factor.assert_value_byte(1, 1, "length")?;
        let form_factor = form_factor[2].into();

        Ok(Self {
            firmware_version,
            serial_number,
            cardholder_name,
            key_source,
            key_fingerprint,
            generation_date,
            signature_counter,
            user_interaction_flag,
            form_factor,
        })
    }
}

#[cfg(test)]
mod tests {
    use std::{collections::HashMap, fs::File, io::Cursor};

    use testresult::TestResult;

    use super::*;
    use crate::{Error, Validator};

    #[test]
    fn test_sample_chain() -> TestResult {
        let mut validator = Validator::default();
        validator.add_from_pem(Cursor::new(YUBICO_OPENPGP_ATTESTATION_CA_PEM))?;
        validator.add_from_pem(File::open("openpgp-card-pem")?)?;
        validator.add_from_pem(File::open("key-statement-pem")?)?;

        Ok(())
    }

    #[test]
    fn test_broken_chain() -> TestResult {
        let mut validator = Validator::default();
        validator.add_from_pem(Cursor::new(YUBICO_OPENPGP_ATTESTATION_CA_PEM))?;

        // device attestation cert is missing so the next line should fail

        let result = validator.add_from_pem(File::open("key-statement-pem")?);
        assert!(result.is_err());

        Ok(())
    }

    #[test]
    fn test_leaf_extensions() -> TestResult {
        let mut validator = Validator::default();

        validator.add_from_pem(File::open("key-statement-pem")?)?;

        let extensions = validator.leaf_extensions()?.into_inner();
        assert_eq!(
            extensions["1.3.6.1.4.1.41482.5.1"],
            vec![
                12, 20, 75, 119, 97, 112, 105, 115, 105, 101, 119, 105, 99, 122, 60, 60, 87, 105,
                107, 116, 111, 114,
            ]
        );
        assert_eq!(extensions["1.3.6.1.4.1.41482.5.2"], vec![2, 1, 1]);
        assert_eq!(extensions["1.3.6.1.4.1.41482.5.3"], vec![4, 3, 5, 2, 7,]);
        assert_eq!(
            extensions["1.3.6.1.4.1.41482.5.4"],
            vec![
                4, 20, 12, 124, 84, 145, 47, 217, 50, 188, 223, 19, 114, 106, 118, 124, 226, 36,
                219, 49, 27, 60,
            ]
        );
        assert_eq!(
            extensions["1.3.6.1.4.1.41482.5.5"],
            vec![4, 4, 100, 236, 133, 99]
        );
        assert_eq!(extensions["1.3.6.1.4.1.41482.5.6"], vec![2, 1, 1]);
        assert_eq!(
            extensions["1.3.6.1.4.1.41482.5.7"],
            vec![2, 4, 0, 235, 84, 3]
        );
        assert_eq!(extensions["1.3.6.1.4.1.41482.5.8"], vec![4, 1, 2]);
        assert_eq!(extensions["1.3.6.1.4.1.41482.5.9"], vec![4, 1, 3]);

        Ok(())
    }

    #[test]
    fn test_yubikey_openpgp_attestation_extensions() -> TestResult {
        let mut validator = Validator::default();

        validator.add_from_pem(File::open("key-statement-pem")?)?;

        let attestation = YubikeyOpenPgpAttestation::new(&validator.leaf_extensions()?)?;
        assert_eq!(attestation.firmware_version, (5, 2, 7));
        assert_eq!(attestation.cardholder_name, "Kwapisiewicz<<Wiktor");
        assert_eq!(attestation.serial_number, 15_422_467);
        assert_eq!(attestation.key_source, KeySource::GeneratedOnDevice);
        assert_eq!(
            attestation.key_fingerprint,
            [
                12, 124, 84, 145, 47, 217, 50, 188, 223, 19, 114, 106, 118, 124, 226, 36, 219, 49,
                27, 60,
            ]
        );
        assert_eq!(
            attestation
                .generation_date
                .duration_since(UNIX_EPOCH)?
                .as_secs(),
            1_693_222_243
        );
        assert_eq!(attestation.signature_counter, 1);
        assert_eq!(
            attestation.user_interaction_flag,
            UserInteractionFlag::TouchPermanent
        );
        assert_eq!(attestation.form_factor, FormFactor::UsbCKeychain);

        Ok(())
    }

    #[test]
    fn test_yubikey_openpgp_attestation_extensions_fail() -> TestResult {
        let mut validator = Validator::default();

        validator.add_from_pem(File::open("openpgp-card-pem")?)?;

        let attestation = YubikeyOpenPgpAttestation::new(&validator.leaf_extensions()?);

        let Err(e) = attestation else {
            panic!("Parsing succeeded but should fail");
        };

        let Error::OidMissing { oid } = e else {
            panic!("The error should indicate OidMissing but was: {e:?}");
        };

        assert_eq!(oid, "1.3.6.1.4.1.41482.5.1");

        Ok(())
    }

    #[test]
    fn test_yubikey_openpgp_attestation_extensions_value_fail() {
        let mut map = HashMap::new();
        map.insert("1.3.6.1.4.1.41482.5.1".into(), vec![1, 2, 3]);
        let ext = Extensions(map);
        let att = YubikeyOpenPgpAttestation::new(&ext);
        let Err(e) = att else {
            panic!("Parsing succeeded but should fail");
        };
        let Error::UnexpectedFieldValue {
            oid,
            field,
            expected,
            actual,
        } = e
        else {
            panic!("The error should indicate UnexpectedFieldValue but was: {e:?}");
        };

        assert_eq!(oid, "1.3.6.1.4.1.41482.5.1");
        assert_eq!(field, "utf-8 string");
        assert_eq!(expected, "12");
        assert_eq!(actual, "1");
    }
}