tasign 0.2.0

TA ELF signing utilities with CMS/PKCS#7 support
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199

//! TA ELF 签名与验签库。
//!
//! 提供两种使用模式:
//!
//! - **`std`(默认)**:完整签名工具链,包括 ELF 写入(`objcopy`)、CMS 签名(默认 `tasign::crypto` RustCrypto 后端)、
//!   GmSSL 兼容模式等。供 `tasign-tool` CLI 使用。
//! - **`kernel-verify`(`no_std` + `alloc`)**:仅验签路径,供 Rust 内核直接调用
//!   [`verify_elf_signature`] 对已嵌入 `.ta_signature` 的 ELF 做证书验签。
//!
//! 密码学运算:`std` 与 `kernel-verify` 均经内嵌 [`crypto`] / [`x509`] 模块(默认 **backend-rustcrypto**);
//! SM2 / RSA / ECDSA CMS 签验在 rustcrypto 后端完成;`backend-mbedtls` 永久保留作对照,见 `./scripts/test-all.sh`。
//! GmSSL 可执行文件仅在脚本层面用于证书生成与 `cms-compat=gmssl` 兼容验证。
//!
//! # 日志(`log` 门面)
//!
//! 本 crate 使用 `log` 的 `info!` / `warn!` / `debug!` 等宏,**不**依赖具体实现:
//! - 在 **x-kernel** 中,由入口/内核侧已注册的 logger(例如 `klogger`,实现 `log::Log`)输出。
//! - **独立使用**(含 `tasign-tool`):在进程入口初始化 `env_logger`(或其它 `log` 后端);
//!   单元测试可使用 `env_logger::Builder::...::try_init()`。
#![cfg_attr(not(feature = "std"), no_std)]
#[cfg(all(
    any(feature = "std", feature = "kernel-verify"),
    feature = "backend-mbedtls",
    feature = "backend-rustcrypto"
))]
compile_error!("features `backend-mbedtls` and `backend-rustcrypto` are mutually exclusive");
#[cfg(all(
    any(feature = "std", feature = "kernel-verify"),
    not(any(feature = "backend-mbedtls", feature = "backend-rustcrypto"))
))]
compile_error!("enable exactly one of `backend-mbedtls` or `backend-rustcrypto`");
#[cfg(not(feature = "std"))]
#[macro_use]
extern crate alloc;

#[cfg(any(feature = "backend-mbedtls", feature = "backend-rustcrypto"))]
pub mod crypto;
#[cfg(any(feature = "backend-mbedtls", feature = "backend-rustcrypto"))]
pub mod x509;

#[cfg(any(feature = "std", feature = "kernel-verify"))]
use log::{debug, info};

#[cfg(all(feature = "std", feature = "bjca"))]
pub mod bjca;
pub mod cms;
#[cfg(feature = "std")]
pub mod cert;
#[cfg(feature = "std")]
pub mod elf;
pub mod error;
#[cfg(feature = "std")]
pub mod gmssl_cli;
#[cfg(feature = "std")]
pub mod key;
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub mod limits;
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub mod plain;

#[cfg(feature = "std")]
pub use cms::{
    extract_cms_detached_parts, sign_gmssl_cms_attached_native, sign_sm2_cms, CmsSignAlgorithm,
    SignInputs,
};
pub use cms::{
    verify_cms_signature_with_ca_opt, verify_cms_signature_with_ca_opt_and_limits, verify_sm2_cms,
    verify_sm2_cms_with_ca_opt, verify_sm2_cms_with_ca_pem,
};
#[cfg(feature = "std")]
pub use elf::{
    append_ta_signature, append_ta_signature_bytes, append_ta_signature_objcopy,
    append_ta_signature_object, normalize_relocatable_elf_bytes,
    strip_ta_signature_relocatable_bytes, write_outputs,
};
pub use error::Error;
#[cfg(feature = "std")]
pub use gmssl_cli::{find_gmssl_in_path, resolve_gmssl_path, DEFAULT_GMSSL};
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub use limits::{LimitsError, VerifyLimits};
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub use plain::{
    build_plain_bin, build_plain_bin_with_limits, has_ta_signature_section,
    plain_bytes_from_signed_elf, plain_bytes_from_signed_elf_with_limits,
    ta_signature_section_bytes, ta_signature_section_bytes_with_limits, PlainError,
    TA_SIGNATURE_SECTION,
};

/// 兼容旧错误类型名。
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub type TasignError = PlainError;

/// 对已嵌入 `.ta_signature` 的整颗 ELF 验签。
///
/// 内部流程:
/// 1. 从 ELF 中提取 `.ta_signature` 节(PKCS#7 DER)
/// 2. 按 plain 协议重算签名原数据(忽略 `.ta_signature` 本身)
/// 3. 调用 CMS 验签(摘要比对 + 签名验证 + 可选证书链校验)
///
/// # 参数
/// - `elf_bytes`: 完整的已签名 ELF 文件字节
/// - `ca_pem`: 信任锚 PEM(`Some` 时校验证书链到根;`None` 时仅校验 CMS 签名)
///
/// # Feature
/// 在 `std` 与 `kernel-verify` 下均可用。
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub fn verify_elf_signature(elf_bytes: &[u8], ca_pem: Option<&[u8]>) -> Result<(), Error> {
    verify_elf_signature_with_limits(elf_bytes, ca_pem, &VerifyLimits::default())
}

/// 与 [`verify_elf_signature`] 相同,但使用调用方提供的资源上限。
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub fn verify_elf_signature_with_limits(
    elf_bytes: &[u8],
    ca_pem: Option<&[u8]>,
    limits: &VerifyLimits,
) -> Result<(), Error> {
    info!(
        target: "tasign",
        "verify_elf_signature_with_limits: elf_bytes.len: {}",
        elf_bytes.len()
    );
    limits.check_elf_input_len(elf_bytes.len())?;
    let pkcs7 = ta_signature_section_bytes_with_limits(elf_bytes, limits).map_err(|e| {
        Error::at_verify_stage("提取 `.ta_signature`(PKCS#7 DER)", e)
    })?;
    limits.check_cms_der_len(pkcs7.len())?;
    let plain = plain_bytes_from_signed_elf_with_limits(elf_bytes, limits).map_err(|e| {
        Error::at_verify_stage("重算签名原数据 plain", e)
    })?;
    limits.check_plain_buffer_len(plain.len())?;
    debug!(target: "tasign", "verify: cms_der.len={}, plain.len={}", pkcs7.len(), plain.len());
    verify_cms_signature_with_ca_opt_and_limits(pkcs7, &plain, ca_pem, limits).map_err(|e| {
        Error::at_verify_stage("CMS/PKCS#7 验签", e)
    })
}

/// 分离式验签:调用方自行提供 `plain` 与 PKCS#7 DER。
///
/// 适用于签名数据与 ELF 分开存储的场景。行为等价于
/// [`verify_cms_signature_with_ca_opt`]。
///
/// # Feature
/// 在 `std` 与 `kernel-verify` 下均可用。
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub fn verify_elf_signature_from_parts(
    plain_elf_sections: &[u8],
    signature_der: &[u8],
    ca_pem: Option<&[u8]>,
) -> Result<(), Error> {
    verify_elf_signature_from_parts_with_limits(
        plain_elf_sections,
        signature_der,
        ca_pem,
        &VerifyLimits::default(),
    )
}

/// 分离式验签,并套用资源上限(分别约束 `plain` 与 PKCS#7 DER 长度)。
#[cfg(any(feature = "std", feature = "kernel-verify"))]
pub fn verify_elf_signature_from_parts_with_limits(
    plain_elf_sections: &[u8],
    signature_der: &[u8],
    ca_pem: Option<&[u8]>,
    limits: &VerifyLimits,
) -> Result<(), Error> {
    limits.check_plain_buffer_len(plain_elf_sections.len())?;
    limits.check_cms_der_len(signature_der.len())?;
    verify_cms_signature_with_ca_opt_and_limits(signature_der, plain_elf_sections, ca_pem, limits)
        .map_err(|e| Error::at_verify_stage("CMS/PKCS#7 验签(分离式)", e))
}

#[cfg(all(test, feature = "std"))]
mod tests {
    use super::*;

    fn init_log() {
        let _ = env_logger::builder().is_test(true).try_init();
    }

    #[test]
    fn plain_ok_without_ta_signature_fixture() {
        init_log();
        static ELF: &[u8] = include_bytes!("../tests/fixtures/trivial_elf64.o");
        let p = build_plain_bin(ELF).expect("fixture has no .ta_signature");
        assert!(!p.is_empty());
    }

    #[test]
    fn rejects_when_ta_signature_present_fixture() {
        init_log();
        static ELF: &[u8] = include_bytes!("../tests/fixtures/trivial_with_ta_sig.o");
        let err = build_plain_bin(ELF).unwrap_err();
        match err {
            PlainError::TaSignatureSectionExists(_) => {}
            e => panic!("unexpected: {e:?}"),
        }
    }
}