/* ==================================================================== * Copyright (c) 1998-2008 The OpenSSL Project. All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in * the documentation and/or other materials provided with the * distribution. * * 3. All advertising materials mentioning features or use of this * software must display the following acknowledgment: * "This product includes software developed by the OpenSSL Project * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" * * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to * endorse or promote products derived from this software without * prior written permission. For written permission, please contact * openssl-core@openssl.org. * * 5. Products derived from this software may not be called "OpenSSL" * nor may "OpenSSL" appear in their names without prior written * permission of the OpenSSL Project. * * 6. Redistributions of any form whatsoever must retain the following * acknowledgment: * "This product includes software developed by the OpenSSL Project * for use in the OpenSSL Toolkit (http://www.openssl.org/)" * * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED * OF THE POSSIBILITY OF SUCH DAMAGE. * ==================================================================== * * This product includes cryptographic software written by Eric Young * (eay@cryptsoft.com). This product includes software written by Tim * Hudson (tjh@cryptsoft.com). * */ /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) * All rights reserved. * * This package is an SSL implementation written * by Eric Young (eay@cryptsoft.com). * The implementation was written so as to conform with Netscapes SSL. * * This library is free for commercial and non-commercial use as long as * the following conditions are aheared to. The following conditions * apply to all code found in this distribution, be it the RC4, RSA, * lhash, DES, etc., code; not just the SSL code. The SSL documentation * included with this distribution is covered by the same copyright terms * except that the holder is Tim Hudson (tjh@cryptsoft.com). * * Copyright remains Eric Young's, and as such any Copyright notices in * the code are not to be removed. * If this package is used in a product, Eric Young should be given attribution * as the author of the parts of the library used. * This can be in the form of a textual message at program startup or * in documentation (online or textual) provided with the package. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * 1. Redistributions of source code must retain the copyright * notice, this list of conditions and the following disclaimer. * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * 3. All advertising materials mentioning features or use of this software * must display the following acknowledgement: * "This product includes cryptographic software written by * Eric Young (eay@cryptsoft.com)" * The word 'cryptographic' can be left out if the rouines from the library * being used are not cryptographic related :-). * 4. If you include any Windows specific code (or a derivative thereof) from * the apps directory (application code) you must include an acknowledgement: * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)" * * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. * * The licence and distribution terms for any publically available version or * derivative of this code cannot be changed. i.e. this code cannot simply be * copied and put under another distribution licence * [including the GNU Public Licence.] */ #include #include #include #include #include #include #include #ifdef USE_HSM #include "cr_hsm_code.h" #else // openssl #include #include #include #include "cr_NintendoCTR2_priv_dummy_dev.c" #include "cr_NintendoCTR2_pub_dummy_dev.c" #include "cr_NintendoCTR2_priv_dummy_prod.c" #include "cr_NintendoCTR2_pub_dummy_prod.c" #endif // USE_HSM #include // これにより下はいらない //#include "ec_lcl.h" // ec_key_st構造体の参照に必要 #include "cr_generate_id.h" #include "cr_generate_id_private.h" #include "cr_alloc.h" #define CR_CERT_EXPIRE_SECS ( 60*60*24*365* 20 ) // デバイス証明書期限=20年 #define CA_FILE "dummyCA/NintendoCTR2_dummy.crt" #define CA_KEY "dummyCA/NintendoCTR2_priv_dummy.pem" const char *issuerNameDev = "NintendoCA - G2_NintendoCTR2dev"; const char *issuerNameProd = "NintendoCA - G2_NintendoCTR2prod"; // TWL device cert base typedef struct CTR_Device_Cert { u8 sigType[ 4 ]; // 0x000 - 0x003 : 0x00010002, signature type is ECDSA u8 eccSignature[ 60 ]; // 0x004 - 0x03F : ECDSA using SHA-1 and CA key u8 padding0[ 64 ]; // 0x040 - 0x07F : zero-filled u8 issuerName[ 64 ]; // 0x080 - 0x0BF : issuer name, "Root-CA00000002-MS00000008" u8 keyType[ 4 ]; // 0x0C0 - 0x0C3 : 0x00000002, cert public key type is ECC233 u8 subject[ 64 ]; // 0x0C4 - 0x103 : subject field, "CTxxxxxxxx-yyyyyyyyyyyyyyyy" u32 expiryDate; // 0x104 - 0x107 : second from Epoch (Jan 1, 1970 00:00) u8 eccPubKey[ 60 ]; // 0x108 - 0x143 : cert public key (openssl sect233r1) u8 padding1[ 60 ]; // 0x144 - 0x17F : zero-filled } CTR_Device_Cert; // 鍵ペアをECDSAで検証(FuseIDに切り出したpubkeyのみを使用して署名検証) static int TestECDSA2( EC_KEY *eckey, int ec_curve_name, u8 ec_pub_key_neg, u8 ec_pub_key_num_bytes, u8 *ec_pub_key ) { #define CR_ECDSA_BUF_SIZE 32 #define CR_ECDSA_SIGN_BUF_SIZE 256 BN_CTX *ctx = NULL; BIGNUM *bn_pubkey = NULL; EC_KEY *test_key = NULL; EC_POINT *point_pubkey = NULL; unsigned char buf[256]; unsigned char ecdsa_test_buf[CR_ECDSA_BUF_SIZE]; unsigned char ecdsasig[CR_ECDSA_SIGN_BUF_SIZE]; unsigned int ecdsasiglen = 0; int test_ret = 0; int ret_code = 0; int i; // 署名作成 for( i = 0 ; i < CR_ECDSA_BUF_SIZE ; i++ ) { ecdsa_test_buf[i] = (u8)(0xff & i ); } memset(ecdsasig, 0, CR_ECDSA_SIGN_BUF_SIZE); test_ret = ECDSA_sign(0, ecdsa_test_buf, CR_ECDSA_BUF_SIZE, ecdsasig, &ecdsasiglen, eckey); if (test_ret == 0) { ret_code = CR_GENID_ERROR_ECDSA_SIGN; goto end; } // 署名検証 if( ( ctx = BN_CTX_new() ) == NULL ) { ret_code = CR_GENID_ERROR_BN_CTX_NEW; goto end; } if( ( bn_pubkey = BN_new() ) == NULL ) { ret_code = CR_GENID_ERROR_BN_NEW_2; goto end; } if( ( test_key = EC_KEY_new_by_curve_name( ec_curve_name ) ) == NULL) { ret_code = CR_GENID_ERROR_EC_KEY_NEW_1; goto end; } if( ( point_pubkey = EC_POINT_new( test_key->group ) ) == NULL ) { ret_code = CR_GENID_ERROR_EC_POINT_NEW; goto end; } memset( buf, 0, sizeof(buf) ); if( ec_pub_key_neg ) { // 負数の場合、先頭はそのまま memcpy( buf, ec_pub_key, ec_pub_key_num_bytes ); }else { // 正の数の場合、先頭に0x00をパディングして、サイズを1増やす memcpy( &buf[1], ec_pub_key, ec_pub_key_num_bytes ); ec_pub_key_num_bytes++; } (void)BN_bin2bn( buf, ec_pub_key_num_bytes, bn_pubkey ); (void)EC_POINT_bn2point( test_key->group, bn_pubkey, point_pubkey , ctx ); EC_KEY_set_public_key( test_key, point_pubkey ); test_ret = ECDSA_verify( 0, ecdsa_test_buf, CR_ECDSA_BUF_SIZE, ecdsasig, ecdsasiglen, test_key ); if( test_ret != 1) { ret_code = CR_GENID_ERROR_ECDSA_VERIFY; } end: if( ctx ) BN_CTX_free( ctx ); if( bn_pubkey ) BN_free( bn_pubkey ); if( test_key ) EC_KEY_free( test_key ); if( point_pubkey ) EC_POINT_free( point_pubkey ); return ret_code; } // create CTR Device cert int GenerateCTRDeviceCert( EC_KEY *eckey, u32 deviceId, u8 bondingOption ) { int ret_code = 0; char str[80]; CTR_Device_Cert cert; EC_KEY *NintendoCTR2 = NULL; if ( sizeof( CTR_Device_Cert ) > 384 ) { printf( "err.\n" ); //ret_code = CR_GENID_ERROR_CERT_BUF_SIZE; // ATODE ret_code = 255; goto end; } // DERフォーマットのECC鍵を読み込み { // bondingOptionによって、鍵を差し替え const unsigned char *der_priv = bondingOption ? cr_NintendoCTR2_priv_dummy_dev : cr_NintendoCTR2_priv_dummy_prod; const unsigned char *der_pub = bondingOption ? cr_NintendoCTR2_pub_dummy_dev : cr_NintendoCTR2_pub_dummy_prod; int priv_len = der_priv[ 8 ] | der_priv[ 9 ] << 8; // KEY長を取り出し // int pub_len = der_pub [ 8 ] | der_pub [ 9 ] << 8; // 同上 der_priv += 0x10; // ヘッダ部分を除外してKEY実体を指定 der_pub += 0x10; // 同上 // ECCは、秘密鍵のみで公開鍵成分もセットされるようなので、公開鍵は読み込まない。 NintendoCTR2 = d2i_ECPrivateKey( NULL, &der_priv, priv_len ); if( NintendoCTR2 == NULL ) { // ret_code = CR_GENID_ERROR_ECC_READ_PRIVATE_KEY; // TODO: ret_code = 255; goto end; } #if 0 DEBUG_PRINT_ARRAY( "EC priv:", (const char *)NintendoCTR2->priv_key->d, NintendoCTR2->priv_key->dmax * 4); DEBUG_PRINT_ARRAY( "EC pub.X:", (const char *)NintendoCTR2->pub_key->X.d, NintendoCTR2->pub_key->X.dmax * 4 ); DEBUG_PRINT_ARRAY( "EC pub.Y:", (const char *)NintendoCTR2->pub_key->Y.d, NintendoCTR2->pub_key->Y.dmax * 4 ); #endif } // sigType cert.sigType[0] = 0x00; cert.sigType[1] = 0x01; cert.sigType[2] = 0x00; cert.sigType[3] = 0x02; // issuerName memcpy( cert.issuerName, issuerNameDev, strlen( issuerNameDev ) ); // keyType cert.keyType[0] = 0x00; cert.keyType[1] = 0x00; cert.keyType[2] = 0x00; cert.keyType[3] = 0x01; // subject : CT + deviceID + BondingOption sprintf( str, "CT%08X%02X", (unsigned int)deviceId, bondingOption ); memcpy( cert.subject, str, strlen( str ) ); // expiryDate #ifdef USE_HSM ret_code = hsm_get_rtc( &(cert.expiryDate) ); if ( ret_code != 0 ) { printf( "error(%d) : hsm_get_rtc\n", ret_code ); goto end; } #else // !USE_HSM { struct timeval tv; struct timezone tz; gettimeofday(&tv,&tz); cert.expiryDate = tv.tv_sec; } #endif // USE_HSM // signature #ifdef USE_HSM #else // !USE_HSM BIGNUM *bn_pubkey = NULL; u8 ec_pub_key_neg; u8 ec_pub_key_num_bytes; u8 ec_pub_key[78]; bn_pubkey = BN_new(); if( bn_pubkey == NULL ) { ret_code = CR_GENID_ERROR_BN_NEW_1; goto end; } ret_code = EC_POINT_point2bn( eckey->group, eckey->pub_key, eckey->conv_form , bn_pubkey, NULL); if ( ret_code == 0 ) { printf( "error(%d) : EC_POINT_point2bn\n", ret_code ); goto end; } ec_pub_key_neg = (unsigned char)( (bn_pubkey->neg == 0) ? 0 : 1 ); ec_pub_key_num_bytes = (unsigned char)(BN_num_bytes(bn_pubkey)); BN_bn2bin( bn_pubkey, ec_pub_key ); BN_free( bn_pubkey ); ret_code = TestECDSA2( eckey, NID_sect233r1, ec_pub_key_neg, ec_pub_key_num_bytes, ec_pub_key ); if ( ret_code != 0 ) { printf( "error(%d) : TestECDSA2\n", ret_code ); goto end; } #endif // USE_HSM #if 0 if ( cr_print_flag ) { int i; printf( "CTR custom cert\n" ); printf( "sigType : 0x%08X\n", *(unsigned int*)cert->sigType ); DEBUG_PRINT_ARRAY( "eccSignature:", (const char *)cert->eccSignature, sizeof(cert->eccSignature) ); DEBUG_PRINT_ARRAY( "padding0:", (const char *)cert->padding0, sizeof(cert->padding0) ); printf( "issuerName : " ); for ( i = 0; i < sizeof(cert->issuerName); i++ ) printf( "%c", cert->issuerName[i] ); printf( "\n" ); printf( "keyType : 0x%08X\n", *(unsigned int*)cert->keyType ); printf( "subject : " ); for ( i = 0; i < sizeof(cert->subject); i++ ) printf( "%c", cert->subject[i] ); printf( "\n" ); printf( "expiryDate : 0x%08X\n", (unsigned int)cert->expiryDate ); DEBUG_PRINT_ARRAY( "eccPubKey :", (const char *)cert->eccPubKey, sizeof(cert->eccPubKey) ); DEBUG_PRINT_ARRAY( "padding1:", (const char *)cert->padding1, sizeof(cert->padding1) ); // 証明書の書き込みテスト FILE *fp; char fn[256]; sprintf( fn, "output/0x%08x.crt", (unsigned int)deviceId ); fp = fopen( fn, "w" ); fwrite( cert, sizeof( CTR_Device_Cert ), 1, fp ); fclose( fp ); } #endif end: // TODO: NintendoCTR2のリソース解放がこれだけでOKか要確認。 if( NintendoCTR2 ) EC_KEY_free( NintendoCTR2 ); return ret_code; } // generate_CTRCustom_cert