zoogie/TADpole
1
Fork 0
mirror of https://github.com/zoogie/TADpole.git synced 2025-06-18 19:45:41 -04:00
Code Issues Actions Packages Projects Releases Wiki Activity
de9eeebc0c
TADpole/source/tadpole.cpp
zoogie de9eeebc0c Port from Python to C 
- add crc16 fixing for banner.bin
- remove keyy error correct, will probably be added back in time
2019-01-20 05:17:51 -06:00

133 lines
3.7 KiB
C++
Raw Blame History

#include <cstring>
#include <cstdio>
#include <stdio.h>
#include <stdlib.h>
#include <time.h>
#include "crypto.h"
#include "tadpole.h"
#include "ec.h"
#include "types.h"
void getSection(u8 *dsiware_pointer, u32 section_size, u8 *key, u8 *output) {
decryptAES(dsiware_pointer, section_size, key, (dsiware_pointer + section_size + 0x10), output);
}
void placeSection(u8 *dsiware_pointer, u8 *section, u32 section_size, u8 *key, u8 *key_cmac) {
u8 allzero[0x10]= {0};
encryptAES(section, section_size, key, allzero, dsiware_pointer);
u8 section_hash[0x20] = {0};
calculateSha256(section, section_size, section_hash);
u8 section_cmac[0x20] = {0};
calculateCMAC(section_hash, 0x20, key_cmac, section_cmac);
memcpy((dsiware_pointer + section_size), section_cmac, 0x10);
memset((dsiware_pointer + section_size + 0x10), 0, 0x10);
}
static void elt_print(const char *name, u8 *a)
{
u32 i;
printf("%s = ", name);
for (i = 0; i < 30; i++)
printf("%02x", a[i]);
printf("\n");
}
Result doSigning(u8 *ctcert_bin, footer_t *footer) {
Result res;
u8 ct_priv[0x1E], ap_priv[0x1E], tmp_pub[0x3C], tmp_hash[0x20];
memset(ap_priv, 0, 0x1E);
ecc_cert_t ct_cert, ap_cert;
ap_priv[0x1D]=1;
printf("loading keys from ctcert.bin...\n");
memcpy(&ct_cert, ctcert_bin, 0x180);
memcpy(ct_priv, (ctcert_bin + 0x180), 0x1E);
ec_priv_to_pub(ct_priv, tmp_pub);
if (memcmp(tmp_pub, &ct_cert.pubkey, sizeof(tmp_pub)) != 0) {
printf("error: ecc priv key does not correspond to the cert\n");
return -1;
}
printf("using zeroed AP privkey to generate AP cert...\n");
memset(&ap_cert, 0, sizeof(ap_cert));
memcpy(&ap_cert.key_id, &footer->ap.key_id, 0x40);
snprintf(ap_cert.issuer, sizeof(ap_cert.issuer), "%s-%s", ct_cert.issuer, ct_cert.key_id);
ap_cert.key_type = 0x02000000; // key type
ec_priv_to_pub(ap_priv, ap_cert.pubkey.r);// pub key
ap_cert.sig.type = 0x05000100;// sig
srand(time(0));
int check=rand();
printf("%08X\n",check);
int sanity=100;
bool randsig=false;
do{
printf("signing ap...\n"); // actually sign it
calculateSha256((u8*)ap_cert.issuer, 0x100, tmp_hash);
//calculateSha256((u8*)&check, 4, tmp_hash);
res = generate_ecdsa(ap_cert.sig.val.r, ap_cert.sig.val.s, ct_priv, tmp_hash, randsig);
if (res < 0) {
printf("error: problem signing AP\n");
}
printf("re-verifying ap sig... ");
calculateSha256((u8*)ap_cert.issuer, sizeof(ecc_cert_t)-sizeof(ap_cert.sig), tmp_hash);
//calculateSha256((u8*)&check, 4, tmp_hash);
res = check_ecdsa(ct_cert.pubkey.r, ap_cert.sig.val.r, ap_cert.sig.val.s, tmp_hash);
if (res == 1) {
printf("GOOD!\n");
} else {
printf("BAD\n");
randsig=true;
}
elt_print("R", ap_cert.sig.val.r);
elt_print("S", ap_cert.sig.val.s);
elt_print("H", tmp_hash);
sanity--;
} while(res !=1 && sanity >=0);
sanity=100;
randsig=false;
do{
printf("signing footer...\n");
calculateSha256((u8*)footer, 0x1A0, tmp_hash);
//calculateSha256((u8*)&check, 4, tmp_hash);
res = generate_ecdsa(footer->sig.r, footer->sig.s, ap_priv, tmp_hash, randsig);
if (res < 0) {
printf("error: problem signing footer\n");
}
printf("re-verifying footer sig... ");
calculateSha256((u8*)footer, 0x1A0, tmp_hash);
//calculateSha256((u8*)&check, 4, tmp_hash);
res = check_ecdsa(ap_cert.pubkey.r, footer->sig.r, footer->sig.s, tmp_hash);
if (res == 1) {
printf("GOOD!\n");
} else {
printf("BAD\n");
randsig=true;
}
elt_print("R", ap_cert.sig.val.r);
elt_print("S", ap_cert.sig.val.s);
elt_print("H", tmp_hash);
sanity--;
} while(res !=1 && sanity >=0);
memcpy(&footer->ap, &ap_cert, 0x180);
memcpy(&footer->ct, &ct_cert, 0x180);
printf("done signing\n");
return 0;
}
Reference in New Issue View Git Blame Copy Permalink