policyutil: have Policy.Authorize sign all digests

canonical · Apr 19, 2024 · e506bc4 · e506bc4
1 parent 5fa107f
commit e506bc4
Show file tree

Hide file tree

Showing 3 changed files with 116 additions and 43 deletions.
diff --git a/policyutil/builder_test.go b/policyutil/builder_test.go
@@ -1995,5 +1995,4 @@ Policy {
   0x8395a82161cdfd3f7ff0e663270f19d59a55fb3d9a9f6c7168e3a78d42ad47cc
  )
 }`, expectedDigest, expectedBranchDigests[0], expectedBranchDigests[1], expectedBranchDigests[2], expectedBranchDigests[3], expectedBranchDigests[4], expectedBranchDigests[5], expectedBranchDigests[6], expectedBranchDigests[7], expectedBranchDigests[8], authKey.Name()))
-	fmt.Println(policy)
 }
diff --git a/policyutil/policy.go b/policyutil/policy.go
@@ -553,6 +553,9 @@ func (e *policyAuthorizeElement) run(runner policyRunner) error {
 			if !bytes.Equal(auth.PolicyRef, e.PolicyRef) {
 				continue
 			}
+			if ok, _ := auth.Verify(digest); !ok {
+				continue
+			}
 			policyAuth = &auth
 			break
 		}
@@ -1896,14 +1899,14 @@ func (p *Policy) Digest(alg tpm2.HashAlgorithmId) (tpm2.Digest, error) {
 // Authorize signs this policy with the supplied signer so that it can be used as an
 // authorized policy for a TPM2_PolicyAuthorize assertion with the supplied authKey and
 // policyRef. Calling this updates the policy, so it should be persisted afterwards.
+// This signs every digest that the policy has been computed for.
 //
 // TPM2_PolicyAuthorize expects the digest algorithm of the signature to match the name
 // algorithm of the public key, so the name algorithm of authKey must match the algorithm
-// supplied through the opts argument. The specified hashAlg argument is used to select
-// the policy digest to sign.
+// supplied through the opts argument.
 //
 // This expects the policy to contain a digest for the selected algorithm already.
-func (p *Policy) Authorize(rand io.Reader, hashAlg tpm2.HashAlgorithmId, authKey *tpm2.Public, policyRef tpm2.Nonce, signer crypto.Signer, opts crypto.SignerOpts) error {
+func (p *Policy) Authorize(rand io.Reader, authKey *tpm2.Public, policyRef tpm2.Nonce, signer crypto.Signer, opts crypto.SignerOpts) (err error) {
 	authName := authKey.Name()
 	authAlg := authName.Algorithm()
 	if opts.HashFunc() != authAlg.GetHash() {
@@ -1913,28 +1916,23 @@ func (p *Policy) Authorize(rand io.Reader, hashAlg tpm2.HashAlgorithmId, authKey
 		return errors.New("auth algorithm is unavailable")
 	}
 
-	approvedPolicy, err := p.Digest(hashAlg)
-	if err != nil {
-		return fmt.Errorf("cannot obtain digest: %w", err)
-	}
-
-	policyAuth, err := SignPolicyAuthorization(rand, approvedPolicy, authKey, policyRef, signer, opts)
-	if err != nil {
-		return fmt.Errorf("cannot sign authorization: %w", err)
-	}
-
-	addedAuth := false
-	for i, auth := range p.policy.PolicyAuthorizations {
+	var authorizations policyAuthorizations
+	for _, auth := range p.policy.PolicyAuthorizations {
 		if bytes.Equal(auth.AuthKey.Name(), authName) && bytes.Equal(auth.PolicyRef, policyRef) {
-			p.policy.PolicyAuthorizations[i] = *policyAuth
-			addedAuth = true
-			break
+			continue
 		}
+		authorizations = append(authorizations, auth)
 	}
-	if !addedAuth {
-		p.policy.PolicyAuthorizations = append(p.policy.PolicyAuthorizations, *policyAuth)
+
+	for _, approvedPolicy := range p.policy.PolicyDigests {
+		auth, err := SignPolicyAuthorization(rand, approvedPolicy.Digest, authKey, policyRef, signer, opts)
+		if err != nil {
+			return fmt.Errorf("cannot sign authorization for digest %v: %w", approvedPolicy.HashAlg, err)
+		}
+		authorizations = append(authorizations, *auth)
 	}
 
+	p.policy.PolicyAuthorizations = authorizations
 	return nil
 }
 

diff --git a/policyutil/policy_test.go b/policyutil/policy_test.go
@@ -334,9 +334,8 @@ func (s *policySuiteNoTPM) testAuthorizePolicy(c *C, data *testAuthorizePolicyDa
 	digest, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 	c.Check(digest, DeepEquals, data.expectedDigest)
-	c.Logf("%x", digest)
 
-	err = policy.Authorize(bytes.NewReader(make([]byte, 33)), data.hashAlg, keySign, data.policyRef, key.(crypto.Signer), data.opts)
+	err = policy.Authorize(bytes.NewReader(make([]byte, 33)), keySign, data.policyRef, key.(crypto.Signer), data.opts)
 	if err != nil {
 		return err
 	}
@@ -514,6 +513,88 @@ Q24QvsY89QC+L3a2SRfoRs+9jlcc13V7qOxbu2vnI0+Ql7VP4ePUfEQ0
 	c.Check(err, ErrorMatches, `mismatched authKey name and opts`)
 }
 
+func (s *policySuiteNoTPM) TestAuthorizePolicyMultipleAlgs(c *C) {
+	keyPEM := `
+-----BEGIN PRIVATE KEY-----
+MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQghoJh0RNpHMdQGWw1
+c4iu0s8/VoGE1Xx5ds7Zvpne/BOhRANCAAS9VCRI2K86GPrzKRZ92uhtpM8o+m/5
+Q24QvsY89QC+L3a2SRfoRs+9jlcc13V7qOxbu2vnI0+Ql7VP4ePUfEQ0
+-----END PRIVATE KEY-----`
+
+	b, _ := pem.Decode([]byte(keyPEM))
+	key, err := x509.ParsePKCS8PrivateKey(b.Bytes)
+	c.Assert(err, IsNil)
+	c.Assert(key, internal_testutil.ConvertibleTo, &ecdsa.PrivateKey{})
+
+	keySign, err := objectutil.NewECCPublicKey(&key.(*ecdsa.PrivateKey).PublicKey)
+	c.Assert(err, IsNil)
+
+	builder := NewPolicyBuilder(tpm2.HashAlgorithmSHA256)
+	builder.RootBranch().PolicyAuthValue()
+
+	expectedDigestSHA1 := tpm2.Digest(internal_testutil.DecodeHexString(c, "af6038c78c5c962d37127e319124e3a8dc582e9b"))
+	expectedDigestSHA256 := tpm2.Digest(internal_testutil.DecodeHexString(c, "8fcd2169ab92694e0c633f1ab772842b8241bbc20288981fc7ac1eddc1fddb0e"))
+
+	digestSHA256, policy, err := builder.Policy()
+	c.Assert(err, IsNil)
+	c.Check(digestSHA256, DeepEquals, expectedDigestSHA256)
+
+	digestSHA1, err := policy.AddDigest(tpm2.HashAlgorithmSHA1)
+	c.Assert(err, IsNil)
+	c.Check(digestSHA1, DeepEquals, expectedDigestSHA1)
+
+	err = policy.Authorize(bytes.NewReader(make([]byte, 66)), keySign, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256)
+	c.Check(err, IsNil)
+
+	expectedSignatureSHA256 := &tpm2.Signature{
+		SigAlg: tpm2.SigSchemeAlgECDSA,
+		Signature: &tpm2.SignatureU{
+			ECDSA: &tpm2.SignatureECDSA{
+				Hash:       tpm2.HashAlgorithmSHA256,
+				SignatureR: internal_testutil.DecodeHexString(c, "fef27905ea5b0265ed72649b518c9dc34d9d729214fb65106b25188acdb0aa09"),
+				SignatureS: internal_testutil.DecodeHexString(c, "55e8e6eb6bc688e16225539019ae82d6eba0ac9db61974d366f72a4d4c125ae4"),
+			},
+		},
+	}
+	expectedSignatureSHA1 := &tpm2.Signature{
+		SigAlg: tpm2.SigSchemeAlgECDSA,
+		Signature: &tpm2.SignatureU{
+			ECDSA: &tpm2.SignatureECDSA{
+				Hash:       tpm2.HashAlgorithmSHA256,
+				SignatureR: internal_testutil.DecodeHexString(c, "a68ac303b875ed4428b6284d3d5ce020936eff45d239eb7949a1a390311248a9"),
+				SignatureS: internal_testutil.DecodeHexString(c, "259695240c01bd676d059cb809cb8e117181e4b28987fbac60857b087edf1794"),
+			},
+		},
+	}
+
+	expectedPolicy := NewMockPolicy(
+		TaggedHashList{
+			{HashAlg: tpm2.HashAlgorithmSHA256, Digest: expectedDigestSHA256},
+			{HashAlg: tpm2.HashAlgorithmSHA1, Digest: expectedDigestSHA1},
+		},
+		[]PolicyAuthorization{
+			{AuthKey: keySign, PolicyRef: []byte("foo"), Signature: expectedSignatureSHA256},
+			{AuthKey: keySign, PolicyRef: []byte("foo"), Signature: expectedSignatureSHA1},
+		},
+		NewMockPolicyAuthValueElement(),
+	)
+	c.Check(policy, DeepEquals, expectedPolicy)
+	c.Check(policy.String(), Equals, fmt.Sprintf(`
+Policy {
+ # digest TPM_ALG_SHA256:%#[1]x
+ # auth 0 authName:%#[2]x, policyRef:0x666f6f, sigAlg:TPM_ALG_ECDSA, hashAlg:TPM_ALG_SHA256
+ # auth 1 authName:%#[2]x, policyRef:0x666f6f, sigAlg:TPM_ALG_ECDSA, hashAlg:TPM_ALG_SHA256
+ PolicyAuthValue()
+}`, expectedDigestSHA256, keySign.Name()))
+	c.Check(policy.Stringer(tpm2.HashAlgorithmSHA1, nil).String(), Equals, fmt.Sprintf(`
+Policy {
+ # digest TPM_ALG_SHA1:%#[1]x
+ # auth 0 authName:%#[2]x, policyRef:0x666f6f, sigAlg:TPM_ALG_ECDSA, hashAlg:TPM_ALG_SHA256
+ # auth 1 authName:%#[2]x, policyRef:0x666f6f, sigAlg:TPM_ALG_ECDSA, hashAlg:TPM_ALG_SHA256
+ PolicyAuthValue()
+}`, expectedDigestSHA1, keySign.Name()))
+}
+
 func (s *policySuiteNoTPM) TestPolicyValidate(c *C) {
 	builder := NewPolicyBuilder(tpm2.HashAlgorithmSHA256)
 	builder.RootBranch().PolicyAuthValue()
@@ -700,13 +781,13 @@ Q24QvsY89QC+L3a2SRfoRs+9jlcc13V7qOxbu2vnI0+Ql7VP4ePUfEQ0
 	builder.RootBranch().PolicyAuthValue()
 	_, authPolicy1, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(authPolicy1.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
+	c.Check(authPolicy1.Authorize(rand.Reader, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
 
 	builder = NewPolicyBuilder(tpm2.HashAlgorithmSHA256)
 	builder.RootBranch().PolicySecret(tpm2.MakeHandleName(tpm2.HandleOwner), []byte("bar"))
 	_, authPolicy2, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(authPolicy2.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
+	c.Check(authPolicy2.Authorize(rand.Reader, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
 
 	branches, err := policy.Branches(tpm2.HashAlgorithmNull, NewPolicyAuthorizedPolicies([]*Policy{authPolicy1, authPolicy2}, nil))
 	c.Check(err, IsNil)
@@ -1906,7 +1987,7 @@ func (s *policySuite) TestPolicyAuthorize(c *C) {
 	approvedPolicy, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 
-	c.Check(policy.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
+	c.Check(policy.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:                  pubKey,
@@ -1930,7 +2011,7 @@ func (s *policySuite) TestPolicyAuthorizeDifferentKeyNameAlg(c *C) {
 	approvedPolicy, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 
-	c.Check(policy.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA1), IsNil)
+	c.Check(policy.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA1), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:                  pubKey,
@@ -1953,7 +2034,7 @@ func (s *policySuite) TestPolicyAuthorizeWithNoPolicyRef(c *C) {
 	approvedPolicy, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 
-	c.Check(policy.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, nil, key, crypto.SHA256), IsNil)
+	c.Check(policy.Authorize(rand.Reader, pubKey, nil, key, crypto.SHA256), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:                  pubKey,
@@ -1976,7 +2057,7 @@ func (s *policySuite) TestPolicyAuthorizePolicyNotFound(c *C) {
 	_, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 
-	c.Check(policy.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
+	c.Check(policy.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:            pubKey,
@@ -2006,18 +2087,13 @@ func (s *policySuite) TestPolicyAuthorizeInvalidSignature(c *C) {
 	_, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 
-	c.Check(policy.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
+	c.Check(policy.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:            pubKey,
 		policyRef:          []byte("foo"),
 		authorizedPolicies: []*Policy{policy}})
-	c.Check(err, ErrorMatches, `cannot run 'authorized policy' task in root branch: cannot complete authorization with authName=0x([[:xdigit:]]{68}), policyRef=0x666f6f: `+
-		`TPM returned an error for parameter 2 whilst executing command TPM_CC_VerifySignature: TPM_RC_SIGNATURE \(the signature is not valid\)`)
-
-	var e *tpm2.TPMParameterError
-	c.Assert(err, internal_testutil.ErrorAs, &e)
-	c.Check(e, DeepEquals, &tpm2.TPMParameterError{TPMError: &tpm2.TPMError{Command: tpm2.CommandVerifySignature, Code: tpm2.ErrorSignature}, Index: 2})
+	c.Check(err, ErrorMatches, `cannot run 'authorized policy' task in root branch: cannot complete authorization with authName=0x([[:xdigit:]]{68}), policyRef=0x666f6f: no policies`)
 
 	var ae *PolicyAuthorizationError
 	c.Assert(err, internal_testutil.ErrorAs, &ae)
@@ -2052,7 +2128,7 @@ func (s *policySuite) testPolicyAuthorizeWithSubPolicyBranches(c *C, path string
 	approvedPolicy, policy, err := builder.Policy()
 	c.Assert(err, IsNil)
 
-	c.Check(policy.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
+	c.Check(policy.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:                  pubKey,
@@ -2090,7 +2166,7 @@ func (s *policySuite) TestPolicyAuthorizeWithMultiplePolicies(c *C) {
 	builder.RootBranch().PolicyPCR(values)
 	_, policy1, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(policy1.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
+	c.Check(policy1.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
 
 	_, values, err = s.TPM.PCRRead(tpm2.PCRSelectionList{{Hash: tpm2.HashAlgorithmSHA256, Select: []int{0}}})
 	c.Assert(err, IsNil)
@@ -2099,7 +2175,7 @@ func (s *policySuite) TestPolicyAuthorizeWithMultiplePolicies(c *C) {
 	builder.RootBranch().PolicyPCR(values)
 	approvedPolicy, policy2, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(policy2.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
+	c.Check(policy2.Authorize(rand.Reader, pubKey, []byte("foo"), key, crypto.SHA256), IsNil)
 
 	err = s.testPolicyAuthorize(c, &testExecutePolicyAuthorizeData{
 		keySign:                  pubKey,
@@ -3911,13 +3987,13 @@ Q24QvsY89QC+L3a2SRfoRs+9jlcc13V7qOxbu2vnI0+Ql7VP4ePUfEQ0
 	builder.RootBranch().PolicyAuthValue()
 	_, authPolicy1, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(authPolicy1.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
+	c.Check(authPolicy1.Authorize(rand.Reader, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
 
 	builder = NewPolicyBuilder(tpm2.HashAlgorithmSHA256)
 	builder.RootBranch().PolicySecret(tpm2.MakeHandleName(tpm2.HandleOwner), []byte("bar"))
 	_, authPolicy2, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(authPolicy2.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
+	c.Check(authPolicy2.Authorize(rand.Reader, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
 
 	details, err := policy.Details(tpm2.HashAlgorithmNull, "", NewPolicyAuthorizedPolicies([]*Policy{authPolicy1, authPolicy2}, nil))
 	c.Check(err, IsNil)
@@ -3970,13 +4046,13 @@ Q24QvsY89QC+L3a2SRfoRs+9jlcc13V7qOxbu2vnI0+Ql7VP4ePUfEQ0
 	builder.RootBranch().PolicyAuthValue()
 	digest1, authPolicy1, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(authPolicy1.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
+	c.Check(authPolicy1.Authorize(rand.Reader, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
 
 	builder = NewPolicyBuilder(tpm2.HashAlgorithmSHA256)
 	builder.RootBranch().PolicySecret(tpm2.MakeHandleName(tpm2.HandleOwner), []byte("bar"))
 	digest2, authPolicy2, err := builder.Policy()
 	c.Assert(err, IsNil)
-	c.Check(authPolicy2.Authorize(rand.Reader, tpm2.HashAlgorithmSHA256, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
+	c.Check(authPolicy2.Authorize(rand.Reader, pub, []byte("foo"), key.(crypto.Signer), tpm2.HashAlgorithmSHA256), IsNil)
 
 	stringer := policy.Stringer(tpm2.HashAlgorithmNull, NewPolicyAuthorizedPolicies([]*Policy{authPolicy1, authPolicy2}, nil))
 	c.Check(stringer.String(), Equals, fmt.Sprintf(`