clamav/libclamav/crtmgr.h

/*
 *  Copyright (C) 2013-2025 Cisco Systems, Inc. and/or its affiliates. All rights reserved.
 *  Copyright (C) 2011-2013 Sourcefire, Inc.
 *
 *  Authors: aCaB
 *
 *  This program is free software; you can redistribute it and/or modify
 *  it under the terms of the GNU General Public License version 2 as
 *  published by the Free Software Foundation.
 *
 *  This program is distributed in the hope that it will be useful,
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 *  GNU General Public License for more details.
 *
 *  You should have received a copy of the GNU General Public License
 *  along with this program; if not, write to the Free Software
 *  Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
 *  MA 02110-1301, USA.
 */

#ifndef __CRTMGR_H
#define __CRTMGR_H

#include <time.h>
#include <stdbool.h>
#include <openssl/bn.h>

typedef enum { CLI_HASHTYPE_ANY, /* used by crts added from .CRB rules */
               CLI_SHA1RSA,
               CLI_MD5RSA,
               CLI_MD2RSA,
               CLI_RSA,
               CLI_SHA256RSA,
               CLI_SHA384RSA,
               CLI_SHA512RSA } cli_crt_hashtype;
typedef enum { VRFY_CODE,
               VRFY_TIME } cli_vrfy_type;

#ifndef CRT_RAWMAXLEN
#define CRT_RAWMAXLEN 64
#endif

/* If CRT_RAWMAXLEN is > 256 it will break the way raw data is stored. If
   larger values are needed, we will need to update the code (ex: look at
   map_raw) */
#if CRT_RAWMAXLEN > 256
#error CRT_RAWMAXLEN cannot be greater than 256
#endif

typedef struct cli_crt_t {
    char *name;
    uint8_t raw_subject[CRT_RAWMAXLEN];
    uint8_t raw_issuer[CRT_RAWMAXLEN];
    uint8_t raw_serial[CRT_RAWMAXLEN];
    uint8_t subject[SHA1_HASH_SIZE];
    uint8_t issuer[SHA1_HASH_SIZE];
    uint8_t serial[SHA1_HASH_SIZE];
    /* The serial hash is an optional CRB field, so ignore_serial will be
     * set for certs backing CRB rules where this is the case */
    int ignore_serial;
    /* tbshash holds the hash we'll use for verification with data in the sig,
     * so it must have at least enough space for the largest hash in
     * cli_crt_hashtype */
    uint8_t tbshash[SHA512_HASH_SIZE];
    BIGNUM *n;
    BIGNUM *e;
    BIGNUM *sig;
    int64_t not_before;
    int64_t not_after;
    cli_crt_hashtype hashtype;
    int certSign;
    int codeSign;
    int timeSign;
    int isBlocked;
    struct cli_crt_t *prev;
    struct cli_crt_t *next;
} cli_crt;

typedef struct {
    cli_crt *crts;
    unsigned int items;
} crtmgr;

int cli_crt_init(cli_crt *x509);
void cli_crt_clear(cli_crt *x509);
void crtmgr_init(crtmgr *m);
void crtmgr_free(crtmgr *m);
bool crtmgr_add(crtmgr *m, cli_crt *x509);
cli_crt *crtmgr_lookup(crtmgr *m, cli_crt *x509);
cli_crt *crtmgr_block_list_lookup(crtmgr *m, cli_crt *x509);
cli_crt *crtmgr_trust_list_lookup(crtmgr *m, cli_crt *x509, int crb_crts_only);
void crtmgr_del(crtmgr *m, cli_crt *x509);
cli_crt *crtmgr_verify_crt(crtmgr *m, cli_crt *x509);
cli_crt *crtmgr_verify_pkcs7(crtmgr *m, const uint8_t *issuer, const uint8_t *serial, const void *signature, unsigned int signature_len, cli_crt_hashtype hashtype, const uint8_t *refhash, cli_vrfy_type vrfytype);
int crtmgr_add_roots(struct cl_engine *engine, crtmgr *m, int exclude_bl_crts);

#endif
readd (broken) support for emb cats 2011-12-29 19:39:19 +01:00			`/*`
Bump copyright dates for 2025 2025-02-14 10:24:30 -05:00			`* Copyright (C) 2013-2025 Cisco Systems, Inc. and/or its affiliates. All rights reserved.`
Updating and cleaning up copyright notices. 2019-01-25 10:15:50 -05:00			`* Copyright (C) 2011-2013 Sourcefire, Inc.`
readd (broken) support for emb cats 2011-12-29 19:39:19 +01:00			`*`
			`* Authors: aCaB`
			`*`
			`* This program is free software; you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License version 2 as`
			`* published by the Free Software Foundation.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program; if not, write to the Free Software`
			`* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,`
			`* MA 02110-1301, USA.`
			`*/`

add crtmgr 2011-12-21 19:52:34 +01:00			`#ifndef __CRTMGR_H`
			`#define __CRTMGR_H`

			`#include <time.h>`
libclamav: Use OpenSSL' BN instead tomfastmath. Use OpenSSL's big number/ multiprecision integer arithmetics functionality to replace tomfastmath. This is a first shot at doing just this. Further improvement could be use more RSA-signature verification from OpenSSL in crtmgr_rsa_verify() and less self parsing. _padding_check_PKCS1_type_1() has been borrowed from OpenSSL to make further replacments easier. Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc> 2023-02-18 10:47:53 +01:00			`#include <stdbool.h>`
			`#include <openssl/bn.h>`
add crtmgr 2011-12-21 19:52:34 +01:00
Add ability to whitelist leaf certificates 2019-02-13 14:29:40 -05:00			`typedef enum { CLI_HASHTYPE_ANY, /* used by crts added from .CRB rules */`
			`CLI_SHA1RSA,`
clang-format'd using new .clang-format rules. 2018-12-03 12:40:13 -05:00			`CLI_MD5RSA,`
			`CLI_MD2RSA,`
			`CLI_RSA,`
			`CLI_SHA256RSA,`
			`CLI_SHA384RSA,`
			`CLI_SHA512RSA } cli_crt_hashtype;`
			`typedef enum { VRFY_CODE,`
			`VRFY_TIME } cli_vrfy_type;`
add crtmgr 2011-12-21 19:52:34 +01:00
Add support for cert blacklisting and whitelisting upfront Instead of checking the Authenticode header as an FP prevention mechanism, we now check it in the beginning if it exists. Also, we can now do actual blacklisting with .crb rules (previously, a blacklist rule just let you override a whitelist rule). 2019-02-12 15:10:04 -05:00			`#ifndef CRT_RAWMAXLEN`
libclamav: prints raw certificate metadata 2016-03-23 15:28:51 -04:00			`#define CRT_RAWMAXLEN 64`
Add support for cert blacklisting and whitelisting upfront Instead of checking the Authenticode header as an FP prevention mechanism, we now check it in the beginning if it exists. Also, we can now do actual blacklisting with .crb rules (previously, a blacklist rule just let you override a whitelist rule). 2019-02-12 15:10:04 -05:00			`#endif`

Handle two more Authenticode parsing edge cases Certs can omit the boolean field in the Basic Constraints section, since the RFC specifies a default value for this field. This fixes the following error: LibClamAV debug: asn1_expect_objtype: expected type 01, got 02 LibClamAV debug: asn1_get_x509: An error occurred when parsing x509 extensions LibClamAV debug: asn1_parse_mscat: skipping x509 certificate with errors Ex: 05de45fd6a406dc147a4c8040a54eee947cd6eba02f28c0279ffd1a229e17130 Allow UTCDate fields in x509 certs to omit the seconds. Technically this is disallowed by RFC5280, but Windows Authenticode verification routines don't seem to mind it, so we'll allow it too. This fixes the following error: LibClamAV debug: asn1_getnum: expecting digits, found 'Z' LibClamAV debug: asn1_get_time: invalid second 4294967295 LibClamAV debug: asn1_get_x509: unable to extract the notBefore time LibClamAV debug: asn1_parse_mscat: skipping x509 certificate with errors Ex: d577010638f208ad8b6dab1a33dc583b2ec6b0c719021fb9f083dd595ede27e8 Also, add a check on CRT_RAWMAXLEN, since if it's > 256 problems will arise 2019-11-12 19:32:19 -08:00			`/* If CRT_RAWMAXLEN is > 256 it will break the way raw data is stored. If`
			`larger values are needed, we will need to update the code (ex: look at`
			`map_raw) */`
			`#if CRT_RAWMAXLEN > 256`
			`#error CRT_RAWMAXLEN cannot be greater than 256`
			`#endif`

crtmgr_add 2011-12-21 22:52:46 +01:00			`typedef struct cli_crt_t {`
Print name of authenticode certificate revocation entry when in debug mode 2013-02-19 09:24:19 -05:00			`char *name;`
libclamav: prints raw certificate metadata 2016-03-23 15:28:51 -04:00			`uint8_t raw_subject[CRT_RAWMAXLEN];`
			`uint8_t raw_issuer[CRT_RAWMAXLEN];`
			`uint8_t raw_serial[CRT_RAWMAXLEN];`
add crtmgr 2011-12-21 19:52:34 +01:00			`uint8_t subject[SHA1_HASH_SIZE];`
			`uint8_t issuer[SHA1_HASH_SIZE];`
is this faster?! 2012-01-09 14:20:05 +01:00			`uint8_t serial[SHA1_HASH_SIZE];`
Ignore e for whitelist CRBs, allow blank serials The previous commit allowed a CRB cert's exponent to be ignored when evaluating blacklist rules, but this commit also allows the exponent to be ignored for whitelist rules as well. Also, previous versions of ClamAV allowed the serial number hash field in a CRB rule to be blank, effectively wildcarding the serial number. This functionality broke with some of the changes introduced in 0.102.0, so this commit addresses that. 2019-11-01 17:07:54 -04:00			`/* The serial hash is an optional CRB field, so ignore_serial will be`
			`* set for certs backing CRB rules where this is the case */`
			`int ignore_serial;`
[WIP] Add support for SHA256 signatures Everything should be working, but I'm having a hard time finding a binary to test with that doesn't encounter other parsing issues (no countersignature, extra data in the unauthenticatedAttributes section, etc.) 2018-08-23 11:37:40 -04:00			`/* tbshash holds the hash we'll use for verification with data in the sig,`
			`* so it must have at least enough space for the largest hash in`
			`* cli_crt_hashtype */`
Update tbshash to have enough space for SHA512 hashes 2018-09-13 15:00:34 -04:00			`uint8_t tbshash[SHA512_HASH_SIZE];`
libclamav: Use OpenSSL' BN instead tomfastmath. Use OpenSSL's big number/ multiprecision integer arithmetics functionality to replace tomfastmath. This is a first shot at doing just this. Further improvement could be use more RSA-signature verification from OpenSSL in crtmgr_rsa_verify() and less self parsing. _padding_check_PKCS1_type_1() has been borrowed from OpenSSL to make further replacments easier. Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc> 2023-02-18 10:47:53 +01:00			`BIGNUM *n;`
			`BIGNUM *e;`
			`BIGNUM *sig;`
Fix unit test caused by expiring signing certificate The clamscan test "assorted_test.py::TC::test_pe_cert_trust" is about to fail because the "test.exe" test file was signed with a cert set to expire after only 2 years, and it has been 23 months. While attempting to generate a new one that will last 73000 days (200 years), I discovered that any signing certificate set to expire after 2038 will fail the trust-check because the `ca.not_after` variable is maxed out `time_t` incapable of expressing a higher number. To fix this, I've upgraded the variables to `uint64_t`. I also had to replace a bunch of generated signatures to match the new "test.exe". Finally, I noticed that "ca.not_before" was being set to the token[8] instead of token[9], which presumably mean the "NotBefore" field for Trusted and Revoked Certificates was non-functional, as it was treating the "CertSign" boolean as the "NotBefore" value. Fixes: https://github.com/Cisco-Talos/clamav/issues/1300 2024-07-10 16:26:00 -04:00			`int64_t not_before;`
			`int64_t not_after;`
add crtmgr 2011-12-21 19:52:34 +01:00			`cli_crt_hashtype hashtype;`
parse usage related extensions 2012-01-05 19:20:34 +01:00			`int certSign;`
			`int codeSign;`
			`int timeSign;`
Blacklist & Whitelist verbiage Improvements to use modern block list and allow list verbiage. blacklist -> block list whitelist -> allow listed blacklisted -> blocked whitelisted -> allowed In the case of certificate verification, use "trust" or "verify" when something is allowed. Also changed domainlist -> domain list (or DomainList) to match. 2021-05-27 13:15:52 -07:00			`int isBlocked;`
crtmgr_add 2011-12-21 22:52:46 +01:00			`struct cli_crt_t *prev;`
			`struct cli_crt_t *next;`
add crtmgr 2011-12-21 19:52:34 +01:00			`} cli_crt;`

crtmgr_add 2011-12-21 22:52:46 +01:00			`typedef struct {`
			`cli_crt *crts;`
TL;DR: a bunch of stuff 2011-12-25 03:49:38 +01:00			`unsigned int items;`
crtmgr_add 2011-12-21 22:52:46 +01:00			`} crtmgr;`

libclamav: Use OpenSSL' BN instead tomfastmath. Use OpenSSL's big number/ multiprecision integer arithmetics functionality to replace tomfastmath. This is a first shot at doing just this. Further improvement could be use more RSA-signature verification from OpenSSL in crtmgr_rsa_verify() and less self parsing. _padding_check_PKCS1_type_1() has been borrowed from OpenSSL to make further replacments easier. Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc> 2023-02-18 10:47:53 +01:00			`int cli_crt_init(cli_crt *x509);`
add crtmgr 2011-12-21 19:52:34 +01:00			`void cli_crt_clear(cli_crt *x509);`
TL;DR: a bunch of stuff 2011-12-25 03:49:38 +01:00			`void crtmgr_init(crtmgr *m);`
embedded authenticode verification 2011-12-30 16:07:53 +01:00			`void crtmgr_free(crtmgr *m);`
libclamav: Use OpenSSL' BN instead tomfastmath. Use OpenSSL's big number/ multiprecision integer arithmetics functionality to replace tomfastmath. This is a first shot at doing just this. Further improvement could be use more RSA-signature verification from OpenSSL in crtmgr_rsa_verify() and less self parsing. _padding_check_PKCS1_type_1() has been borrowed from OpenSSL to make further replacments easier. Signed-off-by: Sebastian Andrzej Siewior <sebastian@breakpoint.cc> 2023-02-18 10:47:53 +01:00			`bool crtmgr_add(crtmgr m, cli_crt x509);`
add md5rsa verification 2011-12-22 22:36:47 +01:00			`cli_crt crtmgr_lookup(crtmgr m, cli_crt *x509);`
Blacklist & Whitelist verbiage Improvements to use modern block list and allow list verbiage. blacklist -> block list whitelist -> allow listed blacklisted -> blocked whitelisted -> allowed In the case of certificate verification, use "trust" or "verify" when something is allowed. Also changed domainlist -> domain list (or DomainList) to match. 2021-05-27 13:15:52 -07:00			`cli_crt crtmgr_block_list_lookup(crtmgr m, cli_crt *x509);`
			`cli_crt crtmgr_trust_list_lookup(crtmgr m, cli_crt *x509, int crb_crts_only);`
TL;DR: a bunch of stuff 2011-12-25 03:49:38 +01:00			`void crtmgr_del(crtmgr m, cli_crt x509);`
Restrict child cert key usages to those of the parent 2012-01-06 22:17:59 +01:00			`cli_crt crtmgr_verify_crt(crtmgr m, cli_crt *x509);`
few fixmes on cat manager 2012-01-12 19:26:37 +01:00			`cli_crt crtmgr_verify_pkcs7(crtmgr m, const uint8_t issuer, const uint8_t serial, const void signature, unsigned int signature_len, cli_crt_hashtype hashtype, const uint8_t refhash, cli_vrfy_type vrfytype);`
Add ability to whitelist leaf certificates 2019-02-13 14:29:40 -05:00			`int crtmgr_add_roots(struct cl_engine engine, crtmgr m, int exclude_bl_crts);`
crtmgr_add 2011-12-21 22:52:46 +01:00
add crtmgr 2011-12-21 19:52:34 +01:00			`#endif`