Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

IOSC additions and fixes #5598

Merged
merged 8 commits into from Jun 12, 2017
Merged

IOSC additions and fixes #5598

merged 8 commits into from Jun 12, 2017

Conversation

leoetlino
Copy link
Member

A set of additions and fixes to IOSC that will be used in a follow-up PR. Split from a branch to make reviewing easier.

  • Add structures for certificates and signatures.
  • Clearer handle checks.
  • Add support for the root key handle.
  • Implement VerifyPublicKeySign and ImportCertificate.
  • Fix ImportPublicKey to work with RSA public keys.

BhaaLseN
BhaaLseN reviewed Jun 12, 2017
View reviewed changes
Source/Core/Core/IOS/IOSC.cpp Outdated
}
case SUBTYPE_ECC233:
ERROR_LOG(IOS, "VerifyPublicKeySign: SUBTYPE_ECC233 is unimplemented");
// Fallthrough intended.

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

Source/Core/Core/IOS/IOSC.cpp Outdated

mbedtls_mpi_read_binary(&rsa.N, entry->data.data(), entry->data.size());
mbedtls_mpi_read_binary(&rsa.E, entry->misc_data.data(), entry->misc_data.size());
rsa.len = (mbedtls_mpi_bitlen(&rsa.N) + 7) >> 3;

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

Source/Core/Core/IOS/IOSC.h Outdated
@@ -171,8 +171,9 @@ class IOSC final
// Import a secret, encrypted key into dest_handle, which will be decrypted using decrypt_handle.
ReturnCode ImportSecretKey(Handle dest_handle, Handle decrypt_handle, u8* iv,
const u8* encrypted_key, u32 pid);
// Import a public key.
ReturnCode ImportPublicKey(Handle dest_handle, const u8* public_key, u32 pid);
// Import a public key. public_key_exponent should be passed for RSA keys.

This comment was marked as off-topic.

Sign in to view

Source/Core/Core/IOS/ES/Formats.cpp
reinterpret_cast<const char*>(m_bytes.data() + offsetof(Ticket, signature_issuer));
return std::string(bytes, strnlen(bytes, sizeof(Ticket::signature_issuer)));
reinterpret_cast<const char*>(m_bytes.data() + offsetof(Ticket, signature.issuer));
return std::string(bytes, strnlen(bytes, sizeof(Ticket::signature.issuer)));

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

Source/Core/Core/IOS/IOSC.h Outdated
SignatureRSA4096 signature;
CertHeader header;
// 0x100, not 0x200 bytes.
u8 public_key[0x100];

This comment was marked as off-topic.

Sign in to view

Source/Core/Core/IOS/IOSC.h Outdated
SignatureType type;
u8 sig[0x200];
u8 fill[60];
char issuer[0x40];

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

@leoetlino
IOSC: Add structures for certificates and signatures
acf150d
@leoetlino
IOSC: Replace direct access to entries with getter
d4f501b 
Makes it slightly less likely to forget a check and end up doing an
out-of-bounds access. Also makes it obvious that we *are* indeed
checking whether the handle is valid, instead of hiding it in
HasOwnership (which won't handle the root key handle case properly).
@leoetlino
IOSC: Add storage for key misc data
8859bc9 
Will be used to store the exponent for RSA keys.
@leoetlino
IOSC: Add entry for the root key handle
a0392db 
It contains a RSA4096 public key used to validate all other
Nintendo certificates.
@leoetlino
IOSC: Implement VerifyPublicKeySign
965773b 
Partial implementation which doesn't support ECC stuff, but good enough
for our purposes.
lioncash
lioncash reviewed Jun 12, 2017
View reviewed changes
Source/Core/Core/IOS/IOSC.h
};
static_assert(sizeof(CertRSA2048) == 0x300, "Wrong size for CertRSA2048");

union Cert

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

Source/Core/Core/IOS/IOSC.cpp
@@ -22,6 +26,23 @@ namespace IOS
{
namespace HLE
{
const std::map<std::pair<IOSC::ObjectType, IOSC::ObjectSubType>, size_t> s_type_to_size_map = {{

This comment was marked as off-topic.

Sign in to view

This comment was marked as off-topic.

Sign in to view

@leoetlino
IOSC: Implement GetSizeForType
2eccd45 
Avoids duplicating sizes everywhere.
@leoetlino
IOSC: Fix ImportPublicKey to work with other public key types
1a8144c
@leoetlino
IOSC: Implement ImportCertificate
4a35372 
Same as VerifyPublicKeySign, we currently only support RSA keys
(which is all we need right now).
@leoetlino leoetlino merged commit 9b8feb8 into dolphin-emu:master Jun 12, 2017
@leoetlino leoetlino deleted the iosc-fixes branch June 12, 2017 19:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lioncash lioncash lioncash left review comments

@BhaaLseN BhaaLseN BhaaLseN approved these changes

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
3 participants
@leoetlino @lioncash @BhaaLseN