diff --git a/argon2.go b/argon2.go index 98c7d4b9..d747c787 100644 --- a/argon2.go +++ b/argon2.go @@ -105,7 +105,7 @@ type Argon2Options struct { Parallel uint8 } -func (o *Argon2Options) kdfParams(keyLen uint32) (*kdfParams, error) { +func (o *Argon2Options) kdfParams(defaultTargetDuration time.Duration, keyLen uint32) (*kdfParams, error) { switch o.Mode { case Argon2Default, Argon2i, Argon2id: // ok @@ -155,7 +155,7 @@ func (o *Argon2Options) kdfParams(keyLen uint32) (*kdfParams, error) { default: benchmarkParams := &argon2.BenchmarkParams{ MaxMemoryCostKiB: 1 * 1024 * 1024, // the default maximum memory cost is 1GiB. - TargetDuration: 2 * time.Second, // the default target duration is 2s. + TargetDuration: defaultTargetDuration, } if o.MemoryKiB != 0 { @@ -183,7 +183,7 @@ func (o *Argon2Options) kdfParams(keyLen uint32) (*kdfParams, error) { MemoryKiB: params.MemoryKiB, ForceIterations: params.Time, Parallel: params.Threads} - return o.kdfParams(keyLen) + return o.kdfParams(defaultTargetDuration, keyLen) } } diff --git a/argon2_test.go b/argon2_test.go index d55ef9fe..aae013a2 100644 --- a/argon2_test.go +++ b/argon2_test.go @@ -71,7 +71,7 @@ func (s *argon2Suite) SetUpTest(c *C) { s.AddCleanup(func() { SetArgon2KDF(origKdf) }) } -func (s *argon2Suite) checkParams(c *C, opts *Argon2Options, ncpus uint8, params *KdfParams) { +func (s *argon2Suite) checkParams(c *C, opts *Argon2Options, defaultTargetDuration time.Duration, ncpus uint8, params *KdfParams) { expectedMode := Argon2id if opts.Mode != Argon2Default { expectedMode = opts.Mode @@ -95,7 +95,7 @@ func (s *argon2Suite) checkParams(c *C, opts *Argon2Options, ncpus uint8, params } else { targetDuration := opts.TargetDuration if targetDuration == 0 { - targetDuration = 2 * time.Second + targetDuration = defaultTargetDuration } var kdf testutil.MockArgon2KDF duration, _ := kdf.Time(Argon2Default, &Argon2CostParams{ @@ -131,51 +131,60 @@ var _ = Suite(&argon2Suite{}) func (s *argon2Suite) TestKDFParamsDefault(c *C) { var opts Argon2Options - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2id) - s.checkParams(c, &opts, s.cpus, params) + s.checkParams(c, &opts, 2*time.Second, s.cpus, params) +} + +func (s *argon2Suite) TestKDFParamsDefaultWithDifferentTargetDuration(c *C) { + var opts Argon2Options + params, err := opts.KdfParams(200*time.Millisecond, 32) + c.Assert(err, IsNil) + c.Check(s.kdf.BenchmarkMode, Equals, Argon2id) + + s.checkParams(c, &opts, 200*time.Millisecond, s.cpus, params) } func (s *argon2Suite) TestKDFParamsExplicitMode(c *C) { var opts Argon2Options opts.Mode = Argon2i - params, err := opts.KdfParams(9) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2i) - s.checkParams(c, &opts, s.cpus, params) + s.checkParams(c, &opts, 2*time.Second, s.cpus, params) } func (s *argon2Suite) TestKDFParamsTargetDuration(c *C) { var opts Argon2Options opts.TargetDuration = 1 * time.Second - params, err := opts.KdfParams(32) + params, err := opts.KdfParams(2*time.Second, 32) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2id) - s.checkParams(c, &opts, s.cpus, params) + s.checkParams(c, &opts, 2*time.Second, s.cpus, params) } func (s *argon2Suite) TestKDFParamsMemoryLimit(c *C) { var opts Argon2Options opts.MemoryKiB = 32 * 1024 - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2id) - s.checkParams(c, &opts, s.cpus, params) + s.checkParams(c, &opts, 2*time.Second, s.cpus, params) } func (s *argon2Suite) TestKDFParamsForceBenchmarkedThreads(c *C) { var opts Argon2Options opts.Parallel = 1 - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2id) - s.checkParams(c, &opts, s.cpus, params) + s.checkParams(c, &opts, 2*time.Second, s.cpus, params) } func (s *argon2Suite) TestKDFParamsForceIterations(c *C) { @@ -184,11 +193,11 @@ func (s *argon2Suite) TestKDFParamsForceIterations(c *C) { var opts Argon2Options opts.ForceIterations = 3 - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2Default) - s.checkParams(c, &opts, 2, params) + s.checkParams(c, &opts, 2*time.Second, 2, params) } func (s *argon2Suite) TestKDFParamsForceMemory(c *C) { @@ -198,11 +207,11 @@ func (s *argon2Suite) TestKDFParamsForceMemory(c *C) { var opts Argon2Options opts.ForceIterations = 3 opts.MemoryKiB = 32 * 1024 - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2Default) - s.checkParams(c, &opts, 2, params) + s.checkParams(c, &opts, 2*time.Second, 2, params) } func (s *argon2Suite) TestKDFParamsForceIterationsDifferentCPUNum(c *C) { @@ -211,11 +220,11 @@ func (s *argon2Suite) TestKDFParamsForceIterationsDifferentCPUNum(c *C) { var opts Argon2Options opts.ForceIterations = 3 - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2Default) - s.checkParams(c, &opts, 4, params) + s.checkParams(c, &opts, 2*time.Second, 4, params) } func (s *argon2Suite) TestKDFParamsForceThreads(c *C) { @@ -225,11 +234,11 @@ func (s *argon2Suite) TestKDFParamsForceThreads(c *C) { var opts Argon2Options opts.ForceIterations = 3 opts.Parallel = 1 - params, err := opts.KdfParams(9) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2Default) - s.checkParams(c, &opts, 1, params) + s.checkParams(c, &opts, 2*time.Second, 1, params) } func (s *argon2Suite) TestKDFParamsForceThreadsGreatherThanCPUNum(c *C) { @@ -239,17 +248,17 @@ func (s *argon2Suite) TestKDFParamsForceThreadsGreatherThanCPUNum(c *C) { var opts Argon2Options opts.ForceIterations = 3 opts.Parallel = 8 - params, err := opts.KdfParams(0) + params, err := opts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) c.Check(s.kdf.BenchmarkMode, Equals, Argon2Default) - s.checkParams(c, &opts, 8, params) + s.checkParams(c, &opts, 2*time.Second, 8, params) } func (s *argon2Suite) TestKDFParamsInvalidForceIterations(c *C) { var opts Argon2Options opts.ForceIterations = math.MaxUint32 - _, err := opts.KdfParams(0) + _, err := opts.KdfParams(2*time.Second, 0) c.Check(err, ErrorMatches, `invalid iterations count 4294967295`) } @@ -257,7 +266,7 @@ func (s *argon2Suite) TestKDFParamsInvalidMemoryKiB(c *C) { var opts Argon2Options opts.ForceIterations = 4 opts.MemoryKiB = math.MaxUint32 - _, err := opts.KdfParams(0) + _, err := opts.KdfParams(2*time.Second, 0) c.Check(err, ErrorMatches, `invalid memory cost 4294967295KiB`) } diff --git a/export_test.go b/export_test.go index 2857b5d5..f734d3ce 100644 --- a/export_test.go +++ b/export_test.go @@ -21,6 +21,7 @@ package secboot import ( "io" + "time" "github.com/snapcore/secboot/internal/luks2" "github.com/snapcore/secboot/internal/luksview" @@ -40,12 +41,12 @@ type ( ProtectedKeys = protectedKeys ) -func (o *Argon2Options) KdfParams(keyLen uint32) (*KdfParams, error) { - return o.kdfParams(keyLen) +func (o *Argon2Options) KdfParams(defaultTargetDuration time.Duration, keyLen uint32) (*KdfParams, error) { + return o.kdfParams(defaultTargetDuration, keyLen) } -func (o *PBKDF2Options) KdfParams(keyLen uint32) (*KdfParams, error) { - return o.kdfParams(keyLen) +func (o *PBKDF2Options) KdfParams(defaultTargetDuration time.Duration, keyLen uint32) (*KdfParams, error) { + return o.kdfParams(defaultTargetDuration, keyLen) } func MockLUKS2Activate(fn func(string, string, []byte, int) error) (restore func()) { diff --git a/kdf.go b/kdf.go index 70fc9c6d..264fbc13 100644 --- a/kdf.go +++ b/kdf.go @@ -19,8 +19,10 @@ package secboot +import "time" + // KDFOptions is an interface for supplying options for different // key derivation functions type KDFOptions interface { - kdfParams(keyLen uint32) (*kdfParams, error) + kdfParams(defaultTargetDuration time.Duration, keyLen uint32) (*kdfParams, error) } diff --git a/keydata.go b/keydata.go index 728645d1..b1c663ae 100644 --- a/keydata.go +++ b/keydata.go @@ -30,6 +30,7 @@ import ( "fmt" "hash" "io" + "time" "github.com/snapcore/secboot/internal/pbkdf2" "golang.org/x/crypto/cryptobyte" @@ -125,6 +126,7 @@ type AuthMode uint8 const ( AuthModeNone AuthMode = iota AuthModePassphrase + AuthModePIN ) // KeyParams provides parameters required to create a new KeyData object. @@ -167,6 +169,15 @@ type KeyWithPassphraseParams struct { AuthKeySize int } +type KeyWithPINParams struct { + KeyParams + KDFOptions *PBKDF2Options // The PIN KDF options + + // AuthKeySize is the size of key to derive from the PIN for + // use by the platform implementation. + AuthKeySize int +} + // KeyID is the unique ID for a KeyData object. It is used to facilitate the // sharing of state between the early boot environment and OS runtime. type KeyID []byte @@ -302,6 +313,11 @@ type passphraseParams struct { AuthKeySize int `json:"auth_key_size"` // Size of auth key to derive from passphrase derived key } +type pinParams struct { + KDF kdfData `json:"kdf"` + AuthKeySize int `json:"auth_key_size"` +} + type keyData struct { // Generation is a number used to differentiate between different key formats. // i.e Gen1 keys are binary serialized and include a primary and an unlock key while @@ -336,6 +352,7 @@ type keyData struct { EncryptedPayload []byte `json:"encrypted_payload"` PassphraseParams *passphraseParams `json:"passphrase_params,omitempty"` + PINParams *pinParams `json:"pin_params,omitempty"` // AuthorizedSnapModels contains information about the Snap models // that have been authorized to access the data protected by this key. @@ -394,7 +411,9 @@ func (d *KeyData) derivePassphraseKeys(passphrase string) (key, iv, auth []byte, return nil, nil, nil, fmt.Errorf("unavailable leaf KDF digest algorithm %v", kdfAlg) } - // Include derivation parameters in the Argon2 salt in order to protect them + // Include derivation parameters in the KDF salt in order to protect them. + // Ideally the extra parameters would be part of Argon2's additional data, but + // the go package doesn't expose this. builder := cryptobyte.NewBuilder(nil) builder.AddASN1(cryptobyte_asn1.SEQUENCE, func(b *cryptobyte.Builder) { // SEQUENCE { b.AddASN1OctetString(params.KDF.Salt) // salt OCTET STRING @@ -467,6 +486,32 @@ func (d *KeyData) derivePassphraseKeys(passphrase string) (key, iv, auth []byte, return key, iv, auth, nil } +func (d *KeyData) derivePINAuthKey(pin PIN) ([]byte, error) { + if d.data.PINParams == nil { + return nil, errors.New("no PIN params") + } + + params := d.data.PINParams + if params.AuthKeySize < 0 { + return nil, fmt.Errorf("invalid auth key size (%d bytes)", params.AuthKeySize) + } + if params.KDF.Time < 0 { + return nil, fmt.Errorf("invalid KDF time (%d)", params.KDF.Time) + } + if params.KDF.Type != pbkdf2Type { + return nil, fmt.Errorf("unexpected KDF type \"%s\"", params.KDF.Type) + } + + pbkdfParams := &pbkdf2.Params{ + Iterations: uint(params.KDF.Time), + HashAlg: crypto.Hash(params.KDF.Hash), + } + if !pbkdfParams.HashAlg.Available() { + return nil, fmt.Errorf("unavailable pbkdf2 digest algorithm %v", pbkdfParams.HashAlg) + } + return pbkdf2.Key(string(pin.Bytes()), params.KDF.Salt, pbkdfParams, uint(params.AuthKeySize)), nil +} + func (d *KeyData) updatePassphrase(payload, oldAuthKey []byte, passphrase string) error { handler := handlers[d.data.PlatformName] if handler == nil { @@ -502,6 +547,26 @@ func (d *KeyData) updatePassphrase(payload, oldAuthKey []byte, passphrase string return nil } +func (d *KeyData) updatePIN(oldAuthKey []byte, pin PIN) error { + handler := handlers[d.data.PlatformName] + if handler == nil { + return ErrNoPlatformHandlerRegistered + } + + authKey, err := d.derivePINAuthKey(pin) + if err != nil { + return err + } + + handle, err := handler.ChangeAuthKey(d.platformKeyData(), oldAuthKey, authKey) + if err != nil { + return err + } + + d.data.PlatformHandle = handle + return nil +} + func (d *KeyData) openWithPassphrase(passphrase string) (payload []byte, authKey []byte, err error) { key, iv, authKey, err := d.derivePassphraseKeys(passphrase) if err != nil { @@ -594,6 +659,8 @@ func (d *KeyData) AuthMode() (out AuthMode) { switch { case d.data.PassphraseParams != nil: return AuthModePassphrase + case d.data.PINParams != nil: + return AuthModePIN default: return AuthModeNone } @@ -683,6 +750,29 @@ func (d *KeyData) RecoverKeysWithPassphrase(passphrase string) (DiskUnlockKey, P return d.recoverKeysCommon(c) } +func (d *KeyData) RecoverKeysWithPIN(pin PIN) (DiskUnlockKey, PrimaryKey, error) { + if d.AuthMode() != AuthModePIN { + return nil, nil, errors.New("cannot recover key with PIN") + } + + handler := handlers[d.data.PlatformName] + if handler == nil { + return nil, nil, ErrNoPlatformHandlerRegistered + } + + key, err := d.derivePINAuthKey(pin) + if err != nil { + return nil, nil, err + } + + c, err := handler.RecoverKeysWithAuthKey(d.platformKeyData(), d.data.EncryptedPayload, key) + if err != nil { + return nil, nil, processPlatformHandlerError(err) + } + + return d.recoverKeysCommon(c) +} + // ChangePassphrase updates the passphrase used to recover the keys from this key data // via the KeyData.RecoverKeysWithPassphrase API. This can only be called if a passhphrase // has been set previously (KeyData.AuthMode returns AuthModePassphrase). @@ -705,6 +795,23 @@ func (d *KeyData) ChangePassphrase(oldPassphrase, newPassphrase string) error { return nil } +func (d *KeyData) ChangePIN(oldPIN, newPIN PIN) error { + if d.AuthMode()&AuthModePIN == 0 { + return errors.New("cannot change PIN without setting an initial PIN") + } + + oldKey, err := d.derivePINAuthKey(oldPIN) + if err != nil { + return err + } + + if err := d.updatePIN(oldKey, newPIN); err != nil { + return processPlatformHandlerError(err) + } + + return nil +} + // WriteAtomic saves this key data to the supplied KeyDataWriter. func (d *KeyData) WriteAtomic(w KeyDataWriter) error { enc := json.NewEncoder(w) @@ -771,7 +878,7 @@ func NewKeyDataWithPassphrase(params *KeyWithPassphraseParams, passphrase string kdfOptions = &defaultOptions } - kdfParams, err := kdfOptions.kdfParams(passphraseKeyLen) + kdfParams, err := kdfOptions.kdfParams(2*time.Second, passphraseKeyLen) if err != nil { return nil, xerrors.Errorf("cannot derive KDF cost parameters: %w", err) } @@ -799,6 +906,47 @@ func NewKeyDataWithPassphrase(params *KeyWithPassphraseParams, passphrase string return kd, nil } +func NewKeyDataWithPIN(params *KeyWithPINParams, pin PIN) (*KeyData, error) { + kd, err := NewKeyData(¶ms.KeyParams) + if err != nil { + return nil, err + } + + kdfOptions := params.KDFOptions + if kdfOptions == nil { + var defaultOptions PBKDF2Options + kdfOptions = &defaultOptions + } + + if params.AuthKeySize < 0 { + return nil, errors.New("invalid auth key size") + } + + kdfParams, err := kdfOptions.kdfParams(200*time.Millisecond, uint32(params.AuthKeySize)) + if err != nil { + return nil, xerrors.Errorf("cannot derive KDF cost parameters: %w", err) + } + + var salt [16]byte + if _, err := rand.Read(salt[:]); err != nil { + return nil, xerrors.Errorf("cannot read salt: %w", err) + } + + kd.data.PINParams = &pinParams{ + KDF: kdfData{ + Salt: salt[:], + kdfParams: *kdfParams, + }, + AuthKeySize: params.AuthKeySize, + } + + if err := kd.updatePIN(make([]byte, params.AuthKeySize), pin); err != nil { + return nil, xerrors.Errorf("cannot set PIN: %w", err) + } + + return kd, nil +} + // protectedKeys is used to pack a primary key and a unique value from which // an unlock key is derived. type protectedKeys struct { diff --git a/keydata_test.go b/keydata_test.go index 03ba13a7..54ea1559 100644 --- a/keydata_test.go +++ b/keydata_test.go @@ -435,7 +435,7 @@ func (s *keyDataTestBase) checkKeyDataJSONDecodedAuthModePassphrase(c *C, j map[ kdfOpts = &def } - kdfParams, err := kdfOpts.KdfParams(0) + kdfParams, err := kdfOpts.KdfParams(2*time.Second, 0) c.Assert(err, IsNil) s.checkKeyDataJSONCommon(c, j, &creationParams.KeyParams, nmodels) diff --git a/pbkdf2.go b/pbkdf2.go index 1001cec6..e5c8584f 100644 --- a/pbkdf2.go +++ b/pbkdf2.go @@ -42,7 +42,7 @@ type PBKDF2Options struct { HashAlg crypto.Hash } -func (o *PBKDF2Options) kdfParams(keyLen uint32) (*kdfParams, error) { +func (o *PBKDF2Options) kdfParams(defaultTargetDuration time.Duration, keyLen uint32) (*kdfParams, error) { if keyLen > math.MaxInt32 { return nil, errors.New("invalid key length") } @@ -80,7 +80,7 @@ func (o *PBKDF2Options) kdfParams(keyLen uint32) (*kdfParams, error) { return params, nil default: - targetDuration := 2 * time.Second // the default target duration is 2s. + targetDuration := defaultTargetDuration hashAlg := defaultHashAlg if o.TargetDuration != 0 { @@ -98,6 +98,6 @@ func (o *PBKDF2Options) kdfParams(keyLen uint32) (*kdfParams, error) { o = &PBKDF2Options{ ForceIterations: uint32(iterations), HashAlg: hashAlg} - return o.kdfParams(keyLen) + return o.kdfParams(defaultTargetDuration, keyLen) } } diff --git a/pbkdf2_test.go b/pbkdf2_test.go index eb4acf5b..4a7027d8 100644 --- a/pbkdf2_test.go +++ b/pbkdf2_test.go @@ -59,21 +59,28 @@ func (s *pbkdf2Suite) checkParams(c *C, opts *PBKDF2Options, keyLen uint32, para func (s *pbkdf2Suite) TestKDFParamsDefault(c *C) { var opts PBKDF2Options - params, err := opts.KdfParams(32) + params, err := opts.KdfParams(2*time.Second, 32) + c.Assert(err, IsNil) + s.checkParams(c, &opts, 32, params) +} + +func (s *pbkdf2Suite) TestKDFParamsDefaultWithDifferentTargetDuration(c *C) { + var opts PBKDF2Options + params, err := opts.KdfParams(200*time.Millisecond, 32) c.Assert(err, IsNil) s.checkParams(c, &opts, 32, params) } func (s *pbkdf2Suite) TestKDFParamsDefault48(c *C) { var opts PBKDF2Options - params, err := opts.KdfParams(48) + params, err := opts.KdfParams(2*time.Second, 48) c.Assert(err, IsNil) s.checkParams(c, &opts, 48, params) } func (s *pbkdf2Suite) TestKDFParamsDefault64(c *C) { var opts PBKDF2Options - params, err := opts.KdfParams(64) + params, err := opts.KdfParams(2*time.Second, 64) c.Assert(err, IsNil) s.checkParams(c, &opts, 64, params) } @@ -81,7 +88,7 @@ func (s *pbkdf2Suite) TestKDFParamsDefault64(c *C) { func (s *pbkdf2Suite) TestKDFParamsTargetDuration(c *C) { var opts PBKDF2Options opts.TargetDuration = 200 * time.Millisecond - params, err := opts.KdfParams(32) + params, err := opts.KdfParams(2*time.Second, 32) c.Assert(err, IsNil) s.checkParams(c, &opts, 32, params) } @@ -89,7 +96,7 @@ func (s *pbkdf2Suite) TestKDFParamsTargetDuration(c *C) { func (s *pbkdf2Suite) TestKDFParamsForceIterations(c *C) { var opts PBKDF2Options opts.ForceIterations = 2000 - params, err := opts.KdfParams(32) + params, err := opts.KdfParams(2*time.Second, 32) c.Assert(err, IsNil) s.checkParams(c, &opts, 32, params) } @@ -97,7 +104,7 @@ func (s *pbkdf2Suite) TestKDFParamsForceIterations(c *C) { func (s *pbkdf2Suite) TestKDFParamsCustomHash(c *C) { var opts PBKDF2Options opts.HashAlg = crypto.SHA512 - params, err := opts.KdfParams(32) + params, err := opts.KdfParams(2*time.Second, 32) c.Assert(err, IsNil) s.checkParams(c, &opts, 32, params) } diff --git a/pin.go b/pin.go new file mode 100644 index 00000000..e4a16e0b --- /dev/null +++ b/pin.go @@ -0,0 +1,63 @@ +// -*- Mode: Go; indent-tabs-mode: t -*- + +/* + * Copyright (C) 2024 Canonical Ltd + * + * This program is free software: you can redistribute it and/or modify + * it under the terms of the GNU General Public License version 3 as + * published by the Free Software Foundation. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program. If not, see . + * + */ + +package secboot + +import ( + "errors" + "fmt" + "math" + "math/big" +) + +type PIN struct { + length uint8 // the length of the input PIN. This is *not* the length of the encoded binary number + value big.Int // the PIN value. This is encoded in big-endian form without leading zeroes. +} + +func ParsePIN(s string) (PIN, error) { + l := len(s) + if l > math.MaxUint8 { + return PIN{}, errors.New("invalid PIN: too long") + } + + val, ok := new(big.Int).SetString(s, 10) + if !ok { + return PIN{}, errors.New("invalid PIN") + } + + return PIN{ + length: uint8(l), + value: *val, + }, nil +} + +func (p PIN) String() string { + return fmt.Sprintf("%0*s", p.length, p.value.String()) +} + +func (p PIN) Bytes() []byte { + maxS := make([]byte, p.length) + for i := range maxS { + maxS[i] = '9' + } + max, _ := new(big.Int).SetString(string(maxS), 10) + b := make([]byte, len(max.Bytes())) + return append([]byte{p.length}, p.value.FillBytes(b)...) +} diff --git a/pin_test.go b/pin_test.go new file mode 100644 index 00000000..1097425a --- /dev/null +++ b/pin_test.go @@ -0,0 +1,79 @@ +package secboot_test + +import ( + . "github.com/snapcore/secboot" + "github.com/snapcore/secboot/internal/testutil" + + . "gopkg.in/check.v1" +) + +type pinSuite struct{} + +var _ = Suite(&pinSuite{}) + +func (s *pinSuite) TestPIN(c *C) { + pin, err := ParsePIN("1234") + c.Assert(err, IsNil) + + c.Check(pin.String(), Equals, "1234") + c.Check(pin.Bytes(), DeepEquals, testutil.DecodeHexString(c, "0404d2")) +} + +func (s *pinSuite) TestPINZeroPaddedIsDifferent(c *C) { + pin, err := ParsePIN("00001234") + c.Assert(err, IsNil) + + c.Check(pin.String(), Equals, "00001234") + c.Check(pin.Bytes(), DeepEquals, testutil.DecodeHexString(c, "08000004d2")) +} + +func (s *pinSuite) TestPIN2(c *C) { + pin, err := ParsePIN("12345678") + c.Assert(err, IsNil) + + c.Check(pin.String(), Equals, "12345678") + c.Check(pin.Bytes(), DeepEquals, testutil.DecodeHexString(c, "0800bc614e")) +} + +func (s *pinSuite) TestPIN3(c *C) { + pin, err := ParsePIN("00000000") + c.Assert(err, IsNil) + + c.Check(pin.String(), Equals, "00000000") + c.Check(pin.Bytes(), DeepEquals, testutil.DecodeHexString(c, "0800000000")) +} + +func (s *pinSuite) TestPIN4(c *C) { + pin, err := ParsePIN("99999999") + c.Assert(err, IsNil) + + c.Check(pin.String(), Equals, "99999999") + c.Check(pin.Bytes(), DeepEquals, testutil.DecodeHexString(c, "0805f5e0ff")) +} + +func (s *pinSuite) TestPINLongest(c *C) { + pin, err := ParsePIN("1234567812345678123456781234567812345678123456781234567812345678" + + "12345678123456781234567812345678123456781234567812345678123456781234567812345678" + + "12345678123456781234567812345678123456781234567812345678123456781234567812345678" + + "1234567812345678123456781234567") + c.Assert(err, IsNil) + + c.Check(pin.String(), Equals, "1234567812345678123456781234567812345678123456781234567812345678"+ + "12345678123456781234567812345678123456781234567812345678123456781234567812345678"+ + "12345678123456781234567812345678123456781234567812345678123456781234567812345678"+ + "1234567812345678123456781234567") + c.Check(pin.Bytes(), DeepEquals, testutil.DecodeHexString(c, "ff10d6ce8940392078ffd0aa1ced339ebd632df03586ebc7a964a198aa06dfecf4417552290933dd874c2e00f55ea5ba5c1d4bea13735a8c5fc9edfbdb473a2df4dda455f0c098d6c0d592a7cb42a5383e7b9a34b3d5b8ccde89851ecf645becf69d528a2af48c8b923187")) +} + +func (s *pinSuite) TestPINTooLong(c *C) { + _, err := ParsePIN("1234567812345678123456781234567812345678123456781234567812345678" + + "12345678123456781234567812345678123456781234567812345678123456781234567812345678" + + "12345678123456781234567812345678123456781234567812345678123456781234567812345678" + + "12345678123456781234567812345678") + c.Check(err, ErrorMatches, `invalid PIN: too long`) +} + +func (s *pinSuite) TestPINInvalidChars(c *C) { + _, err := ParsePIN("1234abc") + c.Check(err, ErrorMatches, `invalid PIN`) +}