Skip to content

CAdES: implement CAdES-BES signed attributes validation #8098

Closed
FdaSilvaYY wants to merge 6 commits intoopenssl:masterfrom
FdaSilvaYY:add-cades-verify
Closed

CAdES: implement CAdES-BES signed attributes validation #8098
FdaSilvaYY wants to merge 6 commits intoopenssl:masterfrom
FdaSilvaYY:add-cades-verify

Conversation

@FdaSilvaYY
Copy link
Contributor

@FdaSilvaYY FdaSilvaYY commented Jan 27, 2019
edited
Loading

CAdES-BES Signature Validation feature following #7893.

The core validation code comes from PR #771. this PR mostly shared and reuse its code.

Checklist
  • documentation is added or updated
  • tests are added or updated

@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 2 times, most recently from 1b03cee to 19626ad Compare January 28, 2019 00:08
@mspncp mspncp mentioned this pull request Jan 28, 2019
Closed
2 tasks
levitte
levitte requested changes Jan 28, 2019
View reviewed changes
Copy link
Member

@levitte levitte left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

First quick read

@levitte
Copy link
Member

levitte commented Jan 28, 2019

Apart from my comment, can you have a look at Travis and figure out what's going on? Them are a few too many unresolved symbols for my comfort...

@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 2 times, most recently from 2584aa5 to f4cb69e Compare January 28, 2019 21:31
@FdaSilvaYY
Copy link
Contributor Author

FdaSilvaYY commented Jan 28, 2019

Apart from my comment, can you have a look at Travis and figure out what's going on? Them are a few too many unresolved symbols for my comfort...

Fully fixed, I should not edit my code so late ;)
CI's are Green.

@maxcuttins
Copy link

maxcuttins commented Feb 17, 2019

any news about this?

@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 2 times, most recently from b20fafe to 53c49de Compare February 17, 2019 18:54
@FdaSilvaYY
Copy link
Contributor Author

FdaSilvaYY commented Feb 17, 2019
edited
Loading

@maxcuttins : needs a bit of documents about the two added methods.
May be it is possible to get the signed attributes in a more fashion way .
Otherwise, the core changes are here.
I rebased this PR on top of #8117 to ease the merge.

@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 2 times, most recently from fb5c13b to 404e7f3 Compare February 19, 2019 19:49
@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 2 times, most recently from 288d872 to 40ad55c Compare April 4, 2019 20:13
@FdaSilvaYY FdaSilvaYY changed the title CAdes: implement CAdES-BES signed attributes validation CAdES: implement CAdES-BES signed attributes validation May 25, 2019
@FdaSilvaYY FdaSilvaYY mentioned this pull request May 25, 2019
Closed
2 tasks
@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 3 times, most recently from 02258ec to 739f0d1 Compare May 25, 2019 18:59
@FdaSilvaYY
Copy link
Contributor Author

FdaSilvaYY commented May 25, 2019

Ping @slontis : suggested tests added.

@slontis
Copy link
Member

slontis commented May 27, 2019

Is this PR dependant on PR #8117 or should #8117 just be closed?

slontis
slontis reviewed May 27, 2019
View reviewed changes
@slontis
Copy link
Member

slontis commented May 27, 2019

Just a general comment about the generated files..
I have started keeping a seperate commit for the generated files (since they quite often need to be updated when other PR's are merged). That way you can then

  • rebase and then remove the generated files commit
  • make update and then add the generated files again and commit.

slontis
slontis reviewed May 27, 2019
View reviewed changes
@FdaSilvaYY FdaSilvaYY force-pushed the add-cades-verify branch 2 times, most recently from 60589f2 to eea4f13 Compare May 10, 2020 19:26
@FdaSilvaYY
Copy link
Contributor Author

FdaSilvaYY commented May 11, 2020

Fully rebased. CI are all green.
Just need to think a bit more about no-ts, no-cms interaction with these changes.

@opensignature
Copy link
Contributor

opensignature commented May 17, 2020

with make test TESTS=test_x509 V=1
there is this error:
crypto/pem/pvkfmt.c:42:18: runtime error: left shift of 137 by 24 places cannot be represented in type 'int'

@mspncp
Copy link
Contributor

mspncp commented May 17, 2020

with make test TESTS=test_x509 V=1
there is this error:
crypto/pem/pvkfmt.c:42:18: runtime error: left shift of 137 by 24 places cannot be represented in type 'int'

Thanks @opensignature. @FdaSilvaYY already reported this issue in #11853.

t8m
t8m requested changes May 19, 2020
View reviewed changes
Copy link
Member

@t8m t8m left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some minor things to resolve.

crypto/cms/cms_smime.c Outdated
Copy link
Member

@t8m t8m May 19, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nit: It is weird to "optimize" boolean value into unsigned char. The int type is usually used in place of boolean throughout the OpenSSL code. Also I would slightly prefer using (flags & CMS_CADES) != 0 instead of the ? operator.

crypto/cms/cms_smime.c Outdated
Copy link
Member

@t8m t8m May 19, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Optional: at this point scount == sk_CMS_SignerInfo_num(sinfos) so you could use scount here to optimize.

crypto/ess/ess_lib.c Outdated
Copy link
Member

@t8m t8m May 19, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Would it make sense to just return ASN1_INTEGER_cmp(is->serial, X509_get_serialNumber((X509 *)cert)); here?

crypto/ess/ess_lib.c Outdated
Copy link
Member

@t8m t8m May 19, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This was now changed. You can also use X509v3_cache_extensions() directly.

crypto/ess/ess_lib.c Outdated
Copy link
Member

@t8m t8m May 19, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This will require change to use fetch. Perhaps just mark with TODO 3.0.

crypto/ess/ess_lib.c Outdated
Copy link
Member

@t8m t8m May 19, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This will have to be changed for 3.0 to use fetch. Please add TODO 3.0 comment.

Copy link
Contributor Author

@FdaSilvaYY FdaSilvaYY May 22, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

fixed !

bernd-edlinger
bernd-edlinger reviewed May 22, 2020
View reviewed changes
crypto/ess/ess_lib.c Outdated
Copy link
Member

@bernd-edlinger bernd-edlinger May 22, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think that X509_digest should do this automatically.

FdaSilvaYY added 6 commits May 23, 2020 18:52
@FdaSilvaYY
crypto/cms: add CAdES-BES signed attributes validation
244fc82 
for signing certificate V2 and signing certificate extensions.

CAdES : lowercase name for now internal methods.
@FdaSilvaYY
crypto/cms: generated file changes.
7e5e002 
about the two new added methods and two new error codes.
@FdaSilvaYY
Style nit fix, plus arguments constification.
9cb05d7
@FdaSilvaYY
Fix minimal build vs ESS.
2d0106f
@FdaSilvaYY
Add some CHANGES entries.
76f1a05 
[extended tests]
@FdaSilvaYY
fixup! crypto/cms: add CAdES-BES signed attributes validation for sig…
b08c846 
…ning certificate V2 and signing certificate extensions.
@FdaSilvaYY
Copy link
Contributor Author

FdaSilvaYY commented May 23, 2020

Travis builds are Green, except usual s390 "no space left" ...

t8m
t8m approved these changes May 25, 2020
View reviewed changes
Copy link
Member

@t8m t8m left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Good work!

@t8m
Copy link
Member

t8m commented May 25, 2020

@slontis Can you please re-approve?

slontis
slontis approved these changes May 25, 2020
View reviewed changes
Copy link
Member

@slontis slontis left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reapproved..

Thanks for your patience with this PR @FdaSilvaYY.

@slontis slontis added approval: done This pull request has the required number of approvals and removed approval: review pending This pull request needs review by a committer labels May 25, 2020
@mspncp mspncp added approval: ready to merge The 24 hour grace period has passed, ready to merge and removed approval: done This pull request has the required number of approvals labels May 26, 2020
@mspncp
Copy link
Contributor

mspncp commented May 26, 2020

This pull request is ready to merge.

openssl-machine pushed a commit that referenced this pull request May 27, 2020
@FdaSilvaYY @t8m
crypto/cms: add CAdES-BES signed attributes validation
9e3c510 
for signing certificate V2 and signing certificate extensions.

CAdES: lowercase name for now internal methods.

crypto/cms: generated file changes.

Add some CHANGES entries.

[extended tests]

Reviewed-by: Shane Lontis <[email protected]>
Reviewed-by: Tomas Mraz <[email protected]>
(Merged from #8098)
@t8m
Copy link
Member

t8m commented May 27, 2020

Squashed and merged as 9e3c510. Thank you very much for the PR and your patience when waiting for the reviews and merge.

@t8m t8m closed this May 27, 2020
@FdaSilvaYY FdaSilvaYY deleted the add-cades-verify branch May 27, 2020 15:42
@FdaSilvaYY
Copy link
Contributor Author

FdaSilvaYY commented May 27, 2020

Thanks for all your reviews and remarks.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@bernd-edlinger bernd-edlinger bernd-edlinger left review comments

@levitte levitte levitte requested changes

@t8m t8m t8m approved these changes

@slontis slontis slontis approved these changes

+2 more reviewers

@mspncp mspncp mspncp left review comments

@opensignature opensignature opensignature approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

approval: ready to merge The 24 hour grace period has passed, ready to merge branch: master Applies to master branch

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

10 participants

@FdaSilvaYY @levitte @maxcuttins @slontis @mspncp @opensignature @paulidale @openssl-machine @bernd-edlinger @t8m