ExternalVendorCode/heads
1
0
Fork 0
mirror of https://github.com/linuxboot/heads.git synced 2025-03-11 06:54:07 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #1758 from tlaurion/improve_tpm_basic_instrospection

Browse Source 
Improve TPM extend ops output in normal and DEBUG mode
This commit is contained in:
Thierry Laurion 2024-09-06 17:30:51 -04:00 committed by GitHub
commit 523649bb19
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
9 changed files with 78 additions and 38 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
boards/qemu-coreboot-whiptail-tpm2/qemu-coreboot-whiptail-tpm2.config
View File

@ -17,10 +17,10 @@ CONFIG_LINUX_CONFIG=config/linux-qemu.config
#export CONFIG_HAVE_GPG_KEY_BACKUP=y #export CONFIG_HAVE_GPG_KEY_BACKUP=y
#Enable DEBUG output #Enable DEBUG output
export CONFIG_DEBUG_OUTPUT=y #export CONFIG_DEBUG_OUTPUT=y
export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y #export CONFIG_ENABLE_FUNCTION_TRACING_OUTPUT=y
#Enable TPM2 pcap output under /tmp #Enable TPM2 pcap output under /tmp
export CONFIG_TPM2_CAPTURE_PCAP=y #export CONFIG_TPM2_CAPTURE_PCAP=y
#On-demand hardware support (modules.cpio) #On-demand hardware support (modules.cpio)
CONFIG_LINUX_USB=y CONFIG_LINUX_USB=y

16
initrd/bin/cbfs-init
View File

@ -15,17 +15,19 @@ cbfsfiles=`cbfs -t 50 -l 2>/dev/null | grep "^heads/initrd/"`
for cbfsname in `echo $cbfsfiles`; do for cbfsname in `echo $cbfsfiles`; do
filename=${cbfsname:12} filename=${cbfsname:12}
if [ ! -z "$filename" ]; then if [ ! -z "$filename" ]; then
echo "Loading $filename from CBFS"
mkdir -p `dirname $filename` \ mkdir -p `dirname $filename` \
|| die "$filename: mkdir failed" || die "$filename: mkdir failed"
cbfs -t 50 -r $cbfsname > "$filename" \ echo "Extracting CBFS file $cbfsname into $filename"
cbfs -t 50 $CBFS_ARG -r $cbfsname > "$filename" \
|| die "$filename: cbfs file read failed" || die "$filename: cbfs file read failed"
if [ "$CONFIG_TPM" = "y" ]; then if [ "$CONFIG_TPM" = "y" ]; then
TMPFILE=/tmp/cbfs.$$ TRACE_FUNC
echo "$filename" > $TMPFILE echo "TPM: Extending PCR[$CONFIG_PCR] with $filename"
cat $filename >> $TMPFILE # Measure both the filename and its content. This
DEBUG "Extending TPM PCR $CONFIG_PCR with $filename" # ensures that renaming files or pivoting file content
tpmr extend -ix "$CONFIG_PCR" -if $TMPFILE \ # will still affect the resulting PCR measurement.
tpmr extend -ix "$CONFIG_PCR" -ic "$filename"
tpmr extend -ix "$CONFIG_PCR" -if "$filename" \
|| die "$filename: tpm extend failed" || die "$filename: tpm extend failed"
fi fi
fi fi

4
initrd/bin/flash.sh
View File

@ -48,9 +48,9 @@ flash_rom() {
dd if=/tmp/pchstrp9.bin bs=1 count=4 seek=292 of=/tmp/${CONFIG_BOARD}.rom conv=notrunc >/dev/null 2>&1 dd if=/tmp/pchstrp9.bin bs=1 count=4 seek=292 of=/tmp/${CONFIG_BOARD}.rom conv=notrunc >/dev/null 2>&1
fi fi
warn "Do not power off computer. Updating firmware, this will take a few minutes..." warn "Do not power off computer. Updating firmware, this will take a few minutes"
flashrom $CONFIG_FLASHROM_OPTIONS -w /tmp/${CONFIG_BOARD}.rom 2>&1 \ flashrom $CONFIG_FLASHROM_OPTIONS -w /tmp/${CONFIG_BOARD}.rom 2>&1 \
|| die "$ROM: Flash failed" || recovery "$ROM: Flash failed"
fi fi
} }

3
initrd/bin/kexec-insert-key
View File

@ -65,7 +65,8 @@ if ! kexec-unseal-key "$INITRD_DIR/secret.key"; then
fi fi
# Override PCR 4 so that user can't read the key # Override PCR 4 so that user can't read the key
DEBUG "Extending TPM PCR 4 to prevent further secret unsealing" TRACE_FUNC
echo "TPM: Extending PCR[4] to prevent any future secret unsealing"
tpmr extend -ix 4 -ic generic || tpmr extend -ix 4 -ic generic ||
die 'Unable to scramble PCR' die 'Unable to scramble PCR'

5
initrd/bin/kexec-select-boot
View File

@ -384,9 +384,10 @@ while true; do
if [ "$CONFIG_TPM" = "y" ]; then if [ "$CONFIG_TPM" = "y" ]; then
if [ ! -r "$TMP_KEY_DEVICES" ]; then if [ ! -r "$TMP_KEY_DEVICES" ]; then
# Extend PCR4 as soon as possible # Extend PCR4 as soon as possible
DEBUG "Extending TPM PCR 4 to prevent further secret unsealing" TRACE_FUNC
DEBUG "TPM: Extending PCR[4] to prevent further secret unsealing"
tpmr extend -ix 4 -ic generic || tpmr extend -ix 4 -ic generic ||
die "Failed to extend PCR 4" die "Failed to extend TPM PCR[4]"
fi fi
fi fi

3
initrd/bin/qubes-measure-luks
View File

@ -19,6 +19,7 @@ sha256sum /tmp/lukshdr-* >/tmp/luksDump.txt || die "Unable to hash LUKS headers"
DEBUG "Removing /tmp/lukshdr-*" DEBUG "Removing /tmp/lukshdr-*"
rm /tmp/lukshdr-* rm /tmp/lukshdr-*
DEBUG "Extending TPM PCR 6 with hash of LUKS headers from /tmp/luksDump.txt" TRACE_FUNC
echo "TPM: Extending PCR[6] with hash of LUKS headers from /tmp/luksDump.txt"
tpmr extend -ix 6 -if /tmp/luksDump.txt || tpmr extend -ix 6 -if /tmp/luksDump.txt ||
die "Unable to extend PCR" die "Unable to extend PCR"

46
initrd/bin/tpmr
View File

@ -29,11 +29,11 @@ else
. /etc/config . /etc/config
fi fi
TRACE_FUNC
# Busybox xxd lacks -r, and we get hex dumps from TPM1 commands. This converts # Busybox xxd lacks -r, and we get hex dumps from TPM1 commands. This converts
# a hex dump to binary data using sed and printf # a hex dump to binary data using sed and printf
hex2bin() { hex2bin() {
TRACE_FUNC
sed 's/\([0-9A-F]\{2\}\)/\\\\\\x\1/gI' | xargs printf sed 's/\([0-9A-F]\{2\}\)/\\\\\\x\1/gI' | xargs printf
} }
@ -43,6 +43,7 @@ hex2bin() {
# as a file still chokes if the password begins with 'hex:', oddly tpm2-tools # as a file still chokes if the password begins with 'hex:', oddly tpm2-tools
# accepts 'hex:' in the file content.) # accepts 'hex:' in the file content.)
tpm2_password_hex() { tpm2_password_hex() {
TRACE_FUNC
echo "hex:$(echo -n "$1" | xxd -p | tr -d ' \n')" echo "hex:$(echo -n "$1" | xxd -p | tr -d ' \n')"
} }
@ -61,7 +62,7 @@ tpm2_pcrread() {
if [ -z "$APPEND" ]; then if [ -z "$APPEND" ]; then
# Don't append - truncate file now so real command always # Don't append - truncate file now so real command always
# appends # overwrites
true >"$file" true >"$file"
fi fi
@ -79,7 +80,7 @@ tpm1_pcrread() {
if [ -z "$APPEND" ]; then if [ -z "$APPEND" ]; then
# Don't append - truncate file now so real command always # Don't append - truncate file now so real command always
# appends # overwrites
true >"$file" true >"$file"
fi fi
@ -100,11 +101,12 @@ is_hash() {
# extend_pcr_state - extend a PCR state value with more hashes or raw data (which is hashed) # extend_pcr_state - extend a PCR state value with more hashes or raw data (which is hashed)
# usage: # usage:
# extend_pcr_state <alg> <initial_state> <files/hashes...> # extend_pcr_state <alg> <state> <files/hashes...>
# alg - either 'sha1' or 'sha256' to specify algorithm # alg - either 'sha1' or 'sha256' to specify algorithm
# initial_state - a hash value setting the initial state # state - a hash value setting the initial state
# files/hashes... - any number of files or hashes, state is extended once for each item # files/hashes... - any number of files or hashes, state is extended once for each item
extend_pcr_state() { extend_pcr_state() {
TRACE_FUNC
local alg="$1" local alg="$1"
local state="$2" local state="$2"
local next extend local next extend
@ -233,14 +235,20 @@ tpm2_extend() {
while true; do while true; do
case "$1" in case "$1" in
-ix) -ix)
# store index and shift so -ic and -if can be processed
index="$2" index="$2"
shift 2 shift 2
;; ;;
-ic) -ic)
string=$(echo -n "$2")
hash="$(echo -n "$2" | sha256sum | cut -d' ' -f1)" hash="$(echo -n "$2" | sha256sum | cut -d' ' -f1)"
TRACE_FUNC
DEBUG "TPM: Will extend PCR[$index] with hash of string $string"
shift 2 shift 2
;; ;;
-if) -if)
TRACE_FUNC
DEBUG "TPM: Will extend PCR[$index] with hash of file content $2"
hash="$(sha256sum "$2" | cut -d' ' -f1)" hash="$(sha256sum "$2" | cut -d' ' -f1)"
shift 2 shift 2
;; ;;
@ -250,7 +258,10 @@ tpm2_extend() {
esac esac
done done
tpm2 pcrextend "$index:sha256=$hash" tpm2 pcrextend "$index:sha256=$hash"
DO_WITH_DEBUG tpm2 pcrread "sha256:$index" tpm2 pcrread "sha256:$index"
TRACE_FUNC
DEBUG "TPM: Extended PCR[$index] with hash $hash"
} }
tpm2_counter_read() { tpm2_counter_read() {
@ -348,9 +359,9 @@ tpm2_startsession() {
die "tpm2_flushcontext: unable to flush saved session" die "tpm2_flushcontext: unable to flush saved session"
tpm2 readpublic -Q -c "$PRIMARY_HANDLE" -t "$PRIMARY_HANDLE_FILE" tpm2 readpublic -Q -c "$PRIMARY_HANDLE" -t "$PRIMARY_HANDLE_FILE"
#TODO: do the right thing to not have to suppress "WARN: check public portion the tpmkey manually" see https://github.com/linuxboot/heads/pull/1630#issuecomment-2075120429 #TODO: do the right thing to not have to suppress "WARN: check public portion the tpmkey manually" see https://github.com/linuxboot/heads/pull/1630#issuecomment-2075120429
tpm2 startauthsession -Q -c "$PRIMARY_HANDLE_FILE" --hmac-session -S "$ENC_SESSION_FILE" 2>&1 > /dev/null tpm2 startauthsession -Q -c "$PRIMARY_HANDLE_FILE" --hmac-session -S "$ENC_SESSION_FILE" > /dev/null 2>&1
#TODO: do the right thing to not have to suppress "WARN: check public portion the tpmkey manually" see https://github.com/linuxboot/heads/pull/1630#issuecomment-2075120429 #TODO: do the right thing to not have to suppress "WARN: check public portion the tpmkey manually" see https://github.com/linuxboot/heads/pull/1630#issuecomment-2075120429
tpm2 startauthsession -Q -c "$PRIMARY_HANDLE_FILE" --hmac-session -S "$DEC_SESSION_FILE" 2>&1 > /dev/null tpm2 startauthsession -Q -c "$PRIMARY_HANDLE_FILE" --hmac-session -S "$DEC_SESSION_FILE" > /dev/null 2>&1
tpm2 sessionconfig -Q --disable-encrypt "$DEC_SESSION_FILE" tpm2 sessionconfig -Q --disable-encrypt "$DEC_SESSION_FILE"
} }
@ -381,6 +392,7 @@ cleanup_shred() {
# tpm2_destroy: Destroy a sealed file in the TPM. The mechanism differs by # tpm2_destroy: Destroy a sealed file in the TPM. The mechanism differs by
# TPM version - TPM2 evicts the file object, so it no longer exists. # TPM version - TPM2 evicts the file object, so it no longer exists.
tpm2_destroy() { tpm2_destroy() {
TRACE_FUNC
index="$1" # Index of the sealed file index="$1" # Index of the sealed file
size="$2" # Size of zeroes to overwrite for TPM1 (unused in TPM2) size="$2" # Size of zeroes to overwrite for TPM1 (unused in TPM2)
@ -396,6 +408,7 @@ tpm2_destroy() {
# TPM version - TPM1 overwrites the file with zeroes, since this can be done # TPM version - TPM1 overwrites the file with zeroes, since this can be done
# without authorization. (Deletion requires authorization.) # without authorization. (Deletion requires authorization.)
tpm1_destroy() { tpm1_destroy() {
TRACE_FUNC
index="$1" # Index of the sealed file index="$1" # Index of the sealed file
size="$2" # Size of zeroes to overwrite for TPM1 size="$2" # Size of zeroes to overwrite for TPM1
@ -761,6 +774,21 @@ if [ "$CONFIG_TPM2_TOOLS" != "y" ]; then
shift shift
tpm1_destroy "$@" tpm1_destroy "$@"
;; ;;
extend)
#check if we extend with a hash or a file
if [ "$4" = "-if" ]; then
DEBUG "TPM: Will extend PCR[$3] hash content of file $5"
hash="$(sha1sum "$5" | cut -d' ' -f1)"
elif [ "$4" = "-ic" ]; then
string=$(echo -n "$5")
DEBUG "TPM: Will extend PCR[$3] with hash of filename $string"
hash="$(echo -n "$5" | sha1sum | cut -d' ' -f1)"
fi
TRACE_FUNC
DEBUG "TPM: Extending PCR[$3] with hash $hash"
DO_WITH_DEBUG exec tpm "$@"
;;
seal) seal)
shift shift
tpm1_seal "$@" tpm1_seal "$@"
@ -799,6 +827,8 @@ calcfuturepcr)
replay_pcr "sha256" "$@" replay_pcr "sha256" "$@"
;; ;;
extend) extend)
TRACE_FUNC
DEBUG "TPM: Extending PCR[$2] with $4"
tpm2_extend "$@" tpm2_extend "$@"
;; ;;
counter_read) counter_read)

3
initrd/etc/ash_functions
View File

@ -241,7 +241,8 @@ recovery() {
DEBUG "Board $CONFIG_BOARD - version $(fw_version)" DEBUG "Board $CONFIG_BOARD - version $(fw_version)"
if [ "$CONFIG_TPM" = "y" ]; then if [ "$CONFIG_TPM" = "y" ]; then
DEBUG "Extending TPM PCR 4 for recovery shell access" TRACE_FUNC
echo "TPM: Extending PCR[4] to prevent any further secret unsealing"
tpmr extend -ix 4 -ic recovery tpmr extend -ix 4 -ic recovery
fi fi

30
initrd/sbin/insmod
View File

@ -28,7 +28,7 @@ fi
# Unify lsmod output to use - instead of _ for comparison # Unify lsmod output to use - instead of _ for comparison
module_name=$(basename "$MODULE" | sed 's/_/-/g' | sed 's/\.ko$//') module_name=$(basename "$MODULE" | sed 's/_/-/g' | sed 's/\.ko$//')
if lsmod | sed 's/_/-/g' | grep -q "^$module_name\\b"; then if lsmod | sed 's/_/-/g' | grep -q "^$module_name\\b"; then
DEBUG "$MODULE: already loaded" DEBUG "$MODULE: already loaded, skipping"
exit 0 exit 0
fi fi
@ -39,18 +39,22 @@ if [ ! -r /sys/class/tpm/tpm0/pcrs -o ! -x /bin/tpm ]; then
fi fi
if [ -z "$tpm_missing" ]; then if [ -z "$tpm_missing" ]; then
DEBUG "Extending TPM PCR $MODULE_PCR with $MODULE prior of usage" echo "TPM: Extending PCR[$MODULE_PCR] with $MODULE and parameters '$*' before loading"
tpmr extend -ix "$MODULE_PCR" -if "$MODULE" \ # Extend with the module parameters (even if they are empty) and the
|| die "$MODULE: tpm extend failed" # module. Changing the parameters or the module content will result in a
fi # different PCR measurement.
if [ -n "$*" ]; then
if [ ! -z "$*" -a -z "$tpm_missing" ]; then TRACE_FUNC
DEBUG "Extending TPM PCR $MODULE_PCR with $*" DEBUG "Extending with module parameters and the module's content"
TMPFILE=/tmp/insmod.$$ tpmr extend -ix "$MODULE_PCR" -ic "$*"
echo "$@" > $TMPFILE tpmr extend -ix "$MODULE_PCR" -if "$MODULE" \
DEBUG "Extending TPM PCR $MODULE_PCR with $MODULE prior of usage" || die "$MODULE: tpm extend failed"
tpmr extend -ix "$MODULE_PCR" -if $TMPFILE \ else
|| die "$MODULE: tpm extend on arguments failed" TRACE_FUNC
DEBUG "No module parameters, extending only with the module's content"
tpmr extend -ix "$MODULE_PCR" -if "$MODULE" \
|| die "$MODULE: tpm extend failed"
fi
fi fi
# Since we have replaced the real insmod, we must invoke # Since we have replaced the real insmod, we must invoke