src/main/java/com/android/apksig/internal/apk/stamp/V2SourceStampVerifier.java - platform/tools/apksig - Git at Google

 /*
  * Copyright (C) 2020 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package com.android.apksig.internal.apk.stamp;

 import static com.android.apksig.internal.apk.ApkSigningBlockUtilsLite.encodeAsSequenceOfLengthPrefixedPairsOfIntAndLengthPrefixedBytes;
 import static com.android.apksig.internal.apk.stamp.SourceStampConstants.V2_SOURCE_STAMP_BLOCK_ID;

 import com.android.apksig.ApkVerificationIssue;
 import com.android.apksig.Constants;
 import com.android.apksig.apk.ApkFormatException;
 import com.android.apksig.internal.apk.ApkSigResult;
 import com.android.apksig.internal.apk.ApkSignerInfo;
 import com.android.apksig.internal.apk.ApkSigningBlockUtilsLite;
 import com.android.apksig.internal.apk.ContentDigestAlgorithm;
 import com.android.apksig.internal.apk.SignatureInfo;
 import com.android.apksig.internal.apk.SignatureNotFoundException;
 import com.android.apksig.internal.util.Pair;
 import com.android.apksig.util.DataSource;
 import com.android.apksig.zip.ZipSections;

 import java.io.IOException;
 import java.nio.BufferUnderflowException;
 import java.nio.ByteBuffer;
 import java.security.NoSuchAlgorithmException;
 import java.security.cert.CertificateException;
 import java.security.cert.CertificateFactory;
 import java.util.ArrayList;
 import java.util.Collections;
 import java.util.Comparator;
 import java.util.HashMap;
 import java.util.List;
 import java.util.Map;

 /**
  * Source Stamp verifier.
  *
  * <p>V2 of the source stamp verifies the stamp signature of more than one signature schemes.
  */
 public abstract class V2SourceStampVerifier {

     /** Hidden constructor to prevent instantiation. */
     private V2SourceStampVerifier() {}

     /**
      * Verifies the provided APK's SourceStamp signatures and returns the result of verification.
      * The APK must be considered verified only if {@link ApkSigResult#verified} is
      * {@code true}. If verification fails, the result will contain errors -- see {@link
      * ApkSigResult#getErrors()}.
      *
      * @throws NoSuchAlgorithmException if the APK's signatures cannot be verified because a
      *     required cryptographic algorithm implementation is missing
      * @throws SignatureNotFoundException if no SourceStamp signatures are
      *     found
      * @throws IOException if an I/O error occurs when reading the APK
      */
     public static ApkSigResult verify(
             DataSource apk,
             ZipSections zipSections,
             byte[] sourceStampCertificateDigest,
             Map<Integer, Map<ContentDigestAlgorithm, byte[]>> signatureSchemeApkContentDigests,
             int minSdkVersion,
             int maxSdkVersion)
             throws IOException, NoSuchAlgorithmException, SignatureNotFoundException {
         ApkSigResult result =
                 new ApkSigResult(Constants.VERSION_SOURCE_STAMP);
         SignatureInfo signatureInfo =
                 ApkSigningBlockUtilsLite.findSignature(
                         apk, zipSections, V2_SOURCE_STAMP_BLOCK_ID);

         verify(
                 signatureInfo.signatureBlock,
                 sourceStampCertificateDigest,
                 signatureSchemeApkContentDigests,
                 minSdkVersion,
                 maxSdkVersion,
                 result);
         return result;
     }

     /**
      * Verifies the provided APK's SourceStamp signatures and outputs the results into the provided
      * {@code result}. APK is considered verified only if there are no errors reported in the {@code
      * result}. See {@link #verify(DataSource, ZipSections, byte[], Map, int, int)} for
      * more information about the contract of this method.
      */
     private static void verify(
             ByteBuffer sourceStampBlock,
             byte[] sourceStampCertificateDigest,
             Map<Integer, Map<ContentDigestAlgorithm, byte[]>> signatureSchemeApkContentDigests,
             int minSdkVersion,
             int maxSdkVersion,
             ApkSigResult result)
             throws NoSuchAlgorithmException {
         ApkSignerInfo signerInfo = new ApkSignerInfo();
         result.mSigners.add(signerInfo);
         try {
             CertificateFactory certFactory = CertificateFactory.getInstance("X.509");
             ByteBuffer sourceStampBlockData =
                     ApkSigningBlockUtilsLite.getLengthPrefixedSlice(sourceStampBlock);
             SourceStampVerifier.verifyV2SourceStamp(
                     sourceStampBlockData,
                     certFactory,
                     signerInfo,
                     getSignatureSchemeDigests(signatureSchemeApkContentDigests),
                     sourceStampCertificateDigest,
                     minSdkVersion,
                     maxSdkVersion);
             result.verified = !result.containsErrors() && !result.containsWarnings();
         } catch (CertificateException e) {
             throw new IllegalStateException("Failed to obtain X.509 CertificateFactory", e);
         } catch (ApkFormatException | BufferUnderflowException e) {
             signerInfo.addWarning(ApkVerificationIssue.SOURCE_STAMP_MALFORMED_SIGNATURE);
         }
     }

     private static Map<Integer, byte[]> getSignatureSchemeDigests(
             Map<Integer, Map<ContentDigestAlgorithm, byte[]>> signatureSchemeApkContentDigests) {
         Map<Integer, byte[]> digests = new HashMap<>();
         for (Map.Entry<Integer, Map<ContentDigestAlgorithm, byte[]>>
                 signatureSchemeApkContentDigest : signatureSchemeApkContentDigests.entrySet()) {
             List<Pair<Integer, byte[]>> apkDigests =
                     getApkDigests(signatureSchemeApkContentDigest.getValue());
             digests.put(
                     signatureSchemeApkContentDigest.getKey(),
                     encodeAsSequenceOfLengthPrefixedPairsOfIntAndLengthPrefixedBytes(apkDigests));
         }
         return digests;
     }

     private static List<Pair<Integer, byte[]>> getApkDigests(
             Map<ContentDigestAlgorithm, byte[]> apkContentDigests) {
         List<Pair<Integer, byte[]>> digests = new ArrayList<>();
         for (Map.Entry<ContentDigestAlgorithm, byte[]> apkContentDigest :
                 apkContentDigests.entrySet()) {
             digests.add(Pair.of(apkContentDigest.getKey().getId(), apkContentDigest.getValue()));
         }
         Collections.sort(digests, new Comparator<Pair<Integer, byte[]>>() {
             @Override
             public int compare(Pair<Integer, byte[]> pair1, Pair<Integer, byte[]> pair2) {
                 return pair1.getFirst() - pair2.getFirst();
             }
         });
         return digests;
     }
 }
	/*
	* Copyright (C) 2020 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package com.android.apksig.internal.apk.stamp;

	import static com.android.apksig.internal.apk.ApkSigningBlockUtilsLite.encodeAsSequenceOfLengthPrefixedPairsOfIntAndLengthPrefixedBytes;
	import static com.android.apksig.internal.apk.stamp.SourceStampConstants.V2_SOURCE_STAMP_BLOCK_ID;

	import com.android.apksig.ApkVerificationIssue;
	import com.android.apksig.Constants;
	import com.android.apksig.apk.ApkFormatException;
	import com.android.apksig.internal.apk.ApkSigResult;
	import com.android.apksig.internal.apk.ApkSignerInfo;
	import com.android.apksig.internal.apk.ApkSigningBlockUtilsLite;
	import com.android.apksig.internal.apk.ContentDigestAlgorithm;
	import com.android.apksig.internal.apk.SignatureInfo;
	import com.android.apksig.internal.apk.SignatureNotFoundException;
	import com.android.apksig.internal.util.Pair;
	import com.android.apksig.util.DataSource;
	import com.android.apksig.zip.ZipSections;

	import java.io.IOException;
	import java.nio.BufferUnderflowException;
	import java.nio.ByteBuffer;
	import java.security.NoSuchAlgorithmException;
	import java.security.cert.CertificateException;
	import java.security.cert.CertificateFactory;
	import java.util.ArrayList;
	import java.util.Collections;
	import java.util.Comparator;
	import java.util.HashMap;
	import java.util.List;
	import java.util.Map;

	/**
	* Source Stamp verifier.
	*
	* <p>V2 of the source stamp verifies the stamp signature of more than one signature schemes.
	*/
	public abstract class V2SourceStampVerifier {

	/** Hidden constructor to prevent instantiation. */
	private V2SourceStampVerifier() {}

	/**
	* Verifies the provided APK's SourceStamp signatures and returns the result of verification.
	* The APK must be considered verified only if {@link ApkSigResult#verified} is
	* {@code true}. If verification fails, the result will contain errors -- see {@link
	* ApkSigResult#getErrors()}.
	*
	* @throws NoSuchAlgorithmException if the APK's signatures cannot be verified because a
	* required cryptographic algorithm implementation is missing
	* @throws SignatureNotFoundException if no SourceStamp signatures are
	* found
	* @throws IOException if an I/O error occurs when reading the APK
	*/
	public static ApkSigResult verify(
	DataSource apk,
	ZipSections zipSections,
	byte[] sourceStampCertificateDigest,
	Map<Integer, Map<ContentDigestAlgorithm, byte[]>> signatureSchemeApkContentDigests,
	int minSdkVersion,
	int maxSdkVersion)
	throws IOException, NoSuchAlgorithmException, SignatureNotFoundException {
	ApkSigResult result =
	new ApkSigResult(Constants.VERSION_SOURCE_STAMP);
	SignatureInfo signatureInfo =
	ApkSigningBlockUtilsLite.findSignature(
	apk, zipSections, V2_SOURCE_STAMP_BLOCK_ID);

	verify(
	signatureInfo.signatureBlock,
	sourceStampCertificateDigest,
	signatureSchemeApkContentDigests,
	minSdkVersion,
	maxSdkVersion,
	result);
	return result;
	}

	/**
	* Verifies the provided APK's SourceStamp signatures and outputs the results into the provided
	* {@code result}. APK is considered verified only if there are no errors reported in the {@code
	* result}. See {@link #verify(DataSource, ZipSections, byte[], Map, int, int)} for
	* more information about the contract of this method.
	*/
	private static void verify(
	ByteBuffer sourceStampBlock,
	byte[] sourceStampCertificateDigest,
	Map<Integer, Map<ContentDigestAlgorithm, byte[]>> signatureSchemeApkContentDigests,
	int minSdkVersion,
	int maxSdkVersion,
	ApkSigResult result)
	throws NoSuchAlgorithmException {
	ApkSignerInfo signerInfo = new ApkSignerInfo();
	result.mSigners.add(signerInfo);
	try {
	CertificateFactory certFactory = CertificateFactory.getInstance("X.509");
	ByteBuffer sourceStampBlockData =
	ApkSigningBlockUtilsLite.getLengthPrefixedSlice(sourceStampBlock);
	SourceStampVerifier.verifyV2SourceStamp(
	sourceStampBlockData,
	certFactory,
	signerInfo,
	getSignatureSchemeDigests(signatureSchemeApkContentDigests),
	sourceStampCertificateDigest,
	minSdkVersion,
	maxSdkVersion);
	result.verified = !result.containsErrors() && !result.containsWarnings();
	} catch (CertificateException e) {
	throw new IllegalStateException("Failed to obtain X.509 CertificateFactory", e);
	} catch (ApkFormatException \| BufferUnderflowException e) {
	signerInfo.addWarning(ApkVerificationIssue.SOURCE_STAMP_MALFORMED_SIGNATURE);
	}
	}

	private static Map<Integer, byte[]> getSignatureSchemeDigests(
	Map<Integer, Map<ContentDigestAlgorithm, byte[]>> signatureSchemeApkContentDigests) {
	Map<Integer, byte[]> digests = new HashMap<>();
	for (Map.Entry<Integer, Map<ContentDigestAlgorithm, byte[]>>
	signatureSchemeApkContentDigest : signatureSchemeApkContentDigests.entrySet()) {
	List<Pair<Integer, byte[]>> apkDigests =
	getApkDigests(signatureSchemeApkContentDigest.getValue());
	digests.put(
	signatureSchemeApkContentDigest.getKey(),
	encodeAsSequenceOfLengthPrefixedPairsOfIntAndLengthPrefixedBytes(apkDigests));
	}
	return digests;
	}

	private static List<Pair<Integer, byte[]>> getApkDigests(
	Map<ContentDigestAlgorithm, byte[]> apkContentDigests) {
	List<Pair<Integer, byte[]>> digests = new ArrayList<>();
	for (Map.Entry<ContentDigestAlgorithm, byte[]> apkContentDigest :
	apkContentDigests.entrySet()) {
	digests.add(Pair.of(apkContentDigest.getKey().getId(), apkContentDigest.getValue()));
	}
	Collections.sort(digests, new Comparator<Pair<Integer, byte[]>>() {
	@Override
	public int compare(Pair<Integer, byte[]> pair1, Pair<Integer, byte[]> pair2) {
	return pair1.getFirst() - pair2.getFirst();
	}
	});
	return digests;
	}
	}