Add cryptographic verification to authenticode_transplant.py #326
Conversation
This commit adds comprehensive cryptographic validation to the Authenticode signature combining tool, bringing the same verification capabilities from auth_var_tool.py to PE file signature operations. Key changes: - Added cryptographic signature verification using the 'cryptography' library - Implemented SpcIndirectDataContent parsing to extract embedded PE hashes - Added certificate extraction and display from PKCS#7 signatures - Compute Authenticode hashes using the algorithm specified in the signature - Verify signatures mathematically using signer's public key (RSA/ECDSA) - Validate that computed PE hash matches the hash in SpcIndirectDataContent New functions: - _get_hash_algorithm_from_oid(): Maps OID strings to hash algorithms - _extract_pe_hash_from_spc_indirect_data(): Parses SPC structure for hash - _extract_certificates_from_pkcs7(): Extracts X.509 certificates - _verify_pkcs7_signature(): Performs full cryptographic verification - compute_authenticode_hash(): Flexible hash computation with configurable algorithm Enhanced functions: - validate_pkcs7_signatures(): Now performs cryptographic verification - main_verify(): Displays certificate details and verification status - main_combine(): Validates signatures cryptographically before combining Bug fixes: - Removed incorrect 8-byte padding from Authenticode hash calculation (padding only applies to WIN_CERTIFICATE structure alignment, not hash data) - Consolidated duplicate hash functions into single implementation Code improvements: - Named constants for all magic numbers in SPC parsing - Better documentation and inline comments - Proper type annotations with Optional types - Enhanced logging with ✓/✗ symbols for verification results Testing: - Verified against Microsoft-signed bootmgfw.efi files - Hash computation now matches Windows AppLocker and UEFI firmware - Both multi-signature and nested signature modes validated - All test cases pass with cryptographic verification Follows Microsoft Authenticode PE specification v1.1
There was a problem hiding this comment.
Pull request overview
This PR adds comprehensive cryptographic verification capabilities to the Authenticode signature tool, enabling validation of PE file signatures using the cryptography library. The changes introduce hash extraction from SPC structures, certificate parsing, and full signature verification against PE files.
Key changes:
- Added cryptographic signature verification using new helper functions for OID mapping, certificate extraction, and PKCS7 verification
- Enhanced
compute_authenticode_hash()to support multiple hash algorithms (SHA1/256/384/512) and removed incorrect padding logic - Updated
validate_pkcs7_signatures()and verification commands to perform cryptographic validation before accepting signatures
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| while i < len(content_bytes) - 10: | ||
| # Check if this is an OCTET STRING tag | ||
| if content_bytes[i] == ASN1_OCTET_STRING_TAG: | ||
| length = content_bytes[i + LENGTH_BYTE_OFFSET] |
There was a problem hiding this comment.
The code assumes single-byte DER length encoding at line 154 (content_bytes[i + 1]), which only works for lengths < 128 bytes. For larger lengths, DER uses multi-byte encoding (e.g., 0x81 followed by one byte, or 0x82 followed by two bytes). This will cause incorrect parsing for hash values in structures with longer encoding. Consider handling ASN.1 long-form length encoding or using a proper ASN.1 parser.
| return certificates | ||
|
|
||
|
|
||
| def _verify_pkcs7_signature(pkcs7_data: bytes, pe_data: bytes) -> dict: |
There was a problem hiding this comment.
[nitpick] The return type annotation dict is too generic. Consider using Dict[str, Any] or a TypedDict to specify the structure of the return dictionary (e.g., with keys 'verified', 'signers', 'errors'), which would provide better type safety and documentation.
| from cryptography import x509 | ||
| from cryptography.exceptions import InvalidSignature | ||
| from cryptography.hazmat.backends import default_backend | ||
| from cryptography.hazmat.primitives import hashes | ||
| from cryptography.hazmat.primitives.asymmetric import ec, padding, rsa |
There was a problem hiding this comment.
The cryptography library is imported and used extensively in this file but is not listed in pip-requirements.txt. This will cause import errors when users try to run the script. Add cryptography to the pip-requirements.txt file (e.g., cryptography==43.0.0 or an appropriate version).
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
1 participant
This commit adds comprehensive cryptographic validation to the Authenticode signature combining tool, bringing the same verification capabilities from auth_var_tool.py to PE file signature operations.
Key changes:
New functions:
Enhanced functions:
Bug fixes:
Code improvements:
Testing:
Follows Microsoft Authenticode PE specification v1.1
Description
How This Was Tested
Ran it against copies of bootmgfw.efi and hellouefi.efi that were both singly signed and
Integration Instructions
N/A