Gitiles
Code Review Sign In
gerrit.omnirom.org / android_hardware_interfaces / 569a61290e3b6f3e3be4be2cdb2eda2652e36669 / . / keymaster / 4.1 / vts / functional / DeviceUniqueAttestationTest.cpp
blob: a9a8b1aa2300f98604c417c777f9131911fc6cdd [file] [log] [blame]
Shawn Willden3f7c80a2020-01-15 19:09:50 -0700[diff] [blame]1/*
2 * Copyright (C) 2020 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17#include "Keymaster4_1HidlTest.h"
18
19#include <cutils/properties.h>
20
21#include <openssl/x509.h>
22
23#include <keymasterV4_1/attestation_record.h>
24#include <keymasterV4_1/authorization_set.h>
25
26namespace android::hardware::keymaster::V4_0 {
27
28bool operator==(const AuthorizationSet& a, const AuthorizationSet& b) {
29 return std::equal(a.begin(), a.end(), b.begin(), b.end());
30}
31
32} // namespace android::hardware::keymaster::V4_0
33
34namespace android::hardware::keymaster::V4_1 {
35
36inline ::std::ostream& operator<<(::std::ostream& os, Tag tag) {
37 return os << toString(tag);
38}
39
40namespace test {
41
42using std::string;
43using std::tuple;
44
45namespace {
46
47char nibble2hex[16] = {'0', '1', '2', '3', '4', '5', '6', '7',
48 '8', '9', 'a', 'b', 'c', 'd', 'e', 'f'};
49
50string bin2hex(const hidl_vec<uint8_t>& data) {
51 string retval;
52 retval.reserve(data.size() * 2 + 1);
53 for (uint8_t byte : data) {
54 retval.push_back(nibble2hex[0x0F & (byte >> 4)]);
55 retval.push_back(nibble2hex[0x0F & byte]);
56 }
57 return retval;
58}
59
60struct AuthorizationSetDifferences {
61 string aName;
62 string bName;
63 AuthorizationSet aWhackB;
64 AuthorizationSet bWhackA;
65};
66
67std::ostream& operator<<(std::ostream& o, const AuthorizationSetDifferences& diffs) {
68 if (!diffs.aWhackB.empty()) {
69 o << "Set " << diffs.aName << " contains the following that " << diffs.bName << " does not"
70 << diffs.aWhackB;
71 if (!diffs.bWhackA.empty()) o << std::endl;
72 }
73
74 if (!diffs.bWhackA.empty()) {
75 o << "Set " << diffs.bName << " contains the following that " << diffs.aName << " does not"
76 << diffs.bWhackA;
77 }
78 return o;
79}
80
81// Computes and returns a \ b and b \ a ('\' is the set-difference operator, a \ b means all the
82// elements that are in a but not b, i.e. take a and whack all the elements in b) to the provided
83// stream. The sets must be sorted.
84//
85// This provides a simple and clear view of how the two sets differ, generally much
86// easier than scrutinizing printouts of the two sets.
87AuthorizationSetDifferences difference(string aName, const AuthorizationSet& a, string bName,
88 const AuthorizationSet& b) {
89 AuthorizationSetDifferences diffs = {std::move(aName), std::move(bName), {}, {}};
90 std::set_difference(a.begin(), a.end(), b.begin(), b.end(), std::back_inserter(diffs.aWhackB));
91 std::set_difference(b.begin(), b.end(), a.begin(), a.end(), std::back_inserter(diffs.bWhackA));
92 return diffs;
93}
94
95#define DIFFERENCE(a, b) difference(#a, a, #b, b)
96
97void check_root_of_trust(const RootOfTrust& root_of_trust) {
98 char vb_meta_device_state[PROPERTY_VALUE_MAX];
99 if (property_get("ro.boot.vbmeta.device_state", vb_meta_device_state, "") == 0) return;
100
101 char vb_meta_digest[PROPERTY_VALUE_MAX];
102 EXPECT_GT(property_get("ro.boot.vbmeta.digest", vb_meta_digest, ""), 0);
103 EXPECT_EQ(vb_meta_digest, bin2hex(root_of_trust.verified_boot_hash));
104
105 // Verified boot key should be all 0's if the boot state is not verified or self signed
106 HidlBuf empty_boot_key(string(32, '\0'));
107
108 char vb_meta_bootstate[PROPERTY_VALUE_MAX];
109 auto& verified_boot_key = root_of_trust.verified_boot_key;
110 auto& verified_boot_state = root_of_trust.verified_boot_state;
111 EXPECT_GT(property_get("ro.boot.verifiedbootstate", vb_meta_bootstate, ""), 0);
112 if (!strcmp(vb_meta_bootstate, "green")) {
113 EXPECT_EQ(verified_boot_state, V4_0::KM_VERIFIED_BOOT_VERIFIED);
114 EXPECT_NE(verified_boot_key, empty_boot_key);
115 } else if (!strcmp(vb_meta_bootstate, "yellow")) {
116 EXPECT_EQ(verified_boot_state, V4_0::KM_VERIFIED_BOOT_SELF_SIGNED);
117 EXPECT_NE(verified_boot_key, empty_boot_key);
118 } else if (!strcmp(vb_meta_bootstate, "orange")) {
119 EXPECT_EQ(verified_boot_state, V4_0::KM_VERIFIED_BOOT_UNVERIFIED);
120 EXPECT_EQ(verified_boot_key, empty_boot_key);
121 } else if (!strcmp(vb_meta_bootstate, "red")) {
122 EXPECT_EQ(verified_boot_state, V4_0::KM_VERIFIED_BOOT_FAILED);
123 } else {
124 EXPECT_EQ(verified_boot_state, V4_0::KM_VERIFIED_BOOT_UNVERIFIED);
125 EXPECT_EQ(verified_boot_key, empty_boot_key);
126 }
127}
128
129void check_attestation_record(AttestationRecord attestation, const HidlBuf& challenge,
130 AuthorizationSet expected_sw_enforced,
131 AuthorizationSet expected_hw_enforced,
132 SecurityLevel expected_security_level) {
133 EXPECT_EQ(41U, attestation.keymaster_version);
134 EXPECT_EQ(4U, attestation.attestation_version);
135 EXPECT_EQ(expected_security_level, attestation.attestation_security_level);
136 EXPECT_EQ(expected_security_level, attestation.keymaster_security_level);
137 EXPECT_EQ(challenge, attestation.attestation_challenge);
138
139 check_root_of_trust(attestation.root_of_trust);
140
141 // Sort all of the authorization lists, so that equality matching works.
142 expected_sw_enforced.Sort();
143 expected_hw_enforced.Sort();
144 attestation.software_enforced.Sort();
145 attestation.hardware_enforced.Sort();
146
147 EXPECT_EQ(expected_sw_enforced, attestation.software_enforced)
148 << DIFFERENCE(expected_sw_enforced, attestation.software_enforced);
149 EXPECT_EQ(expected_hw_enforced, attestation.hardware_enforced)
150 << DIFFERENCE(expected_hw_enforced, attestation.hardware_enforced);
151}
152
153} // namespace
154
155using std::string;
156using DeviceUniqueAttestationTest = Keymaster4_1HidlTest;
157
158TEST_P(DeviceUniqueAttestationTest, StrongBoxOnly) {
159 if (SecLevel() != SecurityLevel::STRONGBOX) return;
160
161 ASSERT_EQ(ErrorCode::OK, convert(GenerateKey(AuthorizationSetBuilder()
162 .Authorization(TAG_NO_AUTH_REQUIRED)
163 .RsaSigningKey(2048, 65537)
164 .Digest(Digest::SHA_2_256)
165 .Padding(PaddingMode::RSA_PKCS1_1_5_SIGN)
166 .Authorization(TAG_INCLUDE_UNIQUE_ID))));
167
168 hidl_vec<hidl_vec<uint8_t>> cert_chain;
169 EXPECT_EQ(ErrorCode::UNIMPLEMENTED,
170 convert(AttestKey(
171 AuthorizationSetBuilder()
172 .Authorization(TAG_DEVICE_UNIQUE_ATTESTATION)
173 .Authorization(TAG_ATTESTATION_CHALLENGE, HidlBuf("challenge"))
174 .Authorization(TAG_ATTESTATION_APPLICATION_ID, HidlBuf("foo")),
175 &cert_chain)));
176 CheckedDeleteKey();
177
178 ASSERT_EQ(ErrorCode::OK, convert(GenerateKey(AuthorizationSetBuilder()
179 .Authorization(TAG_NO_AUTH_REQUIRED)
180 .EcdsaSigningKey(EcCurve::P_256)
181 .Digest(Digest::SHA_2_256)
182 .Authorization(TAG_INCLUDE_UNIQUE_ID))));
183
184 EXPECT_EQ(ErrorCode::UNIMPLEMENTED,
185 convert(AttestKey(
186 AuthorizationSetBuilder()
allen.zhang569a6122020-07-15 09:53:26 +0800[diff] [blame^]187 .Authorization(TAG_DEVICE_UNIQUE_ATTESTATION)
Shawn Willden3f7c80a2020-01-15 19:09:50 -0700[diff] [blame]188 .Authorization(TAG_ATTESTATION_CHALLENGE, HidlBuf("challenge"))
189 .Authorization(TAG_ATTESTATION_APPLICATION_ID, HidlBuf("foo")),
190 &cert_chain)));
allen.zhang569a6122020-07-15 09:53:26 +0800[diff] [blame^]191 CheckedDeleteKey();
Shawn Willden3f7c80a2020-01-15 19:09:50 -0700[diff] [blame]192}
193
194TEST_P(DeviceUniqueAttestationTest, Rsa) {
195 if (SecLevel() != SecurityLevel::STRONGBOX) return;
196 ASSERT_EQ(ErrorCode::OK,
197 convert(GenerateKey(AuthorizationSetBuilder()
198 .Authorization(TAG_NO_AUTH_REQUIRED)
199 .RsaSigningKey(2048, 65537)
200 .Digest(Digest::SHA_2_256)
201 .Padding(PaddingMode::RSA_PKCS1_1_5_SIGN)
202 .Authorization(TAG_CREATION_DATETIME, 1))));
203
204 hidl_vec<hidl_vec<uint8_t>> cert_chain;
205 HidlBuf challenge("challenge");
206 HidlBuf app_id("foo");
207 EXPECT_EQ(ErrorCode::OK,
208 convert(AttestKey(AuthorizationSetBuilder()
209 .Authorization(TAG_DEVICE_UNIQUE_ATTESTATION)
210 .Authorization(TAG_ATTESTATION_CHALLENGE, challenge)
211 .Authorization(TAG_ATTESTATION_APPLICATION_ID, app_id),
212 &cert_chain)));
213
214 EXPECT_EQ(1U, cert_chain.size());
215 auto [err, attestation] = parse_attestation_record(cert_chain[0]);
216 EXPECT_EQ(ErrorCode::OK, err);
217
218 check_attestation_record(attestation, challenge,
219 /* sw_enforced */
220 AuthorizationSetBuilder()
221 .Authorization(TAG_CREATION_DATETIME, 1)
222 .Authorization(TAG_ATTESTATION_APPLICATION_ID, app_id),
223 /* hw_enforced */
224 AuthorizationSetBuilder()
225 .Authorization(TAG_DEVICE_UNIQUE_ATTESTATION)
226 .Authorization(TAG_NO_AUTH_REQUIRED)
227 .RsaSigningKey(2048, 65537)
228 .Digest(Digest::SHA_2_256)
229 .Padding(PaddingMode::RSA_PKCS1_1_5_SIGN)
230 .Authorization(TAG_ORIGIN, KeyOrigin::GENERATED)
231 .Authorization(TAG_OS_VERSION, os_version())
232 .Authorization(TAG_OS_PATCHLEVEL, os_patch_level()),
233 SecLevel());
234}
235
236TEST_P(DeviceUniqueAttestationTest, Ecdsa) {
237 if (SecLevel() != SecurityLevel::STRONGBOX) return;
238 ASSERT_EQ(ErrorCode::OK,
239 convert(GenerateKey(AuthorizationSetBuilder()
240 .Authorization(TAG_NO_AUTH_REQUIRED)
241 .EcdsaSigningKey(256)
242 .Digest(Digest::SHA_2_256)
243 .Authorization(TAG_CREATION_DATETIME, 1))));
244
245 hidl_vec<hidl_vec<uint8_t>> cert_chain;
246 HidlBuf challenge("challenge");
247 HidlBuf app_id("foo");
248 EXPECT_EQ(ErrorCode::OK,
249 convert(AttestKey(AuthorizationSetBuilder()
250 .Authorization(TAG_DEVICE_UNIQUE_ATTESTATION)
251 .Authorization(TAG_ATTESTATION_CHALLENGE, challenge)
252 .Authorization(TAG_ATTESTATION_APPLICATION_ID, app_id),
253 &cert_chain)));
254
255 EXPECT_EQ(1U, cert_chain.size());
256 auto [err, attestation] = parse_attestation_record(cert_chain[0]);
257 EXPECT_EQ(ErrorCode::OK, err);
258
259 check_attestation_record(attestation, challenge,
260 /* sw_enforced */
261 AuthorizationSetBuilder()
262 .Authorization(TAG_CREATION_DATETIME, 1)
263 .Authorization(TAG_ATTESTATION_APPLICATION_ID, app_id),
264 /* hw_enforced */
265 AuthorizationSetBuilder()
266 .Authorization(TAG_DEVICE_UNIQUE_ATTESTATION)
267 .Authorization(TAG_NO_AUTH_REQUIRED)
268 .EcdsaSigningKey(256)
269 .Digest(Digest::SHA_2_256)
270 .Authorization(TAG_EC_CURVE, EcCurve::P_256)
271 .Authorization(TAG_ORIGIN, KeyOrigin::GENERATED)
272 .Authorization(TAG_OS_VERSION, os_version())
273 .Authorization(TAG_OS_PATCHLEVEL, os_patch_level()),
274 SecLevel());
275}
276
277INSTANTIATE_KEYMASTER_4_1_HIDL_TEST(DeviceUniqueAttestationTest);
278
279} // namespace test
280} // namespace android::hardware::keymaster::V4_1