Gitiles
Code Review Sign In
gerrit.omnirom.org / android_hardware_interfaces / 5ae008679df7fa3b203ea949921c4630d59b0a15 / . / keymaster / 4.1 / vts / functional / Keymaster4_1HidlTest.h
blob: 6332c432000f8e31abcde2f41ed1ba92d745bf17 [file] [log] [blame]
Shawn Willden3f7c80a2020-01-15 19:09:50 -0700[diff] [blame]1/*
2 * Copyright (C) 2019 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17#pragma once
18
19#include <android/hardware/keymaster/4.1/IKeymasterDevice.h>
20
21#include <KeymasterHidlTest.h>
22#include <keymasterV4_1/authorization_set.h>
23
24namespace android::hardware::keymaster::V4_1::test {
25
26using V4_0::test::HidlBuf;
27
28class Keymaster4_1HidlTest : public V4_0::test::KeymasterHidlTest {
29 public:
30 using super = V4_0::test::KeymasterHidlTest;
31
32 ErrorCode convert(V4_0::ErrorCode error_code) { return static_cast<ErrorCode>(error_code); }
33
34 // These methods hide the base class versions.
35 void SetUp();
36 IKeymasterDevice& keymaster() { return *keymaster41_; };
37
38 struct KeyData {
39 HidlBuf blob;
40 KeyCharacteristics characteristics;
41 };
42
43 std::tuple<ErrorCode, KeyData> GenerateKeyData(const AuthorizationSet& keyDescription) {
44 KeyData keyData;
45 ErrorCode errorCode = convert(
46 super::GenerateKey(keyDescription, &keyData.blob, &keyData.characteristics));
47 return {errorCode, keyData};
48 }
49
50 void CheckedDeleteKeyData(KeyData* keyData) { CheckedDeleteKey(&keyData->blob); }
51
52 template <typename TagType>
53 std::tuple<KeyData /* aesKey */, KeyData /* hmacKey */, KeyData /* rsaKey */,
54 KeyData /* ecdsaKey */>
55 CreateTestKeys(TagType tagToTest, ErrorCode expectedReturn) {
56 ErrorCode errorCode;
57
58 /* AES */
59 KeyData aesKeyData;
60 std::tie(errorCode, aesKeyData) =
61 GenerateKeyData(AuthorizationSetBuilder()
62 .AesEncryptionKey(128)
63 .Authorization(tagToTest)
64 .BlockMode(BlockMode::ECB)
65 .Padding(PaddingMode::NONE)
66 .Authorization(TAG_NO_AUTH_REQUIRED));
67 EXPECT_EQ(expectedReturn, errorCode);
68
69 /* HMAC */
70 KeyData hmacKeyData;
71 std::tie(errorCode, hmacKeyData) =
72 GenerateKeyData(AuthorizationSetBuilder()
73 .HmacKey(128)
74 .Authorization(tagToTest)
75 .Digest(Digest::SHA_2_256)
76 .Authorization(TAG_MIN_MAC_LENGTH, 128)
77 .Authorization(TAG_NO_AUTH_REQUIRED));
78 EXPECT_EQ(expectedReturn, errorCode);
79
80 /* RSA */
81 KeyData rsaKeyData;
82 std::tie(errorCode, rsaKeyData) =
83 GenerateKeyData(AuthorizationSetBuilder()
84 .RsaSigningKey(2048, 65537)
85 .Authorization(tagToTest)
86 .Digest(Digest::NONE)
87 .Padding(PaddingMode::NONE)
88 .Authorization(TAG_NO_AUTH_REQUIRED));
89 EXPECT_EQ(expectedReturn, errorCode);
90
91 /* ECDSA */
92 KeyData ecdsaKeyData;
93 std::tie(errorCode, ecdsaKeyData) =
94 GenerateKeyData(AuthorizationSetBuilder()
95 .EcdsaSigningKey(256)
96 .Authorization(tagToTest)
97 .Digest(Digest::SHA_2_256)
98 .Authorization(TAG_NO_AUTH_REQUIRED));
99 EXPECT_EQ(expectedReturn, errorCode);
100
101 return {aesKeyData, hmacKeyData, rsaKeyData, ecdsaKeyData};
102 }
103
104 std::tuple<ErrorCode, std::string /* processedMessage */, AuthorizationSet /* out_params */>
105 ProcessMessage(const HidlBuf& key_blob, KeyPurpose operation, const std::string& message,
106 const AuthorizationSet& in_params);
107
108 ErrorCode UseAesKey(const HidlBuf& aesKeyBlob) {
109 auto [result, ciphertext, out_params] = ProcessMessage(
110 aesKeyBlob, KeyPurpose::ENCRYPT, "1234567890123456",
111 AuthorizationSetBuilder().BlockMode(BlockMode::ECB).Padding(PaddingMode::NONE));
112 return result;
113 }
114
115 ErrorCode UseHmacKey(const HidlBuf& hmacKeyBlob) {
116 auto [result, mac, out_params] =
117 ProcessMessage(hmacKeyBlob, KeyPurpose::SIGN, "1234567890123456",
118 AuthorizationSetBuilder().Authorization(TAG_MAC_LENGTH, 128));
119 return result;
120 }
121
122 ErrorCode UseRsaKey(const HidlBuf& rsaKeyBlob) {
123 std::string message(2048 / 8, 'a');
124 auto [result, signature, out_params] = ProcessMessage(
125 rsaKeyBlob, KeyPurpose::SIGN, message,
126 AuthorizationSetBuilder().Digest(Digest::NONE).Padding(PaddingMode::NONE));
127 return result;
128 }
129
130 ErrorCode UseEcdsaKey(const HidlBuf& ecdsaKeyBlob) {
131 auto [result, signature, out_params] =
132 ProcessMessage(ecdsaKeyBlob, KeyPurpose::SIGN, "a",
133 AuthorizationSetBuilder().Digest(Digest::SHA_2_256));
134 return result;
135 }
136
137 static std::vector<std::string> build_params() {
138 auto params = android::hardware::getAllHalInstanceNames(IKeymasterDevice::descriptor);
139 return params;
140 }
141
142 private:
143 sp<IKeymasterDevice> keymaster41_;
144};
145
146template <typename TypedTag>
147bool contains(hidl_vec<KeyParameter>& set, TypedTag typedTag) {
148 return std::find_if(set.begin(), set.end(), [&](const KeyParameter& param) {
149 return param.tag == static_cast<V4_0::Tag>(typedTag);
150 }) != set.end();
151}
152
153#define INSTANTIATE_KEYMASTER_4_1_HIDL_TEST(name) \
154 INSTANTIATE_TEST_SUITE_P(PerInstance, name, \
155 testing::ValuesIn(Keymaster4_1HidlTest::build_params()), \
156 android::hardware::PrintInstanceNameToString)
157
158} // namespace android::hardware::keymaster::V4_1::test