Gitiles
Code Review Sign In
gerrit.omnirom.org / android_hardware_interfaces / 7dff4fc9b7c4ab3124dcffa78ddd49eee97dd577 / . / security / keymint / aidl / vts / functional / KeyMintAidlTestBase.h
blob: 61f9d4d59a24cbddb2c32a58a10c218cc3158530 [file] [log] [blame]
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]1/*
2 * Copyright (C) 2020 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]17#pragma once
18
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]19#include <functional>
David Drysdale300b5552021-05-20 12:05:26 +0100[diff] [blame]20#include <string_view>
21
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]22#include <aidl/Gtest.h>
23#include <aidl/Vintf.h>
David Drysdalea676c3b2021-06-14 14:46:02 +0100[diff] [blame]24#include <android-base/properties.h>
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]25#include <binder/IServiceManager.h>
26#include <binder/ProcessState.h>
27#include <gtest/gtest.h>
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]28#include <openssl/x509.h>
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]29
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]30#include <aidl/android/hardware/security/keymint/ErrorCode.h>
31#include <aidl/android/hardware/security/keymint/IKeyMintDevice.h>
David Drysdale4dc01072021-04-01 12:17:35 +0100[diff] [blame]32#include <aidl/android/hardware/security/keymint/MacedPublicKey.h>
Shawn Willden1d3f85e2020-12-09 14:18:44 -0700[diff] [blame]33
Shawn Willden08a7e432020-12-11 13:05:27 +0000[diff] [blame]34#include <keymint_support/authorization_set.h>
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]35#include <keymint_support/openssl_utils.h>
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]36
Shawn Willden0e80b5d2020-12-17 09:07:27 -0700[diff] [blame]37namespace aidl::android::hardware::security::keymint {
38
39::std::ostream& operator<<(::std::ostream& os, const AuthorizationSet& set);
40
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]41inline bool operator==(const keymint::AuthorizationSet& a, const keymint::AuthorizationSet& b) {
42 return a.size() == b.size() && std::equal(a.begin(), a.end(), b.begin());
43}
44
Shawn Willden0e80b5d2020-12-17 09:07:27 -0700[diff] [blame]45namespace test {
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]46
47using ::android::sp;
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]48using Status = ::ndk::ScopedAStatus;
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]49using ::std::optional;
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]50using ::std::shared_ptr;
51using ::std::string;
52using ::std::vector;
53
54constexpr uint64_t kOpHandleSentinel = 0xFFFFFFFFFFFFFFFF;
55
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]56class KeyMintAidlTestBase : public ::testing::TestWithParam<string> {
57 public:
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]58 struct KeyData {
59 vector<uint8_t> blob;
60 vector<KeyCharacteristics> characteristics;
61 };
62
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]63 static bool arm_deleteAllKeys;
64 static bool dump_Attestations;
65
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]66 void SetUp() override;
67 void TearDown() override {
68 if (key_blob_.size()) {
69 CheckedDeleteKey();
70 }
71 AbortIfNeeded();
72 }
73
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]74 void InitializeKeyMint(std::shared_ptr<IKeyMintDevice> keyMint);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]75 IKeyMintDevice& keyMint() { return *keymint_; }
David Drysdale7dff4fc2021-12-10 10:10:52 +0000[diff] [blame^]76 int32_t AidlVersion();
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]77 uint32_t os_version() { return os_version_; }
78 uint32_t os_patch_level() { return os_patch_level_; }
David Drysdalebb3d85e2021-04-13 11:15:51 +0100[diff] [blame]79 uint32_t vendor_patch_level() { return vendor_patch_level_; }
David Drysdale37af4b32021-05-14 16:46:59 +0100[diff] [blame]80 uint32_t boot_patch_level(const vector<KeyCharacteristics>& key_characteristics);
81 uint32_t boot_patch_level();
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]82
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]83 ErrorCode GetReturnErrorCode(const Status& result);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]84
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]85 ErrorCode GenerateKey(const AuthorizationSet& key_desc, vector<uint8_t>* key_blob,
86 vector<KeyCharacteristics>* key_characteristics) {
87 return GenerateKey(key_desc, std::nullopt /* attest_key */, key_blob, key_characteristics,
88 &cert_chain_);
89 }
90 ErrorCode GenerateKey(const AuthorizationSet& key_desc,
91 const optional<AttestationKey>& attest_key, vector<uint8_t>* key_blob,
92 vector<KeyCharacteristics>* key_characteristics,
93 vector<Certificate>* cert_chain);
94 ErrorCode GenerateKey(const AuthorizationSet& key_desc,
95 const optional<AttestationKey>& attest_key = std::nullopt);
96
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]97 ErrorCode ImportKey(const AuthorizationSet& key_desc, KeyFormat format,
98 const string& key_material, vector<uint8_t>* key_blob,
Shawn Willden7f424372021-01-10 18:06:50 -0700[diff] [blame]99 vector<KeyCharacteristics>* key_characteristics);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]100 ErrorCode ImportKey(const AuthorizationSet& key_desc, KeyFormat format,
101 const string& key_material);
102
103 ErrorCode ImportWrappedKey(string wrapped_key, string wrapping_key,
104 const AuthorizationSet& wrapping_key_desc, string masking_key,
David Drysdaled2cc8c22021-04-15 13:29:45 +0100[diff] [blame]105 const AuthorizationSet& unwrapping_params, int64_t password_sid,
106 int64_t biometric_sid);
107 ErrorCode ImportWrappedKey(string wrapped_key, string wrapping_key,
108 const AuthorizationSet& wrapping_key_desc, string masking_key,
109 const AuthorizationSet& unwrapping_params) {
110 return ImportWrappedKey(wrapped_key, wrapping_key, wrapping_key_desc, masking_key,
111 unwrapping_params, 0 /* password_sid */, 0 /* biometric_sid */);
112 }
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]113
David Drysdale300b5552021-05-20 12:05:26 +0100[diff] [blame]114 ErrorCode GetCharacteristics(const vector<uint8_t>& key_blob, const vector<uint8_t>& app_id,
115 const vector<uint8_t>& app_data,
116 vector<KeyCharacteristics>* key_characteristics);
117 ErrorCode GetCharacteristics(const vector<uint8_t>& key_blob,
118 vector<KeyCharacteristics>* key_characteristics);
119
120 void CheckCharacteristics(const vector<uint8_t>& key_blob,
121 const vector<KeyCharacteristics>& generate_characteristics);
122 void CheckAppIdCharacteristics(const vector<uint8_t>& key_blob, std::string_view app_id_string,
123 std::string_view app_data_string,
124 const vector<KeyCharacteristics>& generate_characteristics);
125
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]126 ErrorCode DeleteKey(vector<uint8_t>* key_blob, bool keep_key_blob = false);
127 ErrorCode DeleteKey(bool keep_key_blob = false);
128
129 ErrorCode DeleteAllKeys();
130
David Drysdaled2cc8c22021-04-15 13:29:45 +0100[diff] [blame]131 ErrorCode DestroyAttestationIds();
132
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]133 void CheckedDeleteKey(vector<uint8_t>* key_blob, bool keep_key_blob = false);
134 void CheckedDeleteKey();
135
136 ErrorCode Begin(KeyPurpose purpose, const vector<uint8_t>& key_blob,
137 const AuthorizationSet& in_params, AuthorizationSet* out_params,
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]138 std::shared_ptr<IKeyMintOperation>& op);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]139 ErrorCode Begin(KeyPurpose purpose, const vector<uint8_t>& key_blob,
140 const AuthorizationSet& in_params, AuthorizationSet* out_params);
141 ErrorCode Begin(KeyPurpose purpose, const AuthorizationSet& in_params,
142 AuthorizationSet* out_params);
143 ErrorCode Begin(KeyPurpose purpose, const AuthorizationSet& in_params);
144
Shawn Willden92d79c02021-02-19 07:31:55 -0700[diff] [blame]145 ErrorCode UpdateAad(const string& input);
146 ErrorCode Update(const string& input, string* output);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]147
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]148 ErrorCode Finish(const string& message, const string& signature, string* output);
Shawn Willden92d79c02021-02-19 07:31:55 -0700[diff] [blame]149 ErrorCode Finish(const string& message, string* output) {
150 return Finish(message, {} /* signature */, output);
151 }
152 ErrorCode Finish(string* output) { return Finish({} /* message */, output); }
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]153
154 ErrorCode Abort();
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]155 ErrorCode Abort(const shared_ptr<IKeyMintOperation>& op);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]156 void AbortIfNeeded();
157
158 string ProcessMessage(const vector<uint8_t>& key_blob, KeyPurpose operation,
159 const string& message, const AuthorizationSet& in_params,
160 AuthorizationSet* out_params);
Shawn Willden92d79c02021-02-19 07:31:55 -0700[diff] [blame]161 std::tuple<ErrorCode, std::string /* processedMessage */> ProcessMessage(
162 const vector<uint8_t>& key_blob, KeyPurpose operation, const std::string& message,
163 const AuthorizationSet& in_params);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]164 string SignMessage(const vector<uint8_t>& key_blob, const string& message,
165 const AuthorizationSet& params);
166 string SignMessage(const string& message, const AuthorizationSet& params);
167
168 string MacMessage(const string& message, Digest digest, size_t mac_length);
169
170 void CheckHmacTestVector(const string& key, const string& message, Digest digest,
171 const string& expected_mac);
172
173 void CheckAesCtrTestVector(const string& key, const string& nonce, const string& message,
174 const string& expected_ciphertext);
175
176 void CheckTripleDesTestVector(KeyPurpose purpose, BlockMode block_mode,
177 PaddingMode padding_mode, const string& key, const string& iv,
178 const string& input, const string& expected_output);
179
180 void VerifyMessage(const vector<uint8_t>& key_blob, const string& message,
181 const string& signature, const AuthorizationSet& params);
182 void VerifyMessage(const string& message, const string& signature,
183 const AuthorizationSet& params);
David Drysdaledf8f52e2021-05-06 08:10:58 +0100[diff] [blame]184 void LocalVerifyMessage(const string& message, const string& signature,
185 const AuthorizationSet& params);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]186
David Drysdale59cae642021-05-12 13:52:03 +0100[diff] [blame]187 string LocalRsaEncryptMessage(const string& message, const AuthorizationSet& params);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]188 string EncryptMessage(const vector<uint8_t>& key_blob, const string& message,
189 const AuthorizationSet& in_params, AuthorizationSet* out_params);
190 string EncryptMessage(const string& message, const AuthorizationSet& params,
191 AuthorizationSet* out_params);
192 string EncryptMessage(const string& message, const AuthorizationSet& params);
193 string EncryptMessage(const string& message, BlockMode block_mode, PaddingMode padding);
194 string EncryptMessage(const string& message, BlockMode block_mode, PaddingMode padding,
195 vector<uint8_t>* iv_out);
196 string EncryptMessage(const string& message, BlockMode block_mode, PaddingMode padding,
197 const vector<uint8_t>& iv_in);
198 string EncryptMessage(const string& message, BlockMode block_mode, PaddingMode padding,
199 uint8_t mac_length_bits, const vector<uint8_t>& iv_in);
David Drysdaled2cc8c22021-04-15 13:29:45 +0100[diff] [blame]200 string EncryptMessage(const string& message, BlockMode block_mode, PaddingMode padding,
201 uint8_t mac_length_bits);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]202
203 string DecryptMessage(const vector<uint8_t>& key_blob, const string& ciphertext,
204 const AuthorizationSet& params);
205 string DecryptMessage(const string& ciphertext, const AuthorizationSet& params);
206 string DecryptMessage(const string& ciphertext, BlockMode block_mode, PaddingMode padding_mode,
207 const vector<uint8_t>& iv);
208
209 std::pair<ErrorCode, vector<uint8_t>> UpgradeKey(const vector<uint8_t>& key_blob);
210
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]211 template <typename TagType>
212 std::tuple<KeyData /* aesKey */, KeyData /* hmacKey */, KeyData /* rsaKey */,
213 KeyData /* ecdsaKey */>
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]214 CreateTestKeys(
215 TagType tagToTest, ErrorCode expectedReturn,
216 std::function<void(AuthorizationSetBuilder*)> tagModifier =
217 [](AuthorizationSetBuilder*) {}) {
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]218 /* AES */
219 KeyData aesKeyData;
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]220 AuthorizationSetBuilder aesBuilder = AuthorizationSetBuilder()
221 .AesEncryptionKey(128)
222 .Authorization(tagToTest)
223 .BlockMode(BlockMode::ECB)
224 .Padding(PaddingMode::NONE)
225 .Authorization(TAG_NO_AUTH_REQUIRED);
226 tagModifier(&aesBuilder);
227 ErrorCode errorCode =
228 GenerateKey(aesBuilder, &aesKeyData.blob, &aesKeyData.characteristics);
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]229 EXPECT_EQ(expectedReturn, errorCode);
230
231 /* HMAC */
232 KeyData hmacKeyData;
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]233 AuthorizationSetBuilder hmacBuilder = AuthorizationSetBuilder()
234 .HmacKey(128)
235 .Authorization(tagToTest)
236 .Digest(Digest::SHA_2_256)
237 .Authorization(TAG_MIN_MAC_LENGTH, 128)
238 .Authorization(TAG_NO_AUTH_REQUIRED);
239 tagModifier(&hmacBuilder);
240 errorCode = GenerateKey(hmacBuilder, &hmacKeyData.blob, &hmacKeyData.characteristics);
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]241 EXPECT_EQ(expectedReturn, errorCode);
242
243 /* RSA */
244 KeyData rsaKeyData;
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]245 AuthorizationSetBuilder rsaBuilder = AuthorizationSetBuilder()
246 .RsaSigningKey(2048, 65537)
247 .Authorization(tagToTest)
248 .Digest(Digest::NONE)
249 .Padding(PaddingMode::NONE)
250 .Authorization(TAG_NO_AUTH_REQUIRED)
251 .SetDefaultValidity();
252 tagModifier(&rsaBuilder);
253 errorCode = GenerateKey(rsaBuilder, &rsaKeyData.blob, &rsaKeyData.characteristics);
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]254 EXPECT_EQ(expectedReturn, errorCode);
255
256 /* ECDSA */
257 KeyData ecdsaKeyData;
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]258 AuthorizationSetBuilder ecdsaBuilder = AuthorizationSetBuilder()
David Drysdaledf09e542021-06-08 15:46:11 +0100[diff] [blame]259 .EcdsaSigningKey(EcCurve::P_256)
David Drysdaleadfe6112021-05-27 12:00:53 +0100[diff] [blame]260 .Authorization(tagToTest)
261 .Digest(Digest::SHA_2_256)
262 .Authorization(TAG_NO_AUTH_REQUIRED)
263 .SetDefaultValidity();
264 tagModifier(&ecdsaBuilder);
265 errorCode = GenerateKey(ecdsaBuilder, &ecdsaKeyData.blob, &ecdsaKeyData.characteristics);
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]266 EXPECT_EQ(expectedReturn, errorCode);
267 return {aesKeyData, hmacKeyData, rsaKeyData, ecdsaKeyData};
268 }
Shawn Willden7f424372021-01-10 18:06:50 -0700[diff] [blame]269 bool IsSecure() const { return securityLevel_ != SecurityLevel::SOFTWARE; }
270 SecurityLevel SecLevel() const { return securityLevel_; }
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]271
272 vector<uint32_t> ValidKeySizes(Algorithm algorithm);
273 vector<uint32_t> InvalidKeySizes(Algorithm algorithm);
274
David Drysdale7de9feb2021-03-05 14:56:19 +0000[diff] [blame]275 vector<BlockMode> ValidBlockModes(Algorithm algorithm);
276 vector<PaddingMode> ValidPaddingModes(Algorithm algorithm, BlockMode blockMode);
277 vector<PaddingMode> InvalidPaddingModes(Algorithm algorithm, BlockMode blockMode);
278
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]279 vector<EcCurve> ValidCurves();
280 vector<EcCurve> InvalidCurves();
281
282 vector<Digest> ValidDigests(bool withNone, bool withMD5);
283
284 static vector<string> build_params() {
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]285 auto params = ::android::getAidlHalInstanceNames(IKeyMintDevice::descriptor);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]286 return params;
287 }
288
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]289 std::shared_ptr<IKeyMintOperation> op_;
Shawn Willden7f424372021-01-10 18:06:50 -0700[diff] [blame]290 vector<Certificate> cert_chain_;
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]291 vector<uint8_t> key_blob_;
Shawn Willden7f424372021-01-10 18:06:50 -0700[diff] [blame]292 vector<KeyCharacteristics> key_characteristics_;
293
294 const vector<KeyParameter>& SecLevelAuthorizations(
295 const vector<KeyCharacteristics>& key_characteristics);
296 inline const vector<KeyParameter>& SecLevelAuthorizations() {
297 return SecLevelAuthorizations(key_characteristics_);
298 }
Qi Wubeefae42021-01-28 23:16:37 +0800[diff] [blame]299 const vector<KeyParameter>& SecLevelAuthorizations(
300 const vector<KeyCharacteristics>& key_characteristics, SecurityLevel securityLevel);
301
Chirag Pathak9ea6a0a2021-02-01 23:54:27 +0000[diff] [blame]302 ErrorCode UseAesKey(const vector<uint8_t>& aesKeyBlob);
303 ErrorCode UseHmacKey(const vector<uint8_t>& hmacKeyBlob);
304 ErrorCode UseRsaKey(const vector<uint8_t>& rsaKeyBlob);
305 ErrorCode UseEcdsaKey(const vector<uint8_t>& ecdsaKeyBlob);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]306
Shawn Willdend659c7c2021-02-19 14:51:51 -0700[diff] [blame]307 protected:
Janis Danisevskis24c04702020-12-16 18:28:39 -0800[diff] [blame]308 std::shared_ptr<IKeyMintDevice> keymint_;
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]309 uint32_t os_version_;
310 uint32_t os_patch_level_;
David Drysdalebb3d85e2021-04-13 11:15:51 +0100[diff] [blame]311 uint32_t vendor_patch_level_;
David Drysdaled2cc8c22021-04-15 13:29:45 +0100[diff] [blame]312 bool timestamp_token_required_;
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]313
314 SecurityLevel securityLevel_;
315 string name_;
316 string author_;
317 long challenge_;
318};
319
David Drysdalea676c3b2021-06-14 14:46:02 +0100[diff] [blame]320// If the given property is available, add it to the tag set under the given tag ID.
321template <Tag tag>
322void add_tag_from_prop(AuthorizationSetBuilder* tags, TypedTag<TagType::BYTES, tag> ttag,
323 const char* prop) {
324 std::string prop_value = ::android::base::GetProperty(prop, /* default= */ "");
325 if (!prop_value.empty()) {
326 tags->Authorization(ttag, prop_value.data(), prop_value.size());
327 }
328}
329
Selene Huang6e46f142021-04-20 19:20:11 -0700[diff] [blame]330vector<uint8_t> build_serial_blob(const uint64_t serial_int);
331void verify_subject(const X509* cert, const string& subject, bool self_signed);
332void verify_serial(X509* cert, const uint64_t expected_serial);
333void verify_subject_and_serial(const Certificate& certificate, //
334 const uint64_t expected_serial, //
335 const string& subject, bool self_signed);
336
David Drysdale7dff4fc2021-12-10 10:10:52 +0000[diff] [blame^]337bool verify_attestation_record(int aidl_version, //
338 const string& challenge, //
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]339 const string& app_id, //
340 AuthorizationSet expected_sw_enforced, //
341 AuthorizationSet expected_hw_enforced, //
342 SecurityLevel security_level,
David Drysdale565ccc72021-10-11 12:49:50 +0100[diff] [blame]343 const vector<uint8_t>& attestation_cert,
344 vector<uint8_t>* unique_id = nullptr);
Selene Huang6e46f142021-04-20 19:20:11 -0700[diff] [blame]345
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]346string bin2hex(const vector<uint8_t>& data);
347X509_Ptr parse_cert_blob(const vector<uint8_t>& blob);
David Drysdalef0d516d2021-03-22 07:51:43 +0000[diff] [blame]348vector<uint8_t> make_name_from_str(const string& name);
David Drysdale4dc01072021-04-01 12:17:35 +0100[diff] [blame]349void check_maced_pubkey(const MacedPublicKey& macedPubKey, bool testMode,
350 vector<uint8_t>* payload_value);
351void p256_pub_key(const vector<uint8_t>& coseKeyData, EVP_PKEY_Ptr* signingKey);
352
David Drysdalef0d516d2021-03-22 07:51:43 +0000[diff] [blame]353AuthorizationSet HwEnforcedAuthorizations(const vector<KeyCharacteristics>& key_characteristics);
354AuthorizationSet SwEnforcedAuthorizations(const vector<KeyCharacteristics>& key_characteristics);
Eran Messeri03d7a1a2021-07-06 12:07:57 +0100[diff] [blame]355::testing::AssertionResult ChainSignaturesAreValid(const vector<Certificate>& chain,
356 bool strict_issuer_check = true);
Shawn Willden7c130392020-12-21 09:58:22 -0700[diff] [blame]357
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]358#define INSTANTIATE_KEYMINT_AIDL_TEST(name) \
359 INSTANTIATE_TEST_SUITE_P(PerInstance, name, \
360 testing::ValuesIn(KeyMintAidlTestBase::build_params()), \
Shawn Willden7e71f1e2021-04-01 16:44:22 -0600[diff] [blame]361 ::android::PrintInstanceNameToString); \
362 GTEST_ALLOW_UNINSTANTIATED_PARAMETERIZED_TEST(name);
Selene Huang31ab4042020-04-29 04:22:39 -0700[diff] [blame]363
Shawn Willden0e80b5d2020-12-17 09:07:27 -0700[diff] [blame]364} // namespace test
365
366} // namespace aidl::android::hardware::security::keymint