| // Copyright 2022, The Android Open Source Project |
| // |
| // Licensed under the Apache License, Version 2.0 (the "License"); |
| // you may not use this file except in compliance with the License. |
| // You may obtain a copy of the License at |
| // |
| // http://www.apache.org/licenses/LICENSE-2.0 |
| // |
| // Unless required by applicable law or agreed to in writing, software |
| // distributed under the License is distributed on an "AS IS" BASIS, |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| // See the License for the specific language governing permissions and |
| // limitations under the License. |
| |
| //! Integration test for Rialto. |
| |
| use android_system_virtualizationservice::{ |
| aidl::android::system::virtualizationservice::{ |
| VirtualMachineConfig::VirtualMachineConfig, |
| VirtualMachineRawConfig::VirtualMachineRawConfig, |
| }, |
| binder::{ParcelFileDescriptor, ProcessState}, |
| }; |
| use anyhow::{bail, Context, Result}; |
| use bssl_avf::{sha256, EcKey, PKey}; |
| use ciborium::value::Value; |
| use client_vm_csr::generate_attestation_key_and_csr; |
| use coset::{CborSerializable, CoseMac0, CoseSign}; |
| use cstr::cstr; |
| use diced_open_dice::{ |
| retry_bcc_format_config_descriptor, retry_bcc_main_flow, Config, DiceArtifacts, |
| DiceConfigValues, DiceMode, InputValues, OwnedDiceArtifacts, HASH_SIZE, HIDDEN_SIZE, |
| }; |
| use log::info; |
| use service_vm_comm::{ |
| ClientVmAttestationParams, Csr, CsrPayload, EcdsaP256KeyPair, GenerateCertificateRequestParams, |
| Request, RequestProcessingError, Response, VmType, |
| }; |
| use service_vm_manager::ServiceVm; |
| use std::fs; |
| use std::fs::File; |
| use std::io; |
| use std::panic; |
| use std::path::PathBuf; |
| use vmclient::VmInstance; |
| use x509_parser::{ |
| certificate::X509Certificate, |
| der_parser::{der::parse_der, oid, oid::Oid}, |
| prelude::FromDer, |
| x509::{AlgorithmIdentifier, SubjectPublicKeyInfo, X509Version}, |
| }; |
| |
| const UNSIGNED_RIALTO_PATH: &str = "/data/local/tmp/rialto_test/arm64/rialto_unsigned.bin"; |
| const INSTANCE_IMG_PATH: &str = "/data/local/tmp/rialto_test/arm64/instance.img"; |
| const TEST_CERT_CHAIN_PATH: &str = "testdata/rkp_cert_chain.der"; |
| /// The following data are generated randomly with urandom. |
| const CODE_HASH_MICRODROID: [u8; HASH_SIZE] = [ |
| 0x08, 0x78, 0xc2, 0x5b, 0xe7, 0xea, 0x3d, 0x62, 0x70, 0x22, 0xd9, 0x1c, 0x4f, 0x3c, 0x2e, 0x2f, |
| 0x0f, 0x97, 0xa4, 0x6f, 0x6d, 0xd5, 0xe6, 0x4a, 0x6d, 0xbe, 0x34, 0x2e, 0x56, 0x04, 0xaf, 0xef, |
| 0x74, 0x3f, 0xec, 0xb8, 0x44, 0x11, 0xf4, 0x2f, 0x05, 0xb2, 0x06, 0xa3, 0x0e, 0x75, 0xb7, 0x40, |
| 0x9a, 0x4c, 0x58, 0xab, 0x96, 0xe7, 0x07, 0x97, 0x07, 0x86, 0x5c, 0xa1, 0x42, 0x12, 0xf0, 0x34, |
| ]; |
| const AUTHORITY_HASH_MICRODROID: [u8; HASH_SIZE] = [ |
| 0xc7, 0x97, 0x5b, 0xa9, 0x9e, 0xbf, 0x0b, 0xeb, 0xe7, 0x7f, 0x69, 0x8f, 0x8e, 0xcf, 0x04, 0x7d, |
| 0x2c, 0x0f, 0x4d, 0xbe, 0xcb, 0xf5, 0xf1, 0x4c, 0x1d, 0x1c, 0xb7, 0x44, 0xdf, 0xf8, 0x40, 0x90, |
| 0x09, 0x65, 0xab, 0x01, 0x34, 0x3e, 0xc2, 0xc4, 0xf7, 0xa2, 0x3a, 0x5c, 0x4e, 0x76, 0x4f, 0x42, |
| 0xa8, 0x6c, 0xc9, 0xf1, 0x7b, 0x12, 0x80, 0xa4, 0xef, 0xa2, 0x4d, 0x72, 0xa1, 0x21, 0xe2, 0x47, |
| ]; |
| |
| #[test] |
| fn process_requests_in_protected_vm() -> Result<()> { |
| check_processing_requests(VmType::ProtectedVm) |
| } |
| |
| #[test] |
| fn process_requests_in_non_protected_vm() -> Result<()> { |
| check_processing_requests(VmType::NonProtectedVm) |
| } |
| |
| fn check_processing_requests(vm_type: VmType) -> Result<()> { |
| let mut vm = start_service_vm(vm_type)?; |
| |
| check_processing_reverse_request(&mut vm)?; |
| let key_pair = check_processing_generating_key_pair_request(&mut vm)?; |
| check_processing_generating_certificate_request(&mut vm, &key_pair.maced_public_key)?; |
| check_attestation_request(&mut vm, &key_pair, vm_type)?; |
| Ok(()) |
| } |
| |
| fn check_processing_reverse_request(vm: &mut ServiceVm) -> Result<()> { |
| let message = "abc".repeat(500); |
| let request = Request::Reverse(message.as_bytes().to_vec()); |
| |
| let response = vm.process_request(request)?; |
| info!("Received response: {response:?}."); |
| |
| let expected_response: Vec<u8> = message.as_bytes().iter().rev().cloned().collect(); |
| assert_eq!(Response::Reverse(expected_response), response); |
| Ok(()) |
| } |
| |
| fn check_processing_generating_key_pair_request(vm: &mut ServiceVm) -> Result<EcdsaP256KeyPair> { |
| let request = Request::GenerateEcdsaP256KeyPair; |
| |
| let response = vm.process_request(request)?; |
| info!("Received response: {response:?}."); |
| |
| match response { |
| Response::GenerateEcdsaP256KeyPair(key_pair) => { |
| assert_array_has_nonzero(&key_pair.maced_public_key); |
| assert_array_has_nonzero(&key_pair.key_blob); |
| Ok(key_pair) |
| } |
| _ => bail!("Incorrect response type: {response:?}"), |
| } |
| } |
| |
| fn assert_array_has_nonzero(v: &[u8]) { |
| assert!(v.iter().any(|&x| x != 0)) |
| } |
| |
| fn check_processing_generating_certificate_request( |
| vm: &mut ServiceVm, |
| maced_public_key: &[u8], |
| ) -> Result<()> { |
| let params = GenerateCertificateRequestParams { |
| keys_to_sign: vec![maced_public_key.to_vec()], |
| challenge: vec![], |
| }; |
| let request = Request::GenerateCertificateRequest(params); |
| |
| let response = vm.process_request(request)?; |
| info!("Received response: {response:?}."); |
| |
| match response { |
| Response::GenerateCertificateRequest(csr) => check_csr(csr), |
| _ => bail!("Incorrect response type: {response:?}"), |
| } |
| } |
| |
| fn check_attestation_request( |
| vm: &mut ServiceVm, |
| remotely_provisioned_key_pair: &EcdsaP256KeyPair, |
| vm_type: VmType, |
| ) -> Result<()> { |
| /// The following data was generated randomly with urandom. |
| const CHALLENGE: [u8; 16] = [ |
| 0x7d, 0x86, 0x58, 0x79, 0x3a, 0x09, 0xdf, 0x1c, 0xa5, 0x80, 0x80, 0x15, 0x2b, 0x13, 0x17, |
| 0x5c, |
| ]; |
| let dice_artifacts = diced_sample_inputs::make_sample_bcc_and_cdis()?; |
| let dice_artifacts = extend_dice_artifacts_with_microdroid_payload(&dice_artifacts)?; |
| let attestation_data = generate_attestation_key_and_csr(&CHALLENGE, &dice_artifacts)?; |
| let cert_chain = fs::read(TEST_CERT_CHAIN_PATH)?; |
| let (remaining, cert) = X509Certificate::from_der(&cert_chain)?; |
| |
| // Builds the mock parameters for the client VM attestation. |
| // The `csr` and `remotely_provisioned_key_blob` parameters are extracted from the same |
| // libraries as in production. |
| // The `remotely_provisioned_cert` parameter is an RKP certificate extracted from a test |
| // certificate chain retrieved from RKPD. |
| let params = ClientVmAttestationParams { |
| csr: attestation_data.csr.clone().into_cbor_vec()?, |
| remotely_provisioned_key_blob: remotely_provisioned_key_pair.key_blob.to_vec(), |
| remotely_provisioned_cert: cert_chain[..(cert_chain.len() - remaining.len())].to_vec(), |
| }; |
| let request = Request::RequestClientVmAttestation(params); |
| |
| let response = vm.process_request(request)?; |
| info!("Received response: {response:?}."); |
| |
| match response { |
| Response::RequestClientVmAttestation(certificate) => { |
| // The end-to-end test for non-protected VM attestation works because both the service |
| // VM and the client VM use the same fake DICE chain. |
| assert_eq!(vm_type, VmType::NonProtectedVm); |
| check_certificate_for_client_vm( |
| &certificate, |
| &remotely_provisioned_key_pair.maced_public_key, |
| &attestation_data.csr, |
| &cert, |
| )?; |
| Ok(()) |
| } |
| Response::Err(RequestProcessingError::InvalidDiceChain) => { |
| // The end-to-end test for protected VM attestation doesn't work because the service VM |
| // compares the fake DICE chain in the CSR with the real DICE chain. |
| // We cannot generate a valid DICE chain with the same payloads up to pvmfw. |
| assert_eq!(vm_type, VmType::ProtectedVm); |
| Ok(()) |
| } |
| _ => bail!("Incorrect response type: {response:?}"), |
| } |
| } |
| |
| fn extend_dice_artifacts_with_microdroid_payload( |
| dice_artifacts: &dyn DiceArtifacts, |
| ) -> Result<OwnedDiceArtifacts> { |
| let config_values = DiceConfigValues { |
| component_name: Some(cstr!("Microdroid payload")), |
| component_version: Some(1), |
| resettable: true, |
| ..Default::default() |
| }; |
| let config_descriptor = retry_bcc_format_config_descriptor(&config_values)?; |
| let input_values = InputValues::new( |
| CODE_HASH_MICRODROID, |
| Config::Descriptor(config_descriptor.as_slice()), |
| AUTHORITY_HASH_MICRODROID, |
| DiceMode::kDiceModeDebug, |
| [0u8; HIDDEN_SIZE], // hidden |
| ); |
| retry_bcc_main_flow( |
| dice_artifacts.cdi_attest(), |
| dice_artifacts.cdi_seal(), |
| dice_artifacts.bcc().unwrap(), |
| &input_values, |
| ) |
| .context("Failed to run BCC main flow for Microdroid") |
| } |
| |
| fn check_certificate_for_client_vm( |
| certificate: &[u8], |
| maced_public_key: &[u8], |
| csr: &Csr, |
| parent_certificate: &X509Certificate, |
| ) -> Result<()> { |
| let cose_mac = CoseMac0::from_slice(maced_public_key)?; |
| let authority_public_key = EcKey::from_cose_public_key(&cose_mac.payload.unwrap()).unwrap(); |
| let (remaining, cert) = X509Certificate::from_der(certificate)?; |
| assert!(remaining.is_empty()); |
| |
| // Checks the certificate signature against the authority public key. |
| const ECDSA_WITH_SHA_256: Oid<'static> = oid!(1.2.840 .10045 .4 .3 .2); |
| let expected_algorithm = |
| AlgorithmIdentifier { algorithm: ECDSA_WITH_SHA_256, parameters: None }; |
| assert_eq!(expected_algorithm, cert.signature_algorithm); |
| let digest = sha256(cert.tbs_certificate.as_ref()).unwrap(); |
| authority_public_key |
| .ecdsa_verify(cert.signature_value.as_ref(), &digest) |
| .expect("Failed to verify the certificate signature with the authority public key"); |
| |
| // Checks that the certificate's subject public key is equal to the key in the CSR. |
| let cose_sign = CoseSign::from_slice(&csr.signed_csr_payload)?; |
| let csr_payload = |
| cose_sign.payload.as_ref().and_then(|v| CsrPayload::from_cbor_slice(v).ok()).unwrap(); |
| let subject_public_key = EcKey::from_cose_public_key(&csr_payload.public_key).unwrap(); |
| let expected_spki_data = |
| PKey::try_from(subject_public_key).unwrap().subject_public_key_info().unwrap(); |
| let (remaining, expected_spki) = SubjectPublicKeyInfo::from_der(&expected_spki_data)?; |
| assert!(remaining.is_empty()); |
| assert_eq!(&expected_spki, cert.public_key()); |
| |
| // Checks the certificate extension. |
| const ATTESTATION_EXTENSION_OID: Oid<'static> = oid!(1.3.6 .1 .4 .1 .11129 .2 .1 .29 .1); |
| let extensions = cert.extensions(); |
| assert_eq!(1, extensions.len()); |
| let extension = &extensions[0]; |
| assert_eq!(ATTESTATION_EXTENSION_OID, extension.oid); |
| assert!(!extension.critical); |
| let (remaining, extension) = parse_der(extension.value)?; |
| assert!(remaining.is_empty()); |
| let attestation_ext = extension.as_sequence()?; |
| assert_eq!(2, attestation_ext.len()); |
| assert_eq!(csr_payload.challenge, attestation_ext[0].as_slice()?); |
| let is_vm_secure = attestation_ext[1].as_bool()?; |
| assert!( |
| !is_vm_secure, |
| "The VM shouldn't be secure as the last payload added in the test is in Debug mode" |
| ); |
| |
| // Checks other fields on the certificate |
| assert_eq!(X509Version::V3, cert.version()); |
| assert_eq!(parent_certificate.validity(), cert.validity()); |
| assert_eq!( |
| String::from("CN=Android Protected Virtual Machine Key"), |
| cert.subject().to_string() |
| ); |
| assert_eq!(parent_certificate.subject(), cert.issuer()); |
| |
| Ok(()) |
| } |
| |
| /// TODO(b/300625792): Check the CSR with libhwtrust once the CSR is complete. |
| fn check_csr(csr: Vec<u8>) -> Result<()> { |
| let mut reader = io::Cursor::new(csr); |
| let csr: Value = ciborium::from_reader(&mut reader)?; |
| match csr { |
| Value::Array(arr) => { |
| assert_eq!(4, arr.len()); |
| } |
| _ => bail!("Incorrect CSR format: {csr:?}"), |
| } |
| Ok(()) |
| } |
| |
| fn start_service_vm(vm_type: VmType) -> Result<ServiceVm> { |
| android_logger::init_once( |
| android_logger::Config::default().with_tag("rialto").with_min_level(log::Level::Debug), |
| ); |
| // Redirect panic messages to logcat. |
| panic::set_hook(Box::new(|panic_info| { |
| log::error!("{}", panic_info); |
| })); |
| // We need to start the thread pool for Binder to work properly, especially link_to_death. |
| ProcessState::start_thread_pool(); |
| ServiceVm::start_vm(vm_instance(vm_type)?, vm_type) |
| } |
| |
| fn vm_instance(vm_type: VmType) -> Result<VmInstance> { |
| match vm_type { |
| VmType::ProtectedVm => { |
| service_vm_manager::protected_vm_instance(PathBuf::from(INSTANCE_IMG_PATH)) |
| } |
| VmType::NonProtectedVm => nonprotected_vm_instance(), |
| } |
| } |
| |
| fn nonprotected_vm_instance() -> Result<VmInstance> { |
| let rialto = File::open(UNSIGNED_RIALTO_PATH).context("Failed to open Rialto kernel binary")?; |
| let config = VirtualMachineConfig::RawConfig(VirtualMachineRawConfig { |
| name: String::from("Non protected rialto"), |
| bootloader: Some(ParcelFileDescriptor::new(rialto)), |
| protectedVm: false, |
| memoryMib: 300, |
| platformVersion: "~1.0".to_string(), |
| ..Default::default() |
| }); |
| let console = Some(service_vm_manager::android_log_fd()?); |
| let log = Some(service_vm_manager::android_log_fd()?); |
| let virtmgr = vmclient::VirtualizationService::new().context("Failed to spawn VirtMgr")?; |
| let service = virtmgr.connect().context("Failed to connect to VirtMgr")?; |
| info!("Connected to VirtMgr for service VM"); |
| VmInstance::create(service.as_ref(), &config, console, /* consoleIn */ None, log, None) |
| .context("Failed to create VM") |
| } |