Blame - pvmfw/avb/tests/api_test.rs - android_packages_modules_Virtualization

blob: f0967eb423e87c97a8387d7da7d39149a3378758 [file] [log] [blame]

Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	1	/*
				2	* Copyright (C) 2022 The Android Open Source Project
				3	*
				4	* Licensed under the Apache License, Version 2.0 (the "License");
				5	* you may not use this file except in compliance with the License.
				6	* You may obtain a copy of the License at
				7	*
				8	* http://www.apache.org/licenses/LICENSE-2.0
				9	*
				10	* Unless required by applicable law or agreed to in writing, software
				11	* distributed under the License is distributed on an "AS IS" BASIS,
				12	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	* See the License for the specific language governing permissions and
				14	* limitations under the License.
				15	*/
				16
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	17	mod utils;
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	18
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	19	use anyhow::Result;
				20	use avb_bindgen::{AvbFooter, AvbVBMetaImageHeader};
Alice Wang	5c1a756	2023-01-13 17:19:57 +0000	[diff] [blame^]	21	use pvmfw_avb::{AvbSlotVerifyError, DebugLevel};
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	22	use std::{fs, mem::size_of, ptr};
				23	use utils::*;
				24
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	25	const TEST_IMG_WITH_ONE_HASHDESC_PATH: &str = "test_image_with_one_hashdesc.img";
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	26	const TEST_IMG_WITH_PROP_DESC_PATH: &str = "test_image_with_prop_desc.img";
				27	const TEST_IMG_WITH_NON_INITRD_HASHDESC_PATH: &str = "test_image_with_non_initrd_hashdesc.img";
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	28	const UNSIGNED_TEST_IMG_PATH: &str = "unsigned_test.img";
				29
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	30	const RANDOM_FOOTER_POS: usize = 30;
				31
				32	/// This test uses the Microdroid payload compiled on the fly to check that
				33	/// the latest payload can be verified successfully.
				34	#[test]
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	35	fn latest_normal_payload_passes_verification() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	36	assert_payload_verification_with_initrd_eq(
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	37	&load_latest_signed_kernel()?,
				38	&load_latest_initrd_normal()?,
				39	&load_trusted_public_key()?,
Alice Wang	5c1a756	2023-01-13 17:19:57 +0000	[diff] [blame^]	40	Ok(DebugLevel::None),
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	41	)
				42	}
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	43
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	44	#[test]
				45	fn latest_debug_payload_passes_verification() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	46	assert_payload_verification_with_initrd_eq(
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	47	&load_latest_signed_kernel()?,
				48	&load_latest_initrd_debug()?,
				49	&load_trusted_public_key()?,
Alice Wang	5c1a756	2023-01-13 17:19:57 +0000	[diff] [blame^]	50	Ok(DebugLevel::Full),
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	51	)
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	52	}
				53
				54	#[test]
				55	fn payload_expecting_no_initrd_passes_verification_with_no_initrd() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	56	assert_payload_verification_eq(
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	57	&fs::read(TEST_IMG_WITH_ONE_HASHDESC_PATH)?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	58	/initrd=/ None,
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	59	&load_trusted_public_key()?,
Alice Wang	5c1a756	2023-01-13 17:19:57 +0000	[diff] [blame^]	60	Ok(DebugLevel::None),
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	61	)
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	62	}
				63
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	64	#[test]
				65	fn payload_with_non_initrd_descriptor_passes_verification_with_no_initrd() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	66	assert_payload_verification_eq(
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	67	&fs::read(TEST_IMG_WITH_NON_INITRD_HASHDESC_PATH)?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	68	/initrd=/ None,
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	69	&load_trusted_public_key()?,
Alice Wang	5c1a756	2023-01-13 17:19:57 +0000	[diff] [blame^]	70	Ok(DebugLevel::None),
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	71	)
				72	}
				73
				74	#[test]
				75	fn payload_with_prop_descriptor_fails_verification_with_no_initrd() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	76	assert_payload_verification_eq(
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	77	&fs::read(TEST_IMG_WITH_PROP_DESC_PATH)?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	78	/initrd=/ None,
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	79	&load_trusted_public_key()?,
				80	Err(AvbSlotVerifyError::InvalidMetadata),
				81	)
				82	}
				83
				84	#[test]
				85	fn payload_expecting_initrd_fails_verification_with_no_initrd() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	86	assert_payload_verification_eq(
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	87	&load_latest_signed_kernel()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	88	/initrd=/ None,
Alice Wang	86383df	2023-01-11 10:03:56 +0000	[diff] [blame]	89	&load_trusted_public_key()?,
				90	Err(AvbSlotVerifyError::InvalidMetadata),
				91	)
				92	}
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	93
				94	#[test]
				95	fn payload_with_empty_public_key_fails_verification() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	96	assert_payload_verification_with_initrd_eq(
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	97	&load_latest_signed_kernel()?,
				98	&load_latest_initrd_normal()?,
				99	/trusted_public_key=/ &[0u8; 0],
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	100	Err(AvbSlotVerifyError::PublicKeyRejected),
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	101	)
				102	}
				103
				104	#[test]
				105	fn payload_with_an_invalid_public_key_fails_verification() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	106	assert_payload_verification_with_initrd_eq(
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	107	&load_latest_signed_kernel()?,
				108	&load_latest_initrd_normal()?,
				109	/trusted_public_key=/ &[0u8; 512],
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	110	Err(AvbSlotVerifyError::PublicKeyRejected),
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	111	)
				112	}
				113
				114	#[test]
				115	fn payload_with_a_different_valid_public_key_fails_verification() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	116	assert_payload_verification_with_initrd_eq(
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	117	&load_latest_signed_kernel()?,
				118	&load_latest_initrd_normal()?,
				119	&fs::read(PUBLIC_KEY_RSA2048_PATH)?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	120	Err(AvbSlotVerifyError::PublicKeyRejected),
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	121	)
				122	}
				123
				124	#[test]
Alice Wang	5c1a756	2023-01-13 17:19:57 +0000	[diff] [blame^]	125	fn payload_with_an_invalid_initrd_fails_verification() -> Result<()> {
				126	assert_payload_verification_with_initrd_eq(
				127	&load_latest_signed_kernel()?,
				128	/initrd=/ &fs::read(UNSIGNED_TEST_IMG_PATH)?,
				129	&load_trusted_public_key()?,
				130	Err(AvbSlotVerifyError::Verification),
				131	)
				132	}
				133
				134	#[test]
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	135	fn unsigned_kernel_fails_verification() -> Result<()> {
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	136	assert_payload_verification_with_initrd_eq(
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	137	&fs::read(UNSIGNED_TEST_IMG_PATH)?,
				138	&load_latest_initrd_normal()?,
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	139	&load_trusted_public_key()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	140	Err(AvbSlotVerifyError::Io),
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	141	)
				142	}
				143
				144	#[test]
				145	fn tampered_kernel_fails_verification() -> Result<()> {
				146	let mut kernel = load_latest_signed_kernel()?;
				147	kernel[1] = !kernel[1]; // Flip the bits
				148
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	149	assert_payload_verification_with_initrd_eq(
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	150	&kernel,
				151	&load_latest_initrd_normal()?,
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	152	&load_trusted_public_key()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	153	Err(AvbSlotVerifyError::Verification),
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	154	)
				155	}
				156
				157	#[test]
				158	fn tampered_kernel_footer_fails_verification() -> Result<()> {
				159	let mut kernel = load_latest_signed_kernel()?;
				160	let avb_footer_index = kernel.len() - size_of::<AvbFooter>() + RANDOM_FOOTER_POS;
				161	kernel[avb_footer_index] = !kernel[avb_footer_index];
				162
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	163	assert_payload_verification_with_initrd_eq(
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	164	&kernel,
				165	&load_latest_initrd_normal()?,
Alice Wang	4e55dd9	2023-01-11 10:17:01 +0000	[diff] [blame]	166	&load_trusted_public_key()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	167	Err(AvbSlotVerifyError::InvalidMetadata),
Alice Wang	bf7fadd	2023-01-13 12:18:24 +0000	[diff] [blame]	168	)
				169	}
				170
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	171	#[test]
				172	fn tampered_vbmeta_fails_verification() -> Result<()> {
				173	let mut kernel = load_latest_signed_kernel()?;
				174	let footer = extract_avb_footer(&kernel)?;
				175	let vbmeta_index: usize = (footer.vbmeta_offset + 1).try_into()?;
				176
				177	kernel[vbmeta_index] = !kernel[vbmeta_index]; // Flip the bits
				178
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	179	assert_payload_verification_with_initrd_eq(
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	180	&kernel,
				181	&load_latest_initrd_normal()?,
				182	&load_trusted_public_key()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	183	Err(AvbSlotVerifyError::InvalidMetadata),
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	184	)
				185	}
				186
				187	#[test]
				188	fn vbmeta_with_public_key_overwritten_fails_verification() -> Result<()> {
				189	let mut kernel = load_latest_signed_kernel()?;
				190	let footer = extract_avb_footer(&kernel)?;
				191	let vbmeta_header = extract_vbmeta_header(&kernel, &footer)?;
				192	let public_key_offset = footer.vbmeta_offset as usize
				193	+ size_of::<AvbVBMetaImageHeader>()
				194	+ vbmeta_header.authentication_data_block_size as usize
				195	+ vbmeta_header.public_key_offset as usize;
				196	let public_key_size: usize = vbmeta_header.public_key_size.try_into()?;
				197	let empty_public_key = vec![0u8; public_key_size];
				198
				199	kernel[public_key_offset..(public_key_offset + public_key_size)]
				200	.copy_from_slice(&empty_public_key);
				201
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	202	assert_payload_verification_with_initrd_eq(
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	203	&kernel,
				204	&load_latest_initrd_normal()?,
				205	&empty_public_key,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	206	Err(AvbSlotVerifyError::Verification),
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	207	)?;
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	208	assert_payload_verification_with_initrd_eq(
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	209	&kernel,
				210	&load_latest_initrd_normal()?,
				211	&load_trusted_public_key()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	212	Err(AvbSlotVerifyError::Verification),
Alice Wang	58dac08	2023-01-13 13:03:59 +0000	[diff] [blame]	213	)
				214	}
				215
Alice Wang	f06bfd7	2023-01-19 09:24:21 +0000	[diff] [blame]	216	#[test]
				217	fn vbmeta_with_verification_flag_disabled_fails_verification() -> Result<()> {
				218	// From external/avb/libavb/avb_vbmeta_image.h
				219	const AVB_VBMETA_IMAGE_FLAGS_VERIFICATION_DISABLED: u32 = 2;
				220
				221	// Arrange.
				222	let mut kernel = load_latest_signed_kernel()?;
				223	let footer = extract_avb_footer(&kernel)?;
				224	let vbmeta_header = extract_vbmeta_header(&kernel, &footer)?;
				225	assert_eq!(
				226	0, vbmeta_header.flags as u32,
				227	"The disable flag should not be set in the latest kernel."
				228	);
				229	let flags_addr = ptr::addr_of!(vbmeta_header.flags) as *const u8;
				230	// SAFETY: It is safe as both raw pointers `flags_addr` and `vbmeta_header` are not null.
				231	let flags_offset = unsafe { flags_addr.offset_from(ptr::addr_of!(vbmeta_header) as *const u8) };
				232	let flags_offset = usize::try_from(footer.vbmeta_offset)? + usize::try_from(flags_offset)?;
				233
				234	// Act.
				235	kernel[flags_offset..(flags_offset + size_of::<u32>())]
				236	.copy_from_slice(&AVB_VBMETA_IMAGE_FLAGS_VERIFICATION_DISABLED.to_be_bytes());
				237
				238	// Assert.
				239	let vbmeta_header = extract_vbmeta_header(&kernel, &footer)?;
				240	assert_eq!(
				241	AVB_VBMETA_IMAGE_FLAGS_VERIFICATION_DISABLED, vbmeta_header.flags as u32,
				242	"VBMeta verification flag should be disabled now."
				243	);
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	244	assert_payload_verification_with_initrd_eq(
Alice Wang	f06bfd7	2023-01-19 09:24:21 +0000	[diff] [blame]	245	&kernel,
				246	&load_latest_initrd_normal()?,
				247	&load_trusted_public_key()?,
Alice Wang	2925b0a	2023-01-19 10:44:24 +0000	[diff] [blame]	248	Err(AvbSlotVerifyError::Verification),
Alice Wang	f06bfd7	2023-01-19 09:24:21 +0000	[diff] [blame]	249	)
				250	}