Blame - google_keymaster_test.cpp - fp2-dev/platform/system/keymaster

blob: 1cc61d77ff835bb54db2de9eada798b5e954973c [file] [log] [blame]

Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	1	/*
				2	* Copyright (C) 2014 The Android Open Source Project
				3	*
				4	* Licensed under the Apache License, Version 2.0 (the "License");
				5	* you may not use this file except in compliance with the License.
				6	* You may obtain a copy of the License at
				7	*
				8	* http://www.apache.org/licenses/LICENSE-2.0
				9	*
				10	* Unless required by applicable law or agreed to in writing, software
				11	* distributed under the License is distributed on an "AS IS" BASIS,
				12	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
				13	* See the License for the specific language governing permissions and
				14	* limitations under the License.
				15	*/
				16
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	17	#include <string>
				18	#include <fstream>
				19
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	20	#include <gtest/gtest.h>
Shawn Willden	7636471	2014-08-11 17:48:04 -0600	[diff] [blame]	21
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	22	#include <openssl/engine.h>
				23
Shawn Willden	98d9b92	2014-08-26 08:14:10 -0600	[diff] [blame]	24	#include <keymaster/google_keymaster_utils.h>
				25	#include <keymaster/keymaster_tags.h>
				26
Shawn Willden	7636471	2014-08-11 17:48:04 -0600	[diff] [blame]	27	#include "google_keymaster_test_utils.h"
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	28	#include "google_softkeymaster.h"
				29
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	30	using std::string;
				31	using std::ifstream;
				32	using std::istreambuf_iterator;
				33
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	34	int main(int argc, char** argv) {
				35	::testing::InitGoogleTest(&argc, argv);
				36	int result = RUN_ALL_TESTS();
				37	// Clean up stuff OpenSSL leaves around, so Valgrind doesn't complain.
				38	CRYPTO_cleanup_all_ex_data();
Shawn Willden	7c0a82b	2014-09-17 12:57:32 -0600	[diff] [blame]	39	ERR_remove_thread_state(NULL);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	40	ERR_free_strings();
				41	return result;
				42	}
				43
				44	namespace keymaster {
				45	namespace test {
				46
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	47	// Note that these DSA generator, p and q values must match the values from dsa_privkey_pk8.der.
				48	const uint8_t dsa_g[] = {
				49	0x19, 0x1C, 0x71, 0xFD, 0xE0, 0x03, 0x0C, 0x43, 0xD9, 0x0B, 0xF6, 0xCD, 0xD6, 0xA9, 0x70, 0xE7,
				50	0x37, 0x86, 0x3A, 0x78, 0xE9, 0xA7, 0x47, 0xA7, 0x47, 0x06, 0x88, 0xB1, 0xAF, 0xD7, 0xF3, 0xF1,
				51	0xA1, 0xD7, 0x00, 0x61, 0x28, 0x88, 0x31, 0x48, 0x60, 0xD8, 0x11, 0xEF, 0xA5, 0x24, 0x1A, 0x81,
				52	0xC4, 0x2A, 0xE2, 0xEA, 0x0E, 0x36, 0xD2, 0xD2, 0x05, 0x84, 0x37, 0xCF, 0x32, 0x7D, 0x09, 0xE6,
				53	0x0F, 0x8B, 0x0C, 0xC8, 0xC2, 0xA4, 0xB1, 0xDC, 0x80, 0xCA, 0x68, 0xDF, 0xAF, 0xD2, 0x90, 0xC0,
				54	0x37, 0x58, 0x54, 0x36, 0x8F, 0x49, 0xB8, 0x62, 0x75, 0x8B, 0x48, 0x47, 0xC0, 0xBE, 0xF7, 0x9A,
				55	0x92, 0xA6, 0x68, 0x05, 0xDA, 0x9D, 0xAF, 0x72, 0x9A, 0x67, 0xB3, 0xB4, 0x14, 0x03, 0xAE, 0x4F,
				56	0x4C, 0x76, 0xB9, 0xD8, 0x64, 0x0A, 0xBA, 0x3B, 0xA8, 0x00, 0x60, 0x4D, 0xAE, 0x81, 0xC3, 0xC5,
				57	};
				58	const uint8_t dsa_p[] = {
				59	0xA3, 0xF3, 0xE9, 0xB6, 0x7E, 0x7D, 0x88, 0xF6, 0xB7, 0xE5, 0xF5, 0x1F, 0x3B, 0xEE, 0xAC, 0xD7,
				60	0xAD, 0xBC, 0xC9, 0xD1, 0x5A, 0xF8, 0x88, 0xC4, 0xEF, 0x6E, 0x3D, 0x74, 0x19, 0x74, 0xE7, 0xD8,
				61	0xE0, 0x26, 0x44, 0x19, 0x86, 0xAF, 0x19, 0xDB, 0x05, 0xE9, 0x3B, 0x8B, 0x58, 0x58, 0xDE, 0xE5,
				62	0x4F, 0x48, 0x15, 0x01, 0xEA, 0xE6, 0x83, 0x52, 0xD7, 0xC1, 0x21, 0xDF, 0xB9, 0xB8, 0x07, 0x66,
				63	0x50, 0xFB, 0x3A, 0x0C, 0xB3, 0x85, 0xEE, 0xBB, 0x04, 0x5F, 0xC2, 0x6D, 0x6D, 0x95, 0xFA, 0x11,
				64	0x93, 0x1E, 0x59, 0x5B, 0xB1, 0x45, 0x8D, 0xE0, 0x3D, 0x73, 0xAA, 0xF2, 0x41, 0x14, 0x51, 0x07,
				65	0x72, 0x3D, 0xA2, 0xF7, 0x58, 0xCD, 0x11, 0xA1, 0x32, 0xCF, 0xDA, 0x42, 0xB7, 0xCC, 0x32, 0x80,
				66	0xDB, 0x87, 0x82, 0xEC, 0x42, 0xDB, 0x5A, 0x55, 0x24, 0x24, 0xA2, 0xD1, 0x55, 0x29, 0xAD, 0xEB,
				67	};
				68	const uint8_t dsa_q[] = {
				69	0xEB, 0xEA, 0x17, 0xD2, 0x09, 0xB3, 0xD7, 0x21, 0x9A, 0x21,
				70	0x07, 0x82, 0x8F, 0xAB, 0xFE, 0x88, 0x71, 0x68, 0xF7, 0xE3,
				71	};
				72
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	73	class KeymasterTest : public testing::Test {
				74	protected:
Shawn Willden	2f3be36	2014-08-25 11:31:39 -0600	[diff] [blame]	75	KeymasterTest() : device(5, new StdoutLogger) { RAND_seed("foobar", 6); }
Shawn Willden	da8485e	2014-08-17 08:00:01 -0600	[diff] [blame]	76	~KeymasterTest() {}
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	77
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	78	template <typename T> void ExpectEmptyResponse(const SupportedResponse<T>& response) {
				79	EXPECT_EQ(KM_ERROR_OK, response.error);
				80	EXPECT_EQ(0U, response.results_length);
				81	}
				82
				83	template <typename T> void ExpectResponseContains(T val, const SupportedResponse<T>& response) {
				84	EXPECT_EQ(KM_ERROR_OK, response.error);
				85	EXPECT_EQ(1U, response.results_length);
				86	EXPECT_EQ(val, response.results[0]);
				87	}
				88
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	89	GoogleSoftKeymaster device;
				90	};
				91
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	92	typedef KeymasterTest CheckSupported;
				93	TEST_F(CheckSupported, SupportedAlgorithms) {
				94	// Shouldn't blow up on NULL.
				95	device.SupportedAlgorithms(NULL);
				96
				97	SupportedResponse<keymaster_algorithm_t> response;
				98	device.SupportedAlgorithms(&response);
				99	EXPECT_EQ(KM_ERROR_OK, response.error);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	100	EXPECT_EQ(4U, response.results_length);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	101	EXPECT_EQ(KM_ALGORITHM_RSA, response.results[0]);
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	102	EXPECT_EQ(KM_ALGORITHM_DSA, response.results[1]);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	103	EXPECT_EQ(KM_ALGORITHM_ECDSA, response.results[2]);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	104	EXPECT_EQ(KM_ALGORITHM_AES, response.results[3]);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	105	}
				106
				107	TEST_F(CheckSupported, SupportedBlockModes) {
				108	// Shouldn't blow up on NULL.
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	109	device.SupportedBlockModes(KM_ALGORITHM_RSA, KM_PURPOSE_ENCRYPT, NULL);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	110
				111	SupportedResponse<keymaster_block_mode_t> response;
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	112	device.SupportedBlockModes(KM_ALGORITHM_RSA, KM_PURPOSE_ENCRYPT, &response);
				113	EXPECT_EQ(KM_ERROR_UNSUPPORTED_BLOCK_MODE, response.error);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	114
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	115	device.SupportedBlockModes(KM_ALGORITHM_DSA, KM_PURPOSE_ENCRYPT, &response);
				116	EXPECT_EQ(KM_ERROR_UNSUPPORTED_BLOCK_MODE, response.error);
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	117
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	118	device.SupportedBlockModes(KM_ALGORITHM_ECDSA, KM_PURPOSE_ENCRYPT, &response);
				119	EXPECT_EQ(KM_ERROR_UNSUPPORTED_BLOCK_MODE, response.error);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	120
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	121	device.SupportedBlockModes(KM_ALGORITHM_AES, KM_PURPOSE_ENCRYPT, &response);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	122	EXPECT_EQ(KM_ERROR_UNSUPPORTED_BLOCK_MODE, response.error);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	123	}
				124
				125	TEST_F(CheckSupported, SupportedPaddingModes) {
				126	// Shouldn't blow up on NULL.
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	127	device.SupportedPaddingModes(KM_ALGORITHM_RSA, KM_PURPOSE_ENCRYPT, NULL);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	128
				129	SupportedResponse<keymaster_padding_t> response;
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	130	device.SupportedPaddingModes(KM_ALGORITHM_RSA, KM_PURPOSE_SIGN, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	131	ExpectResponseContains(KM_PAD_NONE, response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	132
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	133	device.SupportedPaddingModes(KM_ALGORITHM_DSA, KM_PURPOSE_SIGN, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	134	ExpectResponseContains(KM_PAD_NONE, response);
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	135
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	136	device.SupportedPaddingModes(KM_ALGORITHM_ECDSA, KM_PURPOSE_SIGN, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	137	ExpectResponseContains(KM_PAD_NONE, response);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	138
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	139	device.SupportedPaddingModes(KM_ALGORITHM_AES, KM_PURPOSE_SIGN, &response);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	140	ExpectEmptyResponse(response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	141	}
				142
				143	TEST_F(CheckSupported, SupportedDigests) {
				144	// Shouldn't blow up on NULL.
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	145	device.SupportedDigests(KM_ALGORITHM_RSA, KM_PURPOSE_SIGN, NULL);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	146
				147	SupportedResponse<keymaster_digest_t> response;
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	148	device.SupportedDigests(KM_ALGORITHM_RSA, KM_PURPOSE_SIGN, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	149	ExpectResponseContains(KM_DIGEST_NONE, response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	150
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	151	device.SupportedDigests(KM_ALGORITHM_DSA, KM_PURPOSE_SIGN, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	152	ExpectResponseContains(KM_DIGEST_NONE, response);
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	153
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	154	device.SupportedDigests(KM_ALGORITHM_ECDSA, KM_PURPOSE_SIGN, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	155	ExpectResponseContains(KM_DIGEST_NONE, response);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	156
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	157	device.SupportedDigests(KM_ALGORITHM_AES, KM_PURPOSE_SIGN, &response);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	158	ExpectEmptyResponse(response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	159	}
				160
				161	TEST_F(CheckSupported, SupportedImportFormats) {
				162	// Shouldn't blow up on NULL.
				163	device.SupportedImportFormats(KM_ALGORITHM_RSA, NULL);
				164
				165	SupportedResponse<keymaster_key_format_t> response;
				166	device.SupportedImportFormats(KM_ALGORITHM_RSA, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	167	ExpectResponseContains(KM_KEY_FORMAT_PKCS8, response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	168
				169	device.SupportedImportFormats(KM_ALGORITHM_DSA, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	170	ExpectResponseContains(KM_KEY_FORMAT_PKCS8, response);
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	171
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	172	device.SupportedImportFormats(KM_ALGORITHM_ECDSA, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	173	ExpectResponseContains(KM_KEY_FORMAT_PKCS8, response);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	174
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	175	device.SupportedImportFormats(KM_ALGORITHM_AES, &response);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	176	ExpectEmptyResponse(response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	177	}
				178
				179	TEST_F(CheckSupported, SupportedExportFormats) {
				180	// Shouldn't blow up on NULL.
				181	device.SupportedExportFormats(KM_ALGORITHM_RSA, NULL);
				182
				183	SupportedResponse<keymaster_key_format_t> response;
				184	device.SupportedExportFormats(KM_ALGORITHM_RSA, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	185	ExpectResponseContains(KM_KEY_FORMAT_X509, response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	186
				187	device.SupportedExportFormats(KM_ALGORITHM_DSA, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	188	ExpectResponseContains(KM_KEY_FORMAT_X509, response);
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	189
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	190	device.SupportedExportFormats(KM_ALGORITHM_ECDSA, &response);
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	191	ExpectResponseContains(KM_KEY_FORMAT_X509, response);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	192
Shawn Willden	28e4147	2014-08-18 13:35:22 -0600	[diff] [blame]	193	device.SupportedExportFormats(KM_ALGORITHM_AES, &response);
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	194	ExpectEmptyResponse(response);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	195	}
				196
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	197	keymaster_key_param_t key_generation_base_params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	198	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				199	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	200	Authorization(TAG_APPLICATION_ID, "app_id", 6),
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	201	Authorization(TAG_APPLICATION_DATA, "app_data", 8), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	202	};
				203
				204	class NewKeyGeneration : public KeymasterTest {
				205	protected:
				206	NewKeyGeneration() {
				207	req_.key_description.Reinitialize(key_generation_base_params,
				208	array_length(key_generation_base_params));
				209	}
				210
				211	void CheckBaseParams(const GenerateKeyResponse& rsp) {
				212	ASSERT_EQ(KM_ERROR_OK, rsp.error);
				213	EXPECT_EQ(0U, rsp.enforced.size());
				214	EXPECT_EQ(12U, rsp.enforced.SerializedSize());
				215	EXPECT_GT(rsp.unenforced.SerializedSize(), 12U);
				216
				217	EXPECT_TRUE(contains(rsp.unenforced, TAG_PURPOSE, KM_PURPOSE_SIGN));
				218	EXPECT_TRUE(contains(rsp.unenforced, TAG_PURPOSE, KM_PURPOSE_VERIFY));
				219	EXPECT_TRUE(contains(rsp.unenforced, TAG_USER_ID, 7));
				220	EXPECT_TRUE(contains(rsp.unenforced, TAG_USER_AUTH_ID, 8));
				221	EXPECT_TRUE(contains(rsp.unenforced, TAG_AUTH_TIMEOUT, 300));
				222
				223	// Verify that App ID, App data and ROT are NOT included.
				224	EXPECT_FALSE(contains(rsp.unenforced, TAG_ROOT_OF_TRUST));
				225	EXPECT_FALSE(contains(rsp.unenforced, TAG_APPLICATION_ID));
				226	EXPECT_FALSE(contains(rsp.unenforced, TAG_APPLICATION_DATA));
				227
				228	// Just for giggles, check that some unexpected tags/values are NOT present.
				229	EXPECT_FALSE(contains(rsp.unenforced, TAG_PURPOSE, KM_PURPOSE_ENCRYPT));
				230	EXPECT_FALSE(contains(rsp.unenforced, TAG_PURPOSE, KM_PURPOSE_DECRYPT));
				231	EXPECT_FALSE(contains(rsp.unenforced, TAG_AUTH_TIMEOUT, 301));
				232	EXPECT_FALSE(contains(rsp.unenforced, TAG_RESCOPE_AUTH_TIMEOUT));
				233
				234	// Now check that unspecified, defaulted tags are correct.
				235	EXPECT_TRUE(contains(rsp.unenforced, TAG_ORIGIN, KM_ORIGIN_SOFTWARE));
				236	EXPECT_TRUE(contains(rsp.unenforced, KM_TAG_CREATION_DATETIME));
				237	}
				238
				239	GenerateKeyRequest req_;
				240	GenerateKeyResponse rsp_;
				241	};
				242
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	243	TEST_F(NewKeyGeneration, Rsa) {
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	244	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_RSA));
				245	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, 256));
				246	req_.key_description.push_back(Authorization(TAG_RSA_PUBLIC_EXPONENT, 3));
				247	device.GenerateKey(req_, &rsp_);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	248
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	249	CheckBaseParams(rsp_);
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	250
				251	// Check specified tags are all present in unenforced characteristics
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	252	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_RSA));
				253	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 256));
				254	EXPECT_TRUE(contains(rsp_.unenforced, TAG_RSA_PUBLIC_EXPONENT, 3));
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	255	}
				256
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	257	TEST_F(NewKeyGeneration, RsaDefaultSize) {
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	258	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_RSA));
				259	device.GenerateKey(req_, &rsp_);
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	260
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	261	CheckBaseParams(rsp_);
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	262
				263	// Check specified tags are all present in unenforced characteristics
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	264	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_RSA));
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	265
				266	// Now check that unspecified, defaulted tags are correct.
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	267	EXPECT_TRUE(contains(rsp_.unenforced, TAG_RSA_PUBLIC_EXPONENT, 65537));
				268	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 2048));
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	269	}
				270
Shawn Willden	d63e305	2015-01-20 11:45:07 -0700	[diff] [blame]	271	TEST_F(NewKeyGeneration, Dsa) {
				272	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_DSA));
				273	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, 256));
				274	device.GenerateKey(req_, &rsp_);
				275
				276	CheckBaseParams(rsp_);
				277
				278	// Check specified tags are all present in unenforced characteristics
				279	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_DSA));
				280	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 256));
				281
				282	// Generator should have created DSA params.
				283	keymaster_blob_t g, p, q;
				284	EXPECT_TRUE(rsp_.unenforced.GetTagValue(TAG_DSA_GENERATOR, &g));
				285	EXPECT_TRUE(rsp_.unenforced.GetTagValue(TAG_DSA_P, &p));
				286	EXPECT_TRUE(rsp_.unenforced.GetTagValue(TAG_DSA_Q, &q));
				287	EXPECT_TRUE(g.data_length >= 63 && g.data_length <= 64);
				288	EXPECT_EQ(64U, p.data_length);
				289	EXPECT_EQ(20U, q.data_length);
				290	}
				291
				292	TEST_F(NewKeyGeneration, DsaDefaultSize) {
				293	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_DSA));
				294	device.GenerateKey(req_, &rsp_);
				295
				296	CheckBaseParams(rsp_);
				297
				298	// Check specified tags are all present in unenforced characteristics
				299	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_DSA));
				300
				301	// Now check that unspecified, defaulted tags are correct.
				302	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 2048));
				303	keymaster_blob_t g, p, q;
				304	EXPECT_TRUE(rsp_.unenforced.GetTagValue(TAG_DSA_GENERATOR, &g));
				305	EXPECT_TRUE(rsp_.unenforced.GetTagValue(TAG_DSA_P, &p));
				306	EXPECT_TRUE(rsp_.unenforced.GetTagValue(TAG_DSA_Q, &q));
				307	EXPECT_TRUE(g.data_length >= 255 && g.data_length <= 256);
				308	EXPECT_EQ(256U, p.data_length);
				309	EXPECT_EQ(32U, q.data_length);
				310	}
				311
				312	TEST_F(NewKeyGeneration, Dsa_ParamsSpecified) {
				313	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_DSA));
				314	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, 256));
				315	req_.key_description.push_back(Authorization(TAG_DSA_GENERATOR, dsa_g, array_size(dsa_g)));
				316	req_.key_description.push_back(Authorization(TAG_DSA_P, dsa_p, array_size(dsa_p)));
				317	req_.key_description.push_back(Authorization(TAG_DSA_Q, dsa_q, array_size(dsa_q)));
				318	device.GenerateKey(req_, &rsp_);
				319
				320	CheckBaseParams(rsp_);
				321
				322	// Check specified tags are all present in unenforced characteristics
				323	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_DSA));
				324	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 256));
				325	EXPECT_TRUE(contains(rsp_.unenforced, TAG_DSA_GENERATOR,
				326	std::string(reinterpret_cast<const char*>(dsa_g), array_size(dsa_g))));
				327	EXPECT_TRUE(contains(rsp_.unenforced, TAG_DSA_P,
				328	std::string(reinterpret_cast<const char*>(dsa_p), array_size(dsa_p))));
				329	EXPECT_TRUE(contains(rsp_.unenforced, TAG_DSA_Q,
				330	std::string(reinterpret_cast<const char*>(dsa_q), array_size(dsa_q))));
				331	}
				332
				333	TEST_F(NewKeyGeneration, Dsa_SomeParamsSpecified) {
				334	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_DSA));
				335	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, 256));
				336	req_.key_description.push_back(Authorization(TAG_DSA_P, dsa_p, array_size(dsa_p)));
				337	req_.key_description.push_back(Authorization(TAG_DSA_Q, dsa_q, array_size(dsa_q)));
				338	device.GenerateKey(req_, &rsp_);
				339
				340	ASSERT_EQ(KM_ERROR_INVALID_DSA_PARAMS, rsp_.error);
				341	}
				342
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	343	TEST_F(NewKeyGeneration, Ecdsa) {
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	344	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	345	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, 224));
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	346	device.GenerateKey(req_, &rsp_);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	347
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	348	CheckBaseParams(rsp_);
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	349
				350	// Check specified tags are all present in unenforced characteristics
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	351	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	352	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 224));
Shawn Willden	c3864dd	2014-08-18 15:20:01 -0600	[diff] [blame]	353	}
				354
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	355	TEST_F(NewKeyGeneration, EcdsaDefaultSize) {
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	356	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
				357	device.GenerateKey(req_, &rsp_);
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	358
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	359	CheckBaseParams(rsp_);
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	360
				361	// Check specified tags are all present in unenforced characteristics
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	362	EXPECT_TRUE(contains(rsp_.unenforced, TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	363
				364	// Now check that unspecified, defaulted tags are correct.
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	365	EXPECT_TRUE(contains(rsp_.unenforced, TAG_KEY_SIZE, 224));
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	366	}
				367
				368	TEST_F(NewKeyGeneration, EcdsaInvalidSize) {
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	369	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
				370	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, 190));
				371	device.GenerateKey(req_, &rsp_);
				372	ASSERT_EQ(KM_ERROR_UNSUPPORTED_KEY_SIZE, rsp_.error);
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	373	}
				374
				375	TEST_F(NewKeyGeneration, EcdsaAllValidSizes) {
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	376	size_t valid_sizes[] = {224, 256, 384, 521};
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	377	for (size_t size : valid_sizes) {
Shawn Willden	0302c55	2014-12-03 15:33:39 -0700	[diff] [blame]	378	GenerateKeyResponse rsp;
Shawn Willden	d077231	2014-09-18 12:27:57 -0600	[diff] [blame]	379	req_.key_description.Reinitialize(key_generation_base_params,
				380	array_length(key_generation_base_params));
				381	req_.key_description.push_back(Authorization(TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
				382	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, size));
Shawn Willden	0302c55	2014-12-03 15:33:39 -0700	[diff] [blame]	383	device.GenerateKey(req_, &rsp);
				384	EXPECT_EQ(KM_ERROR_OK, rsp.error) << "Failed to generate size: " << size;
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	385	}
				386	}
				387
Shawn Willden	19fca88	2015-01-22 16:35:30 -0700	[diff] [blame^]	388	TEST_F(NewKeyGeneration, AesOcb) {
				389	keymaster_key_param_t params[] = {
				390	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				391	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT),
				392	Authorization(TAG_ALGORITHM, KM_ALGORITHM_AES), Authorization(TAG_KEY_SIZE, 128),
				393	Authorization(TAG_BLOCK_MODE, KM_MODE_OCB), Authorization(TAG_CHUNK_LENGTH, 4096),
				394	Authorization(TAG_PADDING, KM_PAD_NONE),
				395	};
				396	req_.key_description.Reinitialize(params, array_length(params));
				397	device.GenerateKey(req_, &rsp_);
				398	EXPECT_EQ(KM_ERROR_OK, rsp_.error);
				399	}
				400
				401	TEST_F(NewKeyGeneration, AesOcbInvalidKeySize) {
				402	keymaster_key_param_t params[] = {
				403	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				404	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT),
				405	Authorization(TAG_ALGORITHM, KM_ALGORITHM_AES), Authorization(TAG_KEY_SIZE, 129),
				406	Authorization(TAG_BLOCK_MODE, KM_MODE_OCB), Authorization(TAG_CHUNK_LENGTH, 4096),
				407	Authorization(TAG_PADDING, KM_PAD_NONE),
				408	};
				409	req_.key_description.Reinitialize(params, array_length(params));
				410	device.GenerateKey(req_, &rsp_);
				411	EXPECT_EQ(KM_ERROR_UNSUPPORTED_KEY_SIZE, rsp_.error);
				412	}
				413
				414	TEST_F(NewKeyGeneration, AesOcbAllValidSizes) {
				415	keymaster_key_param_t params[] = {
				416	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				417	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT),
				418	Authorization(TAG_ALGORITHM, KM_ALGORITHM_AES),
				419	Authorization(TAG_BLOCK_MODE, KM_MODE_OCB),
				420	Authorization(TAG_CHUNK_LENGTH, 4096),
				421	Authorization(TAG_PADDING, KM_PAD_NONE),
				422	};
				423
				424	size_t valid_sizes[] = {128, 192, 256};
				425	for (size_t size : valid_sizes) {
				426	GenerateKeyResponse rsp;
				427	req_.key_description.Reinitialize(params, array_length(params));
				428	req_.key_description.push_back(Authorization(TAG_KEY_SIZE, size));
				429	device.GenerateKey(req_, &rsp);
				430	EXPECT_EQ(KM_ERROR_OK, rsp.error) << "Failed to generate size: " << size;
				431	}
				432	}
				433
				434	TEST_F(NewKeyGeneration, AesOcbNoChunkLength) {
				435	keymaster_key_param_t params[] = {
				436	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				437	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT),
				438	Authorization(TAG_ALGORITHM, KM_ALGORITHM_AES), Authorization(TAG_KEY_SIZE, 128),
				439	Authorization(TAG_BLOCK_MODE, KM_MODE_OCB), Authorization(TAG_PADDING, KM_PAD_NONE),
				440	};
				441	req_.key_description.Reinitialize(params, array_length(params));
				442	device.GenerateKey(req_, &rsp_);
				443	EXPECT_EQ(KM_ERROR_INVALID_INPUT_LENGTH, rsp_.error);
				444	}
				445
				446	TEST_F(NewKeyGeneration, AesEcbUnsupported) {
				447	keymaster_key_param_t params[] = {
				448	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				449	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT),
				450	Authorization(TAG_ALGORITHM, KM_ALGORITHM_AES), Authorization(TAG_KEY_SIZE, 128),
				451	Authorization(TAG_BLOCK_MODE, KM_MODE_ECB), Authorization(TAG_PADDING, KM_PAD_NONE),
				452	};
				453	req_.key_description.Reinitialize(params, array_length(params));
				454	device.GenerateKey(req_, &rsp_);
				455	EXPECT_EQ(KM_ERROR_UNSUPPORTED_BLOCK_MODE, rsp_.error);
				456	}
				457
				458	TEST_F(NewKeyGeneration, AesOcbPaddingUnsupported) {
				459	keymaster_key_param_t params[] = {
				460	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				461	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT),
				462	Authorization(TAG_ALGORITHM, KM_ALGORITHM_AES), Authorization(TAG_KEY_SIZE, 128),
				463	Authorization(TAG_BLOCK_MODE, KM_MODE_OCB), Authorization(TAG_CHUNK_LENGTH, 4096),
				464	Authorization(TAG_PADDING, KM_PAD_ZERO),
				465	};
				466	req_.key_description.Reinitialize(params, array_length(params));
				467	device.GenerateKey(req_, &rsp_);
				468	EXPECT_EQ(KM_ERROR_UNSUPPORTED_PADDING_MODE, rsp_.error);
				469	}
				470
Shawn Willden	7636471	2014-08-11 17:48:04 -0600	[diff] [blame]	471	typedef KeymasterTest GetKeyCharacteristics;
				472	TEST_F(GetKeyCharacteristics, SimpleRsa) {
				473	keymaster_key_param_t params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	474	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				475	Authorization(TAG_ALGORITHM, KM_ALGORITHM_RSA), Authorization(TAG_KEY_SIZE, 256),
				476	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				477	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	7636471	2014-08-11 17:48:04 -0600	[diff] [blame]	478	};
				479
				480	GenerateKeyRequest gen_req;
				481	gen_req.key_description.Reinitialize(params, array_length(params));
				482	GenerateKeyResponse gen_rsp;
				483
				484	device.GenerateKey(gen_req, &gen_rsp);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	485	ASSERT_EQ(KM_ERROR_OK, gen_rsp.error);
Shawn Willden	7636471	2014-08-11 17:48:04 -0600	[diff] [blame]	486
				487	GetKeyCharacteristicsRequest req;
Shawn Willden	da8485e	2014-08-17 08:00:01 -0600	[diff] [blame]	488	req.SetKeyMaterial(gen_rsp.key_blob);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	489	req.additional_params.push_back(TAG_APPLICATION_ID, "app_id", 6);
Shawn Willden	7636471	2014-08-11 17:48:04 -0600	[diff] [blame]	490
				491	GetKeyCharacteristicsResponse rsp;
				492	device.GetKeyCharacteristics(req, &rsp);
				493	ASSERT_EQ(KM_ERROR_OK, rsp.error);
				494
				495	EXPECT_EQ(gen_rsp.enforced, rsp.enforced);
				496	EXPECT_EQ(gen_rsp.unenforced, rsp.unenforced);
				497	}
				498
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	499	/**
				500	* Test class that provides some infrastructure for generating keys and signing messages.
				501	*/
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	502	class SigningOperationsTest : public KeymasterTest {
				503	protected:
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	504	void GenerateKey(keymaster_algorithm_t algorithm, keymaster_digest_t digest,
				505	keymaster_padding_t padding, uint32_t key_size) {
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	506	keymaster_key_param_t params[] = {
				507	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN),
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	508	Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY), Authorization(TAG_ALGORITHM, algorithm),
				509	Authorization(TAG_KEY_SIZE, key_size), Authorization(TAG_USER_ID, 7),
				510	Authorization(TAG_USER_AUTH_ID, 8), Authorization(TAG_APPLICATION_ID, "app_id", 6),
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	511	Authorization(TAG_AUTH_TIMEOUT, 300),
				512	};
				513	GenerateKeyRequest generate_request;
				514	generate_request.key_description.Reinitialize(params, array_length(params));
Shawn Willden	43e999e	2014-08-13 13:29:50 -0600	[diff] [blame]	515	if (static_cast<int>(digest) != -1)
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	516	generate_request.key_description.push_back(TAG_DIGEST, digest);
Shawn Willden	43e999e	2014-08-13 13:29:50 -0600	[diff] [blame]	517	if (static_cast<int>(padding) != -1)
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	518	generate_request.key_description.push_back(TAG_PADDING, padding);
				519	device.GenerateKey(generate_request, &generate_response_);
				520	EXPECT_EQ(KM_ERROR_OK, generate_response_.error);
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	521	}
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	522
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	523	void SignMessage(const void* message, size_t size) {
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	524	SignMessage(generate_response_.key_blob, message, size);
				525	}
				526
				527	void SignMessage(const keymaster_key_blob_t& key_blob, const void* message, size_t size) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	528	BeginOperationRequest begin_request;
				529	BeginOperationResponse begin_response;
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	530	begin_request.SetKeyMaterial(key_blob);
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	531	begin_request.purpose = KM_PURPOSE_SIGN;
				532	AddClientParams(&begin_request.additional_params);
				533
				534	device.BeginOperation(begin_request, &begin_response);
				535	ASSERT_EQ(KM_ERROR_OK, begin_response.error);
				536
				537	UpdateOperationRequest update_request;
				538	UpdateOperationResponse update_response;
				539	update_request.op_handle = begin_response.op_handle;
				540	update_request.input.Reinitialize(message, size);
				541	EXPECT_EQ(size, update_request.input.available_read());
				542
				543	device.UpdateOperation(update_request, &update_response);
				544	ASSERT_EQ(KM_ERROR_OK, update_response.error);
				545	EXPECT_EQ(0U, update_response.output.available_read());
				546
				547	FinishOperationRequest finish_request;
				548	finish_request.op_handle = begin_response.op_handle;
				549	device.FinishOperation(finish_request, &finish_response_);
				550	ASSERT_EQ(KM_ERROR_OK, finish_response_.error);
				551	EXPECT_GT(finish_response_.output.available_read(), 0U);
				552	}
				553
				554	void AddClientParams(AuthorizationSet* set) { set->push_back(TAG_APPLICATION_ID, "app_id", 6); }
				555
				556	const keymaster_key_blob_t& key_blob() { return generate_response_.key_blob; }
Shawn Willden	f268d74	2014-08-19 15:36:26 -0600	[diff] [blame]	557
				558	const keymaster_key_blob_t& corrupt_key_blob() {
Shawn Willden	2241bf0	2014-08-28 09:59:53 -0600	[diff] [blame]	559	uint8_t* tmp = const_cast<uint8_t*>(generate_response_.key_blob.key_material);
				560	++tmp[generate_response_.key_blob.key_material_size / 2];
Shawn Willden	f268d74	2014-08-19 15:36:26 -0600	[diff] [blame]	561	return generate_response_.key_blob;
				562	}
				563
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	564	Buffer* signature() {
				565	if (finish_response_.error == KM_ERROR_OK)
				566	return &finish_response_.output;
				567	return NULL;
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	568	}
				569
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	570	GenerateKeyResponse generate_response_;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	571	FinishOperationResponse finish_response_;
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	572	};
				573
				574	TEST_F(SigningOperationsTest, RsaSuccess) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	575	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
Shawn Willden	ffd790c	2014-08-18 21:20:06 -0600	[diff] [blame]	576	const char message[] = "12345678901234567890123456789012";
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	577	SignMessage(message, array_size(message) - 1);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	578	}
				579
Shawn Willden	d63e305	2015-01-20 11:45:07 -0700	[diff] [blame]	580	TEST_F(SigningOperationsTest, DsaSuccess) {
				581	GenerateKey(KM_ALGORITHM_DSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
				582	const char message[] = "123456789012345678901234567890123456789012345678";
				583	SignMessage(message, array_size(message) - 1);
				584	}
				585
Shawn Willden	5ac2f8f	2014-08-18 15:33:10 -0600	[diff] [blame]	586	TEST_F(SigningOperationsTest, EcdsaSuccess) {
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	587	GenerateKey(KM_ALGORITHM_ECDSA, KM_DIGEST_NONE, KM_PAD_NONE, 224 /* key size */);
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	588	const char message[] = "123456789012345678901234567890123456789012345678";
				589	SignMessage(message, array_size(message) - 1);
Shawn Willden	5ac2f8f	2014-08-18 15:33:10 -0600	[diff] [blame]	590	}
				591
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	592	TEST_F(SigningOperationsTest, RsaAbort) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	593	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	594
				595	BeginOperationRequest begin_request;
				596	BeginOperationResponse begin_response;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	597	begin_request.SetKeyMaterial(key_blob());
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	598	begin_request.purpose = KM_PURPOSE_SIGN;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	599	AddClientParams(&begin_request.additional_params);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	600
				601	device.BeginOperation(begin_request, &begin_response);
				602	ASSERT_EQ(KM_ERROR_OK, begin_response.error);
				603
				604	EXPECT_EQ(KM_ERROR_OK, device.AbortOperation(begin_response.op_handle));
				605
				606	// Another abort should fail
				607	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE, device.AbortOperation(begin_response.op_handle));
				608	}
				609
				610	TEST_F(SigningOperationsTest, RsaUnsupportedDigest) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	611	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_SHA_2_256, KM_PAD_NONE, 256 /* key size */);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	612
				613	BeginOperationRequest begin_request;
				614	BeginOperationResponse begin_response;
				615	begin_request.purpose = KM_PURPOSE_SIGN;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	616	begin_request.SetKeyMaterial(key_blob());
				617	AddClientParams(&begin_request.additional_params);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	618
				619	device.BeginOperation(begin_request, &begin_response);
				620	ASSERT_EQ(KM_ERROR_UNSUPPORTED_DIGEST, begin_response.error);
				621
				622	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE, device.AbortOperation(begin_response.op_handle));
				623	}
				624
				625	TEST_F(SigningOperationsTest, RsaUnsupportedPadding) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	626	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_RSA_OAEP, 256 /* key size */);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	627
				628	BeginOperationRequest begin_request;
				629	BeginOperationResponse begin_response;
				630	begin_request.purpose = KM_PURPOSE_SIGN;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	631	begin_request.SetKeyMaterial(key_blob());
				632	AddClientParams(&begin_request.additional_params);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	633
				634	device.BeginOperation(begin_request, &begin_response);
				635	ASSERT_EQ(KM_ERROR_UNSUPPORTED_PADDING_MODE, begin_response.error);
				636
				637	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE, device.AbortOperation(begin_response.op_handle));
				638	}
				639
				640	TEST_F(SigningOperationsTest, RsaNoDigest) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	641	GenerateKey(KM_ALGORITHM_RSA, static_cast<keymaster_digest_t>(-1), KM_PAD_NONE,
				642	256 /* key size */);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	643
				644	BeginOperationRequest begin_request;
				645	BeginOperationResponse begin_response;
				646	begin_request.purpose = KM_PURPOSE_SIGN;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	647	begin_request.SetKeyMaterial(key_blob());
				648	AddClientParams(&begin_request.additional_params);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	649
				650	device.BeginOperation(begin_request, &begin_response);
				651	ASSERT_EQ(KM_ERROR_UNSUPPORTED_DIGEST, begin_response.error);
				652
				653	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE, device.AbortOperation(begin_response.op_handle));
				654	}
				655
				656	TEST_F(SigningOperationsTest, RsaNoPadding) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	657	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, static_cast<keymaster_padding_t>(-1),
				658	256 /* key size */);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	659
				660	BeginOperationRequest begin_request;
				661	BeginOperationResponse begin_response;
				662	begin_request.purpose = KM_PURPOSE_SIGN;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	663	begin_request.SetKeyMaterial(key_blob());
				664	AddClientParams(&begin_request.additional_params);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	665
				666	device.BeginOperation(begin_request, &begin_response);
				667	ASSERT_EQ(KM_ERROR_UNSUPPORTED_PADDING_MODE, begin_response.error);
				668
				669	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE, device.AbortOperation(begin_response.op_handle));
				670	}
				671
				672	TEST_F(SigningOperationsTest, RsaTooShortMessage) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	673	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	674
				675	BeginOperationRequest begin_request;
				676	BeginOperationResponse begin_response;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	677	begin_request.SetKeyMaterial(key_blob());
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	678	begin_request.purpose = KM_PURPOSE_SIGN;
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	679	AddClientParams(&begin_request.additional_params);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	680
				681	device.BeginOperation(begin_request, &begin_response);
				682	ASSERT_EQ(KM_ERROR_OK, begin_response.error);
				683
				684	UpdateOperationRequest update_request;
				685	UpdateOperationResponse update_response;
				686	update_request.op_handle = begin_response.op_handle;
				687	update_request.input.Reinitialize("01234567890123456789012345678901", 31);
				688	EXPECT_EQ(31U, update_request.input.available_read());
				689
				690	device.UpdateOperation(update_request, &update_response);
				691	ASSERT_EQ(KM_ERROR_OK, update_response.error);
				692	EXPECT_EQ(0U, update_response.output.available_read());
				693
Shawn Willden	43e999e	2014-08-13 13:29:50 -0600	[diff] [blame]	694	FinishOperationRequest finish_request;
				695	finish_request.op_handle = begin_response.op_handle;
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	696	FinishOperationResponse finish_response;
Shawn Willden	43e999e	2014-08-13 13:29:50 -0600	[diff] [blame]	697	device.FinishOperation(finish_request, &finish_response);
Shawn Willden	00aa794	2014-09-10 07:57:43 -0600	[diff] [blame]	698	ASSERT_EQ(KM_ERROR_UNKNOWN_ERROR, finish_response.error);
Shawn Willden	43e999e	2014-08-13 13:29:50 -0600	[diff] [blame]	699	EXPECT_EQ(0U, finish_response.output.available_read());
				700
				701	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE, device.AbortOperation(begin_response.op_handle));
				702	}
				703
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	704	class VerificationOperationsTest : public SigningOperationsTest {
				705	protected:
				706	void VerifyMessage(const void* message, size_t message_len) {
				707	VerifyMessage(generate_response_.key_blob, message, message_len);
				708	}
				709
				710	void VerifyMessage(const keymaster_key_blob_t& key_blob, const void* message,
				711	size_t message_len) {
				712	ASSERT_TRUE(signature() != NULL);
				713
				714	BeginOperationRequest begin_request;
				715	BeginOperationResponse begin_response;
				716	begin_request.SetKeyMaterial(key_blob);
				717	begin_request.purpose = KM_PURPOSE_VERIFY;
				718	AddClientParams(&begin_request.additional_params);
				719
				720	device.BeginOperation(begin_request, &begin_response);
				721	ASSERT_EQ(KM_ERROR_OK, begin_response.error);
				722
				723	UpdateOperationRequest update_request;
				724	UpdateOperationResponse update_response;
				725	update_request.op_handle = begin_response.op_handle;
				726	update_request.input.Reinitialize(message, message_len);
				727	EXPECT_EQ(message_len, update_request.input.available_read());
				728
				729	device.UpdateOperation(update_request, &update_response);
				730	ASSERT_EQ(KM_ERROR_OK, update_response.error);
				731	EXPECT_EQ(0U, update_response.output.available_read());
				732
				733	FinishOperationRequest finish_request;
				734	finish_request.op_handle = begin_response.op_handle;
				735	finish_request.signature.Reinitialize(*signature());
				736	FinishOperationResponse finish_response;
				737	device.FinishOperation(finish_request, &finish_response);
				738	ASSERT_EQ(KM_ERROR_OK, finish_response.error);
				739	EXPECT_EQ(0U, finish_response.output.available_read());
				740
				741	EXPECT_EQ(KM_ERROR_INVALID_OPERATION_HANDLE,
				742	device.AbortOperation(begin_response.op_handle));
				743	}
				744	};
				745
Shawn Willden	43e999e	2014-08-13 13:29:50 -0600	[diff] [blame]	746	TEST_F(VerificationOperationsTest, RsaSuccess) {
Shawn Willden	61644f3	2014-08-18 13:43:14 -0600	[diff] [blame]	747	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
				748	const char message[] = "12345678901234567890123456789012";
				749	SignMessage(message, array_size(message) - 1);
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	750	VerifyMessage(message, array_size(message) - 1);
Shawn Willden	1615f2e	2014-08-13 10:37:40 -0600	[diff] [blame]	751	}
				752
Shawn Willden	d63e305	2015-01-20 11:45:07 -0700	[diff] [blame]	753	TEST_F(VerificationOperationsTest, DsaSuccess) {
				754	GenerateKey(KM_ALGORITHM_DSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
				755	const char message[] = "123456789012345678901234567890123456789012345678";
				756	SignMessage(message, array_size(message) - 1);
				757	VerifyMessage(message, array_size(message) - 1);
				758	}
				759
Shawn Willden	5ac2f8f	2014-08-18 15:33:10 -0600	[diff] [blame]	760	TEST_F(VerificationOperationsTest, EcdsaSuccess) {
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	761	GenerateKey(KM_ALGORITHM_ECDSA, KM_DIGEST_NONE, KM_PAD_NONE, 224 /* key size */);
Shawn Willden	5ac2f8f	2014-08-18 15:33:10 -0600	[diff] [blame]	762	const char message[] = "123456789012345678901234567890123456789012345678";
				763	SignMessage(message, array_size(message) - 1);
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	764	VerifyMessage(message, array_size(message) - 1);
Shawn Willden	5ac2f8f	2014-08-18 15:33:10 -0600	[diff] [blame]	765	}
				766
Shawn Willden	ffd790c	2014-08-18 21:20:06 -0600	[diff] [blame]	767	typedef SigningOperationsTest ExportKeyTest;
				768	TEST_F(ExportKeyTest, RsaSuccess) {
				769	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256 /* key size */);
Shawn Willden	ffd790c	2014-08-18 21:20:06 -0600	[diff] [blame]	770
				771	ExportKeyRequest request;
				772	ExportKeyResponse response;
				773	AddClientParams(&request.additional_params);
				774	request.key_format = KM_KEY_FORMAT_X509;
				775	request.SetKeyMaterial(key_blob());
				776
				777	device.ExportKey(request, &response);
				778	ASSERT_EQ(KM_ERROR_OK, response.error);
				779	EXPECT_TRUE(response.key_data != NULL);
Shawn Willden	e46a43f	2014-08-27 10:35:36 -0600	[diff] [blame]	780
				781	// TODO(swillden): Verify that the exported key is actually usable to verify signatures.
Shawn Willden	ffd790c	2014-08-18 21:20:06 -0600	[diff] [blame]	782	}
				783
Shawn Willden	d63e305	2015-01-20 11:45:07 -0700	[diff] [blame]	784	TEST_F(ExportKeyTest, DsaSuccess) {
				785	GenerateKey(KM_ALGORITHM_DSA, KM_DIGEST_NONE, KM_PAD_NONE, 1024 /* key size */);
				786
				787	ExportKeyRequest request;
				788	ExportKeyResponse response;
				789	AddClientParams(&request.additional_params);
				790	request.key_format = KM_KEY_FORMAT_X509;
				791	request.SetKeyMaterial(key_blob());
				792
				793	device.ExportKey(request, &response);
				794	ASSERT_EQ(KM_ERROR_OK, response.error);
				795	EXPECT_TRUE(response.key_data != NULL);
				796
				797	// TODO(swillden): Verify that the exported key is actually usable to verify signatures.
				798	}
				799
Shawn Willden	f268d74	2014-08-19 15:36:26 -0600	[diff] [blame]	800	TEST_F(ExportKeyTest, EcdsaSuccess) {
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	801	GenerateKey(KM_ALGORITHM_ECDSA, KM_DIGEST_NONE, KM_PAD_NONE, 224 /* key size */);
Shawn Willden	f268d74	2014-08-19 15:36:26 -0600	[diff] [blame]	802
				803	ExportKeyRequest request;
				804	ExportKeyResponse response;
				805	AddClientParams(&request.additional_params);
				806	request.key_format = KM_KEY_FORMAT_X509;
				807	request.SetKeyMaterial(key_blob());
				808
				809	device.ExportKey(request, &response);
				810	ASSERT_EQ(KM_ERROR_OK, response.error);
				811	EXPECT_TRUE(response.key_data != NULL);
Shawn Willden	e46a43f	2014-08-27 10:35:36 -0600	[diff] [blame]	812
				813	// TODO(swillden): Verify that the exported key is actually usable to verify signatures.
Shawn Willden	f268d74	2014-08-19 15:36:26 -0600	[diff] [blame]	814	}
				815
				816	TEST_F(ExportKeyTest, RsaUnsupportedKeyFormat) {
				817	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256);
				818
				819	ExportKeyRequest request;
				820	ExportKeyResponse response;
				821	AddClientParams(&request.additional_params);
				822
				823	/* We have no other defined export formats defined. */
				824	request.key_format = KM_KEY_FORMAT_PKCS8;
				825	request.SetKeyMaterial(key_blob());
				826
				827	device.ExportKey(request, &response);
				828	ASSERT_EQ(KM_ERROR_UNSUPPORTED_KEY_FORMAT, response.error);
				829	EXPECT_TRUE(response.key_data == NULL);
				830	}
				831
				832	TEST_F(ExportKeyTest, RsaCorruptedKeyBlob) {
				833	GenerateKey(KM_ALGORITHM_RSA, KM_DIGEST_NONE, KM_PAD_NONE, 256);
				834
				835	ExportKeyRequest request;
				836	ExportKeyResponse response;
				837	AddClientParams(&request.additional_params);
				838	request.key_format = KM_KEY_FORMAT_X509;
				839	request.SetKeyMaterial(corrupt_key_blob());
				840
				841	device.ExportKey(request, &response);
				842	ASSERT_EQ(KM_ERROR_INVALID_KEY_BLOB, response.error);
				843	ASSERT_TRUE(response.key_data == NULL);
				844	}
				845
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	846	static string read_file(const string& file_name) {
				847	ifstream file_stream(file_name, std::ios::binary);
				848	istreambuf_iterator<char> file_begin(file_stream);
				849	istreambuf_iterator<char> file_end;
				850	return string(file_begin, file_end);
				851	}
				852
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	853	typedef VerificationOperationsTest ImportKeyTest;
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	854	TEST_F(ImportKeyTest, RsaSuccess) {
				855	keymaster_key_param_t params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	856	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				857	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				858	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				859	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	860	};
				861
Shawn Willden	81effc6	2014-08-27 10:08:46 -0600	[diff] [blame]	862	string pk8_key = read_file("rsa_privkey_pk8.der");
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	863	ASSERT_EQ(633U, pk8_key.size());
				864
				865	ImportKeyRequest import_request;
				866	import_request.key_description.Reinitialize(params, array_length(params));
				867	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				868	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				869
				870	ImportKeyResponse import_response;
				871	device.ImportKey(import_request, &import_response);
				872	ASSERT_EQ(KM_ERROR_OK, import_response.error);
				873	EXPECT_EQ(0U, import_response.enforced.size());
				874	EXPECT_GT(import_response.unenforced.size(), 0U);
				875
				876	// Check values derived from the key.
				877	EXPECT_TRUE(contains(import_response.unenforced, TAG_ALGORITHM, KM_ALGORITHM_RSA));
				878	EXPECT_TRUE(contains(import_response.unenforced, TAG_KEY_SIZE, 1024));
				879	EXPECT_TRUE(contains(import_response.unenforced, TAG_RSA_PUBLIC_EXPONENT, 65537U));
				880
				881	// And values provided by GoogleKeymaster
				882	EXPECT_TRUE(contains(import_response.unenforced, TAG_ORIGIN, KM_ORIGIN_IMPORTED));
				883	EXPECT_TRUE(contains(import_response.unenforced, KM_TAG_CREATION_DATETIME));
				884
				885	size_t message_len = 1024 / 8;
				886	UniquePtr<uint8_t[]> message(new uint8_t[message_len]);
				887	std::fill(message.get(), message.get() + message_len, 'a');
				888	SignMessage(import_response.key_blob, message.get(), message_len);
				889	ASSERT_TRUE(signature() != NULL);
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	890	VerifyMessage(import_response.key_blob, message.get(), message_len);
Shawn Willden	437fbd1	2014-08-20 11:59:49 -0600	[diff] [blame]	891	}
				892
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	893	TEST_F(ImportKeyTest, RsaKeySizeMismatch) {
				894	keymaster_key_param_t params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	895	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				896	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	897	Authorization(TAG_KEY_SIZE, 2048), // Doesn't match key
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	898	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				899	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	900	};
				901
				902	string pk8_key = read_file("rsa_privkey_pk8.der");
				903	ASSERT_EQ(633U, pk8_key.size());
				904
				905	ImportKeyRequest import_request;
				906	import_request.key_description.Reinitialize(params, array_length(params));
				907	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				908	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				909
				910	ImportKeyResponse import_response;
				911	device.ImportKey(import_request, &import_response);
				912	ASSERT_EQ(KM_ERROR_IMPORT_PARAMETER_MISMATCH, import_response.error);
				913	}
				914
				915	TEST_F(ImportKeyTest, RsaPublicExponenMismatch) {
				916	keymaster_key_param_t params[] = {
				917	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	918	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				919	Authorization(TAG_RSA_PUBLIC_EXPONENT, 3), Authorization(TAG_USER_ID, 7),
				920	Authorization(TAG_USER_AUTH_ID, 8), Authorization(TAG_APPLICATION_ID, "app_id", 6),
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	921	Authorization(TAG_AUTH_TIMEOUT, 300),
				922	};
				923
				924	string pk8_key = read_file("rsa_privkey_pk8.der");
				925	ASSERT_EQ(633U, pk8_key.size());
				926
				927	ImportKeyRequest import_request;
				928	import_request.key_description.Reinitialize(params, array_length(params));
				929	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				930	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				931
				932	ImportKeyResponse import_response;
				933	device.ImportKey(import_request, &import_response);
				934	ASSERT_EQ(KM_ERROR_IMPORT_PARAMETER_MISMATCH, import_response.error);
				935	}
				936
Shawn Willden	d63e305	2015-01-20 11:45:07 -0700	[diff] [blame]	937	TEST_F(ImportKeyTest, DsaSuccess) {
				938	keymaster_key_param_t params[] = {
				939	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				940	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				941	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				942	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
				943	};
				944
				945	string pk8_key = read_file("dsa_privkey_pk8.der");
				946	ASSERT_EQ(335U, pk8_key.size());
				947
				948	ImportKeyRequest import_request;
				949	import_request.key_description.Reinitialize(params, array_length(params));
				950	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				951	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				952
				953	ImportKeyResponse import_response;
				954	device.ImportKey(import_request, &import_response);
				955	ASSERT_EQ(KM_ERROR_OK, import_response.error);
				956	EXPECT_EQ(0U, import_response.enforced.size());
				957	EXPECT_GT(import_response.unenforced.size(), 0U);
				958
				959	// Check values derived from the key.
				960	EXPECT_TRUE(contains(import_response.unenforced, TAG_ALGORITHM, KM_ALGORITHM_DSA));
				961	EXPECT_TRUE(contains(import_response.unenforced, TAG_KEY_SIZE, 1024));
				962
				963	// And values provided by GoogleKeymaster
				964	EXPECT_TRUE(contains(import_response.unenforced, TAG_ORIGIN, KM_ORIGIN_IMPORTED));
				965	EXPECT_TRUE(contains(import_response.unenforced, KM_TAG_CREATION_DATETIME));
				966
				967	size_t message_len = 48;
				968	UniquePtr<uint8_t[]> message(new uint8_t[message_len]);
				969	std::fill(message.get(), message.get() + message_len, 'a');
				970	SignMessage(import_response.key_blob, message.get(), message_len);
				971	ASSERT_TRUE(signature() != NULL);
				972	VerifyMessage(import_response.key_blob, message.get(), message_len);
				973	}
				974
				975	TEST_F(ImportKeyTest, DsaParametersMatch) {
				976	keymaster_key_param_t params[] = {
				977	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				978	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				979	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				980	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
				981	Authorization(TAG_KEY_SIZE, 1024),
				982	Authorization(TAG_DSA_GENERATOR, dsa_g, array_size(dsa_g)),
				983	Authorization(TAG_DSA_P, dsa_p, array_size(dsa_p)),
				984	Authorization(TAG_DSA_Q, dsa_q, array_size(dsa_q)),
				985	};
				986
				987	string pk8_key = read_file("dsa_privkey_pk8.der");
				988	ASSERT_EQ(335U, pk8_key.size());
				989
				990	ImportKeyRequest import_request;
				991	import_request.key_description.Reinitialize(params, array_length(params));
				992	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				993	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				994
				995	ImportKeyResponse import_response;
				996	device.ImportKey(import_request, &import_response);
				997	ASSERT_EQ(KM_ERROR_OK, import_response.error);
				998	EXPECT_EQ(0U, import_response.enforced.size());
				999	EXPECT_GT(import_response.unenforced.size(), 0U);
				1000
				1001	// Check values derived from the key.
				1002	EXPECT_TRUE(contains(import_response.unenforced, TAG_ALGORITHM, KM_ALGORITHM_DSA));
				1003	EXPECT_TRUE(contains(import_response.unenforced, TAG_KEY_SIZE, 1024));
				1004
				1005	// And values provided by GoogleKeymaster
				1006	EXPECT_TRUE(contains(import_response.unenforced, TAG_ORIGIN, KM_ORIGIN_IMPORTED));
				1007	EXPECT_TRUE(contains(import_response.unenforced, KM_TAG_CREATION_DATETIME));
				1008
				1009	size_t message_len = 48;
				1010	UniquePtr<uint8_t[]> message(new uint8_t[message_len]);
				1011	std::fill(message.get(), message.get() + message_len, 'a');
				1012	SignMessage(import_response.key_blob, message.get(), message_len);
				1013	ASSERT_TRUE(signature() != NULL);
				1014	VerifyMessage(import_response.key_blob, message.get(), message_len);
				1015	}
				1016
				1017	uint8_t dsa_wrong_q[] = {
				1018	0xC0, 0x66, 0x64, 0xF9, 0x05, 0x38, 0x64, 0x38, 0x4A, 0x17,
				1019	0x66, 0x79, 0xDD, 0x7F, 0x6E, 0x55, 0x22, 0x2A, 0xDF, 0xC5,
				1020	};
				1021
				1022	TEST_F(ImportKeyTest, DsaParameterMismatch) {
				1023	keymaster_key_param_t params[] = {
				1024	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				1025	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				1026	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				1027	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
				1028	Authorization(TAG_KEY_SIZE, 1024),
				1029	Authorization(TAG_DSA_Q, dsa_wrong_q, array_size(dsa_wrong_q)),
				1030	};
				1031
				1032	string pk8_key = read_file("dsa_privkey_pk8.der");
				1033	ASSERT_EQ(335U, pk8_key.size());
				1034
				1035	ImportKeyRequest import_request;
				1036	import_request.key_description.Reinitialize(params, array_length(params));
				1037	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				1038	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				1039
				1040	ImportKeyResponse import_response;
				1041	device.ImportKey(import_request, &import_response);
				1042	ASSERT_EQ(KM_ERROR_IMPORT_PARAMETER_MISMATCH, import_response.error);
				1043	}
				1044
				1045	TEST_F(ImportKeyTest, DsaKeySizeMismatch) {
				1046	keymaster_key_param_t params[] = {
				1047	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				1048	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				1049	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				1050	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
				1051	Authorization(TAG_KEY_SIZE, 2048),
				1052	};
				1053
				1054	string pk8_key = read_file("dsa_privkey_pk8.der");
				1055	ASSERT_EQ(335U, pk8_key.size());
				1056
				1057	ImportKeyRequest import_request;
				1058	import_request.key_description.Reinitialize(params, array_length(params));
				1059	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				1060	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				1061
				1062	ImportKeyResponse import_response;
				1063	device.ImportKey(import_request, &import_response);
				1064	ASSERT_EQ(KM_ERROR_IMPORT_PARAMETER_MISMATCH, import_response.error);
				1065	}
				1066
Shawn Willden	81effc6	2014-08-27 10:08:46 -0600	[diff] [blame]	1067	TEST_F(ImportKeyTest, EcdsaSuccess) {
				1068	keymaster_key_param_t params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	1069	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				1070	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				1071	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				1072	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	81effc6	2014-08-27 10:08:46 -0600	[diff] [blame]	1073	};
				1074
				1075	string pk8_key = read_file("ec_privkey_pk8.der");
				1076	ASSERT_EQ(138U, pk8_key.size());
				1077
				1078	ImportKeyRequest import_request;
				1079	import_request.key_description.Reinitialize(params, array_length(params));
				1080	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				1081	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				1082
				1083	ImportKeyResponse import_response;
				1084	device.ImportKey(import_request, &import_response);
				1085	ASSERT_EQ(KM_ERROR_OK, import_response.error);
				1086	EXPECT_EQ(0U, import_response.enforced.size());
				1087	EXPECT_GT(import_response.unenforced.size(), 0U);
				1088
				1089	// Check values derived from the key.
				1090	EXPECT_TRUE(contains(import_response.unenforced, TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
				1091	EXPECT_TRUE(contains(import_response.unenforced, TAG_KEY_SIZE, 256));
				1092
				1093	// And values provided by GoogleKeymaster
				1094	EXPECT_TRUE(contains(import_response.unenforced, TAG_ORIGIN, KM_ORIGIN_IMPORTED));
				1095	EXPECT_TRUE(contains(import_response.unenforced, KM_TAG_CREATION_DATETIME));
				1096
				1097	size_t message_len = 1024 / 8;
				1098	UniquePtr<uint8_t[]> message(new uint8_t[message_len]);
				1099	std::fill(message.get(), message.get() + message_len, 'a');
				1100	SignMessage(import_response.key_blob, message.get(), message_len);
				1101	ASSERT_TRUE(signature() != NULL);
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	1102	VerifyMessage(import_response.key_blob, message.get(), message_len);
Shawn Willden	81effc6	2014-08-27 10:08:46 -0600	[diff] [blame]	1103	}
				1104
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	1105	TEST_F(ImportKeyTest, EcdsaSizeSpecified) {
				1106	keymaster_key_param_t params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	1107	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				1108	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				1109	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				1110	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	1111	Authorization(TAG_KEY_SIZE, 256),
				1112	};
				1113
				1114	string pk8_key = read_file("ec_privkey_pk8.der");
				1115	ASSERT_EQ(138U, pk8_key.size());
				1116
				1117	ImportKeyRequest import_request;
				1118	import_request.key_description.Reinitialize(params, array_length(params));
				1119	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				1120	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				1121
				1122	ImportKeyResponse import_response;
				1123	device.ImportKey(import_request, &import_response);
				1124	ASSERT_EQ(KM_ERROR_OK, import_response.error);
				1125	EXPECT_EQ(0U, import_response.enforced.size());
				1126	EXPECT_GT(import_response.unenforced.size(), 0U);
				1127
				1128	// Check values derived from the key.
				1129	EXPECT_TRUE(contains(import_response.unenforced, TAG_ALGORITHM, KM_ALGORITHM_ECDSA));
				1130	EXPECT_TRUE(contains(import_response.unenforced, TAG_KEY_SIZE, 256));
				1131
				1132	// And values provided by GoogleKeymaster
				1133	EXPECT_TRUE(contains(import_response.unenforced, TAG_ORIGIN, KM_ORIGIN_IMPORTED));
				1134	EXPECT_TRUE(contains(import_response.unenforced, KM_TAG_CREATION_DATETIME));
				1135
				1136	size_t message_len = 1024 / 8;
				1137	UniquePtr<uint8_t[]> message(new uint8_t[message_len]);
				1138	std::fill(message.get(), message.get() + message_len, 'a');
				1139	SignMessage(import_response.key_blob, message.get(), message_len);
				1140	ASSERT_TRUE(signature() != NULL);
Shawn Willden	d05cba5	2014-09-26 09:58:12 -0600	[diff] [blame]	1141	VerifyMessage(import_response.key_blob, message.get(), message_len);
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	1142	}
				1143
				1144	TEST_F(ImportKeyTest, EcdsaSizeMismatch) {
				1145	keymaster_key_param_t params[] = {
Shawn Willden	3809b93	2014-12-02 06:59:46 -0700	[diff] [blame]	1146	Authorization(TAG_PURPOSE, KM_PURPOSE_SIGN), Authorization(TAG_PURPOSE, KM_PURPOSE_VERIFY),
				1147	Authorization(TAG_DIGEST, KM_DIGEST_NONE), Authorization(TAG_PADDING, KM_PAD_NONE),
				1148	Authorization(TAG_USER_ID, 7), Authorization(TAG_USER_AUTH_ID, 8),
				1149	Authorization(TAG_APPLICATION_ID, "app_id", 6), Authorization(TAG_AUTH_TIMEOUT, 300),
Shawn Willden	8c856c8	2014-09-26 09:34:36 -0600	[diff] [blame]	1150	Authorization(TAG_KEY_SIZE, 224),
Shawn Willden	6bbe678	2014-09-18 11:26:15 -0600	[diff] [blame]	1151	};
				1152
				1153	string pk8_key = read_file("ec_privkey_pk8.der");
				1154	ASSERT_EQ(138U, pk8_key.size());
				1155
				1156	ImportKeyRequest import_request;
				1157	import_request.key_description.Reinitialize(params, array_length(params));
				1158	import_request.key_format = KM_KEY_FORMAT_PKCS8;
				1159	import_request.SetKeyMaterial(pk8_key.data(), pk8_key.size());
				1160
				1161	ImportKeyResponse import_response;
				1162	device.ImportKey(import_request, &import_response);
				1163	ASSERT_EQ(KM_ERROR_IMPORT_PARAMETER_MISMATCH, import_response.error);
				1164	}
				1165
Shawn Willden	2665e86	2014-11-24 14:46:21 -0700	[diff] [blame]	1166	typedef KeymasterTest VersionTest;
				1167	TEST_F(VersionTest, GetVersion) {
				1168	GetVersionRequest req;
				1169	GetVersionResponse rsp;
				1170	device.GetVersion(req, &rsp);
				1171	EXPECT_EQ(KM_ERROR_OK, rsp.error);
				1172	EXPECT_EQ(1, rsp.major_ver);
				1173	EXPECT_EQ(0, rsp.minor_ver);
				1174	EXPECT_EQ(0, rsp.subminor_ver);
				1175	}
				1176
Shawn Willden	4200f21	2014-12-02 07:01:21 -0700	[diff] [blame]	1177	/**
				1178	* Test class that provides some infrastructure for generating keys and encrypting messages.
				1179	*/
				1180	class EncryptionOperationsTest : public KeymasterTest {
				1181	protected:
				1182	void GenerateKey(keymaster_algorithm_t algorithm, keymaster_padding_t padding,
				1183	uint32_t key_size) {
				1184	keymaster_key_param_t params[] = {
				1185	Authorization(TAG_PURPOSE, KM_PURPOSE_ENCRYPT),
				1186	Authorization(TAG_PURPOSE, KM_PURPOSE_DECRYPT), Authorization(TAG_ALGORITHM, algorithm),
				1187	Authorization(TAG_KEY_SIZE, key_size), Authorization(TAG_USER_ID, 7),
				1188	Authorization(TAG_USER_AUTH_ID, 8), Authorization(TAG_APPLICATION_ID, "app_id", 6),
				1189	Authorization(TAG_AUTH_TIMEOUT, 300),
				1190	};
				1191	GenerateKeyRequest generate_request;
				1192	generate_request.key_description.Reinitialize(params, array_length(params));
				1193	if (static_cast<int>(padding) != -1)
				1194	generate_request.key_description.push_back(TAG_PADDING, padding);
				1195	device.GenerateKey(generate_request, &generate_response_);
				1196	EXPECT_EQ(KM_ERROR_OK, generate_response_.error);
				1197	}
				1198
				1199	keymaster_error_t BeginOperation(keymaster_purpose_t purpose,
				1200	const keymaster_key_blob_t& key_blob, uint64_t* op_handle) {
				1201	BeginOperationRequest begin_request;
				1202	begin_request.SetKeyMaterial(key_blob);
				1203	begin_request.purpose = purpose;
				1204	AddClientParams(&begin_request.additional_params);
				1205
				1206	BeginOperationResponse begin_response;
				1207	device.BeginOperation(begin_request, &begin_response);
				1208	*op_handle = begin_response.op_handle;
				1209	return begin_response.error;
				1210	}
				1211
				1212	keymaster_error_t UpdateOperation(uint64_t op_handle, const void* message, size_t size,
				1213	string* output) {
				1214	UpdateOperationRequest update_request;
				1215	update_request.op_handle = op_handle;
				1216	update_request.input.Reinitialize(message, size);
				1217
				1218	UpdateOperationResponse update_response;
				1219	device.UpdateOperation(update_request, &update_response);
				1220	if (update_response.error == KM_ERROR_OK)
				1221	output->append(reinterpret_cast<const char*>(update_response.output.peek_read()),
				1222	update_response.output.available_read());
				1223	return update_response.error;
				1224	}
				1225
				1226	keymaster_error_t FinishOperation(uint64_t op_handle, string* output) {
				1227	FinishOperationRequest finish_request;
				1228	finish_request.op_handle = op_handle;
				1229	FinishOperationResponse finish_response;
				1230	device.FinishOperation(finish_request, &finish_response);
				1231	if (finish_response.error == KM_ERROR_OK)
				1232	output->append(reinterpret_cast<const char*>(finish_response.output.peek_read()),
				1233	finish_response.output.available_read());
				1234	return finish_response.error;
				1235	}
				1236
				1237	string ProcessMessage(keymaster_purpose_t purpose, const keymaster_key_blob_t& key_blob,
				1238	const void* message, size_t size) {
				1239	uint64_t op_handle;
				1240	EXPECT_EQ(KM_ERROR_OK, BeginOperation(purpose, key_blob, &op_handle));
				1241
				1242	string result;
				1243	EXPECT_EQ(KM_ERROR_OK, UpdateOperation(op_handle, message, size, &result));
				1244	EXPECT_EQ(KM_ERROR_OK, FinishOperation(op_handle, &result));
				1245	return result;
				1246	}
				1247
				1248	string EncryptMessage(const void* message, size_t size) {
				1249	return ProcessMessage(KM_PURPOSE_ENCRYPT, generate_response_.key_blob, message, size);
				1250	}
				1251
				1252	string DecryptMessage(const void* ciphertext, size_t size) {
				1253	return ProcessMessage(KM_PURPOSE_DECRYPT, generate_response_.key_blob, ciphertext, size);
				1254	}
				1255
				1256	void AddClientParams(AuthorizationSet* set) { set->push_back(TAG_APPLICATION_ID, "app_id", 6); }
				1257
				1258	const keymaster_key_blob_t& key_blob() { return generate_response_.key_blob; }
				1259
				1260	const keymaster_key_blob_t& corrupt_key_blob() {
				1261	uint8_t* tmp = const_cast<uint8_t*>(generate_response_.key_blob.key_material);
				1262	++tmp[generate_response_.key_blob.key_material_size / 2];
				1263	return generate_response_.key_blob;
				1264	}
				1265
				1266	protected:
				1267	GenerateKeyResponse generate_response_;
				1268	};
				1269
				1270	TEST_F(EncryptionOperationsTest, RsaOaepSuccess) {
				1271	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_OAEP, 512);
				1272	const char message[] = "Hello World!";
				1273	string ciphertext1 = EncryptMessage(message, strlen(message));
				1274	EXPECT_EQ(512 / 8, ciphertext1.size());
				1275
				1276	string ciphertext2 = EncryptMessage(message, strlen(message));
				1277	EXPECT_EQ(512 / 8, ciphertext2.size());
				1278
				1279	// OAEP randomizes padding so every result should be different.
				1280	EXPECT_NE(ciphertext1, ciphertext2);
				1281	}
				1282
				1283	TEST_F(EncryptionOperationsTest, RsaOaepRoundTrip) {
				1284	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_OAEP, 512);
				1285	const char message[] = "Hello World!";
				1286	string ciphertext = EncryptMessage(message, strlen(message));
				1287	EXPECT_EQ(512 / 8, ciphertext.size());
				1288
				1289	string plaintext = DecryptMessage(ciphertext.data(), ciphertext.size());
				1290	EXPECT_EQ(message, plaintext);
				1291	}
				1292
				1293	TEST_F(EncryptionOperationsTest, RsaOaepTooLarge) {
				1294	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_OAEP, 512);
				1295	const char message[] = "12345678901234567890123";
				1296	uint64_t op_handle;
				1297	string result;
				1298
				1299	EXPECT_EQ(KM_ERROR_OK,
				1300	BeginOperation(KM_PURPOSE_ENCRYPT, generate_response_.key_blob, &op_handle));
				1301	EXPECT_EQ(KM_ERROR_OK, UpdateOperation(op_handle, message, array_size(message), &result));
				1302	EXPECT_EQ(KM_ERROR_INVALID_INPUT_LENGTH, FinishOperation(op_handle, &result));
				1303	EXPECT_EQ(0, result.size());
				1304	}
				1305
				1306	TEST_F(EncryptionOperationsTest, RsaOaepCorruptedDecrypt) {
				1307	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_OAEP, 512);
				1308	const char message[] = "Hello World!";
				1309	string ciphertext = EncryptMessage(message, strlen(message));
				1310	EXPECT_EQ(512 / 8, ciphertext.size());
				1311
				1312	// Corrupt the ciphertext
				1313	ciphertext[512 / 8 / 2]++;
				1314
				1315	uint64_t op_handle;
				1316	string result;
				1317	EXPECT_EQ(KM_ERROR_OK,
				1318	BeginOperation(KM_PURPOSE_DECRYPT, generate_response_.key_blob, &op_handle));
				1319	EXPECT_EQ(KM_ERROR_OK,
				1320	UpdateOperation(op_handle, ciphertext.data(), ciphertext.size(), &result));
				1321	EXPECT_EQ(KM_ERROR_UNKNOWN_ERROR, FinishOperation(op_handle, &result));
				1322	EXPECT_EQ(0, result.size());
				1323	}
				1324
				1325	TEST_F(EncryptionOperationsTest, RsaPkcs1Success) {
				1326	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_PKCS1_1_5_ENCRYPT, 512);
				1327	const char message[] = "Hello World!";
				1328	string ciphertext1 = EncryptMessage(message, strlen(message));
				1329	EXPECT_EQ(512 / 8, ciphertext1.size());
				1330
				1331	string ciphertext2 = EncryptMessage(message, strlen(message));
				1332	EXPECT_EQ(512 / 8, ciphertext2.size());
				1333
				1334	// PKCS1 v1.5 randomizes padding so every result should be different.
				1335	EXPECT_NE(ciphertext1, ciphertext2);
				1336	}
				1337
				1338	TEST_F(EncryptionOperationsTest, RsaPkcs1RoundTrip) {
				1339	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_PKCS1_1_5_ENCRYPT, 512);
				1340	const char message[] = "Hello World!";
				1341	string ciphertext = EncryptMessage(message, strlen(message));
				1342	EXPECT_EQ(512 / 8, ciphertext.size());
				1343
				1344	string plaintext = DecryptMessage(ciphertext.data(), ciphertext.size());
				1345	EXPECT_EQ(message, plaintext);
				1346	}
				1347
				1348	TEST_F(EncryptionOperationsTest, RsaPkcs1TooLarge) {
				1349	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_PKCS1_1_5_ENCRYPT, 512);
				1350	const char message[] = "1234567890123456789012345678901234567890123456789012";
				1351	uint64_t op_handle;
				1352	string result;
				1353
				1354	EXPECT_EQ(KM_ERROR_OK,
				1355	BeginOperation(KM_PURPOSE_ENCRYPT, generate_response_.key_blob, &op_handle));
				1356	EXPECT_EQ(KM_ERROR_OK, UpdateOperation(op_handle, message, array_size(message), &result));
				1357	EXPECT_EQ(KM_ERROR_INVALID_INPUT_LENGTH, FinishOperation(op_handle, &result));
				1358	EXPECT_EQ(0, result.size());
				1359	}
				1360
				1361	TEST_F(EncryptionOperationsTest, RsaPkcs1CorruptedDecrypt) {
				1362	GenerateKey(KM_ALGORITHM_RSA, KM_PAD_RSA_PKCS1_1_5_ENCRYPT, 512);
				1363	const char message[] = "Hello World!";
				1364	string ciphertext = EncryptMessage(message, strlen(message));
				1365	EXPECT_EQ(512 / 8, ciphertext.size());
				1366
				1367	// Corrupt the ciphertext
				1368	ciphertext[512 / 8 / 2]++;
				1369
				1370	uint64_t op_handle;
				1371	string result;
				1372	EXPECT_EQ(KM_ERROR_OK,
				1373	BeginOperation(KM_PURPOSE_DECRYPT, generate_response_.key_blob, &op_handle));
				1374	EXPECT_EQ(KM_ERROR_OK,
				1375	UpdateOperation(op_handle, ciphertext.data(), ciphertext.size(), &result));
				1376	EXPECT_EQ(KM_ERROR_UNKNOWN_ERROR, FinishOperation(op_handle, &result));
				1377	EXPECT_EQ(0, result.size());
				1378	}
				1379
Shawn Willden	128ffe0	2014-08-06 12:31:33 -0600	[diff] [blame]	1380	} // namespace test
				1381	} // namespace keymaster