Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / vboot_reference / f18038b750c43c2185e64db38d0d244c6810083b / . / tests / vb2_misc2_tests.c
blob: 2025fb41cc9a1dd2a97619639d7ba97e608e0db4 [file] [log] [blame]
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]1/* Copyright (c) 2014 The Chromium OS Authors. All rights reserved.
2 * Use of this source code is governed by a BSD-style license that can be
3 * found in the LICENSE file.
4 *
5 * Tests for misc library
6 */
7
8#include <stdio.h>
9
10#include "2sysincludes.h"
11#include "2api.h"
12#include "2common.h"
13#include "2misc.h"
14#include "2nvstorage.h"
15#include "2secdata.h"
16
17#include "test_common.h"
18
19/* Common context for tests */
20static uint8_t workbuf[VB2_WORKBUF_RECOMMENDED_SIZE]
21 __attribute__ ((aligned (16)));
22static struct vb2_context cc;
23static struct vb2_shared_data *sd;
24
25/* Mocked function data */
26
27static struct {
28 struct vb2_gbb_header h;
29 struct vb2_packed_key rootkey;
30 char rootkey_data[32];
31} mock_gbb;
32
33static struct {
34 /* Keyblock */
35 struct {
36 struct vb2_keyblock kb;
37 char data_key_data[16];
38 uint8_t kbdata[128];
39 } k;
40 /* Preamble follows keyblock */
41 struct {
42 struct vb2_fw_preamble pre;
43 uint8_t predata[128];
44 } p;
45
46} mock_vblock;
47
48static int mock_read_res_fail_on_call;
49static int mock_unpack_key_retval;
50static int mock_verify_keyblock_retval;
51static int mock_verify_preamble_retval;
52
53/* Type of test to reset for */
54enum reset_type {
55 FOR_KEYBLOCK,
56 FOR_PREAMBLE
57};
58
59static void reset_common_data(enum reset_type t)
60{
61 struct vb2_keyblock *kb = &mock_vblock.k.kb;
62 struct vb2_fw_preamble *pre = &mock_vblock.p.pre;
63
64 memset(workbuf, 0xaa, sizeof(workbuf));
65
66 memset(&cc, 0, sizeof(cc));
67 cc.workbuf = workbuf;
68 cc.workbuf_size = sizeof(workbuf);
69
70 vb2_init_context(&cc);
71 sd = vb2_get_sd(&cc);
72
73 vb2_nv_init(&cc);
74
75 vb2_secdata_create(&cc);
76 vb2_secdata_init(&cc);
77
78 mock_read_res_fail_on_call = 0;
79 mock_unpack_key_retval = VB2_SUCCESS;
80 mock_verify_keyblock_retval = VB2_SUCCESS;
81 mock_verify_preamble_retval = VB2_SUCCESS;
82
83 /* Set up mock data for verifying keyblock */
84 vb2_secdata_set(&cc, VB2_SECDATA_VERSIONS, 0x20002);
85
86 sd->gbb_rootkey_offset = vb2_offset_of(&mock_gbb, &mock_gbb.rootkey);
87 sd->gbb_rootkey_size = sizeof(mock_gbb.rootkey_data);
88 sd->last_fw_result = VB2_FW_RESULT_SUCCESS;
89
90 mock_gbb.rootkey.algorithm = 11;
91 mock_gbb.rootkey.key_offset =
92 vb2_offset_of(&mock_gbb.rootkey,
93 &mock_gbb.rootkey_data);
94 mock_gbb.rootkey.key_size = sizeof(mock_gbb.rootkey_data);
95
96 kb->keyblock_size = sizeof(mock_vblock.k);
97 kb->data_key.algorithm = 7;
98 kb->data_key.key_version = 2;
99 kb->data_key.key_offset =
100 vb2_offset_of(&mock_vblock.k, &mock_vblock.k.data_key_data) -
101 vb2_offset_of(&mock_vblock.k, &kb->data_key);
102 kb->data_key.key_size = sizeof(mock_vblock.k.data_key_data);
103 strcpy(mock_vblock.k.data_key_data, "data key data!!");
104
105 pre->preamble_size = sizeof(mock_vblock.p);
106 pre->firmware_version = 2;
107
108 /* If verifying preamble, verify keyblock first to set up data key */
109 if (t == FOR_PREAMBLE)
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]110 vb2_load_fw_keyblock(&cc);
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]111};
112
113/* Mocked functions */
114
115int vb2ex_read_resource(struct vb2_context *ctx,
116 enum vb2_resource_index index,
117 uint32_t offset,
118 void *buf,
119 uint32_t size)
120{
121 uint8_t *rptr;
122 uint32_t rsize;
123
124 if (--mock_read_res_fail_on_call == 0)
125 return VB2_ERROR_EX_READ_RESOURCE_INDEX;
126
127 switch(index) {
128 case VB2_RES_GBB:
129 rptr = (uint8_t *)&mock_gbb;
130 rsize = sizeof(mock_gbb);
131 break;
132 case VB2_RES_FW_VBLOCK:
133 rptr = (uint8_t *)&mock_vblock;
134 rsize = sizeof(mock_vblock);
135 break;
136 default:
137 return VB2_ERROR_EX_READ_RESOURCE_INDEX;
138 }
139
140 if (offset > rsize || offset + size > rsize)
141 return VB2_ERROR_EX_READ_RESOURCE_SIZE;
142
143 memcpy(buf, rptr + offset, size);
144 return VB2_SUCCESS;
145}
146
147int vb2_unpack_key(struct vb2_public_key *key,
148 const uint8_t *buf,
149 uint32_t size)
150{
151 return mock_unpack_key_retval;
152}
153
154int vb2_verify_keyblock(struct vb2_keyblock *block,
155 uint32_t size,
156 const struct vb2_public_key *key,
157 struct vb2_workbuf *wb)
158{
159 return mock_verify_keyblock_retval;
160}
161
162int vb2_verify_fw_preamble(struct vb2_fw_preamble *preamble,
163 uint32_t size,
164 const struct vb2_public_key *key,
165 struct vb2_workbuf *wb)
166{
167 return mock_verify_preamble_retval;
168}
169
170/* Tests */
171
172static void verify_keyblock_tests(void)
173{
174 struct vb2_keyblock *kb = &mock_vblock.k.kb;
175 struct vb2_packed_key *k;
176 int wb_used_before;
177
178 /* Test successful call */
179 reset_common_data(FOR_KEYBLOCK);
180 wb_used_before = cc.workbuf_used;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]181 TEST_SUCC(vb2_load_fw_keyblock(&cc), "keyblock verify");
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]182 TEST_EQ(sd->fw_version, 0x20000, "keyblock version");
183 TEST_EQ(sd->vblock_preamble_offset, sizeof(mock_vblock.k),
184 "preamble offset");
185 TEST_EQ(sd->workbuf_data_key_offset,
186 (wb_used_before + (VB2_WORKBUF_ALIGN - 1)) &
187 ~(VB2_WORKBUF_ALIGN - 1),
188 "keyblock data key offset");
189 TEST_EQ(cc.workbuf_used,
190 sd->workbuf_data_key_offset + sd->workbuf_data_key_size,
191 "workbuf used");
192
193 /* Make sure data key was properly saved */
194 k = (struct vb2_packed_key *)(cc.workbuf + sd->workbuf_data_key_offset);
195 TEST_EQ(k->algorithm, 7, "data key algorithm");
196 TEST_EQ(k->key_version, 2, "data key version");
197 TEST_EQ(k->key_size, sizeof(mock_vblock.k.data_key_data),
198 "data key size");
199 TEST_EQ(memcmp(cc.workbuf + sd->workbuf_data_key_offset +
200 k->key_offset, mock_vblock.k.data_key_data,
201 sizeof(mock_vblock.k.data_key_data)),
202 0, "data key data");
203 TEST_EQ(cc.workbuf_used,
204 sd->workbuf_data_key_offset + sd->workbuf_data_key_size,
205 "workbuf used after");
206
207 /* Test failures */
208 reset_common_data(FOR_KEYBLOCK);
209 cc.workbuf_used = cc.workbuf_size - sd->gbb_rootkey_size + 8;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]210 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]211 VB2_ERROR_FW_KEYBLOCK_WORKBUF_ROOT_KEY,
212 "keyblock not enough workbuf for root key");
213
214 reset_common_data(FOR_KEYBLOCK);
215 sd->gbb_rootkey_size = sizeof(mock_gbb);
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]216 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]217 VB2_ERROR_EX_READ_RESOURCE_SIZE,
218 "keyblock read root key");
219
220 reset_common_data(FOR_KEYBLOCK);
Randall Spanglerc8c2f022014-10-23 09:48:20 -0700[diff] [blame]221 mock_unpack_key_retval = VB2_ERROR_UNPACK_KEY_SIG_ALGORITHM;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]222 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spanglerc8c2f022014-10-23 09:48:20 -0700[diff] [blame]223 VB2_ERROR_UNPACK_KEY_SIG_ALGORITHM,
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]224 "keyblock unpack root key");
225
226 reset_common_data(FOR_KEYBLOCK);
227 cc.workbuf_used = cc.workbuf_size - sd->gbb_rootkey_size - 8;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]228 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]229 VB2_ERROR_FW_KEYBLOCK_WORKBUF_HEADER,
230 "keyblock not enough workbuf for header");
231
232 reset_common_data(FOR_KEYBLOCK);
233 mock_read_res_fail_on_call = 2;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]234 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]235 VB2_ERROR_EX_READ_RESOURCE_INDEX,
236 "keyblock read keyblock header");
237
238 reset_common_data(FOR_KEYBLOCK);
239 cc.workbuf_used = cc.workbuf_size - sd->gbb_rootkey_size
240 - sizeof(struct vb2_keyblock);
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]241 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]242 VB2_ERROR_FW_KEYBLOCK_WORKBUF,
243 "keyblock not enough workbuf for entire keyblock");
244
245 reset_common_data(FOR_KEYBLOCK);
246 kb->keyblock_size = sizeof(mock_vblock) + 1;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]247 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]248 VB2_ERROR_EX_READ_RESOURCE_SIZE,
249 "keyblock read keyblock");
250
251 reset_common_data(FOR_KEYBLOCK);
252 mock_verify_keyblock_retval = VB2_ERROR_KEYBLOCK_MAGIC;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]253 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]254 VB2_ERROR_KEYBLOCK_MAGIC,
255 "keyblock verify keyblock");
256
257 reset_common_data(FOR_KEYBLOCK);
258 kb->data_key.key_version = 0x10000;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]259 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]260 VB2_ERROR_FW_KEYBLOCK_VERSION_RANGE,
261 "keyblock version range");
262
263 reset_common_data(FOR_KEYBLOCK);
264 kb->data_key.key_version = 1;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]265 TEST_EQ(vb2_load_fw_keyblock(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]266 VB2_ERROR_FW_KEYBLOCK_VERSION_ROLLBACK,
267 "keyblock rollback");
268}
269
270static void verify_preamble_tests(void)
271{
272 struct vb2_fw_preamble *pre = &mock_vblock.p.pre;
273 int wb_used_before;
274 uint32_t v;
275
276 /* Test successful call */
277 reset_common_data(FOR_PREAMBLE);
278 wb_used_before = cc.workbuf_used;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]279 TEST_SUCC(vb2_load_fw_preamble(&cc), "preamble good");
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]280 TEST_EQ(sd->fw_version, 0x20002, "combined version");
281 TEST_EQ(sd->workbuf_preamble_offset,
282 (wb_used_before + (VB2_WORKBUF_ALIGN - 1)) &
283 ~(VB2_WORKBUF_ALIGN - 1),
284 "preamble offset");
285 TEST_EQ(sd->workbuf_preamble_size, pre->preamble_size, "preamble size");
286 TEST_EQ(cc.workbuf_used,
287 sd->workbuf_preamble_offset + sd->workbuf_preamble_size,
288 "workbuf used");
289
290 /* Expected failures */
291 reset_common_data(FOR_PREAMBLE);
292 sd->workbuf_data_key_size = 0;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]293 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]294 VB2_ERROR_FW_PREAMBLE2_DATA_KEY,
295 "preamble no data key");
296
297 reset_common_data(FOR_PREAMBLE);
Randall Spanglerc8c2f022014-10-23 09:48:20 -0700[diff] [blame]298 mock_unpack_key_retval = VB2_ERROR_UNPACK_KEY_HASH_ALGORITHM;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]299 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spanglerc8c2f022014-10-23 09:48:20 -0700[diff] [blame]300 VB2_ERROR_UNPACK_KEY_HASH_ALGORITHM,
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]301 "preamble unpack data key");
302
303 reset_common_data(FOR_PREAMBLE);
304 cc.workbuf_used = cc.workbuf_size - sizeof(struct vb2_fw_preamble) + 8;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]305 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]306 VB2_ERROR_FW_PREAMBLE2_WORKBUF_HEADER,
307 "preamble not enough workbuf for header");
308
309 reset_common_data(FOR_PREAMBLE);
310 sd->vblock_preamble_offset = sizeof(mock_vblock);
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]311 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]312 VB2_ERROR_EX_READ_RESOURCE_SIZE,
313 "preamble read header");
314
315 reset_common_data(FOR_PREAMBLE);
316 cc.workbuf_used = cc.workbuf_size - sizeof(mock_vblock.p) + 8;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]317 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]318 VB2_ERROR_FW_PREAMBLE2_WORKBUF,
319 "preamble not enough workbuf");
320
321 reset_common_data(FOR_PREAMBLE);
322 pre->preamble_size = sizeof(mock_vblock);
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]323 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]324 VB2_ERROR_EX_READ_RESOURCE_SIZE,
325 "preamble read full");
326
327 reset_common_data(FOR_PREAMBLE);
328 mock_verify_preamble_retval = VB2_ERROR_PREAMBLE_SIG_INVALID;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]329 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]330 VB2_ERROR_PREAMBLE_SIG_INVALID,
331 "preamble verify");
332
333 reset_common_data(FOR_PREAMBLE);
334 pre->firmware_version = 0x10000;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]335 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]336 VB2_ERROR_FW_PREAMBLE2_VERSION_RANGE,
337 "preamble version range");
338
339 reset_common_data(FOR_PREAMBLE);
340 pre->firmware_version = 1;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]341 TEST_EQ(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]342 VB2_ERROR_FW_PREAMBLE2_VERSION_ROLLBACK,
343 "preamble version rollback");
344
345 reset_common_data(FOR_PREAMBLE);
346 pre->firmware_version = 3;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]347 TEST_SUCC(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]348 "preamble version roll forward");
349 vb2_secdata_get(&cc, VB2_SECDATA_VERSIONS, &v);
350 TEST_EQ(v, 0x20003, "roll forward");
351
352 /* Newer version without result success doesn't roll forward */
353 reset_common_data(FOR_PREAMBLE);
354 pre->firmware_version = 3;
355 sd->last_fw_result = VB2_FW_RESULT_UNKNOWN;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]356 TEST_SUCC(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]357 "preamble version no roll forward 1");
358 vb2_secdata_get(&cc, VB2_SECDATA_VERSIONS, &v);
359 TEST_EQ(v, 0x20002, "no roll forward");
360
361 /* Newer version with success but for other slot doesn't roll forward */
362 reset_common_data(FOR_PREAMBLE);
363 pre->firmware_version = 3;
364 sd->last_fw_slot = 1;
Randall Spanglerf18038b2014-10-23 15:55:21 -0700[diff] [blame^]365 TEST_SUCC(vb2_load_fw_preamble(&cc),
Randall Spangler18030682014-06-11 16:01:08 -0700[diff] [blame]366 "preamble version no roll forward 2");
367 vb2_secdata_get(&cc, VB2_SECDATA_VERSIONS, &v);
368 TEST_EQ(v, 0x20002, "no roll forward");
369}
370
371int main(int argc, char* argv[])
372{
373 verify_keyblock_tests();
374 verify_preamble_tests();
375
376 return gTestSuccess ? 0 : 255;
377}