Donate to e Foundation | Murena handsets with /e/OS | Own a part of Murena! Learn more

Commit d0a5c1dd authored by nagendra modadugu's avatar nagendra modadugu
Browse files

[DO NOT MERGE] keymaster: add an EC attestation test 

Add a test that creates an EC key by
using key-bits (rather than curve-id),
and check that the attestation message
corresponds to key characteristics.

Bug: 122375834
Bug: 119542230
Test: VTS passes
Change-Id: Iad6ff2ca90a951124940943f2484f9fb9f813a19
parent e233a7c9

keymaster/4.0/vts/functional/keymaster_hidl_hal_test.cpp

+27 −0
Original line number Diff line number Diff line
@@ -3897,6 +3897,33 @@ TEST_F(AttestationTest, EcAttestation) { 
                                          SecLevel(), cert_chain[0]));

}



/*

 * AttestationTest.EcAttestationByKeySize

 *

 * Verifies that attesting to EC keys works and generates the expected output.

 */

TEST_F(AttestationTest, EcAttestationByKeySize) {

    ASSERT_EQ(ErrorCode::OK, GenerateKey(AuthorizationSetBuilder()

                                             .Authorization(TAG_NO_AUTH_REQUIRED)

                                             .EcdsaSigningKey(256)

                                             .Digest(Digest::SHA_2_256)

                                             .Authorization(TAG_INCLUDE_UNIQUE_ID)));



    hidl_vec<hidl_vec<uint8_t>> cert_chain;

    ASSERT_EQ(ErrorCode::OK,

              AttestKey(AuthorizationSetBuilder()

                            .Authorization(TAG_ATTESTATION_CHALLENGE, HidlBuf("challenge"))

                            .Authorization(TAG_ATTESTATION_APPLICATION_ID, HidlBuf("foo")),

                        &cert_chain));

    EXPECT_GE(cert_chain.size(), 2U);

    EXPECT_TRUE(verify_chain(cert_chain));



    EXPECT_TRUE(verify_attestation_record("challenge", "foo",                     //

                                          key_characteristics_.softwareEnforced,  //

                                          key_characteristics_.hardwareEnforced,  //

                                          SecLevel(), cert_chain[0]));

}



/*

 * AttestationTest.EcAttestationRequiresAttestationAppId

 *