Evolution-x/hardware_interfaces
1
0
Fork 0
mirror of https://github.com/Evolution-X/hardware_interfaces synced 2026-02-02 23:48:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
8ab55b06072694de64d90bcdf2f9d951b9412975
hardware_interfaces/security/keymint/support/fuzzer/keymint_common.h
Akhilesh Sanikop 007129a7fd Added keymint_attestation_fuzzer 
exec/s: 2
Test: ./keymint_attestation_fuzzer
Bug: 337985606

Change-Id: I2c0d56e1af97190a5eb06a34e15bcd93123f39a6
2024-05-13 23:46:36 +05:30

261 lines
10 KiB
C++
Raw Blame History

/*
* Copyright (C) 2024 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at:
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*
*/
#ifndef __KEYMINT_COMMON_H__
#define __KEYMINT_COMMON_H__
#include <aidl/android/hardware/security/keymint/BlockMode.h>
#include <aidl/android/hardware/security/keymint/Digest.h>
#include <aidl/android/hardware/security/keymint/EcCurve.h>
#include <aidl/android/hardware/security/keymint/PaddingMode.h>
#include <fuzzer/FuzzedDataProvider.h>
#include <keymint_support/authorization_set.h>
namespace android::hardware::security::keymint_support::fuzzer {
using namespace aidl::android::hardware::security::keymint;
constexpr uint32_t kStringSize = 64;
constexpr uint32_t k3DesKeySize = 168;
constexpr uint32_t kSymmKeySize = 256;
constexpr uint32_t kRsaKeySize = 2048;
constexpr uint32_t kPublicExponent = 65537;
constexpr EcCurve kCurve[] = {EcCurve::P_224, EcCurve::P_256, EcCurve::P_384, EcCurve::P_521,
EcCurve::CURVE_25519};
constexpr PaddingMode kPaddingMode[] = {
PaddingMode::NONE,
PaddingMode::RSA_OAEP,
PaddingMode::RSA_PSS,
PaddingMode::RSA_PKCS1_1_5_ENCRYPT,
PaddingMode::RSA_PKCS1_1_5_SIGN,
PaddingMode::PKCS7,
};
constexpr Digest kDigest[] = {
Digest::NONE, Digest::MD5, Digest::SHA1, Digest::SHA_2_224,
Digest::SHA_2_256, Digest::SHA_2_384, Digest::SHA_2_512,
};
constexpr BlockMode kBlockMode[] = {
BlockMode::ECB,
BlockMode::CBC,
BlockMode::CTR,
BlockMode::GCM,
};
enum AttestAuthSet : uint32_t {
RSA_ATTEST_KEY = 0u,
ECDSA_ATTEST_KEY,
};
enum AuthSet : uint32_t {
RSA_KEY = 0u,
RSA_SIGNING_KEY,
RSA_ENCRYPTION_KEY,
ECDSA_SIGNING_CURVE,
AES_ENCRYPTION_KEY,
TRIPLE_DES,
HMAC,
NO_DIGEST,
ECB_MODE,
GSM_MODE_MIN_MAC,
GSM_MODE_MAC,
BLOCK_MODE,
};
AuthorizationSet createAuthSetForAttestKey(FuzzedDataProvider* dataProvider) {
uint32_t attestAuthSet = dataProvider->ConsumeBool() ? AttestAuthSet::RSA_ATTEST_KEY
: AttestAuthSet::ECDSA_ATTEST_KEY;
uint64_t timestamp = dataProvider->ConsumeIntegral<uint64_t>();
Digest digest = dataProvider->PickValueInArray(kDigest);
PaddingMode padding = dataProvider->PickValueInArray(kPaddingMode);
std::string challenge = dataProvider->ConsumeRandomLengthString(kStringSize);
std::string id = dataProvider->ConsumeRandomLengthString(kStringSize);
switch (attestAuthSet) {
case RSA_ATTEST_KEY: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.RsaKey(kRsaKeySize, kPublicExponent)
.Digest(digest)
.Padding(padding)
.AttestKey()
.AttestationChallenge(challenge)
.AttestationApplicationId(id)
.SetDefaultValidity()
.Authorization(TAG_CREATION_DATETIME, timestamp)
.Authorization(TAG_INCLUDE_UNIQUE_ID)
.Authorization(TAG_PURPOSE, KeyPurpose::ATTEST_KEY);
} break;
case ECDSA_ATTEST_KEY: {
EcCurve ecCurve = dataProvider->PickValueInArray(kCurve);
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.EcdsaKey(ecCurve)
.AttestKey()
.Digest(digest)
.AttestationChallenge(challenge)
.AttestationApplicationId(id)
.SetDefaultValidity()
.Authorization(TAG_CREATION_DATETIME, timestamp)
.Authorization(TAG_INCLUDE_UNIQUE_ID)
.Authorization(TAG_PURPOSE, KeyPurpose::ATTEST_KEY);
} break;
default:
break;
};
return AuthorizationSetBuilder();
}
AuthorizationSet createAuthorizationSet(FuzzedDataProvider* dataProvider) {
uint32_t authSet =
dataProvider->ConsumeIntegralInRange<uint32_t>(AuthSet::RSA_KEY, AuthSet::BLOCK_MODE);
uint64_t timestamp = dataProvider->ConsumeIntegral<uint64_t>();
Digest digest = dataProvider->PickValueInArray(kDigest);
PaddingMode padding = dataProvider->PickValueInArray(kPaddingMode);
std::string challenge = dataProvider->ConsumeRandomLengthString(kStringSize);
std::string id = dataProvider->ConsumeRandomLengthString(kStringSize);
switch (authSet) {
case RSA_KEY: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.RsaKey(kRsaKeySize, kPublicExponent)
.Digest(digest)
.Padding(padding)
.AttestKey()
.AttestationChallenge(challenge)
.AttestationApplicationId(id)
.SetDefaultValidity()
.Authorization(TAG_CREATION_DATETIME, timestamp)
.Authorization(TAG_INCLUDE_UNIQUE_ID);
} break;
case RSA_SIGNING_KEY: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.RsaSigningKey(kRsaKeySize, kPublicExponent)
.Digest(digest)
.Padding(padding)
.AttestationChallenge(challenge)
.AttestationApplicationId(id)
.SetDefaultValidity()
.Authorization(TAG_CREATION_DATETIME, timestamp)
.Authorization(TAG_INCLUDE_UNIQUE_ID);
} break;
case RSA_ENCRYPTION_KEY: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.RsaEncryptionKey(kRsaKeySize, kPublicExponent)
.Digest(digest)
.Padding(padding)
.AttestationChallenge(challenge)
.AttestationApplicationId(id)
.SetDefaultValidity()
.Authorization(TAG_CREATION_DATETIME, timestamp)
.Authorization(TAG_INCLUDE_UNIQUE_ID);
} break;
case ECDSA_SIGNING_CURVE: {
EcCurve ecCurve = dataProvider->PickValueInArray(kCurve);
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.EcdsaSigningKey(ecCurve)
.Digest(digest)
.AttestationChallenge(challenge)
.AttestationApplicationId(id)
.SetDefaultValidity()
.Authorization(TAG_CREATION_DATETIME, timestamp)
.Authorization(TAG_INCLUDE_UNIQUE_ID);
} break;
case AES_ENCRYPTION_KEY: {
BlockMode blockmode = dataProvider->PickValueInArray(kBlockMode);
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.AesEncryptionKey(kSymmKeySize)
.BlockMode(blockmode)
.Digest(digest)
.Padding(padding);
} break;
case TRIPLE_DES: {
BlockMode blockmode = dataProvider->PickValueInArray(kBlockMode);
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.TripleDesEncryptionKey(k3DesKeySize)
.BlockMode(blockmode)
.Digest(digest)
.Padding(padding)
.EcbMode()
.SetDefaultValidity();
} break;
case HMAC: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.HmacKey(kSymmKeySize)
.Digest(digest)
.Padding(padding);
} break;
case NO_DIGEST: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.AesEncryptionKey(kSymmKeySize)
.NoDigestOrPadding()
.Digest(digest)
.Padding(padding);
} break;
case ECB_MODE: {
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.AesEncryptionKey(kSymmKeySize)
.EcbMode()
.Digest(digest)
.Padding(padding);
} break;
case GSM_MODE_MIN_MAC: {
uint32_t minMacLength = dataProvider->ConsumeIntegral<uint32_t>();
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.AesEncryptionKey(kSymmKeySize)
.GcmModeMinMacLen(minMacLength)
.Digest(digest)
.Padding(padding);
} break;
case GSM_MODE_MAC: {
uint32_t macLength = dataProvider->ConsumeIntegral<uint32_t>();
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.AesEncryptionKey(kSymmKeySize)
.GcmModeMacLen(macLength)
.Digest(digest)
.Padding(padding);
} break;
case BLOCK_MODE: {
BlockMode blockmode = dataProvider->PickValueInArray(kBlockMode);
return AuthorizationSetBuilder()
.Authorization(TAG_NO_AUTH_REQUIRED)
.AesEncryptionKey(kSymmKeySize)
.BlockMode(blockmode)
.Digest(digest)
.Padding(padding);
} break;
default:
break;
};
return AuthorizationSetBuilder();
}
} // namespace android::hardware::security::keymint_support::fuzzer
#endif // __KEYMINT_COMMON_H__
Reference in New Issue View Git Blame Copy Permalink