Gitiles
Code Review Sign In
LeafOS / LeafOS-Devices / android_hardware_samsung_slsi-linaro_exynos / c642d094e174c3cdf02652863af5e16bcbadd63d / . / tee / TlcKeymint / src / serialization.cpp
blob: 8e74044cda33921be6ff3e0c04d3288a5ab981b1 [file] [log] [blame]
/*
* Copyright (c) 2015-2021 TRUSTONIC LIMITED
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions are met:
*
* 1. Redistributions of source code must retain the above copyright notice,
* this list of conditions and the following disclaimer.
*
* 2. Redistributions in binary form must reproduce the above copyright
* notice, this list of conditions and the following disclaimer in the
* documentation and/or other materials provided with the distribution.
*
* 3. Neither the name of the TRUSTONIC LIMITED nor the names of its
* contributors may be used to endorse or promote products derived from
* this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
* "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
* TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR
* CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
* EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
* PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
* OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
* WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
* OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
* ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include <stdlib.h>
#include <assert.h>
#include <memory>
#include <time.h>
#include "keymint_ta_defs.h"
#include "serialization.h"
#include "km_util.h"
#define MAX_DYNAMIC_PARAM_BUFFERS 20
static bool km_is_tag_known(keymaster_tag_t tag) {
switch(tag) {
case KM_TAG_PURPOSE:
case KM_TAG_ALGORITHM:
case KM_TAG_KEY_SIZE:
case KM_TAG_BLOCK_MODE:
case KM_TAG_DIGEST:
case KM_TAG_PADDING:
case KM_TAG_CALLER_NONCE:
case KM_TAG_MIN_MAC_LENGTH:
case KM_TAG_EC_CURVE:
case KM_TAG_RSA_PUBLIC_EXPONENT:
case KM_TAG_INCLUDE_UNIQUE_ID:
case KM_TAG_RSA_OAEP_MGF_DIGEST:
case KM_TAG_BOOTLOADER_ONLY:
case KM_TAG_ROLLBACK_RESISTANCE:
case KM_TAG_HARDWARE_TYPE:
case KM_TAG_EARLY_BOOT_ONLY:
case KM_TAG_ACTIVE_DATETIME:
case KM_TAG_ORIGINATION_EXPIRE_DATETIME:
case KM_TAG_USAGE_EXPIRE_DATETIME:
case KM_TAG_MIN_SECONDS_BETWEEN_OPS:
case KM_TAG_MAX_USES_PER_BOOT:
case KM_TAG_USAGE_COUNT_LIMIT:
case KM_TAG_USER_ID:
case KM_TAG_USER_SECURE_ID:
case KM_TAG_NO_AUTH_REQUIRED:
case KM_TAG_USER_AUTH_TYPE:
case KM_TAG_AUTH_TIMEOUT:
case KM_TAG_ALLOW_WHILE_ON_BODY:
case KM_TAG_TRUSTED_USER_PRESENCE_REQUIRED:
case KM_TAG_TRUSTED_CONFIRMATION_REQUIRED:
case KM_TAG_UNLOCKED_DEVICE_REQUIRED:
case KM_TAG_APPLICATION_ID:
case KM_TAG_APPLICATION_DATA:
case KM_TAG_CREATION_DATETIME:
case KM_TAG_ORIGIN:
case KM_TAG_ROOT_OF_TRUST:
case KM_TAG_OS_VERSION:
case KM_TAG_OS_PATCHLEVEL:
case KM_TAG_UNIQUE_ID:
case KM_TAG_ATTESTATION_CHALLENGE:
case KM_TAG_ATTESTATION_APPLICATION_ID:
case KM_TAG_ATTESTATION_ID_BRAND:
case KM_TAG_ATTESTATION_ID_DEVICE:
case KM_TAG_ATTESTATION_ID_PRODUCT:
case KM_TAG_ATTESTATION_ID_SERIAL:
case KM_TAG_ATTESTATION_ID_IMEI:
case KM_TAG_ATTESTATION_ID_MEID:
case KM_TAG_ATTESTATION_ID_MANUFACTURER:
case KM_TAG_ATTESTATION_ID_MODEL:
case KM_TAG_VENDOR_PATCHLEVEL:
case KM_TAG_BOOT_PATCHLEVEL:
case KM_TAG_DEVICE_UNIQUE_ATTESTATION:
case KM_TAG_IDENTITY_CREDENTIAL_KEY:
case KM_TAG_STORAGE_KEY:
case KM_TAG_NONCE:
case KM_TAG_MAC_LENGTH:
case KM_TAG_RESET_SINCE_ID_ROTATION:
case KM_TAG_CONFIRMATION_TOKEN:
case KM_TAG_CERTIFICATE_SERIAL:
case KM_TAG_CERTIFICATE_SUBJECT:
case KM_TAG_CERTIFICATE_NOT_BEFORE:
case KM_TAG_CERTIFICATE_NOT_AFTER:
case KM_TAG_MAX_BOOT_LEVEL:
return true;
default:
return false;
}
}
keymaster_error_t km_serialize_params(
scoped_buf_ptr_t& serialized_data,
const keymaster_key_param_set_t *params,
uint32_t key_size,
uint64_t rsa_pubexp)
{
keymaster_error_t ret = KM_ERROR_OK;
uint8_t* pos = NULL;
uint32_t size;
uint32_t n_params;
bool key_size_present = false;
bool rsa_pubexp_present = false;
bool add_key_size = false;
bool add_rsa_pubexp = false;
uint32_t n_serialized_params = 0;
keymaster_tag_t tag;
n_params = (params != NULL) ? params->length : 0;
size = 4; // uint32_t (number of parameters)
/* First calculate the required buffer size */
for (size_t i = 0; i < n_params; i++) {
tag = params->params[i].tag;
if (!km_is_tag_known(tag)) {
continue;
}
if (tag == KM_TAG_KEY_SIZE) {
key_size_present = true;
} else if (tag == KM_TAG_RSA_PUBLIC_EXPONENT) {
rsa_pubexp_present = true;
}
/* length of tag */
size += 4; // uint32_t <= keymaster_tag_t
/* length of value */
switch (keymaster_tag_get_type(tag)) {
case KM_ENUM:
case KM_ENUM_REP:
case KM_UINT:
case KM_UINT_REP:
case KM_BOOL:
size += 4; // uint32_t
break;
case KM_ULONG:
case KM_DATE:
case KM_ULONG_REP:
size += 8; // uint64_t
break;
case KM_BIGNUM:
case KM_BYTES:
size += 4; // uint32_t
size += params->params[i].blob.data_length;
break;
default: // bad tag
ret = KM_ERROR_INVALID_TAG;
goto end;
}
n_serialized_params++;
}
add_key_size = (key_size != 0) && !key_size_present;
add_rsa_pubexp = (rsa_pubexp != 0) && !rsa_pubexp_present;
if (add_key_size) {
size += 4 + 4;
}
if (add_rsa_pubexp) {
size += 4 + 8;
}
/* Allocate memory for the buffer */
serialized_data.size = size;
serialized_data.buf.reset(new (std::nothrow) uint8_t[size]);
CHECK_TRUE(KM_ERROR_MEMORY_ALLOCATION_FAILED, serialized_data.buf);
/* Position to the beginning of the buffer */
pos = serialized_data.buf.get();
/* Copy parameter count */
set_u32_increment_pos(&pos, n_serialized_params + (add_key_size ? 1 : 0)
+ (add_rsa_pubexp ? 1 : 0));
/* Copy data */
for (size_t i = 0; i < n_params; i++) {
const keymaster_tag_t tag = params->params[i].tag;
if (!km_is_tag_known(tag)) {
continue;
}
set_u32_increment_pos(&pos, tag);
switch (keymaster_tag_get_type(tag)) {
case KM_ENUM:
case KM_ENUM_REP:
set_u32_increment_pos(&pos, params->params[i].enumerated);
break;
case KM_UINT:
case KM_UINT_REP:
set_u32_increment_pos(&pos, params->params[i].integer);
break;
case KM_BOOL:
set_u32_increment_pos(&pos, params->params[i].boolean ? 1 : 0);
break;
case KM_ULONG:
case KM_ULONG_REP:
set_u64_increment_pos(&pos, params->params[i].long_integer);
break;
case KM_DATE:
set_u64_increment_pos(&pos, params->params[i].date_time);
break;
case KM_BIGNUM:
case KM_BYTES:
set_u32_increment_pos(&pos, params->params[i].blob.data_length);
set_data_increment_pos(&pos, params->params[i].blob.data, params->params[i].blob.data_length);
break;
default: // bad tag
ret = KM_ERROR_INVALID_TAG;
goto end;
}
}
if (add_key_size) {
set_u32_increment_pos(&pos, KM_TAG_KEY_SIZE);
set_u32_increment_pos(&pos, key_size);
}
if (add_rsa_pubexp) {
set_u32_increment_pos(&pos, KM_TAG_RSA_PUBLIC_EXPONENT);
set_u64_increment_pos(&pos, rsa_pubexp);
}
end:
return ret;
}
keymaster_error_t deserialize_param_set(
keymaster_key_param_set_t *param_set,
uint8_t **pos,
uint32_t *remain)
{
keymaster_error_t ret = KM_ERROR_OK;
uint32_t n;
uint32_t data_length;
CHECK_NOT_NULL(param_set);
CHECK_NOT_NULL(pos);
CHECK_NOT_NULL(remain);
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 4);
n = get_u32(*pos);
*pos += 4; *remain -= 4;
param_set->length = n;
if (n == 0) {
param_set->params = NULL;
} else {
param_set->params = (keymaster_key_param_t*)calloc(sizeof(keymaster_key_param_t), n);
CHECK_TRUE(KM_ERROR_MEMORY_ALLOCATION_FAILED,
param_set->params != NULL);
memset(param_set->params, 0, n * sizeof(keymaster_key_param_t));
for (uint32_t i = 0; i < n; i++) {
keymaster_key_param_t *param = param_set->params + i;
// read tag
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 4);
param->tag = (keymaster_tag_t)get_u32(*pos);
*pos += 4; *remain -= 4;
// read value
switch (keymaster_tag_get_type(param->tag)) {
case KM_ENUM:
case KM_ENUM_REP:
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 4);
param->enumerated = get_u32(*pos);
*pos += 4; *remain -= 4;
break;
case KM_UINT:
case KM_UINT_REP:
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 4);
param->integer = get_u32(*pos);
*pos += 4; *remain -= 4;
break;
case KM_BOOL:
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 4);
param->boolean = (get_u32(*pos) != 0);
*pos += 4; *remain -= 4;
break;
case KM_ULONG:
case KM_ULONG_REP:
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 8);
param->long_integer = get_u64(*pos);
*pos += 8; *remain -= 8;
break;
case KM_DATE:
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 8);
param->date_time = get_u64(*pos);
*pos += 8; *remain -= 8;
break;
case KM_BIGNUM:
case KM_BYTES:
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= 4);
data_length = get_u32(*pos);
*pos += 4; *remain -= 4;
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
*remain >= data_length);
param->blob.data = (const uint8_t*)malloc(data_length);
CHECK_TRUE(KM_ERROR_MEMORY_ALLOCATION_FAILED,
param->blob.data != NULL);
memcpy((void*)param->blob.data, *pos, data_length);
param->blob.data_length = data_length;
*pos += data_length; *remain -= data_length;
break;
default:
ret = KM_ERROR_INVALID_TAG;
goto end;
}
}
}
end:
return ret;
}
keymaster_error_t km_deserialize_characteristics(
keymaster_key_characteristics_t *characteristics,
const uint8_t *buffer,
uint32_t buffer_length)
{
keymaster_error_t ret = KM_ERROR_OK;
uint8_t *pos = (uint8_t*)buffer;
uint32_t remain = buffer_length;
CHECK_NOT_NULL(characteristics);
CHECK_NOT_NULL(buffer);
memset(characteristics, 0, sizeof(keymaster_key_characteristics_t));
CHECK_RESULT_OK(deserialize_param_set(&characteristics->hw_enforced, &pos, &remain));
CHECK_RESULT_OK(deserialize_param_set(&characteristics->sw_enforced, &pos, &remain));
end:
if (ret != KM_ERROR_OK) {
keymaster_free_characteristics(characteristics);
}
return ret;
}
keymaster_error_t km_deserialize_attestation(
keymaster_cert_chain_t *cert_chain,
const uint8_t *buffer,
uint32_t buffer_length)
{
keymaster_error_t ret = KM_ERROR_OK;
uint8_t *pos = (uint8_t*)buffer;
uint32_t remain = buffer_length;
uint32_t n = 0;
CHECK_NOT_NULL(cert_chain);
CHECK_NOT_NULL(buffer);
memset(cert_chain, 0, sizeof(keymaster_cert_chain_t));
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
remain >= 4);
n = get_u32(pos);
pos += 4; remain -= 4;
cert_chain->entry_count = n;
if (n == 0) {
cert_chain->entries = NULL;
}
else {
cert_chain->entries = (keymaster_blob_t*)calloc(sizeof(keymaster_blob_t), n);
CHECK_TRUE(KM_ERROR_MEMORY_ALLOCATION_FAILED,
cert_chain->entries != NULL);
memset(cert_chain->entries, 0, n * sizeof(keymaster_blob_t));
for (uint32_t i = 0; i < n; i++) {
keymaster_blob_t *blob = cert_chain->entries + i;
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
remain >= 4);
blob->data_length = get_u32(pos);
pos += 4; remain -= 4;
CHECK_TRUE(KM_ERROR_UNKNOWN_ERROR,
blob->data_length != 0);
blob->data = (const uint8_t*)malloc(blob->data_length);
CHECK_TRUE(KM_ERROR_MEMORY_ALLOCATION_FAILED,
blob->data != NULL);
CHECK_TRUE(KM_ERROR_INSUFFICIENT_BUFFER_SPACE,
remain >= blob->data_length);
memcpy((void*)blob->data, pos, blob->data_length);
pos += blob->data_length; remain -= blob->data_length;
}
}
end:
if (ret != KM_ERROR_OK) {
keymaster_free_cert_chain(cert_chain);
}
return ret;
}