Google Git
Sign in
cos / mirrors / cros / chromiumos / platform2 / 3dc36da0684e5e19b9bf50fe98ce13ec532aa111 / . / cryptohome / tpm2_test.cc
blob: fababef257e1c80c3ac32f01be85405476986718 [file] [log] [blame]
// Copyright 2015 The Chromium OS Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
// Unit tests for Tpm2Impl.
#include "cryptohome/tpm2_impl.h"
#include <stdint.h>
#include <iterator>
#include <map>
#include <memory>
#include <set>
#include <base/bind.h>
#include <base/callback.h>
#include <base/memory/ptr_util.h>
#include <base/memory/ref_counted.h>
#include <base/run_loop.h>
#include <base/single_thread_task_runner.h>
#include <base/task/single_thread_task_executor.h>
#include <base/threading/thread_task_runner_handle.h>
#include <crypto/libcrypto-compat.h>
#include <crypto/scoped_openssl_types.h>
#include <gmock/gmock.h>
#include <gtest/gtest.h>
#include <openssl/bn.h>
#include <openssl/evp.h>
#include <openssl/rsa.h>
#include <openssl/x509.h>
#include <tpm_manager-client/tpm_manager/dbus-constants.h>
#include <tpm_manager/client/mock_tpm_manager_utility.h>
#include <tpm_manager/common/mock_tpm_nvram_interface.h>
#include <tpm_manager/common/mock_tpm_ownership_interface.h>
#include <trunks/mock_authorization_delegate.h>
#include <trunks/mock_blob_parser.h>
#include <trunks/mock_hmac_session.h>
#include <trunks/mock_policy_session.h>
#include <trunks/mock_tpm.h>
#include <trunks/mock_tpm_state.h>
#include <trunks/mock_tpm_utility.h>
#include <trunks/tpm_constants.h>
#include <trunks/tpm_generated.h>
#include <trunks/trunks_factory.h>
#include <trunks/trunks_factory_for_test.h>
#include "cryptohome/cryptolib.h"
#include "cryptohome/key.pb.h"
#include "cryptohome/protobuf_test_utils.h"
using brillo::Blob;
using brillo::BlobFromString;
using brillo::BlobToString;
using brillo::SecureBlob;
using testing::_;
using testing::DoAll;
using testing::ElementsAreArray;
using testing::InSequence;
using testing::Invoke;
using testing::InvokeWithoutArgs;
using testing::NiceMock;
using testing::Return;
using testing::SaveArg;
using testing::SetArgPointee;
using testing::Values;
using testing::WithArg;
using tpm_manager::LocalData;
using tpm_manager::MockTpmManagerUtility;
using tpm_manager::NVRAM_RESULT_IPC_ERROR;
using trunks::TPM_ALG_ID;
using trunks::TPM_RC;
using trunks::TPM_RC_FAILURE;
using trunks::TPM_RC_SUCCESS;
using trunks::TrunksFactory;
namespace {
const char kDefaultPassword[] = "password";
// Reset the |pcr_select| and set the bit corresponding to |index|.
void SetPcrSelectData(uint8_t* pcr_select, uint32_t index) {
for (uint8_t i = 0; i < PCR_SELECT_MIN; ++i) {
pcr_select[i] = 0;
}
pcr_select[index / 8] = 1 << (index % 8);
}
} // namespace
namespace cryptohome {
class Tpm2Test : public testing::Test {
public:
Tpm2Test() {
factory_.set_blob_parser(&mock_blob_parser_);
factory_.set_tpm(&mock_tpm_);
factory_.set_tpm_state(&mock_tpm_state_);
factory_.set_tpm_utility(&mock_tpm_utility_);
factory_.set_hmac_session(&mock_hmac_session_);
factory_.set_policy_session(&mock_policy_session_);
factory_.set_trial_session(&mock_trial_session_);
tpm_ = std::make_unique<Tpm2Impl>(&factory_, &mock_tpm_manager_utility_);
}
protected:
std::unique_ptr<Tpm2Impl> tpm_;
NiceMock<trunks::MockAuthorizationDelegate> mock_authorization_delegate_;
NiceMock<trunks::MockBlobParser> mock_blob_parser_;
NiceMock<trunks::MockTpm> mock_tpm_;
NiceMock<trunks::MockTpmState> mock_tpm_state_;
NiceMock<trunks::MockTpmUtility> mock_tpm_utility_;
NiceMock<trunks::MockHmacSession> mock_hmac_session_;
NiceMock<trunks::MockPolicySession> mock_policy_session_;
NiceMock<trunks::MockPolicySession> mock_trial_session_;
NiceMock<tpm_manager::MockTpmManagerUtility> mock_tpm_manager_utility_;
private:
trunks::TrunksFactoryForTest factory_;
};
TEST_F(Tpm2Test, GetPcrMapNotExtended) {
std::string obfuscated_username = "OBFUSCATED_USER";
std::map<uint32_t, std::string> result =
tpm_->GetPcrMap(obfuscated_username, /*use_extended_pcr=*/false);
EXPECT_EQ(1, result.size());
const std::string& result_str = result[kTpmSingleUserPCR];
std::string expected_result(SHA256_DIGEST_LENGTH, 0);
EXPECT_EQ(expected_result, result_str);
}
TEST_F(Tpm2Test, GetPcrMapExtended) {
std::string obfuscated_username = "OBFUSCATED_USER";
std::map<uint32_t, std::string> result =
tpm_->GetPcrMap(obfuscated_username, /*use_extended_pcr=*/true);
EXPECT_EQ(1, result.size());
const std::string& result_str = result[kTpmSingleUserPCR];
// Pre-calculated expected result.
unsigned char expected_result_bytes[] = {
0x2D, 0x5B, 0x86, 0xF2, 0xBE, 0xEE, 0xD1, 0xB7, 0x40, 0xC7, 0xCD,
0xE3, 0x88, 0x25, 0xA6, 0xEE, 0xE3, 0x98, 0x69, 0xA4, 0x99, 0x4D,
0x88, 0x09, 0x85, 0x6E, 0x0E, 0x11, 0x7A, 0x4E, 0xFD, 0x91};
std::string expected_result(reinterpret_cast<char*>(expected_result_bytes),
sizeof(expected_result_bytes) / sizeof(uint8_t));
EXPECT_EQ(expected_result, result_str);
}
TEST_F(Tpm2Test, TakeOwnership) {
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillRepeatedly(Return(false));
EXPECT_CALL(mock_tpm_manager_utility_, TakeOwnership())
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->TakeOwnership(0, SecureBlob{}));
EXPECT_CALL(mock_tpm_manager_utility_, TakeOwnership())
.WillOnce(Return(true));
EXPECT_TRUE(tpm_->TakeOwnership(0, SecureBlob{}));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<1>(true), Return(true)));
EXPECT_CALL(mock_tpm_manager_utility_, TakeOwnership()).Times(0);
EXPECT_TRUE(tpm_->TakeOwnership(0, SecureBlob{}));
}
TEST_F(Tpm2Test, Enabled) {
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.Times(0);
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->IsEnabled());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<0>(false), Return(true)));
EXPECT_FALSE(tpm_->IsEnabled());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<0>(true), Return(true)));
EXPECT_TRUE(tpm_->IsEnabled());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(0);
EXPECT_TRUE(tpm_->IsEnabled());
}
TEST_F(Tpm2Test, OwnedWithoutSignal) {
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillRepeatedly(Return(false));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->IsOwned());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<1>(false), Return(true)));
EXPECT_FALSE(tpm_->IsOwned());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<1>(true), Return(true)));
EXPECT_TRUE(tpm_->IsOwned());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(0);
EXPECT_TRUE(tpm_->IsOwned());
}
TEST_F(Tpm2Test, GetOwnerPasswordWithoutSignal) {
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillRepeatedly(Return(false));
SecureBlob result_owner_password;
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
LocalData expected_local_data;
expected_local_data.set_owner_password(kDefaultPassword);
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<0>(true), SetArgPointee<1>(true),
SetArgPointee<2>(expected_local_data), Return(true)));
EXPECT_TRUE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_EQ(result_owner_password.to_string(),
expected_local_data.owner_password());
result_owner_password.clear();
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(0);
EXPECT_TRUE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_EQ(result_owner_password.to_string(),
expected_local_data.owner_password());
}
TEST_F(Tpm2Test, GetOwnerPasswordEmpty) {
SecureBlob result_owner_password;
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<0>(true), SetArgPointee<1>(true),
SetArgPointee<2>(LocalData{}), Return(true)));
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
}
TEST_F(Tpm2Test, GetDictionaryAttackInfo) {
int result_counter = 0;
int result_threshold = 0;
bool result_lockout = false;
int result_seconds_remaining = 0;
EXPECT_CALL(mock_tpm_manager_utility_, GetDictionaryAttackInfo(_, _, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->GetDictionaryAttackInfo(&result_counter, &result_threshold,
&result_lockout,
&result_seconds_remaining));
EXPECT_CALL(mock_tpm_manager_utility_, GetDictionaryAttackInfo(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<0>(123), SetArgPointee<1>(456),
SetArgPointee<2>(true), SetArgPointee<3>(789),
Return(true)));
EXPECT_TRUE(tpm_->GetDictionaryAttackInfo(&result_counter, &result_threshold,
&result_lockout,
&result_seconds_remaining));
EXPECT_EQ(result_counter, 123);
EXPECT_EQ(result_threshold, 456);
EXPECT_TRUE(result_lockout);
EXPECT_EQ(result_seconds_remaining, 789);
}
TEST_F(Tpm2Test, ResetDictionaryAttackMitigation) {
EXPECT_CALL(mock_tpm_manager_utility_, ResetDictionaryAttackLock())
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->ResetDictionaryAttackMitigation(Blob{}, Blob{}));
EXPECT_CALL(mock_tpm_manager_utility_, ResetDictionaryAttackLock())
.WillOnce(Return(true));
EXPECT_TRUE(tpm_->ResetDictionaryAttackMitigation(Blob{}, Blob{}));
}
TEST_F(Tpm2Test, SignalCache) {
brillo::SecureBlob result_owner_password;
ON_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillByDefault(Return(false));
ON_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillByDefault(Return(false));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(2);
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.Times(2);
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_FALSE(tpm_->IsOwned());
ON_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillByDefault(DoAll(SetArgPointee<0>(false), Return(true)));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(2);
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.Times(2);
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_FALSE(tpm_->IsOwned());
ON_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillByDefault(
DoAll(SetArgPointee<0>(true), SetArgPointee<1>(false), Return(true)));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(1);
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.Times(4);
EXPECT_FALSE(tpm_->IsOwned());
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_FALSE(tpm_->IsOwned());
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
LocalData expected_local_data;
expected_local_data.set_owner_password("owner password");
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillOnce(DoAll(SetArgPointee<0>(true), SetArgPointee<1>(true),
SetArgPointee<2>(expected_local_data), Return(true)));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _)).Times(0);
EXPECT_TRUE(tpm_->IsOwned());
EXPECT_TRUE(tpm_->IsEnabled());
EXPECT_TRUE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_THAT(result_owner_password,
ElementsAreArray(expected_local_data.owner_password()));
}
TEST_F(Tpm2Test, RemoveTpmOwnerDependency) {
EXPECT_CALL(mock_tpm_manager_utility_,
RemoveOwnerDependency(tpm_manager::kTpmOwnerDependency_Nvram))
.WillOnce(Return(true));
EXPECT_TRUE(tpm_->RemoveOwnerDependency(
TpmPersistentState::TpmOwnerDependency::kInstallAttributes));
EXPECT_CALL(
mock_tpm_manager_utility_,
RemoveOwnerDependency(tpm_manager::kTpmOwnerDependency_Attestation))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->RemoveOwnerDependency(
TpmPersistentState::TpmOwnerDependency::kAttestation));
}
TEST_F(Tpm2Test, RemoveTpmOwnerDependencyInvalidEnum) {
EXPECT_DEBUG_DEATH(
tpm_->RemoveOwnerDependency(
static_cast<TpmPersistentState::TpmOwnerDependency>(999)),
".*Unexpected enum class value: 999");
}
TEST_F(Tpm2Test, ClearStoredPassword) {
EXPECT_CALL(mock_tpm_manager_utility_, ClearStoredOwnerPassword())
.WillOnce(Return(true));
EXPECT_TRUE(tpm_->ClearStoredPassword());
EXPECT_CALL(mock_tpm_manager_utility_, ClearStoredOwnerPassword())
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->ClearStoredPassword());
}
TEST_F(Tpm2Test, GetVersionInfoCache) {
Tpm::TpmVersionInfo expected_version_info;
expected_version_info.family = 1;
expected_version_info.spec_level = 2;
expected_version_info.manufacturer = 3;
expected_version_info.tpm_model = 4;
expected_version_info.firmware_version = 5;
expected_version_info.vendor_specific = "aa";
EXPECT_CALL(mock_tpm_manager_utility_, GetVersionInfo(_, _, _, _, _, _))
.WillOnce(Return(false))
.WillOnce(DoAll(SetArgPointee<0>(expected_version_info.family),
SetArgPointee<1>(expected_version_info.spec_level),
SetArgPointee<2>(expected_version_info.manufacturer),
SetArgPointee<3>(expected_version_info.tpm_model),
SetArgPointee<4>(expected_version_info.firmware_version),
SetArgPointee<5>(expected_version_info.vendor_specific),
Return(true)));
Tpm::TpmVersionInfo actual_version_info;
// Requests from tpm_manager, failed, not cached
EXPECT_FALSE(tpm_->GetVersionInfo(&actual_version_info));
// Requests from tpm_manager, succeeded, cached
EXPECT_TRUE(tpm_->GetVersionInfo(&actual_version_info));
EXPECT_EQ(expected_version_info.GetFingerprint(),
actual_version_info.GetFingerprint());
// Returns from cache
EXPECT_TRUE(tpm_->GetVersionInfo(&actual_version_info));
EXPECT_EQ(expected_version_info.GetFingerprint(),
actual_version_info.GetFingerprint());
}
TEST_F(Tpm2Test, GetVersionInfoBadInput) {
EXPECT_CALL(mock_tpm_manager_utility_, GetVersionInfo(_, _, _, _, _, _))
.Times(0);
EXPECT_FALSE(tpm_->GetVersionInfo(nullptr));
}
TEST_F(Tpm2Test, PerformEnabledOwnedCheckWithoutSignal) {
EXPECT_CALL(mock_tpm_manager_utility_, GetOwnershipTakenSignalStatus(_, _, _))
.WillRepeatedly(Return(false));
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(Return(false));
bool enabled = false;
bool owned = false;
EXPECT_FALSE(tpm_->PerformEnabledOwnedCheck(&enabled, &owned));
EXPECT_FALSE(enabled);
EXPECT_FALSE(owned);
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(
DoAll(SetArgPointee<0>(true), SetArgPointee<1>(false), Return(true)));
EXPECT_TRUE(tpm_->PerformEnabledOwnedCheck(&enabled, &owned));
EXPECT_TRUE(enabled);
EXPECT_FALSE(owned);
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(
DoAll(SetArgPointee<0>(true), SetArgPointee<1>(true), Return(true)));
EXPECT_TRUE(tpm_->PerformEnabledOwnedCheck(&enabled, &owned));
EXPECT_TRUE(enabled);
EXPECT_TRUE(owned);
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmStatus(_, _, _))
.WillOnce(
DoAll(SetArgPointee<0>(true), SetArgPointee<1>(true), Return(true)));
EXPECT_TRUE(tpm_->PerformEnabledOwnedCheck(&enabled, &owned));
EXPECT_TRUE(enabled);
EXPECT_TRUE(owned);
}
TEST_F(Tpm2Test, BadTpmManagerUtility) {
EXPECT_CALL(mock_tpm_manager_utility_, Initialize())
.WillRepeatedly(Return(false));
EXPECT_FALSE(tpm_->TakeOwnership(0, SecureBlob{}));
SecureBlob result_owner_password;
EXPECT_FALSE(tpm_->GetOwnerPassword(&result_owner_password));
EXPECT_FALSE(tpm_->IsEnabled());
EXPECT_FALSE(tpm_->IsOwned());
EXPECT_FALSE(tpm_->ResetDictionaryAttackMitigation(Blob{}, Blob{}));
int result_counter;
int result_threshold;
bool result_lockout;
int result_seconds_remaining;
EXPECT_FALSE(tpm_->GetDictionaryAttackInfo(&result_counter, &result_threshold,
&result_lockout,
&result_seconds_remaining));
}
TEST_F(Tpm2Test, GetRandomDataSuccess) {
std::string random_data("random_data");
size_t num_bytes = random_data.size();
brillo::Blob data;
EXPECT_CALL(mock_tpm_utility_, GenerateRandom(num_bytes, _, _))
.WillOnce(DoAll(SetArgPointee<2>(random_data), Return(TPM_RC_SUCCESS)));
EXPECT_TRUE(tpm_->GetRandomDataBlob(num_bytes, &data));
EXPECT_EQ(data.size(), num_bytes);
std::string tpm_data(data.begin(), data.end());
EXPECT_EQ(tpm_data, random_data);
}
TEST_F(Tpm2Test, GetRandomDataFailure) {
brillo::Blob data;
size_t num_bytes = 5;
EXPECT_CALL(mock_tpm_utility_, GenerateRandom(num_bytes, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->GetRandomDataBlob(num_bytes, &data));
}
TEST_F(Tpm2Test, GetRandomDataBadLength) {
std::string random_data("random_data");
brillo::Blob data;
size_t num_bytes = random_data.size() + 1;
EXPECT_CALL(mock_tpm_utility_, GenerateRandom(num_bytes, _, _))
.WillOnce(DoAll(SetArgPointee<2>(random_data), Return(TPM_RC_SUCCESS)));
EXPECT_FALSE(tpm_->GetRandomDataBlob(num_bytes, &data));
}
TEST_F(Tpm2Test, DefineNvramSuccess) {
constexpr uint32_t kIndex = 2;
constexpr size_t kLength = 5;
uint32_t index = 0;
size_t length = 0;
bool write_define = false;
bool bind_to_pcr0 = false;
bool firmware_readable = false;
EXPECT_CALL(mock_tpm_manager_utility_, DefineSpace(_, _, _, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SaveArg<1>(&length),
SaveArg<2>(&write_define), SaveArg<3>(&bind_to_pcr0),
SaveArg<4>(&firmware_readable), Return(true)));
EXPECT_TRUE(tpm_->DefineNvram(kIndex, kLength, Tpm::kTpmNvramWriteDefine));
EXPECT_EQ(kIndex, index);
EXPECT_EQ(kLength, length);
ASSERT_TRUE(write_define);
ASSERT_FALSE(bind_to_pcr0);
ASSERT_FALSE(firmware_readable);
}
TEST_F(Tpm2Test, DefineNvramSuccessWithPolicy) {
constexpr uint32_t kIndex = 2;
constexpr size_t kLength = 5;
uint32_t index = 0;
size_t length = 0;
bool write_define = false;
bool bind_to_pcr0 = false;
bool firmware_readable = false;
EXPECT_CALL(mock_tpm_manager_utility_, DefineSpace(_, _, _, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SaveArg<1>(&length),
SaveArg<2>(&write_define), SaveArg<3>(&bind_to_pcr0),
SaveArg<4>(&firmware_readable), Return(true)));
EXPECT_TRUE(tpm_->DefineNvram(
kIndex, kLength, Tpm::kTpmNvramWriteDefine | Tpm::kTpmNvramBindToPCR0));
EXPECT_EQ(kIndex, index);
EXPECT_EQ(kLength, length);
ASSERT_TRUE(write_define);
ASSERT_TRUE(bind_to_pcr0);
ASSERT_FALSE(firmware_readable);
}
TEST_F(Tpm2Test, DefineNvramSuccessFirmwareReadable) {
constexpr uint32_t kIndex = 2;
constexpr size_t kLength = 5;
uint32_t index = 0;
size_t length = 0;
bool write_define = false;
bool bind_to_pcr0 = false;
bool firmware_readable = false;
EXPECT_CALL(mock_tpm_manager_utility_, DefineSpace(_, _, _, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SaveArg<1>(&length),
SaveArg<2>(&write_define), SaveArg<3>(&bind_to_pcr0),
SaveArg<4>(&firmware_readable), Return(true)));
EXPECT_TRUE(tpm_->DefineNvram(
kIndex, kLength,
Tpm::kTpmNvramWriteDefine | Tpm::kTpmNvramFirmwareReadable));
EXPECT_EQ(kIndex, index);
EXPECT_EQ(kLength, length);
ASSERT_TRUE(write_define);
ASSERT_FALSE(bind_to_pcr0);
ASSERT_TRUE(firmware_readable);
}
TEST_F(Tpm2Test, DefineNvramFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, DefineSpace(_, _, _, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->DefineNvram(0, 0, 0));
}
TEST_F(Tpm2Test, DestroyNvramSuccess) {
constexpr uint32_t kIndex = 2;
uint32_t index = 0;
EXPECT_CALL(mock_tpm_manager_utility_, DestroySpace(_))
.WillOnce(DoAll(SaveArg<0>(&index), Return(true)));
EXPECT_TRUE(tpm_->DestroyNvram(kIndex));
EXPECT_EQ(kIndex, index);
}
TEST_F(Tpm2Test, DestroyNvramFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, DestroySpace(_))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->DestroyNvram(0));
}
TEST_F(Tpm2Test, WriteNvramSuccess) {
constexpr uint32_t kIndex = 2;
const std::string kData("nvram_data");
constexpr bool kUserOwnerAuth = false;
uint32_t index = 0;
std::string data = "";
bool user_owner_auth = false;
EXPECT_CALL(mock_tpm_manager_utility_, WriteSpace(_, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SaveArg<1>(&data),
SaveArg<2>(&user_owner_auth), Return(true)));
EXPECT_TRUE(tpm_->WriteNvram(kIndex, SecureBlob(kData)));
EXPECT_EQ(index, kIndex);
EXPECT_EQ(data, kData);
EXPECT_EQ(user_owner_auth, kUserOwnerAuth);
}
TEST_F(Tpm2Test, WriteNvramFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, WriteSpace(_, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->WriteNvram(0, SecureBlob()));
}
TEST_F(Tpm2Test, WriteLockNvramSuccess) {
constexpr uint32_t kIndex = 2;
uint32_t index = 0;
EXPECT_CALL(mock_tpm_manager_utility_, LockSpace(_))
.WillOnce(DoAll(SaveArg<0>(&index), Return(true)));
EXPECT_TRUE(tpm_->WriteLockNvram(kIndex));
EXPECT_EQ(kIndex, index);
}
TEST_F(Tpm2Test, WriteLockNvramFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, LockSpace(_)).WillOnce(Return(false));
EXPECT_FALSE(tpm_->WriteLockNvram(0));
}
TEST_F(Tpm2Test, ReadNvramSuccess) {
constexpr uint32_t kIndex = 2;
constexpr bool kUserOwnerAuth = false;
const std::string nvram_data("nvram_data");
uint32_t index = 0;
bool user_owner_auth = false;
SecureBlob read_data;
EXPECT_CALL(mock_tpm_manager_utility_, ReadSpace(_, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SaveArg<1>(&user_owner_auth),
SetArgPointee<2>(nvram_data), Return(true)));
EXPECT_TRUE(tpm_->ReadNvram(kIndex, &read_data));
EXPECT_EQ(index, kIndex);
EXPECT_EQ(user_owner_auth, kUserOwnerAuth);
EXPECT_EQ(nvram_data, read_data.to_string());
}
TEST_F(Tpm2Test, ReadNvramFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, ReadSpace(_, _, _))
.WillOnce(Return(false));
SecureBlob read_data;
EXPECT_FALSE(tpm_->ReadNvram(0, &read_data));
}
TEST_F(Tpm2Test, IsNvramDefinedSuccess) {
constexpr uint32_t kIndex = 2;
std::vector<uint32_t> spaces;
spaces.push_back(kIndex);
EXPECT_CALL(mock_tpm_manager_utility_, ListSpaces(_))
.WillOnce(DoAll(SetArgPointee<0>(spaces), Return(true)));
EXPECT_TRUE(tpm_->IsNvramDefined(kIndex));
}
TEST_F(Tpm2Test, IsNvramDefinedFailure) {
constexpr uint32_t kIndex = 2;
EXPECT_CALL(mock_tpm_manager_utility_, ListSpaces(_)).WillOnce(Return(false));
EXPECT_FALSE(tpm_->IsNvramDefined(kIndex));
}
TEST_F(Tpm2Test, IsNvramDefinedUnknownHandle) {
constexpr uint32_t kIndex = 2;
std::vector<uint32_t> spaces;
spaces.push_back(kIndex);
EXPECT_CALL(mock_tpm_manager_utility_, ListSpaces(_))
.WillOnce(DoAll(SetArgPointee<0>(spaces), Return(true)));
EXPECT_FALSE(tpm_->IsNvramDefined(kIndex + 1));
}
TEST_F(Tpm2Test, IsNvramLockedSuccess) {
constexpr uint32_t kIndex = 2;
constexpr uint32_t kSize = 5;
constexpr uint32_t kIsReadLocked = false;
constexpr uint32_t kIsWriteLocked = true;
uint32_t index = 0;
EXPECT_CALL(mock_tpm_manager_utility_, GetSpaceInfo(_, _, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SetArgPointee<1>(kSize),
SetArgPointee<2>(kIsReadLocked),
SetArgPointee<3>(kIsWriteLocked), Return(true)));
EXPECT_TRUE(tpm_->IsNvramLocked(kIndex));
EXPECT_EQ(kIndex, index);
}
TEST_F(Tpm2Test, IsNvramLockedNotLocked) {
constexpr uint32_t kIndex = 2;
constexpr uint32_t kSize = 5;
constexpr uint32_t kIsReadLocked = false;
constexpr uint32_t kIsWriteLocked = false;
uint32_t index = 0;
EXPECT_CALL(mock_tpm_manager_utility_, GetSpaceInfo(_, _, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SetArgPointee<1>(kSize),
SetArgPointee<2>(kIsReadLocked),
SetArgPointee<3>(kIsWriteLocked), Return(true)));
EXPECT_FALSE(tpm_->IsNvramLocked(kIndex));
EXPECT_EQ(kIndex, index);
}
TEST_F(Tpm2Test, IsNvramLockedFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, GetSpaceInfo(_, _, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->IsNvramLocked(0));
}
TEST_F(Tpm2Test, GetNvramSizeSuccess) {
constexpr uint32_t kIndex = 2;
constexpr uint32_t kSize = 5;
constexpr uint32_t kIsReadLocked = false;
constexpr uint32_t kIsWriteLocked = true;
uint32_t index = 0;
EXPECT_CALL(mock_tpm_manager_utility_, GetSpaceInfo(_, _, _, _))
.WillOnce(DoAll(SaveArg<0>(&index), SetArgPointee<1>(kSize),
SetArgPointee<2>(kIsReadLocked),
SetArgPointee<3>(kIsWriteLocked), Return(true)));
EXPECT_EQ(tpm_->GetNvramSize(kIndex), kSize);
EXPECT_EQ(kIndex, index);
}
TEST_F(Tpm2Test, GetNvramSizeFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, GetSpaceInfo(_, _, _, _))
.WillOnce(Return(false));
EXPECT_EQ(tpm_->GetNvramSize(0), 0);
}
TEST_F(Tpm2Test, SealToPCR0Success) {
SecureBlob value("value");
SecureBlob sealed_value;
std::string policy_digest("digest");
std::map<uint32_t, std::string> pcr_map;
EXPECT_CALL(mock_tpm_utility_, GetPolicyDigestForPcrValues(_, _, _))
.WillOnce(DoAll(SetArgPointee<2>(policy_digest), Return(TPM_RC_SUCCESS)));
std::string data_to_seal;
EXPECT_CALL(mock_tpm_utility_, SealData(_, policy_digest, "", _, _))
.WillOnce(DoAll(SaveArg<0>(&data_to_seal), Return(TPM_RC_SUCCESS)));
EXPECT_TRUE(tpm_->SealToPCR0(value, &sealed_value));
EXPECT_EQ(data_to_seal, value.to_string());
}
TEST_F(Tpm2Test, SealToPCR0PolicyFailure) {
SecureBlob value("value");
SecureBlob sealed_value;
EXPECT_CALL(mock_tpm_utility_, GetPolicyDigestForPcrValues(_, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->SealToPCR0(value, &sealed_value));
}
TEST_F(Tpm2Test, SealToPCR0Failure) {
SecureBlob value("value");
SecureBlob sealed_value;
EXPECT_CALL(mock_tpm_utility_, SealData(_, _, "", _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->SealToPCR0(value, &sealed_value));
}
TEST_F(Tpm2Test, UnsealSuccess) {
SecureBlob sealed_value("sealed");
SecureBlob value;
std::string unsealed_data("unsealed");
EXPECT_CALL(mock_tpm_utility_, UnsealData(_, _, _))
.WillOnce(DoAll(SetArgPointee<2>(unsealed_data), Return(TPM_RC_SUCCESS)));
EXPECT_TRUE(tpm_->Unseal(sealed_value, &value));
EXPECT_EQ(unsealed_data, value.to_string());
}
TEST_F(Tpm2Test, UnsealStartPolicySessionFail) {
SecureBlob sealed_value("sealed");
SecureBlob value;
EXPECT_CALL(mock_policy_session_, StartUnboundSession(true, false))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->Unseal(sealed_value, &value));
}
TEST_F(Tpm2Test, UnsealPolicyPCRFailure) {
SecureBlob sealed_value("sealed");
SecureBlob value;
EXPECT_CALL(mock_policy_session_, PolicyPCR(_))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->Unseal(sealed_value, &value));
}
TEST_F(Tpm2Test, UnsealFailure) {
SecureBlob sealed_value("sealed");
SecureBlob value;
EXPECT_CALL(mock_tpm_utility_, UnsealData(_, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->Unseal(sealed_value, &value));
}
TEST_F(Tpm2Test, SignPolicySuccess) {
uint32_t pcr_index = 5;
EXPECT_CALL(mock_policy_session_, PolicyPCR(_))
.WillOnce(Return(TPM_RC_SUCCESS));
EXPECT_CALL(mock_policy_session_, GetDelegate())
.WillOnce(Return(&mock_authorization_delegate_));
std::string tpm_signature(32, 'b');
EXPECT_CALL(mock_tpm_utility_,
Sign(_, _, _, _, _, &mock_authorization_delegate_, _))
.WillOnce(DoAll(SetArgPointee<6>(tpm_signature), Return(TPM_RC_SUCCESS)));
SecureBlob signature;
EXPECT_TRUE(tpm_->Sign(SecureBlob("key_blob"), SecureBlob("input"), pcr_index,
&signature));
EXPECT_EQ(signature.to_string(), tpm_signature);
}
TEST_F(Tpm2Test, SignHmacSuccess) {
EXPECT_CALL(mock_hmac_session_, GetDelegate())
.WillOnce(Return(&mock_authorization_delegate_));
std::string tpm_signature(32, 'b');
EXPECT_CALL(mock_tpm_utility_,
Sign(_, _, _, _, _, &mock_authorization_delegate_, _))
.WillOnce(DoAll(SetArgPointee<6>(tpm_signature), Return(TPM_RC_SUCCESS)));
SecureBlob signature;
EXPECT_TRUE(tpm_->Sign(SecureBlob("key_blob"), SecureBlob("input"),
kNotBoundToPCR, &signature));
EXPECT_EQ(signature.to_string(), tpm_signature);
}
TEST_F(Tpm2Test, SignLoadFailure) {
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillRepeatedly(Return(TPM_RC_FAILURE));
SecureBlob signature;
EXPECT_FALSE(tpm_->Sign(SecureBlob("key_blob"), SecureBlob("input"),
kNotBoundToPCR, &signature));
}
TEST_F(Tpm2Test, SignFailure) {
uint32_t handle = 42;
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillRepeatedly(DoAll(SetArgPointee<2>(handle), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_tpm_utility_, Sign(handle, _, _, _, _, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
SecureBlob signature;
EXPECT_FALSE(tpm_->Sign(SecureBlob("key_blob"), SecureBlob("input"),
kNotBoundToPCR, &signature));
}
TEST_F(Tpm2Test, CreatePCRBoundKeySuccess) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
uint32_t modulus = 2048;
uint32_t exponent = 0x10001;
EXPECT_CALL(mock_tpm_utility_,
CreateRSAKeyPair(_, modulus, exponent, _, _, true, _, _, _, _))
.WillOnce(Return(TPM_RC_SUCCESS));
EXPECT_TRUE(tpm_->CreatePCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}),
trunks::TpmUtility::kDecryptKey, &key_blob, nullptr, &creation_blob));
}
TEST_F(Tpm2Test, CreatePCRBoundKeyPolicyFailure) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
EXPECT_CALL(mock_tpm_utility_, GetPolicyDigestForPcrValues(_, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->CreatePCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}),
trunks::TpmUtility::kDecryptKey, &key_blob, nullptr, &creation_blob));
}
TEST_F(Tpm2Test, CreatePCRBoundKeyFailure) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
EXPECT_CALL(mock_tpm_utility_, CreateRSAKeyPair(_, _, _, _, _, _, _, _, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->CreatePCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}),
trunks::TpmUtility::kDecryptKey, &key_blob, nullptr, &creation_blob));
}
TEST_F(Tpm2Test, CreateMultiplePCRBoundKeySuccess) {
std::map<uint32_t, std::string> pcr_map({{2, ""}, {5, ""}});
SecureBlob key_blob;
SecureBlob creation_blob;
uint32_t modulus = 2048;
uint32_t exponent = 0x10001;
EXPECT_CALL(mock_tpm_utility_,
CreateRSAKeyPair(_, modulus, exponent, _, _, true, _, _, _, _))
.WillOnce(Return(TPM_RC_SUCCESS));
EXPECT_TRUE(tpm_->CreatePCRBoundKey(pcr_map, trunks::TpmUtility::kDecryptKey,
&key_blob, nullptr, &creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeySuccess) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
std::string pcr_policy_value;
std::map<uint32_t, std::string> pcr_map;
EXPECT_CALL(mock_trial_session_, PolicyPCR(_))
.WillOnce(DoAll(SaveArg<0>(&pcr_map), Return(TPM_RC_SUCCESS)));
std::string policy_digest(32, 'a');
EXPECT_CALL(mock_trial_session_, GetDigest(_))
.WillOnce(DoAll(SetArgPointee<0>(policy_digest), Return(TPM_RC_SUCCESS)));
trunks::TPMT_PUBLIC public_area;
public_area.auth_policy.size = policy_digest.size();
memcpy(public_area.auth_policy.buffer, policy_digest.data(),
policy_digest.size());
public_area.object_attributes &= (~trunks::kUserWithAuth);
EXPECT_CALL(mock_tpm_utility_, GetKeyPublicArea(_, _))
.WillOnce(DoAll(SetArgPointee<1>(public_area), Return(TPM_RC_SUCCESS)));
ASSERT_TRUE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
EXPECT_EQ(pcr_map[index], BlobToString(pcr_value));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadCreationBlob) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}), key_blob,
creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadCreationDataCount) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
creation_data.creation_data.pcr_select.count = 0;
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}), key_blob,
creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadCreationPCRBank) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA1;
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}), key_blob,
creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadCreationPCR) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
pcr_select.pcr_selections[0].pcr_select[index / 8] = 0xFF;
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}), key_blob,
creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadCreationPCRDigest) {
uint32_t index = 2;
std::string pcr_value("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest =
trunks::Make_TPM2B_DIGEST(CryptoLib::Sha256(SecureBlob("")).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, pcr_value}}), key_blob,
creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyImportedKey) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_CALL(mock_tpm_utility_, CertifyCreation(_, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadSession) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
for (size_t i = 0; i < PCR_SELECT_MIN; ++i) {
pcr_select.pcr_selections[0].pcr_select[i] = 0;
}
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_CALL(mock_trial_session_, StartUnboundSession(true, true))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadPolicy) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
for (size_t i = 0; i < PCR_SELECT_MIN; ++i) {
pcr_select.pcr_selections[0].pcr_select[i] = 0;
}
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_CALL(mock_trial_session_, PolicyPCR(_))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadDigest) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
EXPECT_CALL(mock_trial_session_, GetDigest(_))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadPolicyDigest) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
std::string policy_digest(32, 'a');
EXPECT_CALL(mock_trial_session_, GetDigest(_))
.WillOnce(DoAll(SetArgPointee<0>(policy_digest), Return(TPM_RC_SUCCESS)));
trunks::TPMT_PUBLIC public_area;
public_area.auth_policy.size = 2;
public_area.object_attributes &= (~trunks::kUserWithAuth);
EXPECT_CALL(mock_tpm_utility_, GetKeyPublicArea(_, _))
.WillOnce(DoAll(SetArgPointee<1>(public_area), Return(TPM_RC_SUCCESS)));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
}
TEST_F(Tpm2Test, VerifyPCRBoundKeyBadAttributes) {
uint32_t index = 2;
const Blob pcr_value = BlobFromString("pcr_value");
SecureBlob key_blob;
SecureBlob creation_blob;
trunks::TPM2B_CREATION_DATA creation_data;
trunks::TPML_PCR_SELECTION& pcr_select =
creation_data.creation_data.pcr_select;
pcr_select.count = 1;
pcr_select.pcr_selections[0].hash = trunks::TPM_ALG_SHA256;
SetPcrSelectData(pcr_select.pcr_selections[0].pcr_select, index);
creation_data.creation_data.pcr_digest = trunks::Make_TPM2B_DIGEST(
CryptoLib::Sha256ToSecureBlob(pcr_value).to_string());
EXPECT_CALL(mock_blob_parser_, ParseCreationBlob(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<1>(creation_data), Return(true)));
std::string policy_digest(32, 'a');
EXPECT_CALL(mock_trial_session_, GetDigest(_))
.WillOnce(DoAll(SetArgPointee<0>(policy_digest), Return(TPM_RC_SUCCESS)));
trunks::TPMT_PUBLIC public_area;
public_area.auth_policy.size = policy_digest.size();
memcpy(public_area.auth_policy.buffer, policy_digest.data(),
policy_digest.size());
public_area.object_attributes = trunks::kUserWithAuth;
EXPECT_CALL(mock_tpm_utility_, GetKeyPublicArea(_, _))
.WillOnce(DoAll(SetArgPointee<1>(public_area), Return(TPM_RC_SUCCESS)));
EXPECT_FALSE(tpm_->VerifyPCRBoundKey(
std::map<uint32_t, std::string>({{index, BlobToString(pcr_value)}}),
key_blob, creation_blob));
}
TEST_F(Tpm2Test, ExtendPCRSuccess) {
uint32_t index = 5;
const Blob extension = BlobFromString("extension");
std::string pcr_value;
EXPECT_CALL(mock_tpm_utility_, ExtendPCR(index, _, _))
.WillOnce(DoAll(SaveArg<1>(&pcr_value), Return(TPM_RC_SUCCESS)));
EXPECT_TRUE(tpm_->ExtendPCR(index, extension));
EXPECT_EQ(pcr_value, BlobToString(extension));
}
TEST_F(Tpm2Test, ExtendPCRFailure) {
uint32_t index = 5;
const Blob extension = BlobFromString("extension");
EXPECT_CALL(mock_tpm_utility_, ExtendPCR(index, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->ExtendPCR(index, extension));
}
TEST_F(Tpm2Test, ReadPCRSuccess) {
uint32_t index = 5;
Blob pcr_value;
std::string pcr_digest("digest");
EXPECT_CALL(mock_tpm_utility_, ReadPCR(index, _))
.WillOnce(DoAll(SetArgPointee<1>(pcr_digest), Return(TPM_RC_SUCCESS)));
EXPECT_TRUE(tpm_->ReadPCR(index, &pcr_value));
EXPECT_EQ(BlobFromString(pcr_digest), pcr_value);
}
TEST_F(Tpm2Test, ReadPCRFailure) {
uint32_t index = 5;
Blob pcr_value;
EXPECT_CALL(mock_tpm_utility_, ReadPCR(index, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->ReadPCR(index, &pcr_value));
}
TEST_F(Tpm2Test, WrapRsaKeySuccess) {
std::string key_blob("key_blob");
SecureBlob modulus;
SecureBlob prime_factor;
EXPECT_CALL(mock_tpm_utility_, ImportRSAKey(_, _, _, _, _, _, _))
.WillOnce(DoAll(SetArgPointee<6>(key_blob), Return(TPM_RC_SUCCESS)));
SecureBlob wrapped_key;
EXPECT_TRUE(tpm_->WrapRsaKey(modulus, prime_factor, &wrapped_key));
EXPECT_EQ(key_blob, wrapped_key.to_string());
}
TEST_F(Tpm2Test, WrapRsaKeyFailure) {
SecureBlob wrapped_key;
EXPECT_CALL(mock_tpm_utility_, ImportRSAKey(_, _, _, _, _, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_FALSE(tpm_->WrapRsaKey(SecureBlob(), SecureBlob(), &wrapped_key));
}
TEST_F(Tpm2Test, LoadWrappedKeySuccess) {
SecureBlob wrapped_key("wrapped_key");
trunks::TPM_HANDLE handle = trunks::TPM_RH_FIRST;
std::string loaded_key;
ScopedKeyHandle key_handle;
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillOnce(DoAll(SaveArg<0>(&loaded_key), SetArgPointee<2>(handle),
Return(TPM_RC_SUCCESS)));
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle), Tpm::kTpmRetryNone);
EXPECT_EQ(handle, key_handle.value());
EXPECT_EQ(loaded_key, wrapped_key.to_string());
}
TEST_F(Tpm2Test, LoadWrappedKeyFailure) {
SecureBlob wrapped_key("wrapped_key");
ScopedKeyHandle key_handle;
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle),
Tpm::kTpmRetryFailNoRetry);
}
TEST_F(Tpm2Test, LoadWrappedKeyTransientDevWriteFailure) {
SecureBlob wrapped_key("wrapped_key");
ScopedKeyHandle key_handle;
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillOnce(Return(trunks::TRUNKS_RC_WRITE_ERROR));
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle),
Tpm::kTpmRetryCommFailure);
EXPECT_TRUE(tpm_->IsTransient(Tpm::kTpmRetryCommFailure));
}
TEST_F(Tpm2Test, LoadWrappedKeyRetryActions) {
constexpr TPM_RC error_code_fmt0 = trunks::TPM_RC_REFERENCE_H0;
constexpr TPM_RC error_code_fmt1 = trunks::TPM_RC_HANDLE | trunks::TPM_RC_2;
SecureBlob wrapped_key("wrapped_key");
ScopedKeyHandle key_handle;
// For hardware TPM and Resource Manager, should use the error number to
// determine the corresponding retry action.
for (TPM_RC layer_code : {trunks::kResourceManagerTpmErrorBase, TPM_RC(0)}) {
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillOnce(Return(error_code_fmt0 | layer_code))
.WillOnce(Return(error_code_fmt1 | layer_code))
.RetiresOnSaturation();
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle),
Tpm::kTpmRetryInvalidHandle);
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle),
Tpm::kTpmRetryInvalidHandle);
}
// For response codes produced by other layers (e.g. trunks, SAPI), should
// always return FailNoRetry, even if lower 12 bits match hardware TPM errors.
for (TPM_RC layer_code : {trunks::kSapiErrorBase, trunks::kTrunksErrorBase}) {
EXPECT_CALL(mock_tpm_utility_, LoadKey(_, _, _))
.WillOnce(Return(error_code_fmt0 | layer_code))
.WillOnce(Return(error_code_fmt1 | layer_code))
.RetiresOnSaturation();
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle),
Tpm::kTpmRetryFailNoRetry);
EXPECT_EQ(tpm_->LoadWrappedKey(wrapped_key, &key_handle),
Tpm::kTpmRetryFailNoRetry);
}
}
TEST_F(Tpm2Test, CloseHandle) {
TpmKeyHandle key_handle = 42;
EXPECT_CALL(mock_tpm_, FlushContextSync(key_handle, _))
.WillRepeatedly(Return(TPM_RC_SUCCESS));
tpm_->CloseHandle(key_handle);
}
TEST_F(Tpm2Test, EncryptBlobSuccess) {
TpmKeyHandle handle = 42;
std::string tpm_ciphertext(32, 'a');
SecureBlob key(32, 'b');
SecureBlob plaintext("plaintext");
EXPECT_CALL(mock_tpm_utility_, AsymmetricEncrypt(handle, _, _, _, _, _))
.WillOnce(
DoAll(SetArgPointee<5>(tpm_ciphertext), Return(TPM_RC_SUCCESS)));
SecureBlob ciphertext;
EXPECT_EQ(Tpm::kTpmRetryNone,
tpm_->EncryptBlob(handle, plaintext, key, &ciphertext));
}
TEST_F(Tpm2Test, EncryptBlobBadAesKey) {
TpmKeyHandle handle = 42;
std::string tpm_ciphertext(32, 'a');
SecureBlob key(16, 'b');
SecureBlob plaintext("plaintext");
EXPECT_CALL(mock_tpm_utility_, AsymmetricEncrypt(handle, _, _, _, _, _))
.WillOnce(
DoAll(SetArgPointee<5>(tpm_ciphertext), Return(TPM_RC_SUCCESS)));
SecureBlob ciphertext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->EncryptBlob(handle, plaintext, key, &ciphertext));
}
TEST_F(Tpm2Test, EncryptBlobBadTpmEncrypt) {
TpmKeyHandle handle = 42;
std::string tpm_ciphertext(16, 'a');
SecureBlob key(32, 'b');
SecureBlob plaintext("plaintext");
EXPECT_CALL(mock_tpm_utility_, AsymmetricEncrypt(handle, _, _, _, _, _))
.WillOnce(
DoAll(SetArgPointee<5>(tpm_ciphertext), Return(TPM_RC_SUCCESS)));
SecureBlob ciphertext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->EncryptBlob(handle, plaintext, key, &ciphertext));
}
TEST_F(Tpm2Test, EncryptBlobFailure) {
TpmKeyHandle handle = 42;
SecureBlob key(32, 'b');
SecureBlob plaintext("plaintext");
EXPECT_CALL(mock_tpm_utility_, AsymmetricEncrypt(handle, _, _, _, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
SecureBlob ciphertext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->EncryptBlob(handle, plaintext, key, &ciphertext));
}
TEST_F(Tpm2Test, DecryptBlobSuccess) {
TpmKeyHandle handle = 42;
SecureBlob key(32, 'a');
SecureBlob ciphertext(32, 'b');
std::string tpm_plaintext("plaintext");
EXPECT_CALL(mock_tpm_utility_, AsymmetricDecrypt(handle, _, _, _, _, _))
.WillOnce(DoAll(SetArgPointee<5>(tpm_plaintext), Return(TPM_RC_SUCCESS)));
SecureBlob plaintext;
EXPECT_EQ(Tpm::kTpmRetryNone,
tpm_->DecryptBlob(handle, ciphertext, key,
std::map<uint32_t, std::string>(), &plaintext));
}
TEST_F(Tpm2Test, DecryptBlobBadAesKey) {
TpmKeyHandle handle = 42;
SecureBlob key(16, 'a');
SecureBlob ciphertext(32, 'b');
SecureBlob plaintext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->DecryptBlob(handle, ciphertext, key,
std::map<uint32_t, std::string>(), &plaintext));
}
TEST_F(Tpm2Test, DecryptBlobBadCiphertext) {
TpmKeyHandle handle = 42;
SecureBlob key(32, 'a');
SecureBlob ciphertext(16, 'b');
SecureBlob plaintext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->DecryptBlob(handle, ciphertext, key,
std::map<uint32_t, std::string>(), &plaintext));
}
TEST_F(Tpm2Test, DecryptBlobFailure) {
TpmKeyHandle handle = 42;
SecureBlob key(32, 'a');
SecureBlob ciphertext(32, 'b');
EXPECT_CALL(mock_tpm_utility_, AsymmetricDecrypt(handle, _, _, _, _, _))
.WillOnce(Return(TPM_RC_FAILURE));
SecureBlob plaintext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->DecryptBlob(handle, ciphertext, key,
std::map<uint32_t, std::string>(), &plaintext));
}
TEST_F(Tpm2Test, SealToPcrWithAuthorizationSuccess) {
TpmKeyHandle handle = 42;
SecureBlob auth_blob(256, 'a');
SecureBlob plaintext(32, 'b');
EXPECT_CALL(mock_tpm_utility_, AsymmetricDecrypt(handle, _, _, _, _, _))
.WillOnce(Return(TPM_RC_SUCCESS));
EXPECT_CALL(mock_tpm_utility_, SealData(plaintext.to_string(), _, _, _, _))
.WillOnce(Return(TPM_RC_SUCCESS));
SecureBlob sealed_data;
EXPECT_EQ(Tpm::kTpmRetryNone,
tpm_->SealToPcrWithAuthorization(handle, plaintext, auth_blob,
std::map<uint32_t, std::string>(),
&sealed_data));
}
TEST_F(Tpm2Test, SealToPcrWithAuthorizationBadAuthSize) {
TpmKeyHandle handle = 42;
SecureBlob auth_blob(128, 'a');
SecureBlob plaintext(32, 'b');
SecureBlob sealed_data;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->SealToPcrWithAuthorization(handle, plaintext, auth_blob,
std::map<uint32_t, std::string>(),
&sealed_data));
}
TEST_F(Tpm2Test, UnsealWithAuthorizationSuccess) {
TpmKeyHandle handle = 42;
SecureBlob auth_blob(256, 'a');
SecureBlob sealed_data(32, 'b');
EXPECT_CALL(mock_tpm_utility_, AsymmetricDecrypt(handle, _, _, _, _, _))
.WillOnce(Return(TPM_RC_SUCCESS));
EXPECT_CALL(mock_tpm_utility_, UnsealData(sealed_data.to_string(), _, _))
.WillOnce(Return(TPM_RC_SUCCESS));
SecureBlob plaintext;
EXPECT_EQ(Tpm::kTpmRetryNone,
tpm_->UnsealWithAuthorization(handle, sealed_data, auth_blob,
std::map<uint32_t, std::string>(),
&plaintext));
}
TEST_F(Tpm2Test, UnsealWithAuthorizationBadAuthSize) {
TpmKeyHandle handle = 42;
SecureBlob auth_blob(128, 'a');
SecureBlob sealed_data(32, 'b');
SecureBlob plaintext;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->UnsealWithAuthorization(handle, sealed_data, auth_blob,
std::map<uint32_t, std::string>(),
&plaintext));
}
TEST_F(Tpm2Test, GetPublicKeyHashSuccess) {
TpmKeyHandle handle = 42;
trunks::TPMT_PUBLIC public_data;
SecureBlob public_key("hello");
public_data.unique.rsa =
trunks::Make_TPM2B_PUBLIC_KEY_RSA(public_key.to_string());
EXPECT_CALL(mock_tpm_utility_, GetKeyPublicArea(handle, _))
.WillOnce(DoAll(SetArgPointee<1>(public_data), Return(TPM_RC_SUCCESS)));
SecureBlob public_key_hash;
EXPECT_EQ(Tpm::kTpmRetryNone,
tpm_->GetPublicKeyHash(handle, &public_key_hash));
SecureBlob expected_key_hash = CryptoLib::Sha256(public_key);
EXPECT_EQ(expected_key_hash, public_key_hash);
}
TEST_F(Tpm2Test, GetPublicKeyHashFailure) {
TpmKeyHandle handle = 42;
EXPECT_CALL(mock_tpm_utility_, GetKeyPublicArea(handle, _))
.WillOnce(Return(TPM_RC_FAILURE));
SecureBlob public_key_hash;
EXPECT_EQ(Tpm::kTpmRetryFailNoRetry,
tpm_->GetPublicKeyHash(handle, &public_key_hash));
}
TEST_F(Tpm2Test, DeclareTpmFirmwareStable) {
EXPECT_CALL(mock_tpm_utility_, DeclareTpmFirmwareStable())
.Times(2)
.WillOnce(Return(TPM_RC_FAILURE))
.WillOnce(Return(TPM_RC_SUCCESS));
// First attempt shall call TpmUtility since we haven't called it yet.
tpm_->DeclareTpmFirmwareStable();
// Second attempt shall call TpmUtility since the first attempt failed.
tpm_->DeclareTpmFirmwareStable();
// Subsequent attempts shall do nothing since we already succeeded on the
// second attempt.
tpm_->DeclareTpmFirmwareStable();
tpm_->DeclareTpmFirmwareStable();
}
TEST_F(Tpm2Test, RemoveOwnerDependencySuccess) {
std::string dependency;
EXPECT_CALL(mock_tpm_manager_utility_, RemoveOwnerDependency(_))
.WillOnce(DoAll(SaveArg<0>(&dependency), Return(true)));
EXPECT_TRUE(tpm_->RemoveOwnerDependency(
TpmPersistentState::TpmOwnerDependency::kInstallAttributes));
EXPECT_EQ(tpm_manager::kTpmOwnerDependency_Nvram, dependency);
EXPECT_CALL(mock_tpm_manager_utility_, RemoveOwnerDependency(_))
.WillOnce(DoAll(SaveArg<0>(&dependency), Return(true)));
EXPECT_TRUE(tpm_->RemoveOwnerDependency(
TpmPersistentState::TpmOwnerDependency::kAttestation));
EXPECT_EQ(tpm_manager::kTpmOwnerDependency_Attestation, dependency);
}
TEST_F(Tpm2Test, RemoveOwnerDependencyFailure) {
std::string dependency;
EXPECT_CALL(mock_tpm_manager_utility_, RemoveOwnerDependency(_))
.WillOnce(DoAll(SaveArg<0>(&dependency), Return(false)));
EXPECT_FALSE(tpm_->RemoveOwnerDependency(
TpmPersistentState::TpmOwnerDependency::kInstallAttributes));
EXPECT_EQ(tpm_manager::kTpmOwnerDependency_Nvram, dependency);
}
TEST_F(Tpm2Test, ClearStoredPasswordSuccess) {
EXPECT_CALL(mock_tpm_manager_utility_, ClearStoredOwnerPassword())
.WillOnce(Return(true));
EXPECT_TRUE(tpm_->ClearStoredPassword());
}
TEST_F(Tpm2Test, ClearStoredPasswordFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, ClearStoredOwnerPassword())
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->ClearStoredPassword());
}
TEST_F(Tpm2Test, IsOwnerPasswordPresentSuccess) {
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmNonsensitiveStatus(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<2>(true), Return(true)));
EXPECT_TRUE(tpm_->IsOwnerPasswordPresent());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmNonsensitiveStatus(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<2>(false), Return(true)));
EXPECT_FALSE(tpm_->IsOwnerPasswordPresent());
}
TEST_F(Tpm2Test, IsOwnerPasswordPresentFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmNonsensitiveStatus(_, _, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->IsOwnerPasswordPresent());
}
TEST_F(Tpm2Test, HasResetLockPermissionsSuccess) {
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmNonsensitiveStatus(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<3>(true), Return(true)));
EXPECT_TRUE(tpm_->HasResetLockPermissions());
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmNonsensitiveStatus(_, _, _, _))
.WillOnce(DoAll(SetArgPointee<3>(false), Return(true)));
EXPECT_FALSE(tpm_->HasResetLockPermissions());
}
TEST_F(Tpm2Test, HasResetLockPermissionsFailure) {
EXPECT_CALL(mock_tpm_manager_utility_, GetTpmNonsensitiveStatus(_, _, _, _))
.WillOnce(Return(false));
EXPECT_FALSE(tpm_->HasResetLockPermissions());
}
namespace {
struct Tpm2RsaSignatureSecretSealingTestParam {
Tpm2RsaSignatureSecretSealingTestParam(
const std::vector<ChallengeSignatureAlgorithm>& supported_algorithms,
ChallengeSignatureAlgorithm chosen_algorithm,
TPM_ALG_ID chosen_scheme,
TPM_ALG_ID chosen_hash_alg)
: supported_algorithms(supported_algorithms),
chosen_algorithm(chosen_algorithm),
chosen_scheme(chosen_scheme),
chosen_hash_alg(chosen_hash_alg) {}
std::vector<ChallengeSignatureAlgorithm> supported_algorithms;
ChallengeSignatureAlgorithm chosen_algorithm;
TPM_ALG_ID chosen_scheme;
TPM_ALG_ID chosen_hash_alg;
};
class Tpm2RsaSignatureSecretSealingTest
: public Tpm2Test,
public testing::WithParamInterface<
Tpm2RsaSignatureSecretSealingTestParam> {
protected:
const int kKeySizeBits = 2048;
const int kKeyPublicExponent = 65537;
const std::vector<uint32_t> kPcrIndexes{0, 5};
const std::string kSecretValue = std::string(32, '\1');
const trunks::TPM_HANDLE kKeyHandle = trunks::TPM_RH_FIRST;
const std::string kKeyName = std::string("fake key");
const std::string kSealedSecretValue = std::string("sealed secret");
Tpm2RsaSignatureSecretSealingTest() {
crypto::ScopedBIGNUM e(BN_new());
CHECK(e);
EXPECT_TRUE(BN_set_word(e.get(), kKeyPublicExponent));
crypto::ScopedRSA rsa(RSA_new());
CHECK(rsa);
EXPECT_TRUE(RSA_generate_key_ex(rsa.get(), kKeySizeBits, e.get(), nullptr));
const crypto::ScopedEVP_PKEY pkey(EVP_PKEY_new());
CHECK(pkey);
EXPECT_TRUE(EVP_PKEY_set1_RSA(pkey.get(), rsa.get()));
// Obtain the DER-encoded SubjectPublicKeyInfo.
const int key_spki_der_length = i2d_PUBKEY(pkey.get(), nullptr);
CHECK_GE(key_spki_der_length, 0);
key_spki_der_.resize(key_spki_der_length);
unsigned char* key_spki_der_buffer =
reinterpret_cast<unsigned char*>(&key_spki_der_[0]);
CHECK_EQ(key_spki_der_.size(),
i2d_PUBKEY(pkey.get(), &key_spki_der_buffer));
// Obtain the key modulus.
key_modulus_.resize(RSA_size(rsa.get()));
const BIGNUM* n;
RSA_get0_key(rsa.get(), &n, nullptr, nullptr);
CHECK_EQ(key_modulus_.length(),
BN_bn2bin(n, reinterpret_cast<unsigned char*>(&key_modulus_[0])));
}
const std::vector<ChallengeSignatureAlgorithm>& supported_algorithms() const {
return GetParam().supported_algorithms;
}
ChallengeSignatureAlgorithm chosen_algorithm() const {
return GetParam().chosen_algorithm;
}
TPM_ALG_ID chosen_scheme() const { return GetParam().chosen_scheme; }
TPM_ALG_ID chosen_hash_alg() const { return GetParam().chosen_hash_alg; }
SignatureSealingBackend* signature_sealing_backend() {
SignatureSealingBackend* result = tpm_->GetSignatureSealingBackend();
CHECK(result);
return result;
}
Blob key_spki_der_;
std::string key_modulus_;
};
} // namespace
TEST_P(Tpm2RsaSignatureSecretSealingTest, Seal) {
const std::string kTrialPcrPolicyDigest(SHA256_DIGEST_LENGTH, '\1');
const std::string kTrialPolicyDigest(SHA256_DIGEST_LENGTH, '\2');
std::map<uint32_t, Blob> pcr_values;
for (uint32_t pcr_index : kPcrIndexes)
pcr_values[pcr_index] = BlobFromString("fake PCR");
// Set up mock expectations for the secret creation.
EXPECT_CALL(mock_tpm_utility_,
LoadRSAPublicKey(trunks::TpmUtility::kSignKey, chosen_scheme(),
chosen_hash_alg(), key_modulus_,
kKeyPublicExponent, _, _))
.WillOnce(DoAll(SetArgPointee<6>(kKeyHandle), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_tpm_utility_, GetKeyName(kKeyHandle, _))
.WillOnce(DoAll(SetArgPointee<1>(kKeyName), Return(TPM_RC_SUCCESS)));
trunks::TPMT_SIGNATURE tpmt_signature;
memset(&tpmt_signature, 0, sizeof(trunks::TPMT_SIGNATURE));
{
InSequence s;
EXPECT_CALL(mock_trial_session_, PolicyPCR(_))
.WillOnce(Return(TPM_RC_SUCCESS));
EXPECT_CALL(mock_trial_session_, GetDigest(_))
.WillOnce(DoAll(SetArgPointee<0>(kTrialPcrPolicyDigest),
Return(TPM_RC_SUCCESS)));
EXPECT_CALL(
mock_trial_session_,
PolicySigned(kKeyHandle, kKeyName, std::string() /* nonce */,
std::string() /* cp_hash */,
std::string() /* policy_ref */, 0 /* expiration */, _, _))
.WillOnce(DoAll(SaveArg<6>(&tpmt_signature), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_trial_session_, GetDigest(_))
.WillOnce(DoAll(SetArgPointee<0>(kTrialPolicyDigest),
Return(TPM_RC_SUCCESS)));
}
EXPECT_CALL(mock_tpm_utility_, GenerateRandom(kSecretValue.size(), _, _))
.WillOnce(DoAll(SetArgPointee<2>(kSecretValue), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_tpm_utility_,
SealData(kSecretValue, kTrialPolicyDigest, "", _, _))
.WillOnce(
DoAll(SetArgPointee<4>(kSealedSecretValue), Return(TPM_RC_SUCCESS)));
// Trigger the secret creation.
SecureBlob secret_value;
SignatureSealedData sealed_data;
EXPECT_TRUE(signature_sealing_backend()->CreateSealedSecret(
key_spki_der_, supported_algorithms(), {pcr_values},
Blob() /* delegate_blob */, Blob() /* delegate_secret */, &secret_value,
&sealed_data));
EXPECT_EQ(secret_value, SecureBlob(kSecretValue));
ASSERT_TRUE(sealed_data.has_tpm2_policy_signed_data());
const SignatureSealedData_Tpm2PolicySignedData& sealed_data_contents =
sealed_data.tpm2_policy_signed_data();
EXPECT_EQ(BlobToString(key_spki_der_),
sealed_data_contents.public_key_spki_der());
EXPECT_EQ(kSealedSecretValue, sealed_data_contents.srk_wrapped_secret());
EXPECT_EQ(chosen_scheme(), sealed_data_contents.scheme());
EXPECT_EQ(chosen_hash_alg(), sealed_data_contents.hash_alg());
// Validate values passed to mocks.
ASSERT_EQ(chosen_scheme(), tpmt_signature.sig_alg);
EXPECT_EQ(chosen_hash_alg(), tpmt_signature.signature.rsassa.hash);
EXPECT_EQ(0, tpmt_signature.signature.rsassa.sig.size);
}
TEST_P(Tpm2RsaSignatureSecretSealingTest, Unseal) {
const std::string kTpmNonce(SHA1_DIGEST_SIZE, '\1');
const std::string kChallengeValue(kTpmNonce +
(std::string(4, '\0') /* expiration */));
const std::string kSignatureValue("fake signature");
const std::string kPolicyDigest("fake digest");
const std::string kPcrValue("fake PCR");
SignatureSealedData sealed_data;
SignatureSealedData_Tpm2PolicySignedData* const sealed_data_contents =
sealed_data.mutable_tpm2_policy_signed_data();
sealed_data_contents->set_public_key_spki_der(BlobToString(key_spki_der_));
sealed_data_contents->set_srk_wrapped_secret(kSealedSecretValue);
sealed_data_contents->set_scheme(chosen_scheme());
sealed_data_contents->set_hash_alg(chosen_hash_alg());
SignatureSealedData_Tpm2PcrRestriction* const pcr_restriction =
sealed_data_contents->add_pcr_restrictions();
for (uint32_t pcr_index : kPcrIndexes) {
SignatureSealedData_PcrValue* const pcr_values_item =
pcr_restriction->add_pcr_values();
pcr_values_item->set_pcr_index(pcr_index);
pcr_values_item->set_pcr_value(kPcrValue);
}
pcr_restriction->set_policy_digest(std::string(SHA256_DIGEST_LENGTH, '\1'));
// Set up mock expectations for the challenge generation.
for (uint32_t pcr_index : kPcrIndexes) {
EXPECT_CALL(mock_tpm_utility_, ReadPCR(pcr_index, _))
.WillOnce(DoAll(SetArgPointee<1>(kPcrValue), Return(TPM_RC_SUCCESS)));
}
EXPECT_CALL(mock_policy_session_, GetDelegate())
.WillRepeatedly(Return(&mock_authorization_delegate_));
EXPECT_CALL(mock_authorization_delegate_, GetTpmNonce(_))
.WillOnce(DoAll(SetArgPointee<0>(kTpmNonce), Return(true)));
std::map<uint32_t, std::string> pcr_map;
for (int pcr_index : kPcrIndexes) {
pcr_map.emplace(pcr_index, std::string());
}
EXPECT_CALL(mock_policy_session_, PolicyPCR(pcr_map))
.WillOnce(Return(TPM_RC_SUCCESS));
// Trigger the challenge generation.
std::unique_ptr<SignatureSealingBackend::UnsealingSession> unsealing_session(
signature_sealing_backend()->CreateUnsealingSession(
sealed_data, key_spki_der_, supported_algorithms(),
Blob() /* delegate_blob */, Blob() /* delegate_secret */));
ASSERT_TRUE(unsealing_session);
EXPECT_EQ(chosen_algorithm(), unsealing_session->GetChallengeAlgorithm());
EXPECT_EQ(BlobFromString(kChallengeValue),
unsealing_session->GetChallengeValue());
// Set up mock expectations for the unsealing.
EXPECT_CALL(mock_tpm_utility_,
LoadRSAPublicKey(trunks::TpmUtility::kSignKey, chosen_scheme(),
chosen_hash_alg(), key_modulus_,
kKeyPublicExponent, _, _))
.WillOnce(DoAll(SetArgPointee<6>(kKeyHandle), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_tpm_utility_, GetKeyName(kKeyHandle, _))
.WillOnce(DoAll(SetArgPointee<1>(kKeyName), Return(TPM_RC_SUCCESS)));
trunks::TPMT_SIGNATURE tpmt_signature;
memset(&tpmt_signature, 0, sizeof(trunks::TPMT_SIGNATURE));
EXPECT_CALL(
mock_policy_session_,
PolicySigned(kKeyHandle, kKeyName, kTpmNonce, std::string() /* cp_hash */,
std::string() /* policy_ref */, 0 /* expiration */, _, _))
.WillOnce(DoAll(SaveArg<6>(&tpmt_signature), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_policy_session_, GetDigest(_))
.WillOnce(DoAll(SetArgPointee<0>(kPolicyDigest), Return(TPM_RC_SUCCESS)));
EXPECT_CALL(mock_tpm_utility_,
UnsealData(kSealedSecretValue, &mock_authorization_delegate_, _))
.WillOnce(DoAll(SetArgPointee<2>(kSecretValue), Return(TPM_RC_SUCCESS)));
// Trigger the unsealing.
SecureBlob unsealed_secret_value;
EXPECT_TRUE(unsealing_session->Unseal(BlobFromString(kSignatureValue),
&unsealed_secret_value));
EXPECT_EQ(kSecretValue, unsealed_secret_value.to_string());
// Validate values passed to mocks.
ASSERT_EQ(chosen_scheme(), tpmt_signature.sig_alg);
EXPECT_EQ(chosen_hash_alg(), tpmt_signature.signature.rsassa.hash);
EXPECT_EQ(kSignatureValue,
std::string(tpmt_signature.signature.rsassa.sig.buffer,
tpmt_signature.signature.rsassa.sig.buffer +
tpmt_signature.signature.rsassa.sig.size));
}
INSTANTIATE_TEST_SUITE_P(SingleAlgorithm,
Tpm2RsaSignatureSecretSealingTest,
Values(Tpm2RsaSignatureSecretSealingTestParam(
{CHALLENGE_RSASSA_PKCS1_V1_5_SHA1},
CHALLENGE_RSASSA_PKCS1_V1_5_SHA1,
trunks::TPM_ALG_RSASSA,
trunks::TPM_ALG_SHA1),
Tpm2RsaSignatureSecretSealingTestParam(
{CHALLENGE_RSASSA_PKCS1_V1_5_SHA256},
CHALLENGE_RSASSA_PKCS1_V1_5_SHA256,
trunks::TPM_ALG_RSASSA,
trunks::TPM_ALG_SHA256),
Tpm2RsaSignatureSecretSealingTestParam(
{CHALLENGE_RSASSA_PKCS1_V1_5_SHA384},
CHALLENGE_RSASSA_PKCS1_V1_5_SHA384,
trunks::TPM_ALG_RSASSA,
trunks::TPM_ALG_SHA384),
Tpm2RsaSignatureSecretSealingTestParam(
{CHALLENGE_RSASSA_PKCS1_V1_5_SHA512},
CHALLENGE_RSASSA_PKCS1_V1_5_SHA512,
trunks::TPM_ALG_RSASSA,
trunks::TPM_ALG_SHA512)));
INSTANTIATE_TEST_SUITE_P(MultipleAlgorithms,
Tpm2RsaSignatureSecretSealingTest,
Values(Tpm2RsaSignatureSecretSealingTestParam(
{CHALLENGE_RSASSA_PKCS1_V1_5_SHA384,
CHALLENGE_RSASSA_PKCS1_V1_5_SHA256,
CHALLENGE_RSASSA_PKCS1_V1_5_SHA512},
CHALLENGE_RSASSA_PKCS1_V1_5_SHA384,
trunks::TPM_ALG_RSASSA,
trunks::TPM_ALG_SHA384),
Tpm2RsaSignatureSecretSealingTestParam(
{CHALLENGE_RSASSA_PKCS1_V1_5_SHA1,
CHALLENGE_RSASSA_PKCS1_V1_5_SHA256},
CHALLENGE_RSASSA_PKCS1_V1_5_SHA256,
trunks::TPM_ALG_RSASSA,
trunks::TPM_ALG_SHA256)));
} // namespace cryptohome