ta/src/cert.rs

*9860b763SAndroid Build Coastguard Worker// Copyright 2022, The Android Open Source Project
*9860b763SAndroid Build Coastguard Worker//
*9860b763SAndroid Build Coastguard Worker// Licensed under the Apache License, Version 2.0 (the "License");
*9860b763SAndroid Build Coastguard Worker// you may not use this file except in compliance with the License.
*9860b763SAndroid Build Coastguard Worker// You may obtain a copy of the License at
*9860b763SAndroid Build Coastguard Worker//
*9860b763SAndroid Build Coastguard Worker//     http://www.apache.org/licenses/LICENSE-2.0
*9860b763SAndroid Build Coastguard Worker//
*9860b763SAndroid Build Coastguard Worker// Unless required by applicable law or agreed to in writing, software
*9860b763SAndroid Build Coastguard Worker// distributed under the License is distributed on an "AS IS" BASIS,
*9860b763SAndroid Build Coastguard Worker// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
*9860b763SAndroid Build Coastguard Worker// See the License for the specific language governing permissions and
*9860b763SAndroid Build Coastguard Worker// limitations under the License.
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker//! Generation of certificates and attestation extensions.
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workeruse crate::keys::SigningInfo;
*9860b763SAndroid Build Coastguard Workeruse alloc::{borrow::Cow, vec::Vec};
*9860b763SAndroid Build Coastguard Workeruse core::time::Duration;
*9860b763SAndroid Build Coastguard Workeruse der::asn1::{BitString, OctetString, OctetStringRef, SetOfVec};
*9860b763SAndroid Build Coastguard Workeruse der::{
*9860b763SAndroid Build Coastguard Worker    asn1::{GeneralizedTime, Null, UtcTime},
*9860b763SAndroid Build Coastguard Worker    oid::AssociatedOid,
*9860b763SAndroid Build Coastguard Worker    Enumerated, Sequence,
*9860b763SAndroid Build Coastguard Worker};
*9860b763SAndroid Build Coastguard Workeruse der::{Decode, Encode, EncodeValue, ErrorKind, Length};
*9860b763SAndroid Build Coastguard Workeruse flagset::FlagSet;
*9860b763SAndroid Build Coastguard Workeruse kmr_common::crypto::KeyMaterial;
*9860b763SAndroid Build Coastguard Workeruse kmr_common::{
*9860b763SAndroid Build Coastguard Worker    crypto, der_err, get_tag_value, km_err, tag, try_to_vec, vec_try_with_capacity, Error,
*9860b763SAndroid Build Coastguard Worker};
*9860b763SAndroid Build Coastguard Workeruse kmr_common::{get_bool_tag_value, get_opt_tag_value, FallibleAllocExt};
*9860b763SAndroid Build Coastguard Workeruse kmr_wire::{
*9860b763SAndroid Build Coastguard Worker    keymint,
*9860b763SAndroid Build Coastguard Worker    keymint::{
*9860b763SAndroid Build Coastguard Worker        from_raw_tag_value, raw_tag_value, DateTime, ErrorCode, KeyCharacteristics, KeyParam,
*9860b763SAndroid Build Coastguard Worker        KeyPurpose, Tag,
*9860b763SAndroid Build Coastguard Worker    },
*9860b763SAndroid Build Coastguard Worker    KeySizeInBits, RsaExponent,
*9860b763SAndroid Build Coastguard Worker};
*9860b763SAndroid Build Coastguard Workeruse spki::{AlgorithmIdentifier, ObjectIdentifier, SubjectPublicKeyInfoOwned};
*9860b763SAndroid Build Coastguard Workeruse x509_cert::serial_number::SerialNumber;
*9860b763SAndroid Build Coastguard Workeruse x509_cert::{
*9860b763SAndroid Build Coastguard Worker    certificate::{Certificate, TbsCertificate, Version},
*9860b763SAndroid Build Coastguard Worker    ext::pkix::{constraints::BasicConstraints, KeyUsage, KeyUsages},
*9860b763SAndroid Build Coastguard Worker    ext::Extension,
*9860b763SAndroid Build Coastguard Worker    name::RdnSequence,
*9860b763SAndroid Build Coastguard Worker    time::Time,
*9860b763SAndroid Build Coastguard Worker};
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// OID value for the Android Attestation extension.
*9860b763SAndroid Build Coastguard Workerpub const ATTESTATION_EXTENSION_OID: ObjectIdentifier =
*9860b763SAndroid Build Coastguard Worker    ObjectIdentifier::new_unwrap("1.3.6.1.4.1.11129.2.1.17");
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Empty value to use in the `RootOfTrust.verifiedBootKey` field in attestations
*9860b763SAndroid Build Coastguard Worker/// if an empty value was passed to the bootloader.
*9860b763SAndroid Build Coastguard Workerconst EMPTY_BOOT_KEY: [u8; 32] = [0u8; 32];
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Build an ASN.1 DER-encodable `Certificate`.
*9860b763SAndroid Build Coastguard Workerpub(crate) fn certificate(tbs_cert: TbsCertificate, sig_val: &[u8]) -> Result<Certificate, Error> {
*9860b763SAndroid Build Coastguard Worker    Ok(Certificate {
*9860b763SAndroid Build Coastguard Worker        signature_algorithm: tbs_cert.signature.clone(),
*9860b763SAndroid Build Coastguard Worker        tbs_certificate: tbs_cert,
*9860b763SAndroid Build Coastguard Worker        signature: BitString::new(0, sig_val)
*9860b763SAndroid Build Coastguard Worker            .map_err(|e| der_err!(e, "failed to build BitString"))?,
*9860b763SAndroid Build Coastguard Worker    })
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Build an ASN.1 DER-encodable `tbsCertificate`.
*9860b763SAndroid Build Coastguard Workerpub(crate) fn tbs_certificate<'a>(
*9860b763SAndroid Build Coastguard Worker    info: &'a Option<SigningInfo>,
*9860b763SAndroid Build Coastguard Worker    spki: SubjectPublicKeyInfoOwned,
*9860b763SAndroid Build Coastguard Worker    key_usage_ext_bits: &'a [u8],
*9860b763SAndroid Build Coastguard Worker    basic_constraint_ext_val: Option<&'a [u8]>,
*9860b763SAndroid Build Coastguard Worker    attestation_ext: Option<&'a [u8]>,
*9860b763SAndroid Build Coastguard Worker    chars: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker    params: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker) -> Result<TbsCertificate, Error> {
*9860b763SAndroid Build Coastguard Worker    let cert_serial = tag::get_cert_serial(params)?;
*9860b763SAndroid Build Coastguard Worker    let cert_subject = tag::get_cert_subject(params)?;
*9860b763SAndroid Build Coastguard Worker    let not_before = get_tag_value!(params, CertificateNotBefore, ErrorCode::MissingNotBefore)?;
*9860b763SAndroid Build Coastguard Worker    let not_after = get_tag_value!(params, CertificateNotAfter, ErrorCode::MissingNotAfter)?;
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    // Determine the OID part of the `AlgorithmIdentifier`; we do not support any signing key
*9860b763SAndroid Build Coastguard Worker    // types that have parameters in the `AlgorithmIdentifier`
*9860b763SAndroid Build Coastguard Worker    let sig_alg_oid = match info {
*9860b763SAndroid Build Coastguard Worker        Some(info) => match info.signing_key {
*9860b763SAndroid Build Coastguard Worker            KeyMaterial::Rsa(_) => crypto::rsa::SHA256_PKCS1_SIGNATURE_OID,
*9860b763SAndroid Build Coastguard Worker            KeyMaterial::Ec(curve, _, _) => crypto::ec::curve_to_signing_oid(curve),
*9860b763SAndroid Build Coastguard Worker            _ => {
*9860b763SAndroid Build Coastguard Worker                return Err(km_err!(UnsupportedAlgorithm, "unexpected cert signing key type"));
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        },
*9860b763SAndroid Build Coastguard Worker        None => {
*9860b763SAndroid Build Coastguard Worker            // No signing key, so signature will be empty, but we still need a value here.
*9860b763SAndroid Build Coastguard Worker            match tag::get_algorithm(params)? {
*9860b763SAndroid Build Coastguard Worker                keymint::Algorithm::Rsa => crypto::rsa::SHA256_PKCS1_SIGNATURE_OID,
*9860b763SAndroid Build Coastguard Worker                keymint::Algorithm::Ec => {
*9860b763SAndroid Build Coastguard Worker                    crypto::ec::curve_to_signing_oid(tag::get_ec_curve(chars)?)
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                alg => {
*9860b763SAndroid Build Coastguard Worker                    return Err(km_err!(
*9860b763SAndroid Build Coastguard Worker                        UnsupportedAlgorithm,
*9860b763SAndroid Build Coastguard Worker                        "unexpected algorithm for public key {:?}",
*9860b763SAndroid Build Coastguard Worker                        alg
*9860b763SAndroid Build Coastguard Worker                    ))
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker    let cert_issuer = match &info {
*9860b763SAndroid Build Coastguard Worker        Some(info) => &info.issuer_subject,
*9860b763SAndroid Build Coastguard Worker        None => cert_subject,
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    // Build certificate extensions
*9860b763SAndroid Build Coastguard Worker    let key_usage_extension = Extension {
*9860b763SAndroid Build Coastguard Worker        extn_id: KeyUsage::OID,
*9860b763SAndroid Build Coastguard Worker        critical: true,
*9860b763SAndroid Build Coastguard Worker        extn_value: OctetString::new(key_usage_ext_bits)
*9860b763SAndroid Build Coastguard Worker            .map_err(|e| der_err!(e, "failed to build OctetString"))?,
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    let mut cert_extensions = vec_try_with_capacity!(3)?;
*9860b763SAndroid Build Coastguard Worker    cert_extensions.push(key_usage_extension); // capacity enough
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    if let Some(basic_constraint_ext_val) = basic_constraint_ext_val {
*9860b763SAndroid Build Coastguard Worker        let basic_constraint_ext = Extension {
*9860b763SAndroid Build Coastguard Worker            extn_id: BasicConstraints::OID,
*9860b763SAndroid Build Coastguard Worker            critical: true,
*9860b763SAndroid Build Coastguard Worker            extn_value: OctetString::new(basic_constraint_ext_val)
*9860b763SAndroid Build Coastguard Worker                .map_err(|e| der_err!(e, "failed to build OctetString"))?,
*9860b763SAndroid Build Coastguard Worker        };
*9860b763SAndroid Build Coastguard Worker        cert_extensions.push(basic_constraint_ext); // capacity enough
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    if let Some(attest_extn_val) = attestation_ext {
*9860b763SAndroid Build Coastguard Worker        let attest_ext = Extension {
*9860b763SAndroid Build Coastguard Worker            extn_id: AttestationExtension::OID,
*9860b763SAndroid Build Coastguard Worker            critical: false,
*9860b763SAndroid Build Coastguard Worker            extn_value: OctetString::new(attest_extn_val)
*9860b763SAndroid Build Coastguard Worker                .map_err(|e| der_err!(e, "failed to build OctetString"))?,
*9860b763SAndroid Build Coastguard Worker        };
*9860b763SAndroid Build Coastguard Worker        cert_extensions.push(attest_ext) // capacity enough
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    Ok(TbsCertificate {
*9860b763SAndroid Build Coastguard Worker        version: Version::V3,
*9860b763SAndroid Build Coastguard Worker        serial_number: SerialNumber::new(cert_serial)
*9860b763SAndroid Build Coastguard Worker            .map_err(|e| der_err!(e, "failed to build serial number for {:?}", cert_serial))?,
*9860b763SAndroid Build Coastguard Worker        signature: AlgorithmIdentifier { oid: sig_alg_oid, parameters: None },
*9860b763SAndroid Build Coastguard Worker        issuer: RdnSequence::from_der(cert_issuer)
*9860b763SAndroid Build Coastguard Worker            .map_err(|e| der_err!(e, "failed to build issuer"))?,
*9860b763SAndroid Build Coastguard Worker        validity: x509_cert::time::Validity {
*9860b763SAndroid Build Coastguard Worker            not_before: validity_time_from_datetime(not_before)?,
*9860b763SAndroid Build Coastguard Worker            not_after: validity_time_from_datetime(not_after)?,
*9860b763SAndroid Build Coastguard Worker        },
*9860b763SAndroid Build Coastguard Worker        subject: RdnSequence::from_der(cert_subject)
*9860b763SAndroid Build Coastguard Worker            .map_err(|e| der_err!(e, "failed to build subject"))?,
*9860b763SAndroid Build Coastguard Worker        subject_public_key_info: spki,
*9860b763SAndroid Build Coastguard Worker        issuer_unique_id: None,
*9860b763SAndroid Build Coastguard Worker        subject_unique_id: None,
*9860b763SAndroid Build Coastguard Worker        extensions: Some(cert_extensions),
*9860b763SAndroid Build Coastguard Worker    })
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Extract the Subject field from a `keymint::Certificate` as DER-encoded data.
*9860b763SAndroid Build Coastguard Workerpub(crate) fn extract_subject(cert: &keymint::Certificate) -> Result<Vec<u8>, Error> {
*9860b763SAndroid Build Coastguard Worker    let cert = x509_cert::Certificate::from_der(&cert.encoded_certificate)
*9860b763SAndroid Build Coastguard Worker        .map_err(|e| km_err!(EncodingError, "failed to parse certificate: {:?}", e))?;
*9860b763SAndroid Build Coastguard Worker    let subject_data = cert
*9860b763SAndroid Build Coastguard Worker        .tbs_certificate
*9860b763SAndroid Build Coastguard Worker        .subject
*9860b763SAndroid Build Coastguard Worker        .to_der()
*9860b763SAndroid Build Coastguard Worker        .map_err(|e| km_err!(EncodingError, "failed to DER-encode subject: {:?}", e))?;
*9860b763SAndroid Build Coastguard Worker    Ok(subject_data)
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Construct x.509-cert::time::Time from `DateTime`.
*9860b763SAndroid Build Coastguard Worker/// RFC 5280 section 4.1.2.5 requires that UtcTime is used up to 2049
*9860b763SAndroid Build Coastguard Worker/// and GeneralizedTime from 2050 onwards
*9860b763SAndroid Build Coastguard Workerfn validity_time_from_datetime(when: DateTime) -> Result<Time, Error> {
*9860b763SAndroid Build Coastguard Worker    let dt_err = |_| Error::Der(ErrorKind::DateTime);
*9860b763SAndroid Build Coastguard Worker    let secs_since_epoch: i64 = when.ms_since_epoch / 1000;
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    if when.ms_since_epoch >= 0 {
*9860b763SAndroid Build Coastguard Worker        const MAX_UTC_TIME: Duration = Duration::from_secs(2524608000); // 2050-01-01T00:00:00Z
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        let duration = Duration::from_secs(u64::try_from(secs_since_epoch).map_err(dt_err)?);
*9860b763SAndroid Build Coastguard Worker        if duration >= MAX_UTC_TIME {
*9860b763SAndroid Build Coastguard Worker            Ok(Time::GeneralTime(
*9860b763SAndroid Build Coastguard Worker                GeneralizedTime::from_unix_duration(duration)
*9860b763SAndroid Build Coastguard Worker                    .map_err(|e| der_err!(e, "failed to build GeneralTime for {:?}", when))?,
*9860b763SAndroid Build Coastguard Worker            ))
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            Ok(Time::UtcTime(
*9860b763SAndroid Build Coastguard Worker                UtcTime::from_unix_duration(duration)
*9860b763SAndroid Build Coastguard Worker                    .map_err(|e| der_err!(e, "failed to build UtcTime for {:?}", when))?,
*9860b763SAndroid Build Coastguard Worker            ))
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    } else {
*9860b763SAndroid Build Coastguard Worker        // TODO: cope with negative offsets from Unix Epoch.
*9860b763SAndroid Build Coastguard Worker        Ok(Time::GeneralTime(
*9860b763SAndroid Build Coastguard Worker            GeneralizedTime::from_unix_duration(Duration::from_secs(0))
*9860b763SAndroid Build Coastguard Worker                .map_err(|e| der_err!(e, "failed to build GeneralizedTime(0) for {:?}", when))?,
*9860b763SAndroid Build Coastguard Worker        ))
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerpub(crate) fn asn1_der_encode<T: Encode>(obj: &T) -> Result<Vec<u8>, der::Error> {
*9860b763SAndroid Build Coastguard Worker    let mut encoded_data = Vec::<u8>::new();
*9860b763SAndroid Build Coastguard Worker    obj.encode_to_vec(&mut encoded_data)?;
*9860b763SAndroid Build Coastguard Worker    Ok(encoded_data)
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Build key usage extension bits.
*9860b763SAndroid Build Coastguard Workerpub(crate) fn key_usage_extension_bits(params: &[KeyParam]) -> KeyUsage {
*9860b763SAndroid Build Coastguard Worker    // Build `KeyUsage` bitmask based on allowed purposes for the key.
*9860b763SAndroid Build Coastguard Worker    let mut key_usage_bits = FlagSet::<KeyUsages>::default();
*9860b763SAndroid Build Coastguard Worker    for param in params {
*9860b763SAndroid Build Coastguard Worker        if let KeyParam::Purpose(purpose) = param {
*9860b763SAndroid Build Coastguard Worker            match purpose {
*9860b763SAndroid Build Coastguard Worker                KeyPurpose::Sign | KeyPurpose::Verify => {
*9860b763SAndroid Build Coastguard Worker                    key_usage_bits |= KeyUsages::DigitalSignature;
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                KeyPurpose::Decrypt | KeyPurpose::Encrypt => {
*9860b763SAndroid Build Coastguard Worker                    key_usage_bits |= KeyUsages::DataEncipherment;
*9860b763SAndroid Build Coastguard Worker                    key_usage_bits |= KeyUsages::KeyEncipherment;
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                KeyPurpose::WrapKey => {
*9860b763SAndroid Build Coastguard Worker                    key_usage_bits |= KeyUsages::KeyEncipherment;
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                KeyPurpose::AgreeKey => {
*9860b763SAndroid Build Coastguard Worker                    key_usage_bits |= KeyUsages::KeyAgreement;
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                KeyPurpose::AttestKey => {
*9860b763SAndroid Build Coastguard Worker                    key_usage_bits |= KeyUsages::KeyCertSign;
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker    KeyUsage(key_usage_bits)
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Build basic constraints extension value
*9860b763SAndroid Build Coastguard Workerpub(crate) fn basic_constraints_ext_value(ca_required: bool) -> BasicConstraints {
*9860b763SAndroid Build Coastguard Worker    BasicConstraints { ca: ca_required, path_len_constraint: None }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Attestation extension contents
*9860b763SAndroid Build Coastguard Worker///
*9860b763SAndroid Build Coastguard Worker/// ```asn1
*9860b763SAndroid Build Coastguard Worker/// KeyDescription ::= SEQUENCE {
*9860b763SAndroid Build Coastguard Worker///     attestationVersion         INTEGER,
*9860b763SAndroid Build Coastguard Worker///     attestationSecurityLevel   SecurityLevel,
*9860b763SAndroid Build Coastguard Worker///     keyMintVersion             INTEGER,
*9860b763SAndroid Build Coastguard Worker///     keymintSecurityLevel       SecurityLevel,
*9860b763SAndroid Build Coastguard Worker///     attestationChallenge       OCTET_STRING,
*9860b763SAndroid Build Coastguard Worker///     uniqueId                   OCTET_STRING,
*9860b763SAndroid Build Coastguard Worker///     softwareEnforced           AuthorizationList,
*9860b763SAndroid Build Coastguard Worker///     hardwareEnforced           AuthorizationList,
*9860b763SAndroid Build Coastguard Worker/// }
*9860b763SAndroid Build Coastguard Worker/// ```
*9860b763SAndroid Build Coastguard Worker#[derive(Debug, Clone, Sequence, PartialEq)]
*9860b763SAndroid Build Coastguard Workerpub struct AttestationExtension<'a> {
*9860b763SAndroid Build Coastguard Worker    attestation_version: i32,
*9860b763SAndroid Build Coastguard Worker    attestation_security_level: SecurityLevel,
*9860b763SAndroid Build Coastguard Worker    keymint_version: i32,
*9860b763SAndroid Build Coastguard Worker    keymint_security_level: SecurityLevel,
*9860b763SAndroid Build Coastguard Worker    #[asn1(type = "OCTET STRING")]
*9860b763SAndroid Build Coastguard Worker    attestation_challenge: &'a [u8],
*9860b763SAndroid Build Coastguard Worker    #[asn1(type = "OCTET STRING")]
*9860b763SAndroid Build Coastguard Worker    unique_id: &'a [u8],
*9860b763SAndroid Build Coastguard Worker    sw_enforced: AuthorizationList<'a>,
*9860b763SAndroid Build Coastguard Worker    hw_enforced: AuthorizationList<'a>,
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl<'a> AssociatedOid for AttestationExtension<'a> {
*9860b763SAndroid Build Coastguard Worker    const OID: ObjectIdentifier = ATTESTATION_EXTENSION_OID;
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Security level enumeration
*9860b763SAndroid Build Coastguard Worker/// ```asn1
*9860b763SAndroid Build Coastguard Worker/// SecurityLevel ::= ENUMERATED {
*9860b763SAndroid Build Coastguard Worker///     Software                   (0),
*9860b763SAndroid Build Coastguard Worker///     TrustedEnvironment         (1),
*9860b763SAndroid Build Coastguard Worker///     StrongBox                  (2),
*9860b763SAndroid Build Coastguard Worker/// }
*9860b763SAndroid Build Coastguard Worker/// ```
*9860b763SAndroid Build Coastguard Worker#[repr(u32)]
*9860b763SAndroid Build Coastguard Worker#[derive(Debug, Clone, Copy, Enumerated, PartialEq)]
*9860b763SAndroid Build Coastguard Workerenum SecurityLevel {
*9860b763SAndroid Build Coastguard Worker    Software = 0,
*9860b763SAndroid Build Coastguard Worker    TrustedEnvironment = 1,
*9860b763SAndroid Build Coastguard Worker    Strongbox = 2,
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Build an ASN.1 DER-encoded attestation extension.
*9860b763SAndroid Build Coastguard Worker#[allow(clippy::too_many_arguments)]
*9860b763SAndroid Build Coastguard Workerpub(crate) fn attestation_extension<'a>(
*9860b763SAndroid Build Coastguard Worker    keymint_version: i32,
*9860b763SAndroid Build Coastguard Worker    challenge: &'a [u8],
*9860b763SAndroid Build Coastguard Worker    app_id: &'a [u8],
*9860b763SAndroid Build Coastguard Worker    security_level: keymint::SecurityLevel,
*9860b763SAndroid Build Coastguard Worker    attestation_ids: Option<&'a crate::AttestationIdInfo>,
*9860b763SAndroid Build Coastguard Worker    params: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker    chars: &'a [KeyCharacteristics],
*9860b763SAndroid Build Coastguard Worker    unique_id: &'a Vec<u8>,
*9860b763SAndroid Build Coastguard Worker    boot_info: &'a keymint::BootInfo,
*9860b763SAndroid Build Coastguard Worker    additional_attestation_info: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker) -> Result<AttestationExtension<'a>, Error> {
*9860b763SAndroid Build Coastguard Worker    let mut sw_chars: &[KeyParam] = &[];
*9860b763SAndroid Build Coastguard Worker    let mut hw_chars: &[KeyParam] = &[];
*9860b763SAndroid Build Coastguard Worker    for characteristic in chars.iter() {
*9860b763SAndroid Build Coastguard Worker        match characteristic.security_level {
*9860b763SAndroid Build Coastguard Worker            keymint::SecurityLevel::Keystore | keymint::SecurityLevel::Software => {
*9860b763SAndroid Build Coastguard Worker                sw_chars = &characteristic.authorizations
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            l if l == security_level => hw_chars = &characteristic.authorizations,
*9860b763SAndroid Build Coastguard Worker            l => {
*9860b763SAndroid Build Coastguard Worker                return Err(km_err!(
*9860b763SAndroid Build Coastguard Worker                    InvalidTag,
*9860b763SAndroid Build Coastguard Worker                    "found characteristics for unexpected security level {:?}",
*9860b763SAndroid Build Coastguard Worker                    l,
*9860b763SAndroid Build Coastguard Worker                ))
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker    let (sw_params, hw_params): (&[KeyParam], &[KeyParam]) = match security_level {
*9860b763SAndroid Build Coastguard Worker        keymint::SecurityLevel::Software => (params, &[]),
*9860b763SAndroid Build Coastguard Worker        _ => (&[], params),
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker    let sw_enforced = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker        sw_chars,
*9860b763SAndroid Build Coastguard Worker        sw_params,
*9860b763SAndroid Build Coastguard Worker        attestation_ids,
*9860b763SAndroid Build Coastguard Worker        None,
*9860b763SAndroid Build Coastguard Worker        Some(app_id),
*9860b763SAndroid Build Coastguard Worker        additional_attestation_info,
*9860b763SAndroid Build Coastguard Worker    )?;
*9860b763SAndroid Build Coastguard Worker    let hw_enforced = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker        hw_chars,
*9860b763SAndroid Build Coastguard Worker        hw_params,
*9860b763SAndroid Build Coastguard Worker        attestation_ids,
*9860b763SAndroid Build Coastguard Worker        Some(RootOfTrust::from(boot_info)),
*9860b763SAndroid Build Coastguard Worker        None,
*9860b763SAndroid Build Coastguard Worker        &[],
*9860b763SAndroid Build Coastguard Worker    )?;
*9860b763SAndroid Build Coastguard Worker    let sec_level = SecurityLevel::try_from(security_level as u32)
*9860b763SAndroid Build Coastguard Worker        .map_err(|_| km_err!(InvalidArgument, "invalid security level {:?}", security_level))?;
*9860b763SAndroid Build Coastguard Worker    let ext = AttestationExtension {
*9860b763SAndroid Build Coastguard Worker        attestation_version: keymint_version,
*9860b763SAndroid Build Coastguard Worker        attestation_security_level: sec_level,
*9860b763SAndroid Build Coastguard Worker        keymint_version,
*9860b763SAndroid Build Coastguard Worker        keymint_security_level: sec_level,
*9860b763SAndroid Build Coastguard Worker        attestation_challenge: challenge,
*9860b763SAndroid Build Coastguard Worker        unique_id,
*9860b763SAndroid Build Coastguard Worker        sw_enforced,
*9860b763SAndroid Build Coastguard Worker        hw_enforced,
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker    Ok(ext)
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Struct for creating ASN.1 DER-serialized `AuthorizationList`. The fields in the ASN.1
*9860b763SAndroid Build Coastguard Worker/// sequence are categorized into four fields in the struct based on their usage.
*9860b763SAndroid Build Coastguard Worker/// ```asn1
*9860b763SAndroid Build Coastguard Worker/// AuthorizationList ::= SEQUENCE {
*9860b763SAndroid Build Coastguard Worker///     purpose                    [1] EXPLICIT SET OF INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     algorithm                  [2] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     keySize                    [3] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     blockMode                  [4] EXPLICIT SET OF INTEGER OPTIONAL,  -- Symmetric keys only
*9860b763SAndroid Build Coastguard Worker///     digest                     [5] EXPLICIT SET OF INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     padding                    [6] EXPLICIT SET OF INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     callerNonce                [7] EXPLICIT NULL OPTIONAL,  -- Symmetric keys only
*9860b763SAndroid Build Coastguard Worker///     minMacLength               [8] EXPLICIT INTEGER OPTIONAL,  -- Symmetric keys only
*9860b763SAndroid Build Coastguard Worker///     ecCurve                    [10] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     rsaPublicExponent          [200] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     mgfDigest                  [203] EXPLICIT SET OF INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     rollbackResistance         [303] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     earlyBootOnly              [305] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     activeDateTime             [400] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     originationExpireDateTime  [401] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     usageExpireDateTime        [402] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     usageCountLimit            [405] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     userSecureId               [502] EXPLICIT INTEGER OPTIONAL,  -- Only used on key import
*9860b763SAndroid Build Coastguard Worker///     noAuthRequired             [503] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     userAuthType               [504] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     authTimeout                [505] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     allowWhileOnBody           [506] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     trustedUserPresenceReq     [507] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     trustedConfirmationReq     [508] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     unlockedDeviceReq          [509] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     creationDateTime           [701] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     origin                     [702] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     rootOfTrust                [704] EXPLICIT RootOfTrust OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     osVersion                  [705] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     osPatchLevel               [706] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationApplicationId   [709] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdBrand         [710] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdDevice        [711] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdProduct       [712] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdSerial        [713] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdImei          [714] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdMeid          [715] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdManufacturer  [716] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdModel         [717] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     vendorPatchLevel           [718] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     bootPatchLevel             [719] EXPLICIT INTEGER OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     deviceUniqueAttestation    [720] EXPLICIT NULL OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     attestationIdSecondImei    [723] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker///     -- moduleHash contains a SHA-256 hash of DER-encoded `Modules`
*9860b763SAndroid Build Coastguard Worker///     moduleHash                 [724] EXPLICIT OCTET_STRING OPTIONAL,
*9860b763SAndroid Build Coastguard Worker/// }
*9860b763SAndroid Build Coastguard Worker/// ```
*9860b763SAndroid Build Coastguard Worker#[derive(Debug, Clone, PartialEq, Eq)]
*9860b763SAndroid Build Coastguard Workerpub struct AuthorizationList<'a> {
*9860b763SAndroid Build Coastguard Worker    pub auths: Cow<'a, [KeyParam]>,
*9860b763SAndroid Build Coastguard Worker    pub keygen_params: Cow<'a, [KeyParam]>,
*9860b763SAndroid Build Coastguard Worker    pub rot_info: Option<KeyParam>,
*9860b763SAndroid Build Coastguard Worker    pub app_id: Option<KeyParam>,
*9860b763SAndroid Build Coastguard Worker    pub additional_attestation_info: Cow<'a, [KeyParam]>,
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Macro to check that a specified attestation ID matches the provisioned value.
*9860b763SAndroid Build Coastguard Workermacro_rules! check_attestation_id {
*9860b763SAndroid Build Coastguard Worker    {
*9860b763SAndroid Build Coastguard Worker        $params:expr, $variant:ident, $mustmatch:expr
*9860b763SAndroid Build Coastguard Worker    } => {
*9860b763SAndroid Build Coastguard Worker        {
*9860b763SAndroid Build Coastguard Worker            if let Some(val) = get_opt_tag_value!($params, $variant)? {
*9860b763SAndroid Build Coastguard Worker                match $mustmatch {
*9860b763SAndroid Build Coastguard Worker                    None => return Err(km_err!(CannotAttestIds,
*9860b763SAndroid Build Coastguard Worker                                               "no attestation IDs provisioned")),
*9860b763SAndroid Build Coastguard Worker                    Some(want)  => if val != want {
*9860b763SAndroid Build Coastguard Worker                        return Err(km_err!(CannotAttestIds,
*9860b763SAndroid Build Coastguard Worker                                           "attestation ID mismatch for {}",
*9860b763SAndroid Build Coastguard Worker                                           stringify!($variant)))
*9860b763SAndroid Build Coastguard Worker                    }
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl<'a> AuthorizationList<'a> {
*9860b763SAndroid Build Coastguard Worker    /// Build an `AuthorizationList` ready for serialization. This constructor will fail if device
*9860b763SAndroid Build Coastguard Worker    /// ID attestation is required but the relevant IDs are missing or mismatched.
*9860b763SAndroid Build Coastguard Worker    fn new(
*9860b763SAndroid Build Coastguard Worker        auths: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker        keygen_params: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker        attestation_ids: Option<&'a crate::AttestationIdInfo>,
*9860b763SAndroid Build Coastguard Worker        rot_info: Option<RootOfTrust<'a>>,
*9860b763SAndroid Build Coastguard Worker        app_id: Option<&'a [u8]>,
*9860b763SAndroid Build Coastguard Worker        additional_attestation_info: &'a [KeyParam],
*9860b763SAndroid Build Coastguard Worker    ) -> Result<Self, Error> {
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(keygen_params, AttestationIdBrand, attestation_ids.map(|v| &v.brand));
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(
*9860b763SAndroid Build Coastguard Worker            keygen_params,
*9860b763SAndroid Build Coastguard Worker            AttestationIdDevice,
*9860b763SAndroid Build Coastguard Worker            attestation_ids.map(|v| &v.device)
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(
*9860b763SAndroid Build Coastguard Worker            keygen_params,
*9860b763SAndroid Build Coastguard Worker            AttestationIdProduct,
*9860b763SAndroid Build Coastguard Worker            attestation_ids.map(|v| &v.product)
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(
*9860b763SAndroid Build Coastguard Worker            keygen_params,
*9860b763SAndroid Build Coastguard Worker            AttestationIdSerial,
*9860b763SAndroid Build Coastguard Worker            attestation_ids.map(|v| &v.serial)
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(keygen_params, AttestationIdImei, attestation_ids.map(|v| &v.imei));
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(
*9860b763SAndroid Build Coastguard Worker            keygen_params,
*9860b763SAndroid Build Coastguard Worker            AttestationIdSecondImei,
*9860b763SAndroid Build Coastguard Worker            attestation_ids.map(|v| &v.imei2)
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(keygen_params, AttestationIdMeid, attestation_ids.map(|v| &v.meid));
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(
*9860b763SAndroid Build Coastguard Worker            keygen_params,
*9860b763SAndroid Build Coastguard Worker            AttestationIdManufacturer,
*9860b763SAndroid Build Coastguard Worker            attestation_ids.map(|v| &v.manufacturer)
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        check_attestation_id!(keygen_params, AttestationIdModel, attestation_ids.map(|v| &v.model));
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        let encoded_rot = if let Some(rot) = rot_info {
*9860b763SAndroid Build Coastguard Worker            Some(rot.to_der().map_err(|e| der_err!(e, "failed to encode RoT"))?)
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            None
*9860b763SAndroid Build Coastguard Worker        };
*9860b763SAndroid Build Coastguard Worker        Ok(Self {
*9860b763SAndroid Build Coastguard Worker            auths: auths.into(),
*9860b763SAndroid Build Coastguard Worker            keygen_params: keygen_params.into(),
*9860b763SAndroid Build Coastguard Worker            rot_info: encoded_rot.map(KeyParam::RootOfTrust),
*9860b763SAndroid Build Coastguard Worker            app_id: match app_id {
*9860b763SAndroid Build Coastguard Worker                Some(app_id) => Some(KeyParam::AttestationApplicationId(try_to_vec(app_id)?)),
*9860b763SAndroid Build Coastguard Worker                None => None,
*9860b763SAndroid Build Coastguard Worker            },
*9860b763SAndroid Build Coastguard Worker            additional_attestation_info: additional_attestation_info.into(),
*9860b763SAndroid Build Coastguard Worker        })
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    /// Build an `AuthorizationList` using a set of key parameters.
*9860b763SAndroid Build Coastguard Worker    /// The checks for the attestation ids are not run here in contrast to `AuthorizationList::new`
*9860b763SAndroid Build Coastguard Worker    /// because this method is used to construct an `AuthorizationList` in the decode path rather
*9860b763SAndroid Build Coastguard Worker    /// than in the encode path. Note: decode path is currently used only by
*9860b763SAndroid Build Coastguard Worker    /// `KeyMintTa::import_wrapped_key` functionality, which only uses `auth` field of
*9860b763SAndroid Build Coastguard Worker    /// `AuthorizationList`. Decoding for the whole `AuthorizationList` is added here for the
*9860b763SAndroid Build Coastguard Worker    /// completeness and anticipating a future use case of decoding the attestation extension from
*9860b763SAndroid Build Coastguard Worker    /// an X.509 certificate.
*9860b763SAndroid Build Coastguard Worker    fn new_from_key_params(key_params: Vec<KeyParam>) -> Result<Self, der::Error> {
*9860b763SAndroid Build Coastguard Worker        let mut auths = Vec::new();
*9860b763SAndroid Build Coastguard Worker        let mut keygen_params = Vec::new();
*9860b763SAndroid Build Coastguard Worker        let mut rot: Option<KeyParam> = None;
*9860b763SAndroid Build Coastguard Worker        let mut attest_app_id: Option<KeyParam> = None;
*9860b763SAndroid Build Coastguard Worker        let mut additional_attestation_info = Vec::new();
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        // Divide key parameters into key characteristics and key generation parameters.
*9860b763SAndroid Build Coastguard Worker        for param in key_params {
*9860b763SAndroid Build Coastguard Worker            match param {
*9860b763SAndroid Build Coastguard Worker                KeyParam::RootOfTrust(_) => rot = Some(param),
*9860b763SAndroid Build Coastguard Worker                KeyParam::AttestationApplicationId(_) => attest_app_id = Some(param),
*9860b763SAndroid Build Coastguard Worker                KeyParam::AttestationIdBrand(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdDevice(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdProduct(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdSerial(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdImei(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdSecondImei(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdMeid(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdManufacturer(_)
*9860b763SAndroid Build Coastguard Worker                | KeyParam::AttestationIdModel(_) => {
*9860b763SAndroid Build Coastguard Worker                    keygen_params.try_push(param).map_err(der_alloc_err)?
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                KeyParam::ModuleHash(_) => {
*9860b763SAndroid Build Coastguard Worker                    additional_attestation_info.try_push(param).map_err(der_alloc_err)?
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                _ => auths.try_push(param).map_err(der_alloc_err)?,
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Ok(AuthorizationList {
*9860b763SAndroid Build Coastguard Worker            auths: auths.into(),
*9860b763SAndroid Build Coastguard Worker            keygen_params: keygen_params.into(),
*9860b763SAndroid Build Coastguard Worker            rot_info: rot,
*9860b763SAndroid Build Coastguard Worker            app_id: attest_app_id,
*9860b763SAndroid Build Coastguard Worker            additional_attestation_info: additional_attestation_info.into(),
*9860b763SAndroid Build Coastguard Worker        })
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Convert an error into a `der::Error` indicating allocation failure.
*9860b763SAndroid Build Coastguard Worker#[inline]
*9860b763SAndroid Build Coastguard Workerfn der_alloc_err<T>(_e: T) -> der::Error {
*9860b763SAndroid Build Coastguard Worker    der::Error::new(der::ErrorKind::Overlength, der::Length::ZERO)
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// All the fields of AuthorizationList sequence are optional. Therefore, the expected tag and the
*9860b763SAndroid Build Coastguard Worker/// decoded tag might be different. If they don't match, return the decoded tag to be used in a
*9860b763SAndroid Build Coastguard Worker/// future call to this method. If the two tags match, continue to read the value,
*9860b763SAndroid Build Coastguard Worker/// populate key parameters and return None, so that the next call to this method will
*9860b763SAndroid Build Coastguard Worker/// decode the tag from bytes. See the implementation of [`der::DecodeValue`] trait for
*9860b763SAndroid Build Coastguard Worker/// AuthorizationList.
*9860b763SAndroid Build Coastguard Workerfn decode_opt_field<'a, R: der::Reader<'a>>(
*9860b763SAndroid Build Coastguard Worker    decoder: &mut R,
*9860b763SAndroid Build Coastguard Worker    already_read_tag: Option<keymint::Tag>,
*9860b763SAndroid Build Coastguard Worker    expected_tag: keymint::Tag,
*9860b763SAndroid Build Coastguard Worker    key_params: &mut Vec<KeyParam>,
*9860b763SAndroid Build Coastguard Worker) -> Result<Option<keymint::Tag>, der::Error> {
*9860b763SAndroid Build Coastguard Worker    // Decode the tag if no tag is provided
*9860b763SAndroid Build Coastguard Worker    let tag =
*9860b763SAndroid Build Coastguard Worker        if already_read_tag.is_none() { decode_tag_from_bytes(decoder)? } else { already_read_tag };
*9860b763SAndroid Build Coastguard Worker    match tag {
*9860b763SAndroid Build Coastguard Worker        Some(tag) if tag == expected_tag => {
*9860b763SAndroid Build Coastguard Worker            // Decode the length of the inner encoding
*9860b763SAndroid Build Coastguard Worker            let inner_len = Length::decode(decoder)?;
*9860b763SAndroid Build Coastguard Worker            if decoder.remaining_len() < inner_len {
*9860b763SAndroid Build Coastguard Worker                return Err(der::ErrorKind::Incomplete {
*9860b763SAndroid Build Coastguard Worker                    expected_len: inner_len,
*9860b763SAndroid Build Coastguard Worker                    actual_len: decoder.remaining_len(),
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                .into());
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            let next_tlv = decoder.tlv_bytes()?;
*9860b763SAndroid Build Coastguard Worker            decode_value_from_bytes(expected_tag, next_tlv, key_params)?;
*9860b763SAndroid Build Coastguard Worker            Ok(None)
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Some(tag) => Ok(Some(tag)), // Return the tag for which the value is unread.
*9860b763SAndroid Build Coastguard Worker        None => Ok(None),
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! process_authz_list_tags {
*9860b763SAndroid Build Coastguard Worker    {$decoder:expr, $key_params:expr, ($($tag:ident),*)} => {
*9860b763SAndroid Build Coastguard Worker        let mut non_consumed_tag: Option<Tag> = None;
*9860b763SAndroid Build Coastguard Worker        ($(non_consumed_tag = decode_opt_field($decoder,
*9860b763SAndroid Build Coastguard Worker                                               non_consumed_tag,
*9860b763SAndroid Build Coastguard Worker                                               Tag::$tag,
*9860b763SAndroid Build Coastguard Worker                                               $key_params)?),*);
*9860b763SAndroid Build Coastguard Worker        if non_consumed_tag.is_some(){
*9860b763SAndroid Build Coastguard Worker            return Err($decoder.error(der::ErrorKind::Incomplete {
*9860b763SAndroid Build Coastguard Worker                expected_len: Length::ZERO,
*9860b763SAndroid Build Coastguard Worker                actual_len: $decoder.remaining_len(),
*9860b763SAndroid Build Coastguard Worker            }));
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Implementation of [`der::DecodeValue`] which constructs an AuthorizationList from bytes.
*9860b763SAndroid Build Coastguard Workerimpl<'a> der::DecodeValue<'a> for AuthorizationList<'a> {
*9860b763SAndroid Build Coastguard Worker    fn decode_value<R: der::Reader<'a>>(decoder: &mut R, header: der::Header) -> der::Result<Self> {
*9860b763SAndroid Build Coastguard Worker        // TODO: define a MAX_SIZE for AuthorizationList and check whether the actual length from
*9860b763SAndroid Build Coastguard Worker        // the length field of header is less than the MAX_SIZE
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        // Check for an empty sequence
*9860b763SAndroid Build Coastguard Worker        if header.length.is_zero() {
*9860b763SAndroid Build Coastguard Worker            return Ok(AuthorizationList {
*9860b763SAndroid Build Coastguard Worker                auths: Vec::new().into(),
*9860b763SAndroid Build Coastguard Worker                keygen_params: Vec::new().into(),
*9860b763SAndroid Build Coastguard Worker                rot_info: None,
*9860b763SAndroid Build Coastguard Worker                app_id: None,
*9860b763SAndroid Build Coastguard Worker                additional_attestation_info: Vec::new().into(),
*9860b763SAndroid Build Coastguard Worker            });
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        if decoder.remaining_len() < header.length {
*9860b763SAndroid Build Coastguard Worker            return Err(der::ErrorKind::Incomplete {
*9860b763SAndroid Build Coastguard Worker                expected_len: header.length,
*9860b763SAndroid Build Coastguard Worker                actual_len: decoder.remaining_len(),
*9860b763SAndroid Build Coastguard Worker            })?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        let mut key_params = Vec::new();
*9860b763SAndroid Build Coastguard Worker        process_authz_list_tags!(
*9860b763SAndroid Build Coastguard Worker            decoder,
*9860b763SAndroid Build Coastguard Worker            &mut key_params,
*9860b763SAndroid Build Coastguard Worker            (
*9860b763SAndroid Build Coastguard Worker                Purpose,
*9860b763SAndroid Build Coastguard Worker                Algorithm,
*9860b763SAndroid Build Coastguard Worker                KeySize,
*9860b763SAndroid Build Coastguard Worker                BlockMode,
*9860b763SAndroid Build Coastguard Worker                Digest,
*9860b763SAndroid Build Coastguard Worker                Padding,
*9860b763SAndroid Build Coastguard Worker                CallerNonce,
*9860b763SAndroid Build Coastguard Worker                MinMacLength,
*9860b763SAndroid Build Coastguard Worker                EcCurve,
*9860b763SAndroid Build Coastguard Worker                RsaPublicExponent,
*9860b763SAndroid Build Coastguard Worker                RsaOaepMgfDigest,
*9860b763SAndroid Build Coastguard Worker                RollbackResistance,
*9860b763SAndroid Build Coastguard Worker                EarlyBootOnly,
*9860b763SAndroid Build Coastguard Worker                ActiveDatetime,
*9860b763SAndroid Build Coastguard Worker                OriginationExpireDatetime,
*9860b763SAndroid Build Coastguard Worker                UsageExpireDatetime,
*9860b763SAndroid Build Coastguard Worker                UsageCountLimit,
*9860b763SAndroid Build Coastguard Worker                UserSecureId,
*9860b763SAndroid Build Coastguard Worker                NoAuthRequired,
*9860b763SAndroid Build Coastguard Worker                UserAuthType,
*9860b763SAndroid Build Coastguard Worker                AuthTimeout,
*9860b763SAndroid Build Coastguard Worker                AllowWhileOnBody,
*9860b763SAndroid Build Coastguard Worker                TrustedUserPresenceRequired,
*9860b763SAndroid Build Coastguard Worker                TrustedConfirmationRequired,
*9860b763SAndroid Build Coastguard Worker                UnlockedDeviceRequired,
*9860b763SAndroid Build Coastguard Worker                CreationDatetime,
*9860b763SAndroid Build Coastguard Worker                CreationDatetime,
*9860b763SAndroid Build Coastguard Worker                Origin,
*9860b763SAndroid Build Coastguard Worker                RootOfTrust,
*9860b763SAndroid Build Coastguard Worker                OsVersion,
*9860b763SAndroid Build Coastguard Worker                OsPatchlevel,
*9860b763SAndroid Build Coastguard Worker                AttestationApplicationId,
*9860b763SAndroid Build Coastguard Worker                AttestationIdBrand,
*9860b763SAndroid Build Coastguard Worker                AttestationIdDevice,
*9860b763SAndroid Build Coastguard Worker                AttestationIdProduct,
*9860b763SAndroid Build Coastguard Worker                AttestationIdSerial,
*9860b763SAndroid Build Coastguard Worker                AttestationIdSerial,
*9860b763SAndroid Build Coastguard Worker                AttestationIdSerial,
*9860b763SAndroid Build Coastguard Worker                AttestationIdImei,
*9860b763SAndroid Build Coastguard Worker                AttestationIdMeid,
*9860b763SAndroid Build Coastguard Worker                AttestationIdManufacturer,
*9860b763SAndroid Build Coastguard Worker                AttestationIdModel,
*9860b763SAndroid Build Coastguard Worker                VendorPatchlevel,
*9860b763SAndroid Build Coastguard Worker                BootPatchlevel,
*9860b763SAndroid Build Coastguard Worker                DeviceUniqueAttestation,
*9860b763SAndroid Build Coastguard Worker                AttestationIdSecondImei,
*9860b763SAndroid Build Coastguard Worker                ModuleHash
*9860b763SAndroid Build Coastguard Worker            )
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        // Process the key params and construct the `AuthorizationList`
*9860b763SAndroid Build Coastguard Worker        AuthorizationList::new_from_key_params(key_params)
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker// Macros to decode key parameters from their ASN.1 encoding in one of the forms:
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT SET OF INTEGER OPTIONAL
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT INTEGER OPTIONAL
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT NULL OPTIONAL
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT OCTET STRING OPTIONAL
*9860b763SAndroid Build Coastguard Worker// There are three different variants for the INTEGER type.
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! key_params_from_asn1_set_of_integer {
*9860b763SAndroid Build Coastguard Worker    {$variant:ident, $tlv_bytes:expr, $key_params:expr} => {
*9860b763SAndroid Build Coastguard Worker        let vals = SetOfVec::<i32>::from_der($tlv_bytes)?;
*9860b763SAndroid Build Coastguard Worker        for val in vals.into_vec() {
*9860b763SAndroid Build Coastguard Worker            $key_params.try_push(KeyParam::$variant(val.try_into().map_err(
*9860b763SAndroid Build Coastguard Worker                |_e| der::ErrorKind::Value {tag: der::Tag::Set})?)).map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! key_param_from_asn1_integer {
*9860b763SAndroid Build Coastguard Worker    {$variant:ident, $int_type:ident, $tlv_bytes:expr, $key_params:expr} => {
*9860b763SAndroid Build Coastguard Worker        let val = $int_type::from_der($tlv_bytes)?;
*9860b763SAndroid Build Coastguard Worker        $key_params.try_push(KeyParam::$variant(val.try_into().map_err(
*9860b763SAndroid Build Coastguard Worker                |_e| der::ErrorKind::Value {tag: der::Tag::Integer})?)).map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! key_param_from_asn1_integer_newtype {
*9860b763SAndroid Build Coastguard Worker    {$variant:ident, $int_type:ident, $newtype:ident, $tlv_bytes:expr, $key_params:expr} => {
*9860b763SAndroid Build Coastguard Worker        let val = $int_type::from_der($tlv_bytes)?;
*9860b763SAndroid Build Coastguard Worker        $key_params.try_push(KeyParam::$variant($newtype(val.try_into().map_err(
*9860b763SAndroid Build Coastguard Worker                |_e| der::ErrorKind::Value {tag: der::Tag::Integer})?))).map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! key_param_from_asn1_null {
*9860b763SAndroid Build Coastguard Worker    {$variant:ident, $tlv_bytes:expr, $key_params:expr} => {
*9860b763SAndroid Build Coastguard Worker        Null::from_der($tlv_bytes)?;
*9860b763SAndroid Build Coastguard Worker        $key_params.try_push(KeyParam::$variant).map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! key_param_from_asn1_integer_datetime {
*9860b763SAndroid Build Coastguard Worker    {$variant:ident, $tlv_bytes:expr, $key_params:expr} => {
*9860b763SAndroid Build Coastguard Worker        let val = i64::from_der($tlv_bytes)?;
*9860b763SAndroid Build Coastguard Worker        $key_params
*9860b763SAndroid Build Coastguard Worker            .try_push(KeyParam::$variant(DateTime{ms_since_epoch: val}))
*9860b763SAndroid Build Coastguard Worker            .map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workermacro_rules! key_param_from_asn1_octet_string {
*9860b763SAndroid Build Coastguard Worker    {$variant:ident, $tlv_bytes:expr, $key_params:expr} => {
*9860b763SAndroid Build Coastguard Worker        let val = OctetStringRef::from_der($tlv_bytes)?;
*9860b763SAndroid Build Coastguard Worker        $key_params.try_push(KeyParam::$variant(try_to_vec(val.as_bytes())
*9860b763SAndroid Build Coastguard Worker                                                .map_err(der_alloc_err)?)).map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerfn decode_value_from_bytes(
*9860b763SAndroid Build Coastguard Worker    tag: keymint::Tag,
*9860b763SAndroid Build Coastguard Worker    tlv_bytes: &[u8],
*9860b763SAndroid Build Coastguard Worker    key_params: &mut Vec<KeyParam>,
*9860b763SAndroid Build Coastguard Worker) -> Result<(), der::Error> {
*9860b763SAndroid Build Coastguard Worker    match tag {
*9860b763SAndroid Build Coastguard Worker        Tag::Purpose => {
*9860b763SAndroid Build Coastguard Worker            key_params_from_asn1_set_of_integer!(Purpose, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::Algorithm => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(Algorithm, i32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::KeySize => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer_newtype!(
*9860b763SAndroid Build Coastguard Worker                KeySize,
*9860b763SAndroid Build Coastguard Worker                u32,
*9860b763SAndroid Build Coastguard Worker                KeySizeInBits,
*9860b763SAndroid Build Coastguard Worker                tlv_bytes,
*9860b763SAndroid Build Coastguard Worker                key_params
*9860b763SAndroid Build Coastguard Worker            );
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::BlockMode => {
*9860b763SAndroid Build Coastguard Worker            key_params_from_asn1_set_of_integer!(BlockMode, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::Digest => {
*9860b763SAndroid Build Coastguard Worker            key_params_from_asn1_set_of_integer!(Digest, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::Padding => {
*9860b763SAndroid Build Coastguard Worker            key_params_from_asn1_set_of_integer!(Padding, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::CallerNonce => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(CallerNonce, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::MinMacLength => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(MinMacLength, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::EcCurve => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(EcCurve, i32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::RsaPublicExponent => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer_newtype!(
*9860b763SAndroid Build Coastguard Worker                RsaPublicExponent,
*9860b763SAndroid Build Coastguard Worker                u64,
*9860b763SAndroid Build Coastguard Worker                RsaExponent,
*9860b763SAndroid Build Coastguard Worker                tlv_bytes,
*9860b763SAndroid Build Coastguard Worker                key_params
*9860b763SAndroid Build Coastguard Worker            );
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::RsaOaepMgfDigest => {
*9860b763SAndroid Build Coastguard Worker            key_params_from_asn1_set_of_integer!(RsaOaepMgfDigest, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::RollbackResistance => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(RollbackResistance, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::EarlyBootOnly => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(EarlyBootOnly, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::ActiveDatetime => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer_datetime!(ActiveDatetime, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::OriginationExpireDatetime => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer_datetime!(OriginationExpireDatetime, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::UsageExpireDatetime => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer_datetime!(UsageExpireDatetime, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::UsageCountLimit => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(UsageCountLimit, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::UserSecureId => {
*9860b763SAndroid Build Coastguard Worker            // Note that the `UserSecureId` tag has tag type `ULONG_REP` indicating that it can be
*9860b763SAndroid Build Coastguard Worker            // repeated, but the ASN.1 schema for `AuthorizationList` has this field as having type
*9860b763SAndroid Build Coastguard Worker            // `INTEGER` not `SET OF INTEGER`. This reflects the special usage of `UserSecureId`
*9860b763SAndroid Build Coastguard Worker            // in `importWrappedKey()` processing.
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(UserSecureId, u64, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::NoAuthRequired => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(NoAuthRequired, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::UserAuthType => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(UserAuthType, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AuthTimeout => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(AuthTimeout, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AllowWhileOnBody => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(AllowWhileOnBody, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::TrustedUserPresenceRequired => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(TrustedUserPresenceRequired, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::TrustedConfirmationRequired => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(TrustedConfirmationRequired, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::UnlockedDeviceRequired => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(UnlockedDeviceRequired, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::CreationDatetime => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer_datetime!(CreationDatetime, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::Origin => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(Origin, i32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::RootOfTrust => {
*9860b763SAndroid Build Coastguard Worker            key_params
*9860b763SAndroid Build Coastguard Worker                .try_push(KeyParam::RootOfTrust(try_to_vec(tlv_bytes).map_err(der_alloc_err)?))
*9860b763SAndroid Build Coastguard Worker                .map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::OsVersion => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(OsVersion, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::OsPatchlevel => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(OsPatchlevel, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationApplicationId => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationApplicationId, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdBrand => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdBrand, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdDevice => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdDevice, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdProduct => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdProduct, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdSerial => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdSerial, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdImei => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdImei, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdSecondImei => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdSecondImei, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdMeid => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdMeid, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdManufacturer => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdManufacturer, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::AttestationIdModel => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(AttestationIdModel, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::VendorPatchlevel => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(VendorPatchlevel, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::BootPatchlevel => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_integer!(BootPatchlevel, u32, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::DeviceUniqueAttestation => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_null!(DeviceUniqueAttestation, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        Tag::ModuleHash => {
*9860b763SAndroid Build Coastguard Worker            key_param_from_asn1_octet_string!(ModuleHash, tlv_bytes, key_params);
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        _ => {
*9860b763SAndroid Build Coastguard Worker            // Note: `der::Error` or `der::ErrorKind` is not expressive enough for decoding
*9860b763SAndroid Build Coastguard Worker            // tags in high tag form. Documentation of this error kind does not match this
*9860b763SAndroid Build Coastguard Worker            // situation. But we use the `der::ErrorKind` as close as possible.
*9860b763SAndroid Build Coastguard Worker            return Err(der::ErrorKind::TagNumberInvalid.into());
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker    Ok(())
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Decode the tag of a field in AuthorizationList.
*9860b763SAndroid Build Coastguard Workerfn decode_tag_from_bytes<'a, R: der::Reader<'a>>(
*9860b763SAndroid Build Coastguard Worker    decoder: &mut R,
*9860b763SAndroid Build Coastguard Worker) -> Result<Option<keymint::Tag>, der::Error> {
*9860b763SAndroid Build Coastguard Worker    // Avoid reading for tags beyond the size of the encoded AuthorizationList
*9860b763SAndroid Build Coastguard Worker    if decoder.remaining_len() == Length::ZERO {
*9860b763SAndroid Build Coastguard Worker        return Ok(None);
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker    let b1 = decoder.read_byte()?;
*9860b763SAndroid Build Coastguard Worker    let raw_tag = if b1 & 0xbfu8 == 0xbfu8 {
*9860b763SAndroid Build Coastguard Worker        // High tag form, read the next byte
*9860b763SAndroid Build Coastguard Worker        let b2 = decoder.read_byte()?;
*9860b763SAndroid Build Coastguard Worker        if b2 & 0x80u8 == 0x80u8 {
*9860b763SAndroid Build Coastguard Worker            // Encoded tag length is 3, read the next byte
*9860b763SAndroid Build Coastguard Worker            let b3 = decoder.read_byte()?;
*9860b763SAndroid Build Coastguard Worker            let tag_byte: u16 = ((b2 ^ 0x80u8) as u16) << 7;
*9860b763SAndroid Build Coastguard Worker            (tag_byte | b3 as u16) as u32
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            b2 as u32
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    } else {
*9860b763SAndroid Build Coastguard Worker        (b1 ^ 0b10100000u8) as u32
*9860b763SAndroid Build Coastguard Worker    };
*9860b763SAndroid Build Coastguard Worker    let tag = from_raw_tag_value(raw_tag);
*9860b763SAndroid Build Coastguard Worker    if tag == Tag::Invalid {
*9860b763SAndroid Build Coastguard Worker        // Note: der::Error or der::ErrorKind is not expressive enough for decoding tags
*9860b763SAndroid Build Coastguard Worker        // in high tag form. Documentation of this error kind does not match this situation.
*9860b763SAndroid Build Coastguard Worker        // Find a better way to express the error.
*9860b763SAndroid Build Coastguard Worker        Err(der::ErrorKind::TagNumberInvalid.into())
*9860b763SAndroid Build Coastguard Worker    } else {
*9860b763SAndroid Build Coastguard Worker        Ok(Some(tag))
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker// Macros to extract key characteristics for ASN.1 encoding into one of the forms:
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT SET OF INTEGER OPTIONAL
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT INTEGER OPTIONAL
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT NULL OPTIONAL
*9860b763SAndroid Build Coastguard Worker//   field    [<tag>] EXPLICIT OCTET STRING OPTIONAL
*9860b763SAndroid Build Coastguard Worker// together with an extra variant that deals with OCTET STRING values that must match
*9860b763SAndroid Build Coastguard Worker// a provisioned attestation ID value.
*9860b763SAndroid Build Coastguard Workermacro_rules! asn1_set_of_integer {
*9860b763SAndroid Build Coastguard Worker    { $params:expr, $variant:ident } => {
*9860b763SAndroid Build Coastguard Worker        {
*9860b763SAndroid Build Coastguard Worker            let mut results = Vec::new();
*9860b763SAndroid Build Coastguard Worker            for param in $params.as_ref() {
*9860b763SAndroid Build Coastguard Worker                if let KeyParam::$variant(v) = param {
*9860b763SAndroid Build Coastguard Worker                    results.try_push(v.clone()).map_err(der_alloc_err)?;
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            if !results.is_empty() {
*9860b763SAndroid Build Coastguard Worker                // The input key characteristics have been sorted and so are in numerical order, but
*9860b763SAndroid Build Coastguard Worker                // may contain duplicates that need to be weeded out.
*9860b763SAndroid Build Coastguard Worker                let mut set = der::asn1::SetOfVec::new();
*9860b763SAndroid Build Coastguard Worker                let mut prev_val = None;
*9860b763SAndroid Build Coastguard Worker                for val in results {
*9860b763SAndroid Build Coastguard Worker                    let val = val as i64;
*9860b763SAndroid Build Coastguard Worker                    if let Some(prev) = prev_val {
*9860b763SAndroid Build Coastguard Worker                        if prev == val {
*9860b763SAndroid Build Coastguard Worker                            continue; // skip duplicate
*9860b763SAndroid Build Coastguard Worker                        }
*9860b763SAndroid Build Coastguard Worker                    }
*9860b763SAndroid Build Coastguard Worker                    set.insert_ordered(val)?;
*9860b763SAndroid Build Coastguard Worker                    prev_val = Some(val);
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                Some(ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                    tag: raw_tag_value(Tag::$variant),
*9860b763SAndroid Build Coastguard Worker                    val: set,
*9860b763SAndroid Build Coastguard Worker                })
*9860b763SAndroid Build Coastguard Worker            } else {
*9860b763SAndroid Build Coastguard Worker                None
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Workermacro_rules! asn1_integer {
*9860b763SAndroid Build Coastguard Worker    { $params:expr, $variant:ident } => {
*9860b763SAndroid Build Coastguard Worker        if let Some(val) = get_opt_tag_value!($params.as_ref(), $variant).map_err(|_e| {
*9860b763SAndroid Build Coastguard Worker            log::warn!("failed to get {} value for ext", stringify!($variant));
*9860b763SAndroid Build Coastguard Worker            der::Error::new(der::ErrorKind::Failed, der::Length::ZERO)
*9860b763SAndroid Build Coastguard Worker        })? {
*9860b763SAndroid Build Coastguard Worker            Some(ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::$variant),
*9860b763SAndroid Build Coastguard Worker                val: *val as i64
*9860b763SAndroid Build Coastguard Worker            })
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            None
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Workermacro_rules! asn1_integer_newtype {
*9860b763SAndroid Build Coastguard Worker    { $params:expr, $variant:ident } => {
*9860b763SAndroid Build Coastguard Worker        if let Some(val) = get_opt_tag_value!($params.as_ref(), $variant).map_err(|_e| {
*9860b763SAndroid Build Coastguard Worker            log::warn!("failed to get {} value for ext", stringify!($variant));
*9860b763SAndroid Build Coastguard Worker            der::Error::new(der::ErrorKind::Failed, der::Length::ZERO)
*9860b763SAndroid Build Coastguard Worker        })? {
*9860b763SAndroid Build Coastguard Worker            Some(ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::$variant),
*9860b763SAndroid Build Coastguard Worker                val: val.0 as i64
*9860b763SAndroid Build Coastguard Worker            })
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            None
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Workermacro_rules! asn1_integer_datetime {
*9860b763SAndroid Build Coastguard Worker    { $params:expr, $variant:ident } => {
*9860b763SAndroid Build Coastguard Worker        if let Some(val) = get_opt_tag_value!($params.as_ref(), $variant).map_err(|_e| {
*9860b763SAndroid Build Coastguard Worker            log::warn!("failed to get {} value for ext", stringify!($variant));
*9860b763SAndroid Build Coastguard Worker            der::Error::new(der::ErrorKind::Failed, der::Length::ZERO)
*9860b763SAndroid Build Coastguard Worker        })? {
*9860b763SAndroid Build Coastguard Worker            Some(ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::$variant),
*9860b763SAndroid Build Coastguard Worker                val: val.ms_since_epoch
*9860b763SAndroid Build Coastguard Worker            })
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            None
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Workermacro_rules! asn1_null {
*9860b763SAndroid Build Coastguard Worker    { $params:expr, $variant:ident } => {
*9860b763SAndroid Build Coastguard Worker        if get_bool_tag_value!($params.as_ref(), $variant).map_err(|_e| {
*9860b763SAndroid Build Coastguard Worker            log::warn!("failed to get {} value for ext", stringify!($variant));
*9860b763SAndroid Build Coastguard Worker            der::Error::new(der::ErrorKind::Failed, der::Length::ZERO)
*9860b763SAndroid Build Coastguard Worker        })? {
*9860b763SAndroid Build Coastguard Worker            Some(ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::$variant),
*9860b763SAndroid Build Coastguard Worker                val: ()
*9860b763SAndroid Build Coastguard Worker            })
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            None
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Workermacro_rules! asn1_octet_string {
*9860b763SAndroid Build Coastguard Worker    { $params:expr, $variant:ident } => {
*9860b763SAndroid Build Coastguard Worker        if let Some(val) = get_opt_tag_value!($params.as_ref(), $variant).map_err(|_e| {
*9860b763SAndroid Build Coastguard Worker            log::warn!("failed to get {} value for ext", stringify!($variant));
*9860b763SAndroid Build Coastguard Worker            der::Error::new(der::ErrorKind::Failed, der::Length::ZERO)
*9860b763SAndroid Build Coastguard Worker        })? {
*9860b763SAndroid Build Coastguard Worker            Some(ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::$variant),
*9860b763SAndroid Build Coastguard Worker                val: der::asn1::OctetStringRef::new(val)?,
*9860b763SAndroid Build Coastguard Worker            })
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            None
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerfn asn1_val<T: Encode>(
*9860b763SAndroid Build Coastguard Worker    val: Option<ExplicitTaggedValue<T>>,
*9860b763SAndroid Build Coastguard Worker    writer: &mut impl der::Writer,
*9860b763SAndroid Build Coastguard Worker) -> der::Result<()> {
*9860b763SAndroid Build Coastguard Worker    if let Some(val) = val {
*9860b763SAndroid Build Coastguard Worker        val.encode(writer)
*9860b763SAndroid Build Coastguard Worker    } else {
*9860b763SAndroid Build Coastguard Worker        Ok(())
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerfn asn1_len<T: Encode>(val: Option<ExplicitTaggedValue<T>>) -> der::Result<Length> {
*9860b763SAndroid Build Coastguard Worker    match val {
*9860b763SAndroid Build Coastguard Worker        Some(val) => val.encoded_len(),
*9860b763SAndroid Build Coastguard Worker        None => Ok(Length::ZERO),
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl<'a> Sequence<'a> for AuthorizationList<'a> {}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl<'a> EncodeValue for AuthorizationList<'a> {
*9860b763SAndroid Build Coastguard Worker    fn value_len(&self) -> der::Result<Length> {
*9860b763SAndroid Build Coastguard Worker        let mut length = asn1_len(asn1_set_of_integer!(self.auths, Purpose))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, Algorithm))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer_newtype!(self.auths, KeySize))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_set_of_integer!(self.auths, BlockMode))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_set_of_integer!(self.auths, Digest))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_set_of_integer!(self.auths, Padding))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, CallerNonce))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, MinMacLength))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, EcCurve))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer_newtype!(self.auths, RsaPublicExponent))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_set_of_integer!(self.auths, RsaOaepMgfDigest))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, RollbackResistance))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, EarlyBootOnly))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer_datetime!(self.auths, ActiveDatetime))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer_datetime!(self.auths, OriginationExpireDatetime))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer_datetime!(self.auths, UsageExpireDatetime))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, UsageCountLimit))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, NoAuthRequired))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, UserAuthType))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, AuthTimeout))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, AllowWhileOnBody))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, TrustedUserPresenceRequired))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, TrustedConfirmationRequired))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, UnlockedDeviceRequired))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer_datetime!(self.auths, CreationDatetime))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, Origin))?;
*9860b763SAndroid Build Coastguard Worker        if let Some(KeyParam::RootOfTrust(encoded_rot_info)) = &self.rot_info {
*9860b763SAndroid Build Coastguard Worker            length = length
*9860b763SAndroid Build Coastguard Worker                + ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                    tag: raw_tag_value(Tag::RootOfTrust),
*9860b763SAndroid Build Coastguard Worker                    val: RootOfTrust::from_der(encoded_rot_info.as_slice())?,
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                .encoded_len()?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        length = length
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, OsVersion))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, OsPatchlevel))?;
*9860b763SAndroid Build Coastguard Worker        if let Some(KeyParam::AttestationApplicationId(app_id)) = &self.app_id {
*9860b763SAndroid Build Coastguard Worker            length = length
*9860b763SAndroid Build Coastguard Worker                + ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                    tag: raw_tag_value(Tag::AttestationApplicationId),
*9860b763SAndroid Build Coastguard Worker                    val: der::asn1::OctetStringRef::new(app_id.as_slice())?,
*9860b763SAndroid Build Coastguard Worker                }
*9860b763SAndroid Build Coastguard Worker                .encoded_len()?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        length = length
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdBrand))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdDevice))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdProduct))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdSerial))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdImei))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdMeid))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdManufacturer))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdModel))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, VendorPatchlevel))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_integer!(self.auths, BootPatchlevel))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_null!(self.auths, DeviceUniqueAttestation))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.keygen_params, AttestationIdSecondImei))?
*9860b763SAndroid Build Coastguard Worker            + asn1_len(asn1_octet_string!(&self.additional_attestation_info, ModuleHash))?;
*9860b763SAndroid Build Coastguard Worker        length
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    fn encode_value(&self, writer: &mut impl der::Writer) -> der::Result<()> {
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_set_of_integer!(self.auths, Purpose), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, Algorithm), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer_newtype!(self.auths, KeySize), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_set_of_integer!(self.auths, BlockMode), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_set_of_integer!(self.auths, Digest), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_set_of_integer!(self.auths, Padding), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, CallerNonce), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, MinMacLength), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, EcCurve), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer_newtype!(self.auths, RsaPublicExponent), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_set_of_integer!(self.auths, RsaOaepMgfDigest), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, RollbackResistance), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, EarlyBootOnly), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer_datetime!(self.auths, ActiveDatetime), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer_datetime!(self.auths, OriginationExpireDatetime), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer_datetime!(self.auths, UsageExpireDatetime), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, UsageCountLimit), writer)?;
*9860b763SAndroid Build Coastguard Worker        // Skip `UserSecureId` as it's only included in the extension for
*9860b763SAndroid Build Coastguard Worker        // importWrappedKey() cases.
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, NoAuthRequired), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, UserAuthType), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, AuthTimeout), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, AllowWhileOnBody), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, TrustedUserPresenceRequired), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, TrustedConfirmationRequired), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, UnlockedDeviceRequired), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer_datetime!(self.auths, CreationDatetime), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, Origin), writer)?;
*9860b763SAndroid Build Coastguard Worker        // Root of trust info is a special case (not in key characteristics).
*9860b763SAndroid Build Coastguard Worker        if let Some(KeyParam::RootOfTrust(encoded_rot_info)) = &self.rot_info {
*9860b763SAndroid Build Coastguard Worker            ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::RootOfTrust),
*9860b763SAndroid Build Coastguard Worker                val: RootOfTrust::from_der(encoded_rot_info.as_slice())?,
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            .encode(writer)?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, OsVersion), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, OsPatchlevel), writer)?;
*9860b763SAndroid Build Coastguard Worker        // Attestation application ID is a special case (not in key characteristics).
*9860b763SAndroid Build Coastguard Worker        if let Some(KeyParam::AttestationApplicationId(app_id)) = &self.app_id {
*9860b763SAndroid Build Coastguard Worker            ExplicitTaggedValue {
*9860b763SAndroid Build Coastguard Worker                tag: raw_tag_value(Tag::AttestationApplicationId),
*9860b763SAndroid Build Coastguard Worker                val: der::asn1::OctetStringRef::new(app_id.as_slice())?,
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            .encode(writer)?;
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker        // Accuracy of attestation IDs has already been checked, so just copy across.
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdBrand), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdDevice), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdProduct), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdSerial), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdImei), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdMeid), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdManufacturer), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdModel), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, VendorPatchlevel), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_integer!(self.auths, BootPatchlevel), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_null!(self.auths, DeviceUniqueAttestation), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.keygen_params, AttestationIdSecondImei), writer)?;
*9860b763SAndroid Build Coastguard Worker        asn1_val(asn1_octet_string!(&self.additional_attestation_info, ModuleHash), writer)?;
*9860b763SAndroid Build Coastguard Worker        Ok(())
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerstruct ExplicitTaggedValue<T: Encode> {
*9860b763SAndroid Build Coastguard Worker    pub tag: u32,
*9860b763SAndroid Build Coastguard Worker    pub val: T,
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl<T: Encode> ExplicitTaggedValue<T> {
*9860b763SAndroid Build Coastguard Worker    fn explicit_tag_len(&self) -> der::Result<der::Length> {
*9860b763SAndroid Build Coastguard Worker        match self.tag {
*9860b763SAndroid Build Coastguard Worker            0..=0x1e => Ok(der::Length::ONE),
*9860b763SAndroid Build Coastguard Worker            0x1f..=0x7f => Ok(der::Length::new(2)),
*9860b763SAndroid Build Coastguard Worker            0x80..=0x3fff => Ok(der::Length::new(3)),
*9860b763SAndroid Build Coastguard Worker            _ => Err(der::ErrorKind::Overflow.into()),
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    fn explicit_tag_encode(&self, encoder: &mut dyn der::Writer) -> der::Result<()> {
*9860b763SAndroid Build Coastguard Worker        match self.tag {
*9860b763SAndroid Build Coastguard Worker            0..=0x1e => {
*9860b763SAndroid Build Coastguard Worker                // b101vvvvv is context-specific+constructed
*9860b763SAndroid Build Coastguard Worker                encoder.write_byte(0b10100000u8 | (self.tag as u8))
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            0x1f..=0x7f => {
*9860b763SAndroid Build Coastguard Worker                // b101 11111 indicates a context-specific+constructed long-form tag number
*9860b763SAndroid Build Coastguard Worker                encoder.write_byte(0b10111111)?;
*9860b763SAndroid Build Coastguard Worker                encoder.write_byte(self.tag as u8)
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            0x80..=0x3fff => {
*9860b763SAndroid Build Coastguard Worker                // b101 11111 indicates a context-specific+constructed long-form tag number
*9860b763SAndroid Build Coastguard Worker                encoder.write_byte(0b10111111)?;
*9860b763SAndroid Build Coastguard Worker                encoder.write_byte((self.tag >> 7) as u8 | 0x80u8)?;
*9860b763SAndroid Build Coastguard Worker                encoder.write_byte((self.tag & 0x007f) as u8)
*9860b763SAndroid Build Coastguard Worker            }
*9860b763SAndroid Build Coastguard Worker            _ => Err(der::ErrorKind::Overflow.into()),
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// The der library explicitly does not support `TagNumber` values bigger than 31,
*9860b763SAndroid Build Coastguard Worker/// which are required here.  Work around this by manually providing the encoding functionality.
*9860b763SAndroid Build Coastguard Workerimpl<T: Encode> Encode for ExplicitTaggedValue<T> {
*9860b763SAndroid Build Coastguard Worker    fn encoded_len(&self) -> der::Result<der::Length> {
*9860b763SAndroid Build Coastguard Worker        let inner_len = self.val.encoded_len()?;
*9860b763SAndroid Build Coastguard Worker        self.explicit_tag_len() + inner_len.encoded_len()? + inner_len
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    fn encode(&self, encoder: &mut impl der::Writer) -> der::Result<()> {
*9860b763SAndroid Build Coastguard Worker        let inner_len = self.val.encoded_len()?;
*9860b763SAndroid Build Coastguard Worker        self.explicit_tag_encode(encoder)?;
*9860b763SAndroid Build Coastguard Worker        inner_len.encode(encoder)?;
*9860b763SAndroid Build Coastguard Worker        self.val.encode(encoder)
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Root of Trust ASN.1 structure
*9860b763SAndroid Build Coastguard Worker/// ```asn1
*9860b763SAndroid Build Coastguard Worker///  * RootOfTrust ::= SEQUENCE {
*9860b763SAndroid Build Coastguard Worker///  *     verifiedBootKey            OCTET_STRING,
*9860b763SAndroid Build Coastguard Worker///  *     deviceLocked               BOOLEAN,
*9860b763SAndroid Build Coastguard Worker///  *     verifiedBootState          VerifiedBootState,
*9860b763SAndroid Build Coastguard Worker///  *     verifiedBootHash           OCTET_STRING,
*9860b763SAndroid Build Coastguard Worker///  * }
*9860b763SAndroid Build Coastguard Worker/// ```
*9860b763SAndroid Build Coastguard Worker#[derive(Debug, Clone, Sequence)]
*9860b763SAndroid Build Coastguard Workerstruct RootOfTrust<'a> {
*9860b763SAndroid Build Coastguard Worker    #[asn1(type = "OCTET STRING")]
*9860b763SAndroid Build Coastguard Worker    verified_boot_key: &'a [u8],
*9860b763SAndroid Build Coastguard Worker    device_locked: bool,
*9860b763SAndroid Build Coastguard Worker    verified_boot_state: VerifiedBootState,
*9860b763SAndroid Build Coastguard Worker    #[asn1(type = "OCTET STRING")]
*9860b763SAndroid Build Coastguard Worker    verified_boot_hash: &'a [u8],
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl<'a> From<&'a keymint::BootInfo> for RootOfTrust<'a> {
*9860b763SAndroid Build Coastguard Worker    fn from(info: &keymint::BootInfo) -> RootOfTrust {
*9860b763SAndroid Build Coastguard Worker        let verified_boot_key: &[u8] = if info.verified_boot_key.is_empty() {
*9860b763SAndroid Build Coastguard Worker            // If an empty verified boot key was passed by the boot loader, set the verified boot
*9860b763SAndroid Build Coastguard Worker            // key in the attestation to all zeroes.
*9860b763SAndroid Build Coastguard Worker            &EMPTY_BOOT_KEY[..]
*9860b763SAndroid Build Coastguard Worker        } else {
*9860b763SAndroid Build Coastguard Worker            &info.verified_boot_key[..]
*9860b763SAndroid Build Coastguard Worker        };
*9860b763SAndroid Build Coastguard Worker        RootOfTrust {
*9860b763SAndroid Build Coastguard Worker            verified_boot_key,
*9860b763SAndroid Build Coastguard Worker            device_locked: info.device_boot_locked,
*9860b763SAndroid Build Coastguard Worker            verified_boot_state: info.verified_boot_state.into(),
*9860b763SAndroid Build Coastguard Worker            verified_boot_hash: &info.verified_boot_hash[..],
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker/// Verified Boot State as ASN.1 ENUMERATED type.
*9860b763SAndroid Build Coastguard Worker///```asn1
*9860b763SAndroid Build Coastguard Worker///  * VerifiedBootState ::= ENUMERATED {
*9860b763SAndroid Build Coastguard Worker///  *     Verified                   (0),
*9860b763SAndroid Build Coastguard Worker///  *     SelfSigned                 (1),
*9860b763SAndroid Build Coastguard Worker///  *     Unverified                 (2),
*9860b763SAndroid Build Coastguard Worker///  *     Failed                     (3),
*9860b763SAndroid Build Coastguard Worker///  * }
*9860b763SAndroid Build Coastguard Worker///```
*9860b763SAndroid Build Coastguard Worker#[repr(u32)]
*9860b763SAndroid Build Coastguard Worker#[derive(Debug, Clone, Copy, Enumerated)]
*9860b763SAndroid Build Coastguard Workerenum VerifiedBootState {
*9860b763SAndroid Build Coastguard Worker    Verified = 0,
*9860b763SAndroid Build Coastguard Worker    SelfSigned = 1,
*9860b763SAndroid Build Coastguard Worker    Unverified = 2,
*9860b763SAndroid Build Coastguard Worker    Failed = 3,
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Workerimpl From<keymint::VerifiedBootState> for VerifiedBootState {
*9860b763SAndroid Build Coastguard Worker    fn from(state: keymint::VerifiedBootState) -> VerifiedBootState {
*9860b763SAndroid Build Coastguard Worker        match state {
*9860b763SAndroid Build Coastguard Worker            keymint::VerifiedBootState::Verified => VerifiedBootState::Verified,
*9860b763SAndroid Build Coastguard Worker            keymint::VerifiedBootState::SelfSigned => VerifiedBootState::SelfSigned,
*9860b763SAndroid Build Coastguard Worker            keymint::VerifiedBootState::Unverified => VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker            keymint::VerifiedBootState::Failed => VerifiedBootState::Failed,
*9860b763SAndroid Build Coastguard Worker        }
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker#[cfg(test)]
*9860b763SAndroid Build Coastguard Workermod tests {
*9860b763SAndroid Build Coastguard Worker    use super::*;
*9860b763SAndroid Build Coastguard Worker    use crate::KeyMintHalVersion;
*9860b763SAndroid Build Coastguard Worker    use alloc::vec;
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_attest_ext_encode_decode() {
*9860b763SAndroid Build Coastguard Worker        let sec_level = SecurityLevel::TrustedEnvironment;
*9860b763SAndroid Build Coastguard Worker        let ext = AttestationExtension {
*9860b763SAndroid Build Coastguard Worker            attestation_version: KeyMintHalVersion::V3 as i32,
*9860b763SAndroid Build Coastguard Worker            attestation_security_level: sec_level,
*9860b763SAndroid Build Coastguard Worker            keymint_version: KeyMintHalVersion::V3 as i32,
*9860b763SAndroid Build Coastguard Worker            keymint_security_level: sec_level,
*9860b763SAndroid Build Coastguard Worker            attestation_challenge: b"abc",
*9860b763SAndroid Build Coastguard Worker            unique_id: b"xxx",
*9860b763SAndroid Build Coastguard Worker            sw_enforced: AuthorizationList::new(&[], &[], None, None, None, &[]).unwrap(),
*9860b763SAndroid Build Coastguard Worker            hw_enforced: AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker                &[KeyParam::Algorithm(keymint::Algorithm::Ec)],
*9860b763SAndroid Build Coastguard Worker                &[],
*9860b763SAndroid Build Coastguard Worker                None,
*9860b763SAndroid Build Coastguard Worker                Some(RootOfTrust {
*9860b763SAndroid Build Coastguard Worker                    verified_boot_key: &[0xbbu8; 32],
*9860b763SAndroid Build Coastguard Worker                    device_locked: false,
*9860b763SAndroid Build Coastguard Worker                    verified_boot_state: VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker                    verified_boot_hash: &[0xee; 32],
*9860b763SAndroid Build Coastguard Worker                }),
*9860b763SAndroid Build Coastguard Worker                None,
*9860b763SAndroid Build Coastguard Worker                &[],
*9860b763SAndroid Build Coastguard Worker            )
*9860b763SAndroid Build Coastguard Worker            .unwrap(),
*9860b763SAndroid Build Coastguard Worker        };
*9860b763SAndroid Build Coastguard Worker        let got = ext.to_der().unwrap();
*9860b763SAndroid Build Coastguard Worker        let want = concat!(
*9860b763SAndroid Build Coastguard Worker            "3071",   // SEQUENCE
*9860b763SAndroid Build Coastguard Worker            "0202",   // INTEGER len 2
*9860b763SAndroid Build Coastguard Worker            "012c",   // 300
*9860b763SAndroid Build Coastguard Worker            "0a01",   // ENUM len 1
*9860b763SAndroid Build Coastguard Worker            "01",     // 1 (TrustedEnvironment)
*9860b763SAndroid Build Coastguard Worker            "0202",   // INTEGER len 2
*9860b763SAndroid Build Coastguard Worker            "012c",   // 300
*9860b763SAndroid Build Coastguard Worker            "0a01",   // ENUM len 1
*9860b763SAndroid Build Coastguard Worker            "01",     // 1 (TrustedEnvironement)
*9860b763SAndroid Build Coastguard Worker            "0403",   // BYTE STRING len 3
*9860b763SAndroid Build Coastguard Worker            "616263", // b"abc"
*9860b763SAndroid Build Coastguard Worker            "0403",   // BYTE STRING len 3
*9860b763SAndroid Build Coastguard Worker            "787878", // b"xxx"
*9860b763SAndroid Build Coastguard Worker            "3000",   // SEQUENCE len 0
*9860b763SAndroid Build Coastguard Worker            "3055",   // SEQUENCE len 55
*9860b763SAndroid Build Coastguard Worker            "a203",   // EXPLICIT [2]
*9860b763SAndroid Build Coastguard Worker            "0201",   // INTEGER len 1
*9860b763SAndroid Build Coastguard Worker            "03",     // 3 (Algorithm::Ec)
*9860b763SAndroid Build Coastguard Worker            "bf8540",
*9860b763SAndroid Build Coastguard Worker            "4c",   // EXPLICIT [704] len 0x4c
*9860b763SAndroid Build Coastguard Worker            "304a", // SEQUENCE len x4a
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "0101", // BOOLEAN len 1
*9860b763SAndroid Build Coastguard Worker            "00",   // false
*9860b763SAndroid Build Coastguard Worker            "0a01", // ENUMERATED len 1
*9860b763SAndroid Build Coastguard Worker            "02",   // Unverified(2)
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        assert_eq!(hex::encode(&got), want);
*9860b763SAndroid Build Coastguard Worker        assert_eq!(AttestationExtension::from_der(&got).unwrap(), ext);
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_explicit_tagged_value() {
*9860b763SAndroid Build Coastguard Worker        assert_eq!(
*9860b763SAndroid Build Coastguard Worker            hex::encode(ExplicitTaggedValue { tag: 2, val: 16 }.to_der().unwrap()),
*9860b763SAndroid Build Coastguard Worker            "a203020110"
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        assert_eq!(
*9860b763SAndroid Build Coastguard Worker            hex::encode(ExplicitTaggedValue { tag: 2, val: () }.to_der().unwrap()),
*9860b763SAndroid Build Coastguard Worker            "a2020500"
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        assert_eq!(
*9860b763SAndroid Build Coastguard Worker            hex::encode(ExplicitTaggedValue { tag: 503, val: 16 }.to_der().unwrap()),
*9860b763SAndroid Build Coastguard Worker            "bf837703020110"
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_authz_list_encode_decode() {
*9860b763SAndroid Build Coastguard Worker        let additional_attestation_info = [KeyParam::ModuleHash(vec![0xaa; 32])];
*9860b763SAndroid Build Coastguard Worker        let authz_list = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker            &[KeyParam::Algorithm(keymint::Algorithm::Ec)],
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            Some(RootOfTrust {
*9860b763SAndroid Build Coastguard Worker                verified_boot_key: &[0xbbu8; 32],
*9860b763SAndroid Build Coastguard Worker                device_locked: false,
*9860b763SAndroid Build Coastguard Worker                verified_boot_state: VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker                verified_boot_hash: &[0xee; 32],
*9860b763SAndroid Build Coastguard Worker            }),
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            &additional_attestation_info,
*9860b763SAndroid Build Coastguard Worker        )
*9860b763SAndroid Build Coastguard Worker        .unwrap();
*9860b763SAndroid Build Coastguard Worker        let got = authz_list.to_der().unwrap();
*9860b763SAndroid Build Coastguard Worker        let want: &str = concat!(
*9860b763SAndroid Build Coastguard Worker            "307b", // SEQUENCE len 123
*9860b763SAndroid Build Coastguard Worker            "a203", // EXPLICIT [2]
*9860b763SAndroid Build Coastguard Worker            "0201", // INTEGER len 1
*9860b763SAndroid Build Coastguard Worker            "03",   // 3 (Algorithm::Ec)
*9860b763SAndroid Build Coastguard Worker            "bf8540",
*9860b763SAndroid Build Coastguard Worker            "4c",   // EXPLICIT [704] len 0x4c
*9860b763SAndroid Build Coastguard Worker            "304a", // SEQUENCE len x4a
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "0101", // BOOLEAN len 1
*9860b763SAndroid Build Coastguard Worker            "00",   // false
*9860b763SAndroid Build Coastguard Worker            "0a01", // ENUMERATED len 1
*9860b763SAndroid Build Coastguard Worker            "02",   // Unverified(2)
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker            "bf8554",
*9860b763SAndroid Build Coastguard Worker            "22",   // EXPLICIT [724] len 34
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa",
*9860b763SAndroid Build Coastguard Worker            "aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa",
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        // encode
*9860b763SAndroid Build Coastguard Worker        assert_eq!(hex::encode(&got), want);
*9860b763SAndroid Build Coastguard Worker        // decode from encoded
*9860b763SAndroid Build Coastguard Worker        assert_eq!(AuthorizationList::from_der(got.as_slice()).unwrap(), authz_list);
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_authz_list_user_secure_id_encode() {
*9860b763SAndroid Build Coastguard Worker        // Create an authorization list that includes multiple values for SecureUserId.
*9860b763SAndroid Build Coastguard Worker        let authz_list = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker            &[
*9860b763SAndroid Build Coastguard Worker                KeyParam::Algorithm(keymint::Algorithm::Ec),
*9860b763SAndroid Build Coastguard Worker                KeyParam::UserSecureId(42),
*9860b763SAndroid Build Coastguard Worker                KeyParam::UserSecureId(43),
*9860b763SAndroid Build Coastguard Worker                KeyParam::UserSecureId(44),
*9860b763SAndroid Build Coastguard Worker            ],
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            Some(RootOfTrust {
*9860b763SAndroid Build Coastguard Worker                verified_boot_key: &[0xbbu8; 32],
*9860b763SAndroid Build Coastguard Worker                device_locked: false,
*9860b763SAndroid Build Coastguard Worker                verified_boot_state: VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker                verified_boot_hash: &[0xee; 32],
*9860b763SAndroid Build Coastguard Worker            }),
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker        )
*9860b763SAndroid Build Coastguard Worker        .unwrap();
*9860b763SAndroid Build Coastguard Worker        let got = authz_list.to_der().unwrap();
*9860b763SAndroid Build Coastguard Worker        // The `SecureUserId` values are *not* included in the generated output.
*9860b763SAndroid Build Coastguard Worker        let want: &str = concat!(
*9860b763SAndroid Build Coastguard Worker            "3055", // SEQUENCE len 55
*9860b763SAndroid Build Coastguard Worker            "a203", // EXPLICIT [2]
*9860b763SAndroid Build Coastguard Worker            "0201", // INTEGER len 1
*9860b763SAndroid Build Coastguard Worker            "03",   // 3 (Algorithm::Ec)
*9860b763SAndroid Build Coastguard Worker            "bf8540",
*9860b763SAndroid Build Coastguard Worker            "4c",   // EXPLICIT [704] len 0x4c
*9860b763SAndroid Build Coastguard Worker            "304a", // SEQUENCE len x4a
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "0101", // BOOLEAN len 1
*9860b763SAndroid Build Coastguard Worker            "00",   // false
*9860b763SAndroid Build Coastguard Worker            "0a01", // ENUMERATED len 1
*9860b763SAndroid Build Coastguard Worker            "02",   // Unverified(2)
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker        );
*9860b763SAndroid Build Coastguard Worker        // encode
*9860b763SAndroid Build Coastguard Worker        assert_eq!(hex::encode(got), want);
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_authz_list_user_secure_id_decode() {
*9860b763SAndroid Build Coastguard Worker        // Create a DER-encoded `AuthorizationList` that includes a `UserSecureId` value.
*9860b763SAndroid Build Coastguard Worker        let input = hex::decode(concat!(
*9860b763SAndroid Build Coastguard Worker            "305c",   // SEQUENCE
*9860b763SAndroid Build Coastguard Worker            "a203",   // EXPLICIT [2] len 3
*9860b763SAndroid Build Coastguard Worker            "0201",   // INTEGER len 1
*9860b763SAndroid Build Coastguard Worker            "03",     // 3 (Algorithm::Ec)
*9860b763SAndroid Build Coastguard Worker            "bf8376", // EXPLICIT [502]
*9860b763SAndroid Build Coastguard Worker            "03",     // len 3
*9860b763SAndroid Build Coastguard Worker            "0201",   // INTEGER len 1
*9860b763SAndroid Build Coastguard Worker            "02",     // 2
*9860b763SAndroid Build Coastguard Worker            "bf8540", // EXPLICIT [704]
*9860b763SAndroid Build Coastguard Worker            "4c",     // len 0x4c
*9860b763SAndroid Build Coastguard Worker            "304a",   // SEQUENCE len x4a
*9860b763SAndroid Build Coastguard Worker            "0420",   // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb",
*9860b763SAndroid Build Coastguard Worker            "0101", // BOOLEAN len 1
*9860b763SAndroid Build Coastguard Worker            "00",   // false
*9860b763SAndroid Build Coastguard Worker            "0a01", // ENUMERATED len 1
*9860b763SAndroid Build Coastguard Worker            "02",   // Unverified(2)
*9860b763SAndroid Build Coastguard Worker            "0420", // OCTET STRING len 32
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker            "eeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee",
*9860b763SAndroid Build Coastguard Worker        ))
*9860b763SAndroid Build Coastguard Worker        .unwrap();
*9860b763SAndroid Build Coastguard Worker        let got = AuthorizationList::from_der(&input).unwrap();
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        let want = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker            &[KeyParam::Algorithm(keymint::Algorithm::Ec), KeyParam::UserSecureId(2)],
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            Some(RootOfTrust {
*9860b763SAndroid Build Coastguard Worker                verified_boot_key: &[0xbbu8; 32],
*9860b763SAndroid Build Coastguard Worker                device_locked: false,
*9860b763SAndroid Build Coastguard Worker                verified_boot_state: VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker                verified_boot_hash: &[0xee; 32],
*9860b763SAndroid Build Coastguard Worker            }),
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker        )
*9860b763SAndroid Build Coastguard Worker        .unwrap();
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker        assert_eq!(got, want);
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_authz_list_dup_encode() {
*9860b763SAndroid Build Coastguard Worker        use kmr_wire::keymint::Digest;
*9860b763SAndroid Build Coastguard Worker        let authz_list = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker            &[
*9860b763SAndroid Build Coastguard Worker                KeyParam::Digest(Digest::None),
*9860b763SAndroid Build Coastguard Worker                KeyParam::Digest(Digest::Sha1),
*9860b763SAndroid Build Coastguard Worker                KeyParam::Digest(Digest::Sha1), // duplicate value
*9860b763SAndroid Build Coastguard Worker            ],
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            Some(RootOfTrust {
*9860b763SAndroid Build Coastguard Worker                verified_boot_key: &[0xbbu8; 32],
*9860b763SAndroid Build Coastguard Worker                device_locked: false,
*9860b763SAndroid Build Coastguard Worker                verified_boot_state: VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker                verified_boot_hash: &[0xee; 32],
*9860b763SAndroid Build Coastguard Worker            }),
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker        )
*9860b763SAndroid Build Coastguard Worker        .unwrap();
*9860b763SAndroid Build Coastguard Worker        let got = authz_list.to_der().unwrap();
*9860b763SAndroid Build Coastguard Worker        assert!(AuthorizationList::from_der(got.as_slice()).is_ok());
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker
*9860b763SAndroid Build Coastguard Worker    #[test]
*9860b763SAndroid Build Coastguard Worker    fn test_authz_list_order_fail() {
*9860b763SAndroid Build Coastguard Worker        use kmr_wire::keymint::Digest;
*9860b763SAndroid Build Coastguard Worker        let authz_list = AuthorizationList::new(
*9860b763SAndroid Build Coastguard Worker            &[KeyParam::Digest(Digest::Sha1), KeyParam::Digest(Digest::None)],
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            Some(RootOfTrust {
*9860b763SAndroid Build Coastguard Worker                verified_boot_key: &[0xbbu8; 32],
*9860b763SAndroid Build Coastguard Worker                device_locked: false,
*9860b763SAndroid Build Coastguard Worker                verified_boot_state: VerifiedBootState::Unverified,
*9860b763SAndroid Build Coastguard Worker                verified_boot_hash: &[0xee; 32],
*9860b763SAndroid Build Coastguard Worker            }),
*9860b763SAndroid Build Coastguard Worker            None,
*9860b763SAndroid Build Coastguard Worker            &[],
*9860b763SAndroid Build Coastguard Worker        )
*9860b763SAndroid Build Coastguard Worker        .unwrap();
*9860b763SAndroid Build Coastguard Worker        assert!(authz_list.to_der().is_err());
*9860b763SAndroid Build Coastguard Worker    }
*9860b763SAndroid Build Coastguard Worker}