Skip to content

[cov] add perso_tlv_data unit test #27653

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 1 commit into
base: earlgrey_1.0.0
Choose a base branch
from
+238 −0
Open

[cov] add perso_tlv_data unit test #27653

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
9 changes: 9 additions & 0 deletions sw/device/silicon_creator/manuf/base/BUILD
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -266,6 +266,15 @@ cc_library(
],
)

cc_test(
name = "perso_tlv_data_unittest",
srcs = ["perso_tlv_data_unittest.cc"],
deps = [
":perso_tlv_data",
"@googletest//:gtest_main",
],
)

# Need a separate library for the headers, because adding a dependency on
#//sw/device/silicon_creator/lib/cert required by perso_tlv_data above causes
# bindgen failures due to otbn (which is a cert dependency) requiring risc32
Expand Down
8 changes: 8 additions & 0 deletions sw/device/silicon_creator/manuf/base/perso_tlv_data.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,10 @@
#include "sw/device/silicon_creator/lib/cert/cert.h"
#include "sw/device/silicon_creator/lib/error.h"

#ifdef __cplusplus
extern "C" {
#endif // __cplusplus

/**
* Personalization data is sent between the device and the host during the
* device provisioning. Personalization data is laid out as a sequence of
Expand Down Expand Up @@ -263,4 +267,8 @@ OT_WARN_UNUSED_RESULT
rom_error_t perso_tlv_push_to_perso_blob(const void *data, size_t size,
perso_blob_t *perso_blob);

#ifdef __cplusplus
} // extern "C"
#endif // __cplusplus

#endif // OPENTITAN_SW_DEVICE_SILICON_CREATOR_MANUF_BASE_PERSO_TLV_DATA_H_
221 changes: 221 additions & 0 deletions sw/device/silicon_creator/manuf/base/perso_tlv_data_unittest.cc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,221 @@
// Copyright lowRISC contributors (OpenTitan project).
// Licensed under the Apache License, Version 2.0, see LICENSE for details.
// SPDX-License-Identifier: Apache-2.0

#include "sw/device/silicon_creator/manuf/base/perso_tlv_data.h"

#include <array>
#include <cstring>
#include <gtest/gtest.h>

#include "sw/device/silicon_creator/lib/cert/cert.h"
#include "sw/device/silicon_creator/lib/error.h"

const uint8_t kX509CertTestdata[132] = {0x30, 0x82, 0x00, 0x80};
const size_t kX509CertTestdataSize = 132;

namespace perso_tlv_data_unittest {
namespace {

class PersoTlvDataTest : public testing::Test {
public:
// A small scratch buffer used for tests.
static constexpr size_t kScratchBufferSize = 256;
std::array<uint8_t, kScratchBufferSize> scratch_buf_;

void SetUp() override { scratch_buf_.fill(0); }

void TearDown() override { scratch_buf_.fill(0); }
};

TEST_F(PersoTlvDataTest, PersoTlvCertObjBuildX509Cert) {
const char *name = "UDS";
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
const uint8_t *cert = kX509CertTestdata;
size_t cert_size = kX509CertTestdataSize;
size_t buf_size = kScratchBufferSize;

EXPECT_EQ(perso_tlv_cert_obj_build(name, obj_type, cert, cert_size,
scratch_buf_.data(), &buf_size),
kErrorOk);

perso_tlv_cert_obj_t obj;
size_t ltv_buf_size = buf_size; // Simulate reading the built object back

// Should be able to get the object from the built buffer
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorOk);

EXPECT_EQ(obj.obj_type, obj_type);
EXPECT_EQ(obj.obj_size, buf_size); // The reported size by build should match
// the object's size field
EXPECT_STREQ(obj.name, name);
EXPECT_EQ(obj.cert_body_size, cert_size);
EXPECT_EQ(memcmp(obj.cert_body_p, cert, cert_size), 0);
}

TEST_F(PersoTlvDataTest, PersoTlvCertObjBuildBufTooSmall) {
const char *name = "UDS";
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
const uint8_t *cert = kX509CertTestdata;
size_t cert_size = kX509CertTestdataSize;
size_t buf_size = 10; // Intentionally too small

EXPECT_EQ(perso_tlv_cert_obj_build(name, obj_type, cert, cert_size,
scratch_buf_.data(), &buf_size),
kErrorPersoTlvOutputBufTooSmall);
}

TEST_F(PersoTlvDataTest, PersoTlvCertObjBuildNameTooLong) {
// Name length field is 4 bits, so max length is 15.
const char *name = "ThisNameIsTooLongFor4Bits"; // Length > 15
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
const uint8_t *cert = kX509CertTestdata;
size_t cert_size = kX509CertTestdataSize;
size_t buf_size = kScratchBufferSize;

EXPECT_EQ(perso_tlv_cert_obj_build(name, obj_type, cert, cert_size,
scratch_buf_.data(), &buf_size),
kErrorPersoTlvCertNameTooLong);
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjEmptyBuf) {
perso_tlv_cert_obj_t obj;
size_t ltv_buf_size = 0;
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvInternal); // Not enough size for header
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjBufTooSmallForHeader) {
perso_tlv_cert_obj_t obj;
size_t ltv_buf_size = sizeof(perso_tlv_object_header_t) - 1;
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvInternal);
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjEmptyObject) {
// Create a minimal object header with size 0
perso_tlv_object_header_t obj_header = 0;
PERSO_TLV_SET_FIELD(Objh, Type, obj_header, kPersoObjectTypeX509Cert);
PERSO_TLV_SET_FIELD(Objh, Size, obj_header, 0); // Size 0

memcpy(scratch_buf_.data(), &obj_header, sizeof(obj_header));

perso_tlv_cert_obj_t obj;
size_t ltv_buf_size = sizeof(obj_header);
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvCertObjNotFound); // Object is empty
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjTooBigForBuf) {
// Create an object header that claims to be larger than the buffer
perso_tlv_object_header_t obj_header = 0;
PERSO_TLV_SET_FIELD(Objh, Type, obj_header, kPersoObjectTypeX509Cert);
PERSO_TLV_SET_FIELD(Objh, Size, obj_header,
kScratchBufferSize + 1); // Size too large

memcpy(scratch_buf_.data(), &obj_header, sizeof(obj_header));

perso_tlv_cert_obj_t obj;
size_t ltv_buf_size = sizeof(obj_header); // Only header is actually in buf
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvInternal); // Object exceeds buffer size
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjBufTooSmallForCertHeader) {
// Create a minimal object header for a cert
perso_tlv_object_header_t obj_header = 0;
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
size_t ltv_buf_size = sizeof(obj_header) + 1;
PERSO_TLV_SET_FIELD(Objh, Type, obj_header, obj_type);
PERSO_TLV_SET_FIELD(Objh, Size, obj_header, ltv_buf_size);

memcpy(scratch_buf_.data(), &obj_header, sizeof(obj_header));

perso_tlv_cert_obj_t obj;
// Provide buffer size just enough for object header
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvInternal); // Not enough size for cert header
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjSizeMismatch) {
// Create headers where the tlv cert size doesn't match x509 cert size
perso_tlv_object_header_t obj_header = 0;
perso_tlv_cert_header_t cert_header = 0;
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
std::string name("UDS", 3);
size_t cert_data_size = kX509CertTestdataSize;
size_t expected_total_size =
sizeof(obj_header) + sizeof(cert_header) + name.size() + cert_data_size;

PERSO_TLV_SET_FIELD(Objh, Type, obj_header, obj_type);
PERSO_TLV_SET_FIELD(Objh, Size, obj_header, expected_total_size);
PERSO_TLV_SET_FIELD(Crth, NameSize, cert_header, name.size());
// Set cert header size *incorrectly*
PERSO_TLV_SET_FIELD(Crth, Size, cert_header,
expected_total_size - sizeof(obj_header) - 1);

uint8_t *ptr = scratch_buf_.data();
memcpy(ptr, &obj_header, sizeof(obj_header));
ptr += sizeof(obj_header);
memcpy(ptr, &cert_header, sizeof(cert_header));
ptr += sizeof(cert_header);
memcpy(ptr, name.data(), name.size());
ptr += name.size();
memcpy(ptr, kX509CertTestdata, cert_data_size);

perso_tlv_cert_obj_t obj;
size_t ltv_buf_size =
expected_total_size; // Buffer is large enough for actual data
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvInternal); // Size mismatch detected by sanity check
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjCertTooLong) {
// Create a TLV object with partial cert.
perso_tlv_object_header_t obj_header = 0;
perso_tlv_cert_header_t cert_header = 0;
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
const size_t name_len = 7; // Arbitrary name length
// Total object size should account for headers and the name, but we will
// provide a smaller buffer size to simulate the error condition.
size_t cert_size = sizeof(cert_header) + name_len + kX509CertTestdataSize;
// Provide buffer size enough for headers, but NOT the full cert body
size_t ltv_buf_size = sizeof(obj_header) + cert_size - 1;

PERSO_TLV_SET_FIELD(Objh, Type, obj_header, obj_type);
PERSO_TLV_SET_FIELD(Objh, Size, obj_header, ltv_buf_size);
PERSO_TLV_SET_FIELD(Crth, NameSize, cert_header, name_len);
PERSO_TLV_SET_FIELD(Crth, Size, cert_header, cert_size);

memcpy(scratch_buf_.data(), &obj_header, sizeof(obj_header));
memcpy(scratch_buf_.data() + sizeof(obj_header), &cert_header,
sizeof(cert_header));

perso_tlv_cert_obj_t obj;
// Expected to fail due to wrapped_cert_size is too long.
EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorPersoTlvInternal);
}

TEST_F(PersoTlvDataTest, PersoTlvGetCertObjX509SanityCheckPass) {
// Build a valid X.509 cert object first
const char *name = "UDS";
perso_tlv_object_type_t obj_type = kPersoObjectTypeX509Cert;
const uint8_t *cert = kX509CertTestdata;
size_t cert_size = kX509CertTestdataSize;
size_t buf_size = kScratchBufferSize;

EXPECT_EQ(perso_tlv_cert_obj_build(name, obj_type, cert, cert_size,
scratch_buf_.data(), &buf_size),
kErrorOk);

perso_tlv_cert_obj_t obj;
size_t ltv_buf_size = buf_size;

EXPECT_EQ(perso_tlv_get_cert_obj(scratch_buf_.data(), ltv_buf_size, &obj),
kErrorOk);
}

} // namespace
} // namespace perso_tlv_data_unittest
Loading