Google Git
Sign in
android/platform/cts/54ea78e46ee
commit
54ea78e46eeeb2d2a775029c4418983b0ee0683f
[log]
author
Keith Mok <keithmok@google.com>
Sat Feb 11 21:22:46 2023 +0000
committer
Subrahmanya Manikanta Venkateswarlu Bhamidipati Kameswara Sri <subrahmanyaman@google.com>
Tue Mar 19 19:34:39 2024 +0000
tree
f58b4fce651d549f9f704e9c3313986c98d7ed8d
parent
29867ac395c78f3c9698fe07b35cf24383ab0087 [diff]
Mitigate the certificate chain extension attack.

This changes the extraction of the attestation from the certificate
chain.  Instead of unconditionally extracting the attestation in the
leaf certificate (if present), the code now walks up the certificate
chain to the root, only taking into account the last attestation
extension it finds (i.e., the one closest to the root).

This mitigates an attack in which an attacker crafts a new leaf
certificate with a seemingly good attestation and appends it to the
certificate chain.

Now createParsedAttestationRecord takes a List (the whole certification chain instead of just the leaf. Since we need to find the one contains the attestation data which is nearest to the root certification. Change CTS to reflect the new updated API

Bug: 268544173
Test: manual
(cherry picked from https://android-review.googlesource.com/q/commit:e9b85287e05219d0f2153764cfdd23e7f54c3c63)

Merged-In: If1d5fb1456406fe48e50c4f424808c5a7943c3c7
Change-Id: If1d5fb1456406fe48e50c4f424808c5a7943c3c7
2 files changed
tree: f58b4fce651d549f9f704e9c3313986c98d7ed8d
  1. .prebuilt_info/
  2. apps/
  3. build/
  4. common/
  5. development/
  6. helpers/
  7. hostsidetests/
  8. libs/
  9. suite/
  10. tests/
  11. tools/
  12. .clang-format
  13. .gitignore
  14. Android.bp
  15. CleanSpec.mk
  16. error_prone_rules.mk
  17. error_prone_rules_tests.mk
  18. OWNERS
  19. PREUPLOAD.cfg
  20. run_unit_tests.sh
  21. test_defs.sh