KeyMint VTS: catch empty cert chains

Explicitly detect empty cert chains returned by GenerateKey rather than crashing when trying to dereference the first entry. Bug: 195605180 Test: VtsAidlKeyMintTargetTest Change-Id: Idad2703b458952ff599c6ccdd04a941aef7aedde
author: David Drysdale <drysdale@google.com> 2021-08-05 07:50:23 +0100
committer: David Drysdale <drysdale@google.com> 2021-08-05 09:03:20 +0100
commit: a038695b218b3610236d3378015bc812cf26cb42 (patch)
tree: e509c39b5f12e78cda657def6152807cff4e8be1 /security/keymint/aidl/vts/functional/AttestKeyTest.cpp
parent: 555e9872f568d35bd42ec82d1d42b4cf84ca4e09 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/security/keymint/aidl/vts/functional/AttestKeyTest.cpp b/security/keymint/aidl/vts/functional/AttestKeyTest.cpp
index a3127237ac..26ed34427c 100644
--- a/security/keymint/aidl/vts/functional/AttestKeyTest.cpp
+++ b/security/keymint/aidl/vts/functional/AttestKeyTest.cpp
@@ -312,6 +312,7 @@ TEST_P(AttestKeyTest, RsaAttestKeyChaining) {
 
         AuthorizationSet hw_enforced = HwEnforcedAuthorizations(attested_key_characteristics);
         AuthorizationSet sw_enforced = SwEnforcedAuthorizations(attested_key_characteristics);
+        ASSERT_GT(cert_chain_list[i].size(), 0);
         EXPECT_TRUE(verify_attestation_record("foo", "bar", sw_enforced, hw_enforced, SecLevel(),
                                               cert_chain_list[i][0].encodedCertificate));
 
@@ -383,6 +384,7 @@ TEST_P(AttestKeyTest, EcAttestKeyChaining) {
 
         AuthorizationSet hw_enforced = HwEnforcedAuthorizations(attested_key_characteristics);
         AuthorizationSet sw_enforced = SwEnforcedAuthorizations(attested_key_characteristics);
+        ASSERT_GT(cert_chain_list[i].size(), 0);
         EXPECT_TRUE(verify_attestation_record("foo", "bar", sw_enforced, hw_enforced, SecLevel(),
                                               cert_chain_list[i][0].encodedCertificate));
 
@@ -471,6 +473,7 @@ TEST_P(AttestKeyTest, AlternateAttestKeyChaining) {
 
         AuthorizationSet hw_enforced = HwEnforcedAuthorizations(attested_key_characteristics);
         AuthorizationSet sw_enforced = SwEnforcedAuthorizations(attested_key_characteristics);
+        ASSERT_GT(cert_chain_list[i].size(), 0);
         EXPECT_TRUE(verify_attestation_record("foo", "bar", sw_enforced, hw_enforced, SecLevel(),
                                               cert_chain_list[i][0].encodedCertificate));
author	David Drysdale <drysdale@google.com>	2021-08-05 07:50:23 +0100
committer	David Drysdale <drysdale@google.com>	2021-08-05 09:03:20 +0100
commit	a038695b218b3610236d3378015bc812cf26cb42 (patch)
tree	e509c39b5f12e78cda657def6152807cff4e8be1 /security/keymint/aidl/vts/functional/AttestKeyTest.cpp
parent	555e9872f568d35bd42ec82d1d42b4cf84ca4e09 (diff)