1 /*
2  * Copyright (c) 2022 Huawei Device Co., Ltd.
3  * Licensed under the Apache License, Version 2.0 (the "License");
4  * you may not use this file except in compliance with the License.
5  * You may obtain a copy of the License at
6  *
7  *     http://www.apache.org/licenses/LICENSE-2.0
8  *
9  * Unless required by applicable law or agreed to in writing, software
10  * distributed under the License is distributed on an "AS IS" BASIS,
11  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12  * See the License for the specific language governing permissions and
13  * limitations under the License.
14  */
15 
16 #include "huks_napi_attest_key_item.h"
17 
18 #include "securec.h"
19 
20 #include "hks_api.h"
21 #include "hks_log.h"
22 #include "hks_template.h"
23 #include "hks_mem.h"
24 #include "hks_param.h"
25 #include "hks_type.h"
26 #include "huks_napi_common_item.h"
27 
28 namespace HuksNapiItem {
29 constexpr int HUKS_NAPI_ATTEST_KEY_MIN_ARGS = 2;
30 constexpr int HUKS_NAPI_ATTEST_KEY_MAX_ARGS = 3;
31 
32 constexpr int INDEX_0 = 0;
33 constexpr int INDEX_1 = 1;
34 constexpr int INDEX_2 = 2;
35 constexpr int INDEX_3 = 3;
36 
CreateAttestKeyAsyncContext(bool isAnon)37 AttestKeyAsyncContext CreateAttestKeyAsyncContext(bool isAnon)
38 {
39     AttestKeyAsyncContext context = static_cast<AttestKeyAsyncContext>(HksMalloc(sizeof(AttestKeyAsyncContextT)));
40     if (context != nullptr) {
41         (void)memset_s(context, sizeof(AttestKeyAsyncContextT), 0, sizeof(AttestKeyAsyncContextT));
42         context->isAnon = isAnon;
43     }
44     return context;
45 }
46 
DeleteAttestKeyAsyncContext(napi_env env,AttestKeyAsyncContext & context)47 void DeleteAttestKeyAsyncContext(napi_env env, AttestKeyAsyncContext &context)
48 {
49     if (context == nullptr) {
50         return;
51     }
52     DeleteCommonAsyncContext(env, context->asyncWork, context->callback, context->keyAlias, context->paramSet);
53     FreeHksCertChain(context->certChain, context->certChainCapacity);
54     HKS_FREE(context);
55     context = nullptr;
56 }
57 
AttestKeyParseParams(napi_env env,napi_callback_info info,AttestKeyAsyncContext context)58 static napi_value AttestKeyParseParams(napi_env env, napi_callback_info info, AttestKeyAsyncContext context)
59 {
60     size_t argc = HUKS_NAPI_ATTEST_KEY_MAX_ARGS;
61     napi_value argv[HUKS_NAPI_ATTEST_KEY_MAX_ARGS] = { 0 };
62     NAPI_CALL(env, napi_get_cb_info(env, info, &argc, argv, nullptr, nullptr));
63 
64     if (argc < HUKS_NAPI_ATTEST_KEY_MIN_ARGS) {
65         HksNapiThrow(env, HUKS_ERR_CODE_ILLEGAL_ARGUMENT, "no enough params input");
66         HKS_LOG_E("no enough params");
67         return nullptr;
68     }
69 
70     size_t index = 0;
71     napi_value result = ParseKeyAlias(env, argv[index], context->keyAlias);
72     if (result == nullptr) {
73         HksNapiThrow(env, HUKS_ERR_CODE_ILLEGAL_ARGUMENT, "could not get key alias");
74         HKS_LOG_E("could not get alias");
75         return nullptr;
76     }
77 
78     index++;
79     napi_value property = GetPropertyFromOptions(env, argv[index], HKS_OPTIONS_PROPERTY_PROPERTIES);
80     if (property == nullptr) {
81         HKS_LOG_E("attestKey get property failed");
82         return nullptr;
83     }
84     result = ParseHksParamSetAndAddParam(env, property, context->paramSet,
85         {{ .tag = HKS_TAG_ATTESTATION_BASE64, .boolParam = true }});
86     if (result == nullptr) {
87         HKS_LOG_E("could not get paramset");
88         return nullptr;
89     }
90 
91     index++;
92     if (index < argc) {
93         context->callback = GetCallback(env, argv[index]);
94     }
95 
96     return GetInt32(env, 0);
97 }
98 
InitCertChain(struct HksCertChain * certChain,uint32_t * certChainCapacity)99 static int32_t InitCertChain(struct HksCertChain *certChain, uint32_t *certChainCapacity)
100 {
101     certChain->certsCount = HKS_CERT_COUNT;
102     certChain->certs = static_cast<struct HksBlob *>(HksMalloc(certChain->certsCount * sizeof(struct HksBlob)));
103     HKS_IF_NULL_LOGE_RETURN(certChain->certs, HKS_ERROR_MALLOC_FAIL, "malloc certChain->certs error!");
104     do {
105         *certChainCapacity = certChain->certsCount;
106         certChain->certs[INDEX_0].size = HKS_CERT_APP_SIZE;
107         certChain->certs[INDEX_0].data = static_cast<uint8_t *>(HksMalloc(certChain->certs[INDEX_0].size));
108         HKS_IF_NULL_LOGE_BREAK(certChain->certs[INDEX_0].data, "malloc certChain->certs[INDEX_0].data error!");
109 
110         certChain->certs[INDEX_1].size = HKS_CERT_DEVICE_SIZE;
111         certChain->certs[INDEX_1].data = static_cast<uint8_t *>(HksMalloc(certChain->certs[INDEX_1].size));
112         HKS_IF_NULL_LOGE_BREAK(certChain->certs[INDEX_1].data, "malloc certChain->certs[INDEX_1].data error!");
113 
114         certChain->certs[INDEX_2].size = HKS_CERT_CA_SIZE;
115         certChain->certs[INDEX_2].data = static_cast<uint8_t *>(HksMalloc(certChain->certs[INDEX_2].size));
116         HKS_IF_NULL_LOGE_BREAK(certChain->certs[INDEX_2].data, "malloc certChain->certs[INDEX_2].data error!");
117 
118         certChain->certs[INDEX_3].size = HKS_CERT_ROOT_SIZE;
119         certChain->certs[INDEX_3].data = static_cast<uint8_t *>(HksMalloc(certChain->certs[INDEX_3].size));
120         HKS_IF_NULL_LOGE_BREAK(certChain->certs[INDEX_3].data, "malloc certChain->certs[INDEX_3].data error!");
121 
122         return HKS_SUCCESS;
123     } while (0);
124 
125     HKS_FREE(certChain->certs[INDEX_2].data);
126     HKS_FREE(certChain->certs[INDEX_1].data);
127     HKS_FREE(certChain->certs[INDEX_0].data);
128     HKS_FREE(certChain->certs);
129 
130     return HKS_ERROR_MALLOC_FAIL;
131 }
132 
AttestKeyAsyncWork(napi_env env,AttestKeyAsyncContext & context)133 napi_value AttestKeyAsyncWork(napi_env env, AttestKeyAsyncContext &context)
134 {
135     napi_value promise = nullptr;
136     if (context->callback == nullptr) {
137         NAPI_CALL(env, napi_create_promise(env, &context->deferred, &promise));
138     }
139 
140     napi_value resourceName = nullptr;
141     napi_create_string_latin1(env, "attestKeyAsyncWork", NAPI_AUTO_LENGTH, &resourceName);
142 
143     napi_create_async_work(
144         env,
145         nullptr,
146         resourceName,
147         [](napi_env env, void *data) {
148             AttestKeyAsyncContext napiContext = static_cast<AttestKeyAsyncContext>(data);
149 
150             napiContext->certChain = static_cast<struct HksCertChain *>(HksMalloc(sizeof(struct HksCertChain)));
151             if (napiContext->certChain != nullptr) {
152                 napiContext->result = InitCertChain(napiContext->certChain, &napiContext->certChainCapacity);
153                 if (napiContext->result != HKS_SUCCESS) {
154                     return;
155                 }
156             }
157 
158             if (napiContext->isAnon) {
159                 napiContext->result = HksAnonAttestKey(
160                     napiContext->keyAlias, napiContext->paramSet, napiContext->certChain);
161             } else {
162                 napiContext->result = HksAttestKey(
163                     napiContext->keyAlias, napiContext->paramSet, napiContext->certChain);
164             }
165         },
166         [](napi_env env, napi_status status, void *data) {
167             AttestKeyAsyncContext napiContext = static_cast<AttestKeyAsyncContext>(data);
168             HksSuccessReturnResult resultData;
169             SuccessReturnResultInit(resultData);
170             resultData.certChain = napiContext->certChain;
171             HksReturnNapiResult(env, napiContext->callback, napiContext->deferred, napiContext->result, resultData);
172             DeleteAttestKeyAsyncContext(env, napiContext);
173         },
174         static_cast<void *>(context),
175         &context->asyncWork);
176 
177     napi_status status = napi_queue_async_work(env, context->asyncWork);
178     if (status != napi_ok) {
179         DeleteAttestKeyAsyncContext(env, context);
180         HKS_LOG_E("could not queue async work");
181         return nullptr;
182     }
183 
184     if (context->callback == nullptr) {
185         return promise;
186     } else {
187         return GetNull(env);
188     }
189 }
190 
HuksNapiAttestKeyItem(napi_env env,napi_callback_info info,bool isAnon)191 napi_value HuksNapiAttestKeyItem(napi_env env, napi_callback_info info, bool isAnon)
192 {
193     AttestKeyAsyncContext context = CreateAttestKeyAsyncContext(isAnon);
194     if (context == nullptr) {
195         HKS_LOG_E("could not create context");
196         return nullptr;
197     }
198 
199     napi_value result = AttestKeyParseParams(env, info, context);
200     if (result == nullptr) {
201         HKS_LOG_E("could not parse params");
202         DeleteAttestKeyAsyncContext(env, context);
203         return nullptr;
204     }
205     result = AttestKeyAsyncWork(env, context);
206     if (result == nullptr) {
207         HKS_LOG_E("could not start async work");
208         DeleteAttestKeyAsyncContext(env, context);
209         return nullptr;
210     }
211     return result;
212 }
213 
HuksNapiAttestKeyItem(napi_env env,napi_callback_info info)214 napi_value HuksNapiAttestKeyItem(napi_env env, napi_callback_info info)
215 {
216     return HuksNapiAttestKeyItem(env, info, false);
217 }
218 
HuksNapiAnonAttestKeyItem(napi_env env,napi_callback_info info)219 napi_value HuksNapiAnonAttestKeyItem(napi_env env, napi_callback_info info)
220 {
221     return HuksNapiAttestKeyItem(env, info, true);
222 }
223 }  // namespace HuksNapiItem