Add mechanism for adding debug logging.

PiperOrigin-RevId: 769130000

Author: carmenyh

src/main/kotlin/Extension.kt

@@ -100,14 +100,14 @@ data class ProvisioningInfoMap(
 
 @JsonClass(generateAdapter = true)
 data class DeviceIdentity(
-  val brand: String?,
-  val device: String?,
-  val product: String?,
-  val serialNumber: String?,
-  val imeis: Set<String>,
-  val meid: String?,
-  val manufacturer: String?,
-  val model: String?,
+  val brand: String? = null,
+  val device: String? = null,
+  val product: String? = null,
+  val serialNumber: String? = null,
+  val imeis: Set<String> = emptySet(),
+  val meid: String? = null,
+  val manufacturer: String? = null,
+  val model: String? = null,
 ) {
   companion object {
     @JvmStatic
@@ -139,6 +139,7 @@ data class KeyDescription(
   val uniqueId: ByteString,
   val softwareEnforced: AuthorizationList,
   val hardwareEnforced: AuthorizationList,
+  @SuppressWarnings("Immutable") @Transient val infoMessages: List<String>? = listOf(),
 ) {
   fun asExtension(): Extension {
     return Extension(OID, /* critical= */ false, encodeToAsn1())
@@ -182,15 +183,17 @@ data class KeyDescription(
 
     private fun from(seq: ASN1Sequence): KeyDescription {
       require(seq.size() == 8)
+      val infoMessages = mutableListOf<String>()
       return KeyDescription(
         attestationVersion = seq.getObjectAt(0).toInt(),
         attestationSecurityLevel = seq.getObjectAt(1).toSecurityLevel(),
         keyMintVersion = seq.getObjectAt(2).toInt(),
         keyMintSecurityLevel = seq.getObjectAt(3).toSecurityLevel(),
         attestationChallenge = seq.getObjectAt(4).toByteString(),
         uniqueId = seq.getObjectAt(5).toByteString(),
-        softwareEnforced = seq.getObjectAt(6).toAuthorizationList(),
-        hardwareEnforced = seq.getObjectAt(7).toAuthorizationList(),
+        softwareEnforced = seq.getObjectAt(6).toAuthorizationList(infoMessages = infoMessages),
+        hardwareEnforced = seq.getObjectAt(7).toAuthorizationList(infoMessages = infoMessages),
+        infoMessages = infoMessages.toList(),
       )
     }
   }
@@ -396,7 +399,7 @@ data class AuthorizationList(
       .let { DERSequence(it.toTypedArray()) }
 
   internal companion object {
-    fun from(seq: ASN1Sequence, validateTagOrder: Boolean = false): AuthorizationList {
+    fun from(seq: ASN1Sequence, infoMessages: MutableList<String>? = null): AuthorizationList {
       val objects =
         seq.associate {
           require(it is ASN1TaggedObject) {
@@ -416,9 +419,8 @@ data class AuthorizationList(
        * 2. within each class of tags, the elements or alternatives shall appear in ascending order
        *    of their tag numbers.
        */
-      // TODO: b/356172932 - Add test data once an example certificate is found in the wild.
-      if (validateTagOrder && !objects.keys.zipWithNext().all { (lhs, rhs) -> rhs > lhs }) {
-        throw IllegalArgumentException("AuthorizationList tags must appear in ascending order")
+      if (!objects.keys.zipWithNext().all { (lhs, rhs) -> rhs > lhs }) {
+        infoMessages?.add("AuthorizationList tags must appear in ascending order")
       }
 
       return AuthorizationList(
@@ -444,7 +446,15 @@ data class AuthorizationList(
         rollbackResistant = if (objects.containsKey(KeyMintTag.ROLLBACK_RESISTANT)) true else null,
         rootOfTrust = objects[KeyMintTag.ROOT_OF_TRUST]?.toRootOfTrust(),
         osVersion = objects[KeyMintTag.OS_VERSION]?.toInt(),
-        osPatchLevel = objects[KeyMintTag.OS_PATCH_LEVEL]?.toPatchLevel(),
+        osPatchLevel =
+          objects[KeyMintTag.OS_PATCH_LEVEL]?.let {
+            try {
+              it.toPatchLevel()
+            } catch (e: DateTimeParseException) {
+              infoMessages?.add("Invalid OS patch level: ${e.getParsedString()}")
+              null
+            }
+          },
         attestationApplicationId =
           objects[KeyMintTag.ATTESTATION_APPLICATION_ID]?.toAttestationApplicationId(),
         attestationIdBrand = objects[KeyMintTag.ATTESTATION_ID_BRAND]?.toStr(),
@@ -455,8 +465,24 @@ data class AuthorizationList(
         attestationIdMeid = objects[KeyMintTag.ATTESTATION_ID_MEID]?.toStr(),
         attestationIdManufacturer = objects[KeyMintTag.ATTESTATION_ID_MANUFACTURER]?.toStr(),
         attestationIdModel = objects[KeyMintTag.ATTESTATION_ID_MODEL]?.toStr(),
-        vendorPatchLevel = objects[KeyMintTag.VENDOR_PATCH_LEVEL]?.toPatchLevel(),
-        bootPatchLevel = objects[KeyMintTag.BOOT_PATCH_LEVEL]?.toPatchLevel(),
+        vendorPatchLevel =
+          objects[KeyMintTag.VENDOR_PATCH_LEVEL]?.let {
+            try {
+              it.toPatchLevel()
+            } catch (e: DateTimeParseException) {
+              infoMessages?.add("Invalid vendor patch level: ${e.getParsedString()}")
+              null
+            }
+          },
+        bootPatchLevel =
+          objects[KeyMintTag.BOOT_PATCH_LEVEL]?.let {
+            try {
+              it.toPatchLevel()
+            } catch (e: DateTimeParseException) {
+              infoMessages?.add("Invalid boot patch level: ${e.getParsedString()}")
+              null
+            }
+          },
         attestationIdSecondImei = objects[KeyMintTag.ATTESTATION_ID_SECOND_IMEI]?.toStr(),
         moduleHash = objects[KeyMintTag.MODULE_HASH]?.toByteString(),
       )
@@ -475,24 +501,20 @@ data class PatchLevel(val yearMonth: YearMonth, val version: Int? = null) {
   }
 
   companion object {
-    fun from(patchLevel: ASN1Encodable): PatchLevel? {
+    fun from(patchLevel: ASN1Encodable): PatchLevel {
       check(patchLevel is ASN1Integer) { "Must be an ASN1Integer, was ${this::class.simpleName}" }
       return from(patchLevel.value.toString())
     }
 
     @JvmStatic
-    fun from(patchLevel: String): PatchLevel? {
+    fun from(patchLevel: String): PatchLevel {
       if (patchLevel.length != 6 && patchLevel.length != 8) {
-        return null
-      }
-      try {
-        val yearMonth =
-          DateTimeFormatter.ofPattern("yyyyMM").parse(patchLevel.substring(0, 6), YearMonth::from)
-        val version = if (patchLevel.length == 8) patchLevel.substring(6).toInt() else null
-        return PatchLevel(yearMonth, version)
-      } catch (e: DateTimeParseException) {
-        return null
+        throw DateTimeParseException("Invalid patch level length:", patchLevel, 0)
       }
+      val yearMonth =
+        DateTimeFormatter.ofPattern("yyyyMM").parse(patchLevel.substring(0, 6), YearMonth::from)
+      val version = if (patchLevel.length == 8) patchLevel.substring(6).toInt() else null
+      return PatchLevel(yearMonth, version)
     }
   }
 }
@@ -623,12 +645,11 @@ private fun ASN1Encodable.toAttestationApplicationId(): AttestationApplicationId
   return AttestationApplicationId.from(ASN1Sequence.getInstance(this.octets))
 }
 
-// TODO: b/356172932 - `validateTagOrder` should default to true after making it user configurable.
 private fun ASN1Encodable.toAuthorizationList(
-  validateTagOrder: Boolean = false
+  infoMessages: MutableList<String>? = null
 ): AuthorizationList {
   check(this is ASN1Sequence) { "Object must be an ASN1Sequence, was ${this::class.simpleName}" }
-  return AuthorizationList.from(this, validateTagOrder)
+  return AuthorizationList.from(this, infoMessages)
 }
 
 private fun ASN1Encodable.toBoolean(): Boolean {

src/main/kotlin/Verifier.kt

@@ -45,23 +45,36 @@ sealed interface VerificationResult {
 
   data object ChallengeMismatch : VerificationResult
 
-  data object PathValidationFailure : VerificationResult
+  data class PathValidationFailure(val cause: Exception) : VerificationResult
 
-  data object ChainParsingFailure : VerificationResult
+  data class ChainParsingFailure(val cause: Exception) : VerificationResult
 
   data class ExtensionParsingFailure(val cause: Exception) : VerificationResult
 
   data class ExtensionConstraintViolation(val cause: String) : VerificationResult
 }
 
+/** Interface for logging info level key attestation events and information. */
+interface LogHook {
+  fun logVerificationEvent(verificationEvent: VerificationEvent)
+}
+
+data class VerificationEvent(
+  val inputChain: List<X509Certificate>,
+  val result: VerificationResult,
+  val keyDescription: KeyDescription? = null,
+  val provisioningInfoMap: ProvisioningInfoMap? = null,
+  val certSerialNumbers: List<String>? = null,
+  val infoMessages: List<String>? = null,
+)
+
 /**
  * Verifier for Android Key Attestation certificate chain.
  *
  * https://developer.android.com/privacy-and-security/security-key-attestation
  *
  * @param anchor a [TrustAnchor] to use for certificate path verification.
  */
-// TODO: b/356234568 - Verify intermediate certificate revocation status.
 @ThreadSafe
 open class Verifier(
   private val trustAnchorsSource: () -> Set<TrustAnchor>,
@@ -83,14 +96,19 @@ open class Verifier(
   fun verify(
     chain: List<X509Certificate>,
     challengeChecker: ChallengeChecker? = null,
+    log: LogHook? = null,
   ): VerificationResult {
     val certPath =
       try {
         KeyAttestationCertPath(chain)
       } catch (e: Exception) {
-        return VerificationResult.ChainParsingFailure
+        val result = VerificationResult.ChainParsingFailure(e)
+        log?.logVerificationEvent(VerificationEvent(inputChain = chain, result = result))
+        return result
       }
-    return verify(certPath, challengeChecker)
+    val verificationEvent = internalVerify(certPath, challengeChecker)
+    log?.logVerificationEvent(verificationEvent)
+    return verificationEvent.result
   }
 
   /**
@@ -99,77 +117,140 @@ open class Verifier(
    * @param chain The attestation certificate chain to verify.
    * @param challengeChecker The challenge checker to use for additional validation of the challenge
    *   in the attestation chain.
-   * @return [VerificationResult]
+   * @return [VerificationEvent]
    *
    * TODO: b/366058500 - Make the challenge required after Apparat's changes are rollback safe.
    */
-  @JvmOverloads
   fun verify(
     certPath: KeyAttestationCertPath,
     challengeChecker: ChallengeChecker? = null,
+    log: LogHook? = null,
   ): VerificationResult {
+    val verificationEvent = internalVerify(certPath, challengeChecker)
+    log?.logVerificationEvent(verificationEvent)
+    return verificationEvent.result
+  }
+
+  internal fun internalVerify(
+    certPath: KeyAttestationCertPath,
+    challengeChecker: ChallengeChecker? = null,
+  ): VerificationEvent {
+    val serialNumbers =
+      certPath.certificatesWithAnchor.subList(1, certPath.certificatesWithAnchor.size).map {
+        it.serialNumber.toString(16)
+      }
     val certPathValidator = CertPathValidator.getInstance("KeyAttestation")
     val certPathParameters =
       PKIXParameters(trustAnchorsSource()).apply {
         date = Date.from(instantSource.instant())
         addCertPathChecker(RevocationChecker(revokedSerialsSource()))
       }
+
+    val deviceInformation =
+      if (certPath.provisioningMethod() == ProvisioningMethod.REMOTELY_PROVISIONED) {
+        certPath.attestationCert().provisioningInfo()
+      } else {
+        null
+      }
     val pathValidationResult =
       try {
         certPathValidator.validate(certPath, certPathParameters) as PKIXCertPathValidatorResult
       } catch (e: CertPathValidatorException) {
-        return VerificationResult.PathValidationFailure
+        return VerificationEvent(
+          inputChain = certPath.getCertificates(),
+          result = VerificationResult.PathValidationFailure(e),
+          certSerialNumbers = serialNumbers,
+          provisioningInfoMap = deviceInformation,
+        )
       }
 
     val keyDescription =
       try {
         checkNotNull(certPath.leafCert().keyDescription()) { "Key attestation extension not found" }
       } catch (e: Exception) {
-        return VerificationResult.ExtensionParsingFailure(e)
+        return VerificationEvent(
+          inputChain = certPath.getCertificates(),
+          result = VerificationResult.ExtensionParsingFailure(e),
+          certSerialNumbers = serialNumbers,
+          provisioningInfoMap = deviceInformation,
+        )
       }
 
+    val infoMessages = keyDescription.infoMessages
+
     if (
       challengeChecker != null &&
         !challengeChecker.checkChallenge(keyDescription.attestationChallenge)
     ) {
-      return VerificationResult.ChallengeMismatch
+      return VerificationEvent(
+        inputChain = certPath.getCertificates(),
+        result = VerificationResult.ChallengeMismatch,
+        certSerialNumbers = serialNumbers,
+        keyDescription = keyDescription,
+        infoMessages = infoMessages,
+        provisioningInfoMap = deviceInformation,
+      )
     }
 
     if (
       keyDescription.hardwareEnforced.origin == null ||
         keyDescription.hardwareEnforced.origin != Origin.GENERATED
     ) {
-      return VerificationResult.ExtensionConstraintViolation(
-        "origin != GENERATED: ${keyDescription.hardwareEnforced.origin}"
+      return VerificationEvent(
+        result =
+          VerificationResult.ExtensionConstraintViolation(
+            "hardwareEnforced.origin is not GENERATED: ${keyDescription.hardwareEnforced.origin}"
+          ),
+        inputChain = certPath.getCertificates(),
+        certSerialNumbers = serialNumbers,
+        keyDescription = keyDescription,
+        infoMessages = infoMessages,
+        provisioningInfoMap = deviceInformation,
       )
     }
 
     val securityLevel =
       if (keyDescription.attestationSecurityLevel == keyDescription.keyMintSecurityLevel) {
         keyDescription.attestationSecurityLevel
       } else {
-        return VerificationResult.ExtensionConstraintViolation(
-          "attestationSecurityLevel != keyMintSecurityLevel: ${keyDescription.attestationSecurityLevel} != ${keyDescription.keyMintSecurityLevel}"
+        return VerificationEvent(
+          result =
+            VerificationResult.ExtensionConstraintViolation(
+              "attestationSecurityLevel != keymintSecurityLevel: ${keyDescription.attestationSecurityLevel} != ${keyDescription.keyMintSecurityLevel}"
+            ),
+          inputChain = certPath.getCertificates(),
+          certSerialNumbers = serialNumbers,
+          keyDescription = keyDescription,
+          infoMessages = infoMessages,
+          provisioningInfoMap = deviceInformation,
         )
       }
     val rootOfTrust =
       keyDescription.hardwareEnforced.rootOfTrust
-        ?: return VerificationResult.ExtensionConstraintViolation(
-          "hardwareEnforced.rootOfTrust is null"
+        ?: return VerificationEvent(
+          result =
+            VerificationResult.ExtensionConstraintViolation("hardwareEnforced.rootOfTrust is null"),
+          keyDescription = keyDescription,
+          inputChain = certPath.getCertificates(),
+          certSerialNumbers = serialNumbers,
+          infoMessages = infoMessages,
+          provisioningInfoMap = deviceInformation,
         )
-    val deviceInformation =
-      if (certPath.provisioningMethod() == ProvisioningMethod.REMOTELY_PROVISIONED) {
-        certPath.attestationCert().provisioningInfo()
-      } else {
-        null
-      }
-    return VerificationResult.Success(
-      pathValidationResult.publicKey,
-      keyDescription.attestationChallenge,
-      securityLevel,
-      rootOfTrust.verifiedBootState,
-      deviceInformation,
-      DeviceIdentity.parseFrom(keyDescription),
+    return VerificationEvent(
+      result =
+        VerificationResult.Success(
+          pathValidationResult.publicKey,
+          keyDescription.attestationChallenge,
+          securityLevel,
+          rootOfTrust.verifiedBootState,
+          deviceInformation,
+          DeviceIdentity.parseFrom(keyDescription),
+        ),
+      inputChain = certPath.getCertificates(),
+      certSerialNumbers = serialNumbers,
+      keyDescription = keyDescription,
+      infoMessages = infoMessages,
+      provisioningInfoMap = deviceInformation,
     )
   }
 }