Skip to content

Commit

Permalink
x509util: parse Android application ID
Browse files Browse the repository at this point in the history
  • Loading branch information
@daviddrysdale
daviddrysdale committed Aug 15, 2023
1 parent e8e5b10 commit df074c0
Showing 1 changed file with 44 additions and 1 deletion.
45 changes: 44 additions & 1 deletion x509util/android.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -270,7 +270,7 @@ func showKeyAuthorizations(buf *bytes.Buffer, auths AuthorizationList, prefix st
buf.WriteString(fmt.Sprintf("%sOS Patchlevel: %d\n", prefix, auths.OsPatchlevel))
}

showOptionalHex(buf, prefix, "Attestation Application Id", auths.AttestationApplicationId)
showOptionalAttestationAppId(buf, prefix, auths.AttestationApplicationId)
showOptionalHexUtf8(buf, prefix, "Attestation Id Brand", auths.AttestationIdBrand)
showOptionalHexUtf8(buf, prefix, "Attestation Id Device", auths.AttestationIdDevice)
showOptionalHexUtf8(buf, prefix, "Attestation Id Product", auths.AttestationIdProduct)
Expand Down Expand Up @@ -469,3 +469,46 @@ func showHexUtf8(buf *bytes.Buffer, prefix string, name string, val []byte) {

buf.WriteString("\n")
}

// AndroidAttestationAppId describes an Android application identifier.
type AndroidAttestationAppId struct {
PackageInfoRecords []AndroidPackageInfoRecord `asn1:"set"`
SignatureDigests [][]byte `asn1:"set"`
}

// AndroidPackageInfoRecord hold a package info record from Android.
type AndroidPackageInfoRecord struct {
PackageName []byte
Version int
}

func AndroidAppInfoFromData(val []byte) (*AndroidAttestationAppId, error) {
var appId AndroidAttestationAppId
rest, err := asn1.Unmarshal(val, &appId)
if err != nil {
return nil, fmt.Errorf("failed to unmarshal attestation app ID: %v", err)
} else if len(rest) > 0 {
return nil, fmt.Errorf("trailing data (%d bytes) after attestation app ID", len(rest))
}
return &appId, nil
}

func showOptionalAttestationAppId(buf *bytes.Buffer, prefix string, val []byte) {
if len(val) == 0 {
return
}
buf.WriteString(fmt.Sprintf("%sAttestation Application Id:\n", prefix))
// Attempt to parse as app ID
appId, err := AndroidAppInfoFromData(val)
if err == nil {
for _, pkg := range appId.PackageInfoRecords {
buf.WriteString(fmt.Sprintf("%s Name:%q Version:%d\n", prefix, pkg.PackageName, pkg.Version))
}
for _, sig := range appId.SignatureDigests {
buf.WriteString(fmt.Sprintf("%s Signature: %x", prefix, sig))
}
} else {
appendHexData(buf, val, 64, prefix+" ")
}
buf.WriteString("\n")
}

0 comments on commit df074c0

Please sign in to comment.