Merge "Add AppOps Checks for MANAGE_IPSEC_TUNNELS" into pi-dev
am: 80a2bba9a6
Change-Id: Icd1b2cfc699ab44e4ca536b98298d5b23db7372e
This commit is contained in:
Nathan Harold
@@ -279,12 +279,12 @@ final class SystemServiceRegistry {
|
||||
}});
|
||||
|
||||
registerService(Context.IPSEC_SERVICE, IpSecManager.class,
|
||||
new StaticServiceFetcher<IpSecManager>() {
|
||||
new CachedServiceFetcher<IpSecManager>() {
|
||||
@Override
|
||||
public IpSecManager createService() {
|
||||
public IpSecManager createService(ContextImpl ctx) throws ServiceNotFoundException {
|
||||
IBinder b = ServiceManager.getService(Context.IPSEC_SERVICE);
|
||||
IIpSecService service = IIpSecService.Stub.asInterface(b);
|
||||
return new IpSecManager(service);
|
||||
return new IpSecManager(ctx, service);
|
||||
}});
|
||||
|
||||
registerService(Context.COUNTRY_DETECTOR, CountryDetector.class,
|
||||
|
||||
@@ -45,25 +45,31 @@ interface IIpSecService
|
||||
in String localAddr,
|
||||
in String remoteAddr,
|
||||
in Network underlyingNetwork,
|
||||
in IBinder binder);
|
||||
in IBinder binder,
|
||||
in String callingPackage);
|
||||
|
||||
void addAddressToTunnelInterface(
|
||||
int tunnelResourceId,
|
||||
in LinkAddress localAddr);
|
||||
in LinkAddress localAddr,
|
||||
in String callingPackage);
|
||||
|
||||
void removeAddressFromTunnelInterface(
|
||||
int tunnelResourceId,
|
||||
in LinkAddress localAddr);
|
||||
in LinkAddress localAddr,
|
||||
in String callingPackage);
|
||||
|
||||
void deleteTunnelInterface(int resourceId);
|
||||
void deleteTunnelInterface(int resourceId, in String callingPackage);
|
||||
|
||||
IpSecTransformResponse createTransform(in IpSecConfig c, in IBinder binder);
|
||||
IpSecTransformResponse createTransform(
|
||||
in IpSecConfig c, in IBinder binder, in String callingPackage);
|
||||
|
||||
void deleteTransform(int transformId);
|
||||
|
||||
void applyTransportModeTransform(in ParcelFileDescriptor socket, int direction, int transformId);
|
||||
void applyTransportModeTransform(
|
||||
in ParcelFileDescriptor socket, int direction, int transformId);
|
||||
|
||||
void applyTunnelModeTransform(int tunnelResourceId, int direction, int transformResourceId);
|
||||
void applyTunnelModeTransform(
|
||||
int tunnelResourceId, int direction, int transformResourceId, in String callingPackage);
|
||||
|
||||
void removeTransportModeTransforms(in ParcelFileDescriptor socket);
|
||||
}
|
||||
|
||||
@@ -140,6 +140,7 @@ public final class IpSecManager {
|
||||
}
|
||||
}
|
||||
|
||||
private final Context mContext;
|
||||
private final IIpSecService mService;
|
||||
|
||||
/**
|
||||
@@ -661,6 +662,7 @@ public final class IpSecManager {
|
||||
*/
|
||||
@SystemApi
|
||||
public static final class IpSecTunnelInterface implements AutoCloseable {
|
||||
private final String mOpPackageName;
|
||||
private final IIpSecService mService;
|
||||
private final InetAddress mRemoteAddress;
|
||||
private final InetAddress mLocalAddress;
|
||||
@@ -688,7 +690,8 @@ public final class IpSecManager {
|
||||
@RequiresPermission(android.Manifest.permission.MANAGE_IPSEC_TUNNELS)
|
||||
public void addAddress(@NonNull LinkAddress address) throws IOException {
|
||||
try {
|
||||
mService.addAddressToTunnelInterface(mResourceId, address);
|
||||
mService.addAddressToTunnelInterface(
|
||||
mResourceId, address, mOpPackageName);
|
||||
} catch (RemoteException e) {
|
||||
throw e.rethrowFromSystemServer();
|
||||
}
|
||||
@@ -706,16 +709,18 @@ public final class IpSecManager {
|
||||
@RequiresPermission(android.Manifest.permission.MANAGE_IPSEC_TUNNELS)
|
||||
public void removeAddress(@NonNull LinkAddress address) throws IOException {
|
||||
try {
|
||||
mService.removeAddressFromTunnelInterface(mResourceId, address);
|
||||
mService.removeAddressFromTunnelInterface(
|
||||
mResourceId, address, mOpPackageName);
|
||||
} catch (RemoteException e) {
|
||||
throw e.rethrowFromSystemServer();
|
||||
}
|
||||
}
|
||||
|
||||
private IpSecTunnelInterface(@NonNull IIpSecService service,
|
||||
private IpSecTunnelInterface(@NonNull Context ctx, @NonNull IIpSecService service,
|
||||
@NonNull InetAddress localAddress, @NonNull InetAddress remoteAddress,
|
||||
@NonNull Network underlyingNetwork)
|
||||
throws ResourceUnavailableException, IOException {
|
||||
mOpPackageName = ctx.getOpPackageName();
|
||||
mService = service;
|
||||
mLocalAddress = localAddress;
|
||||
mRemoteAddress = remoteAddress;
|
||||
@@ -727,7 +732,8 @@ public final class IpSecManager {
|
||||
localAddress.getHostAddress(),
|
||||
remoteAddress.getHostAddress(),
|
||||
underlyingNetwork,
|
||||
new Binder());
|
||||
new Binder(),
|
||||
mOpPackageName);
|
||||
switch (result.status) {
|
||||
case Status.OK:
|
||||
break;
|
||||
@@ -756,7 +762,7 @@ public final class IpSecManager {
|
||||
@Override
|
||||
public void close() {
|
||||
try {
|
||||
mService.deleteTunnelInterface(mResourceId);
|
||||
mService.deleteTunnelInterface(mResourceId, mOpPackageName);
|
||||
mResourceId = INVALID_RESOURCE_ID;
|
||||
} catch (RemoteException e) {
|
||||
throw e.rethrowFromSystemServer();
|
||||
@@ -801,7 +807,8 @@ public final class IpSecManager {
|
||||
public IpSecTunnelInterface createIpSecTunnelInterface(@NonNull InetAddress localAddress,
|
||||
@NonNull InetAddress remoteAddress, @NonNull Network underlyingNetwork)
|
||||
throws ResourceUnavailableException, IOException {
|
||||
return new IpSecTunnelInterface(mService, localAddress, remoteAddress, underlyingNetwork);
|
||||
return new IpSecTunnelInterface(
|
||||
mContext, mService, localAddress, remoteAddress, underlyingNetwork);
|
||||
}
|
||||
|
||||
/**
|
||||
@@ -827,7 +834,8 @@ public final class IpSecManager {
|
||||
@PolicyDirection int direction, @NonNull IpSecTransform transform) throws IOException {
|
||||
try {
|
||||
mService.applyTunnelModeTransform(
|
||||
tunnel.getResourceId(), direction, transform.getResourceId());
|
||||
tunnel.getResourceId(), direction,
|
||||
transform.getResourceId(), mContext.getOpPackageName());
|
||||
} catch (RemoteException e) {
|
||||
throw e.rethrowFromSystemServer();
|
||||
}
|
||||
@@ -839,7 +847,8 @@ public final class IpSecManager {
|
||||
* @param context the application context for this manager
|
||||
* @hide
|
||||
*/
|
||||
public IpSecManager(IIpSecService service) {
|
||||
public IpSecManager(Context ctx, IIpSecService service) {
|
||||
mContext = ctx;
|
||||
mService = checkNotNull(service, "missing service");
|
||||
}
|
||||
}
|
||||
|
||||
@@ -130,7 +130,8 @@ public final class IpSecTransform implements AutoCloseable {
|
||||
synchronized (this) {
|
||||
try {
|
||||
IIpSecService svc = getIpSecService();
|
||||
IpSecTransformResponse result = svc.createTransform(mConfig, new Binder());
|
||||
IpSecTransformResponse result = svc.createTransform(
|
||||
mConfig, new Binder(), mContext.getOpPackageName());
|
||||
int status = result.status;
|
||||
checkResultStatus(status);
|
||||
mResourceId = result.resourceId;
|
||||
|
||||
@@ -24,6 +24,8 @@ import static android.system.OsConstants.IPPROTO_UDP;
|
||||
import static android.system.OsConstants.SOCK_DGRAM;
|
||||
import static com.android.internal.util.Preconditions.checkNotNull;
|
||||
|
||||
import android.annotation.NonNull;
|
||||
import android.app.AppOpsManager;
|
||||
import android.content.Context;
|
||||
import android.net.ConnectivityManager;
|
||||
import android.net.IIpSecService;
|
||||
@@ -42,6 +44,7 @@ import android.net.NetworkUtils;
|
||||
import android.net.TrafficStats;
|
||||
import android.net.util.NetdService;
|
||||
import android.os.Binder;
|
||||
import android.os.DeadSystemException;
|
||||
import android.os.IBinder;
|
||||
import android.os.ParcelFileDescriptor;
|
||||
import android.os.RemoteException;
|
||||
@@ -974,6 +977,13 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
return service;
|
||||
}
|
||||
|
||||
@NonNull
|
||||
private AppOpsManager getAppOpsManager() {
|
||||
AppOpsManager appOps = (AppOpsManager) mContext.getSystemService(Context.APP_OPS_SERVICE);
|
||||
if(appOps == null) throw new RuntimeException("System Server couldn't get AppOps");
|
||||
return appOps;
|
||||
}
|
||||
|
||||
/** @hide */
|
||||
@VisibleForTesting
|
||||
public IpSecService(Context context, IpSecServiceConfiguration config) {
|
||||
@@ -1240,7 +1250,9 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
*/
|
||||
@Override
|
||||
public synchronized IpSecTunnelInterfaceResponse createTunnelInterface(
|
||||
String localAddr, String remoteAddr, Network underlyingNetwork, IBinder binder) {
|
||||
String localAddr, String remoteAddr, Network underlyingNetwork, IBinder binder,
|
||||
String callingPackage) {
|
||||
enforceTunnelPermissions(callingPackage);
|
||||
checkNotNull(binder, "Null Binder passed to createTunnelInterface");
|
||||
checkNotNull(underlyingNetwork, "No underlying network was specified");
|
||||
checkInetAddress(localAddr);
|
||||
@@ -1320,8 +1332,8 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
*/
|
||||
@Override
|
||||
public synchronized void addAddressToTunnelInterface(
|
||||
int tunnelResourceId, LinkAddress localAddr) {
|
||||
enforceNetworkStackPermission();
|
||||
int tunnelResourceId, LinkAddress localAddr, String callingPackage) {
|
||||
enforceTunnelPermissions(callingPackage);
|
||||
UserRecord userRecord = mUserResourceTracker.getUserRecord(Binder.getCallingUid());
|
||||
|
||||
// Get tunnelInterface record; if no such interface is found, will throw
|
||||
@@ -1352,10 +1364,10 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
*/
|
||||
@Override
|
||||
public synchronized void removeAddressFromTunnelInterface(
|
||||
int tunnelResourceId, LinkAddress localAddr) {
|
||||
enforceNetworkStackPermission();
|
||||
UserRecord userRecord = mUserResourceTracker.getUserRecord(Binder.getCallingUid());
|
||||
int tunnelResourceId, LinkAddress localAddr, String callingPackage) {
|
||||
enforceTunnelPermissions(callingPackage);
|
||||
|
||||
UserRecord userRecord = mUserResourceTracker.getUserRecord(Binder.getCallingUid());
|
||||
// Get tunnelInterface record; if no such interface is found, will throw
|
||||
// IllegalArgumentException
|
||||
TunnelInterfaceRecord tunnelInterfaceInfo =
|
||||
@@ -1383,7 +1395,9 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
* server
|
||||
*/
|
||||
@Override
|
||||
public synchronized void deleteTunnelInterface(int resourceId) throws RemoteException {
|
||||
public synchronized void deleteTunnelInterface(
|
||||
int resourceId, String callingPackage) throws RemoteException {
|
||||
enforceTunnelPermissions(callingPackage);
|
||||
UserRecord userRecord = mUserResourceTracker.getUserRecord(Binder.getCallingUid());
|
||||
releaseResource(userRecord.mTunnelInterfaceRecords, resourceId);
|
||||
}
|
||||
@@ -1469,7 +1483,6 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
case IpSecTransform.MODE_TRANSPORT:
|
||||
break;
|
||||
case IpSecTransform.MODE_TUNNEL:
|
||||
enforceNetworkStackPermission();
|
||||
break;
|
||||
default:
|
||||
throw new IllegalArgumentException(
|
||||
@@ -1477,9 +1490,20 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
}
|
||||
}
|
||||
|
||||
private void enforceNetworkStackPermission() {
|
||||
mContext.enforceCallingOrSelfPermission(android.Manifest.permission.NETWORK_STACK,
|
||||
"IpSecService");
|
||||
private void enforceTunnelPermissions(String callingPackage) {
|
||||
checkNotNull(callingPackage, "Null calling package cannot create IpSec tunnels");
|
||||
switch (getAppOpsManager().noteOp(
|
||||
AppOpsManager.OP_MANAGE_IPSEC_TUNNELS,
|
||||
Binder.getCallingUid(), callingPackage)) {
|
||||
case AppOpsManager.MODE_DEFAULT:
|
||||
mContext.enforceCallingOrSelfPermission(
|
||||
android.Manifest.permission.MANAGE_IPSEC_TUNNELS, "IpSecService");
|
||||
break;
|
||||
case AppOpsManager.MODE_ALLOWED:
|
||||
return;
|
||||
default:
|
||||
throw new SecurityException("Request to ignore AppOps for non-legacy API");
|
||||
}
|
||||
}
|
||||
|
||||
private void createOrUpdateTransform(
|
||||
@@ -1535,8 +1559,12 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
* result in all of those sockets becoming unable to send or receive data.
|
||||
*/
|
||||
@Override
|
||||
public synchronized IpSecTransformResponse createTransform(IpSecConfig c, IBinder binder)
|
||||
throws RemoteException {
|
||||
public synchronized IpSecTransformResponse createTransform(
|
||||
IpSecConfig c, IBinder binder, String callingPackage) throws RemoteException {
|
||||
checkNotNull(c);
|
||||
if (c.getMode() == IpSecTransform.MODE_TUNNEL) {
|
||||
enforceTunnelPermissions(callingPackage);
|
||||
}
|
||||
checkIpSecConfig(c);
|
||||
checkNotNull(binder, "Null Binder passed to createTransform");
|
||||
final int resourceId = mNextResourceId++;
|
||||
@@ -1657,8 +1685,9 @@ public class IpSecService extends IIpSecService.Stub {
|
||||
*/
|
||||
@Override
|
||||
public synchronized void applyTunnelModeTransform(
|
||||
int tunnelResourceId, int direction, int transformResourceId) throws RemoteException {
|
||||
enforceNetworkStackPermission();
|
||||
int tunnelResourceId, int direction,
|
||||
int transformResourceId, String callingPackage) throws RemoteException {
|
||||
enforceTunnelPermissions(callingPackage);
|
||||
checkDirection(direction);
|
||||
|
||||
UserRecord userRecord = mUserResourceTracker.getUserRecord(Binder.getCallingUid());
|
||||
|
||||
@@ -30,6 +30,7 @@ import static org.mockito.Mockito.mock;
|
||||
import static org.mockito.Mockito.verify;
|
||||
import static org.mockito.Mockito.when;
|
||||
|
||||
import android.test.mock.MockContext;
|
||||
import android.support.test.filters.SmallTest;
|
||||
import android.support.test.runner.AndroidJUnit4;
|
||||
import android.system.Os;
|
||||
@@ -69,11 +70,17 @@ public class IpSecManagerTest {
|
||||
|
||||
private IpSecService mMockIpSecService;
|
||||
private IpSecManager mIpSecManager;
|
||||
private MockContext mMockContext = new MockContext() {
|
||||
@Override
|
||||
public String getOpPackageName() {
|
||||
return "fooPackage";
|
||||
}
|
||||
};
|
||||
|
||||
@Before
|
||||
public void setUp() throws Exception {
|
||||
mMockIpSecService = mock(IpSecService.class);
|
||||
mIpSecManager = new IpSecManager(mMockIpSecService);
|
||||
mIpSecManager = new IpSecManager(mMockContext, mMockIpSecService);
|
||||
}
|
||||
|
||||
/*
|
||||
@@ -227,7 +234,7 @@ public class IpSecManagerTest {
|
||||
new IpSecTunnelInterfaceResponse(IpSecManager.Status.OK, resourceId, intfName);
|
||||
when(mMockIpSecService.createTunnelInterface(
|
||||
eq(VTI_LOCAL_ADDRESS.getHostAddress()), eq(GOOGLE_DNS_4.getHostAddress()),
|
||||
anyObject(), anyObject()))
|
||||
anyObject(), anyObject(), anyString()))
|
||||
.thenReturn(dummyResponse);
|
||||
|
||||
IpSecManager.IpSecTunnelInterface tunnelIntf = mIpSecManager.createIpSecTunnelInterface(
|
||||
@@ -245,7 +252,7 @@ public class IpSecManagerTest {
|
||||
assertEquals(VTI_INTF_NAME, tunnelIntf.getInterfaceName());
|
||||
|
||||
tunnelIntf.close();
|
||||
verify(mMockIpSecService).deleteTunnelInterface(eq(DUMMY_RESOURCE_ID));
|
||||
verify(mMockIpSecService).deleteTunnelInterface(eq(DUMMY_RESOURCE_ID), anyString());
|
||||
}
|
||||
|
||||
@Test
|
||||
@@ -255,10 +262,12 @@ public class IpSecManagerTest {
|
||||
|
||||
tunnelIntf.addAddress(VTI_INNER_ADDRESS);
|
||||
verify(mMockIpSecService)
|
||||
.addAddressToTunnelInterface(eq(DUMMY_RESOURCE_ID), eq(VTI_INNER_ADDRESS));
|
||||
.addAddressToTunnelInterface(
|
||||
eq(DUMMY_RESOURCE_ID), eq(VTI_INNER_ADDRESS), anyString());
|
||||
|
||||
tunnelIntf.removeAddress(VTI_INNER_ADDRESS);
|
||||
verify(mMockIpSecService)
|
||||
.addAddressToTunnelInterface(eq(DUMMY_RESOURCE_ID), eq(VTI_INNER_ADDRESS));
|
||||
.addAddressToTunnelInterface(
|
||||
eq(DUMMY_RESOURCE_ID), eq(VTI_INNER_ADDRESS), anyString());
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
@@ -27,6 +27,7 @@ import static org.mockito.Mockito.times;
|
||||
import static org.mockito.Mockito.verify;
|
||||
import static org.mockito.Mockito.when;
|
||||
|
||||
import android.app.AppOpsManager;
|
||||
import android.content.Context;
|
||||
import android.net.INetd;
|
||||
import android.net.IpSecAlgorithm;
|
||||
@@ -40,6 +41,7 @@ import android.net.Network;
|
||||
import android.net.NetworkUtils;
|
||||
import android.os.Binder;
|
||||
import android.os.ParcelFileDescriptor;
|
||||
import android.test.mock.MockContext;
|
||||
import android.support.test.filters.SmallTest;
|
||||
import android.system.Os;
|
||||
|
||||
@@ -92,7 +94,28 @@ public class IpSecServiceParameterizedTest {
|
||||
0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x7F
|
||||
};
|
||||
|
||||
Context mMockContext;
|
||||
AppOpsManager mMockAppOps = mock(AppOpsManager.class);
|
||||
|
||||
MockContext mMockContext = new MockContext() {
|
||||
@Override
|
||||
public Object getSystemService(String name) {
|
||||
switch(name) {
|
||||
case Context.APP_OPS_SERVICE:
|
||||
return mMockAppOps;
|
||||
default:
|
||||
return null;
|
||||
}
|
||||
}
|
||||
|
||||
@Override
|
||||
public void enforceCallingOrSelfPermission(String permission, String message) {
|
||||
if (permission == android.Manifest.permission.MANAGE_IPSEC_TUNNELS) {
|
||||
return;
|
||||
}
|
||||
throw new SecurityException("Unavailable permission requested");
|
||||
}
|
||||
};
|
||||
|
||||
INetd mMockNetd;
|
||||
IpSecService.IpSecServiceConfiguration mMockIpSecSrvConfig;
|
||||
IpSecService mIpSecService;
|
||||
@@ -114,13 +137,22 @@ public class IpSecServiceParameterizedTest {
|
||||
|
||||
@Before
|
||||
public void setUp() throws Exception {
|
||||
mMockContext = mock(Context.class);
|
||||
mMockNetd = mock(INetd.class);
|
||||
mMockIpSecSrvConfig = mock(IpSecService.IpSecServiceConfiguration.class);
|
||||
mIpSecService = new IpSecService(mMockContext, mMockIpSecSrvConfig);
|
||||
|
||||
// Injecting mock netd
|
||||
when(mMockIpSecSrvConfig.getNetdInstance()).thenReturn(mMockNetd);
|
||||
// A package granted the AppOp for MANAGE_IPSEC_TUNNELS will be MODE_ALLOWED.
|
||||
when(mMockAppOps.noteOp(anyInt(), anyInt(), eq("blessedPackage")))
|
||||
.thenReturn(AppOpsManager.MODE_ALLOWED);
|
||||
// A system package will not be granted the app op, so this should fall back to
|
||||
// a permissions check, which should pass.
|
||||
when(mMockAppOps.noteOp(anyInt(), anyInt(), eq("systemPackage")))
|
||||
.thenReturn(AppOpsManager.MODE_DEFAULT);
|
||||
// A mismatch between the package name and the UID will return MODE_IGNORED.
|
||||
when(mMockAppOps.noteOp(anyInt(), anyInt(), eq("badPackage")))
|
||||
.thenReturn(AppOpsManager.MODE_IGNORED);
|
||||
}
|
||||
|
||||
@Test
|
||||
@@ -232,7 +264,7 @@ public class IpSecServiceParameterizedTest {
|
||||
addAuthAndCryptToIpSecConfig(ipSecConfig);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
assertEquals(IpSecManager.Status.OK, createTransformResp.status);
|
||||
|
||||
verify(mMockNetd)
|
||||
@@ -267,7 +299,7 @@ public class IpSecServiceParameterizedTest {
|
||||
ipSecConfig.setAuthenticatedEncryption(AEAD_ALGO);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
assertEquals(IpSecManager.Status.OK, createTransformResp.status);
|
||||
|
||||
verify(mMockNetd)
|
||||
@@ -301,12 +333,12 @@ public class IpSecServiceParameterizedTest {
|
||||
addAuthAndCryptToIpSecConfig(ipSecConfig);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
assertEquals(IpSecManager.Status.OK, createTransformResp.status);
|
||||
|
||||
// Attempting to create transform a second time with the same SPIs should throw an error...
|
||||
try {
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
fail("IpSecService should have thrown an error for reuse of SPI");
|
||||
} catch (IllegalStateException expected) {
|
||||
}
|
||||
@@ -314,7 +346,7 @@ public class IpSecServiceParameterizedTest {
|
||||
// ... even if the transform is deleted
|
||||
mIpSecService.deleteTransform(createTransformResp.resourceId);
|
||||
try {
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
fail("IpSecService should have thrown an error for reuse of SPI");
|
||||
} catch (IllegalStateException expected) {
|
||||
}
|
||||
@@ -327,7 +359,7 @@ public class IpSecServiceParameterizedTest {
|
||||
addAuthAndCryptToIpSecConfig(ipSecConfig);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
IpSecService.UserRecord userRecord =
|
||||
mIpSecService.mUserResourceTracker.getUserRecord(Os.getuid());
|
||||
assertEquals(1, userRecord.mSpiQuotaTracker.mCurrent);
|
||||
@@ -351,7 +383,7 @@ public class IpSecServiceParameterizedTest {
|
||||
addAuthAndCryptToIpSecConfig(ipSecConfig);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
mIpSecService.deleteTransform(createTransformResp.resourceId);
|
||||
|
||||
verify(mMockNetd, times(1))
|
||||
@@ -398,7 +430,7 @@ public class IpSecServiceParameterizedTest {
|
||||
addAuthAndCryptToIpSecConfig(ipSecConfig);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
|
||||
IpSecService.UserRecord userRecord =
|
||||
mIpSecService.mUserResourceTracker.getUserRecord(Os.getuid());
|
||||
@@ -435,7 +467,7 @@ public class IpSecServiceParameterizedTest {
|
||||
addAuthAndCryptToIpSecConfig(ipSecConfig);
|
||||
|
||||
IpSecTransformResponse createTransformResp =
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder());
|
||||
mIpSecService.createTransform(ipSecConfig, new Binder(), "blessedPackage");
|
||||
ParcelFileDescriptor pfd = ParcelFileDescriptor.fromSocket(new Socket());
|
||||
|
||||
int resourceId = createTransformResp.resourceId;
|
||||
@@ -460,10 +492,10 @@ public class IpSecServiceParameterizedTest {
|
||||
}
|
||||
|
||||
private IpSecTunnelInterfaceResponse createAndValidateTunnel(
|
||||
String localAddr, String remoteAddr) {
|
||||
String localAddr, String remoteAddr, String pkgName) {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
mIpSecService.createTunnelInterface(
|
||||
mSourceAddr, mDestinationAddr, fakeNetwork, new Binder());
|
||||
mSourceAddr, mDestinationAddr, fakeNetwork, new Binder(), pkgName);
|
||||
|
||||
assertNotNull(createTunnelResp);
|
||||
assertEquals(IpSecManager.Status.OK, createTunnelResp.status);
|
||||
@@ -473,7 +505,7 @@ public class IpSecServiceParameterizedTest {
|
||||
@Test
|
||||
public void testCreateTunnelInterface() throws Exception {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr);
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr, "blessedPackage");
|
||||
|
||||
// Check that we have stored the tracking object, and retrieve it
|
||||
IpSecService.UserRecord userRecord =
|
||||
@@ -495,12 +527,12 @@ public class IpSecServiceParameterizedTest {
|
||||
@Test
|
||||
public void testDeleteTunnelInterface() throws Exception {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr);
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr, "blessedPackage");
|
||||
|
||||
IpSecService.UserRecord userRecord =
|
||||
mIpSecService.mUserResourceTracker.getUserRecord(Os.getuid());
|
||||
|
||||
mIpSecService.deleteTunnelInterface(createTunnelResp.resourceId);
|
||||
mIpSecService.deleteTunnelInterface(createTunnelResp.resourceId, "blessedPackage");
|
||||
|
||||
// Verify quota and RefcountedResource objects cleaned up
|
||||
assertEquals(0, userRecord.mTunnelQuotaTracker.mCurrent);
|
||||
@@ -516,7 +548,7 @@ public class IpSecServiceParameterizedTest {
|
||||
@Test
|
||||
public void testTunnelInterfaceBinderDeath() throws Exception {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr);
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr, "blessedPackage");
|
||||
|
||||
IpSecService.UserRecord userRecord =
|
||||
mIpSecService.mUserResourceTracker.getUserRecord(Os.getuid());
|
||||
@@ -539,22 +571,34 @@ public class IpSecServiceParameterizedTest {
|
||||
|
||||
@Test
|
||||
public void testAddRemoveAddressFromTunnelInterface() throws Exception {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr);
|
||||
for (String pkgName : new String[]{"blessedPackage", "systemPackage"}) {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr, pkgName);
|
||||
mIpSecService.addAddressToTunnelInterface(
|
||||
createTunnelResp.resourceId, mLocalInnerAddress, pkgName);
|
||||
verify(mMockNetd, times(1))
|
||||
.interfaceAddAddress(
|
||||
eq(createTunnelResp.interfaceName),
|
||||
eq(mLocalInnerAddress.getAddress().getHostAddress()),
|
||||
eq(mLocalInnerAddress.getPrefixLength()));
|
||||
mIpSecService.removeAddressFromTunnelInterface(
|
||||
createTunnelResp.resourceId, mLocalInnerAddress, pkgName);
|
||||
verify(mMockNetd, times(1))
|
||||
.interfaceDelAddress(
|
||||
eq(createTunnelResp.interfaceName),
|
||||
eq(mLocalInnerAddress.getAddress().getHostAddress()),
|
||||
eq(mLocalInnerAddress.getPrefixLength()));
|
||||
mIpSecService.deleteTunnelInterface(createTunnelResp.resourceId, pkgName);
|
||||
}
|
||||
}
|
||||
|
||||
mIpSecService.addAddressToTunnelInterface(createTunnelResp.resourceId, mLocalInnerAddress);
|
||||
verify(mMockNetd)
|
||||
.interfaceAddAddress(
|
||||
eq(createTunnelResp.interfaceName),
|
||||
eq(mLocalInnerAddress.getAddress().getHostAddress()),
|
||||
eq(mLocalInnerAddress.getPrefixLength()));
|
||||
|
||||
mIpSecService.removeAddressFromTunnelInterface(
|
||||
createTunnelResp.resourceId, mLocalInnerAddress);
|
||||
verify(mMockNetd)
|
||||
.interfaceDelAddress(
|
||||
eq(createTunnelResp.interfaceName),
|
||||
eq(mLocalInnerAddress.getAddress().getHostAddress()),
|
||||
eq(mLocalInnerAddress.getPrefixLength()));
|
||||
@Test
|
||||
public void testAddTunnelFailsForBadPackageName() throws Exception {
|
||||
try {
|
||||
IpSecTunnelInterfaceResponse createTunnelResp =
|
||||
createAndValidateTunnel(mSourceAddr, mDestinationAddr, "badPackage");
|
||||
fail("Expected a SecurityException for badPackage.");
|
||||
} catch (SecurityException expected) {
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user