1*4d7e907cSAndroid Build Coastguard Worker /*
2*4d7e907cSAndroid Build Coastguard Worker * Copyright (C) 2020 The Android Open Source Project
3*4d7e907cSAndroid Build Coastguard Worker *
4*4d7e907cSAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License");
5*4d7e907cSAndroid Build Coastguard Worker * you may not use this file except in compliance with the License.
6*4d7e907cSAndroid Build Coastguard Worker * You may obtain a copy of the License at
7*4d7e907cSAndroid Build Coastguard Worker *
8*4d7e907cSAndroid Build Coastguard Worker * http://www.apache.org/licenses/LICENSE-2.0
9*4d7e907cSAndroid Build Coastguard Worker *
10*4d7e907cSAndroid Build Coastguard Worker * Unless required by applicable law or agreed to in writing, software
11*4d7e907cSAndroid Build Coastguard Worker * distributed under the License is distributed on an "AS IS" BASIS,
12*4d7e907cSAndroid Build Coastguard Worker * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13*4d7e907cSAndroid Build Coastguard Worker * See the License for the specific language governing permissions and
14*4d7e907cSAndroid Build Coastguard Worker * limitations under the License.
15*4d7e907cSAndroid Build Coastguard Worker */
16*4d7e907cSAndroid Build Coastguard Worker #include <aidl/Gtest.h>
17*4d7e907cSAndroid Build Coastguard Worker #include <aidl/Vintf.h>
18*4d7e907cSAndroid Build Coastguard Worker
19*4d7e907cSAndroid Build Coastguard Worker #include <aidl/android/hardware/oemlock/IOemLock.h>
20*4d7e907cSAndroid Build Coastguard Worker #include <android/binder_manager.h>
21*4d7e907cSAndroid Build Coastguard Worker #include <android/binder_process.h>
22*4d7e907cSAndroid Build Coastguard Worker
23*4d7e907cSAndroid Build Coastguard Worker using ::aidl::android::hardware::oemlock::IOemLock;
24*4d7e907cSAndroid Build Coastguard Worker using ::aidl::android::hardware::oemlock::OemLockSecureStatus;
25*4d7e907cSAndroid Build Coastguard Worker
26*4d7e907cSAndroid Build Coastguard Worker using ndk::SpAIBinder;
27*4d7e907cSAndroid Build Coastguard Worker
28*4d7e907cSAndroid Build Coastguard Worker struct OemLockAidlTest : public ::testing::TestWithParam<std::string> {
SetUpOemLockAidlTest29*4d7e907cSAndroid Build Coastguard Worker virtual void SetUp() override {
30*4d7e907cSAndroid Build Coastguard Worker oemlock = IOemLock::fromBinder(
31*4d7e907cSAndroid Build Coastguard Worker SpAIBinder(AServiceManager_waitForService(GetParam().c_str())));
32*4d7e907cSAndroid Build Coastguard Worker ASSERT_NE(oemlock, nullptr);
33*4d7e907cSAndroid Build Coastguard Worker }
34*4d7e907cSAndroid Build Coastguard Worker
TearDownOemLockAidlTest35*4d7e907cSAndroid Build Coastguard Worker virtual void TearDown() override {}
36*4d7e907cSAndroid Build Coastguard Worker
37*4d7e907cSAndroid Build Coastguard Worker std::shared_ptr<IOemLock> oemlock;
38*4d7e907cSAndroid Build Coastguard Worker };
39*4d7e907cSAndroid Build Coastguard Worker
40*4d7e907cSAndroid Build Coastguard Worker /*
41*4d7e907cSAndroid Build Coastguard Worker * Check the name can be retrieved
42*4d7e907cSAndroid Build Coastguard Worker */
TEST_P(OemLockAidlTest,GetName)43*4d7e907cSAndroid Build Coastguard Worker TEST_P(OemLockAidlTest, GetName) {
44*4d7e907cSAndroid Build Coastguard Worker std::string name;
45*4d7e907cSAndroid Build Coastguard Worker
46*4d7e907cSAndroid Build Coastguard Worker const auto ret = oemlock->getName(&name);
47*4d7e907cSAndroid Build Coastguard Worker
48*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(ret.isOk());
49*4d7e907cSAndroid Build Coastguard Worker // Any value acceptable
50*4d7e907cSAndroid Build Coastguard Worker };
51*4d7e907cSAndroid Build Coastguard Worker
52*4d7e907cSAndroid Build Coastguard Worker /*
53*4d7e907cSAndroid Build Coastguard Worker * Check the unlock allowed by device state can be queried
54*4d7e907cSAndroid Build Coastguard Worker */
TEST_P(OemLockAidlTest,QueryUnlockAllowedByDevice)55*4d7e907cSAndroid Build Coastguard Worker TEST_P(OemLockAidlTest, QueryUnlockAllowedByDevice) {
56*4d7e907cSAndroid Build Coastguard Worker bool allowed;
57*4d7e907cSAndroid Build Coastguard Worker
58*4d7e907cSAndroid Build Coastguard Worker const auto ret = oemlock->isOemUnlockAllowedByDevice(&allowed);
59*4d7e907cSAndroid Build Coastguard Worker
60*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(ret.isOk());
61*4d7e907cSAndroid Build Coastguard Worker // Any value acceptable
62*4d7e907cSAndroid Build Coastguard Worker }
63*4d7e907cSAndroid Build Coastguard Worker
64*4d7e907cSAndroid Build Coastguard Worker /*
65*4d7e907cSAndroid Build Coastguard Worker * Check unlock allowed by device state can be toggled
66*4d7e907cSAndroid Build Coastguard Worker */
TEST_P(OemLockAidlTest,AllowedByDeviceCanBeToggled)67*4d7e907cSAndroid Build Coastguard Worker TEST_P(OemLockAidlTest, AllowedByDeviceCanBeToggled) {
68*4d7e907cSAndroid Build Coastguard Worker bool allowed;
69*4d7e907cSAndroid Build Coastguard Worker
70*4d7e907cSAndroid Build Coastguard Worker // Get the original state so it can be restored
71*4d7e907cSAndroid Build Coastguard Worker const auto get_ret = oemlock->isOemUnlockAllowedByDevice(&allowed);
72*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(get_ret.isOk());
73*4d7e907cSAndroid Build Coastguard Worker const bool originallyAllowed = allowed;
74*4d7e907cSAndroid Build Coastguard Worker
75*4d7e907cSAndroid Build Coastguard Worker // Toggle the state
76*4d7e907cSAndroid Build Coastguard Worker const auto set_ret = oemlock->setOemUnlockAllowedByDevice(!originallyAllowed);
77*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(set_ret.isOk());
78*4d7e907cSAndroid Build Coastguard Worker
79*4d7e907cSAndroid Build Coastguard Worker const auto check_set_ret = oemlock->isOemUnlockAllowedByDevice(&allowed);
80*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(check_set_ret.isOk());
81*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(allowed, !originallyAllowed);
82*4d7e907cSAndroid Build Coastguard Worker
83*4d7e907cSAndroid Build Coastguard Worker // Restore the state
84*4d7e907cSAndroid Build Coastguard Worker const auto restore_ret = oemlock->setOemUnlockAllowedByDevice(originallyAllowed);
85*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(restore_ret.isOk());
86*4d7e907cSAndroid Build Coastguard Worker
87*4d7e907cSAndroid Build Coastguard Worker const auto check_restore_ret = oemlock->isOemUnlockAllowedByDevice(&allowed);
88*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(check_restore_ret.isOk());
89*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(allowed, originallyAllowed);
90*4d7e907cSAndroid Build Coastguard Worker }
91*4d7e907cSAndroid Build Coastguard Worker
92*4d7e907cSAndroid Build Coastguard Worker /*
93*4d7e907cSAndroid Build Coastguard Worker * Check the unlock allowed by device state can be queried
94*4d7e907cSAndroid Build Coastguard Worker */
TEST_P(OemLockAidlTest,QueryUnlockAllowedByCarrier)95*4d7e907cSAndroid Build Coastguard Worker TEST_P(OemLockAidlTest, QueryUnlockAllowedByCarrier) {
96*4d7e907cSAndroid Build Coastguard Worker bool allowed;
97*4d7e907cSAndroid Build Coastguard Worker
98*4d7e907cSAndroid Build Coastguard Worker const auto ret = oemlock->isOemUnlockAllowedByCarrier(&allowed);
99*4d7e907cSAndroid Build Coastguard Worker
100*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(ret.isOk());
101*4d7e907cSAndroid Build Coastguard Worker // Any value acceptable
102*4d7e907cSAndroid Build Coastguard Worker }
103*4d7e907cSAndroid Build Coastguard Worker
104*4d7e907cSAndroid Build Coastguard Worker /*
105*4d7e907cSAndroid Build Coastguard Worker * Attempt to check unlock allowed by carrier can be toggled
106*4d7e907cSAndroid Build Coastguard Worker *
107*4d7e907cSAndroid Build Coastguard Worker * The implementation may involve a signature which cannot be tested here. That
108*4d7e907cSAndroid Build Coastguard Worker * is a valid implementation so the test will pass. If there is no signature
109*4d7e907cSAndroid Build Coastguard Worker * required, the test will toggle the value.
110*4d7e907cSAndroid Build Coastguard Worker */
TEST_P(OemLockAidlTest,CarrierUnlock)111*4d7e907cSAndroid Build Coastguard Worker TEST_P(OemLockAidlTest, CarrierUnlock) {
112*4d7e907cSAndroid Build Coastguard Worker const std::vector<uint8_t> noSignature = {};
113*4d7e907cSAndroid Build Coastguard Worker bool allowed;
114*4d7e907cSAndroid Build Coastguard Worker OemLockSecureStatus secure_status;
115*4d7e907cSAndroid Build Coastguard Worker
116*4d7e907cSAndroid Build Coastguard Worker // Get the original state so it can be restored
117*4d7e907cSAndroid Build Coastguard Worker const auto get_ret = oemlock->isOemUnlockAllowedByCarrier(&allowed);
118*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(get_ret.isOk());
119*4d7e907cSAndroid Build Coastguard Worker const bool originallyAllowed = allowed;
120*4d7e907cSAndroid Build Coastguard Worker
121*4d7e907cSAndroid Build Coastguard Worker if (originallyAllowed) {
122*4d7e907cSAndroid Build Coastguard Worker // Only applied to locked devices
123*4d7e907cSAndroid Build Coastguard Worker return;
124*4d7e907cSAndroid Build Coastguard Worker }
125*4d7e907cSAndroid Build Coastguard Worker
126*4d7e907cSAndroid Build Coastguard Worker // Toggle the state
127*4d7e907cSAndroid Build Coastguard Worker const auto set_ret = oemlock->setOemUnlockAllowedByCarrier(!originallyAllowed, noSignature, &secure_status);
128*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(set_ret.isOk());
129*4d7e907cSAndroid Build Coastguard Worker ASSERT_NE(secure_status, OemLockSecureStatus::FAILED);
130*4d7e907cSAndroid Build Coastguard Worker const auto set_status = secure_status;
131*4d7e907cSAndroid Build Coastguard Worker
132*4d7e907cSAndroid Build Coastguard Worker const auto check_set_ret = oemlock->isOemUnlockAllowedByCarrier(&allowed);
133*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(check_set_ret.isOk());
134*4d7e907cSAndroid Build Coastguard Worker
135*4d7e907cSAndroid Build Coastguard Worker if (set_status == OemLockSecureStatus::INVALID_SIGNATURE) {
136*4d7e907cSAndroid Build Coastguard Worker // Signature is required so we cannot toggle the value in the test, but this is allowed
137*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(allowed, originallyAllowed);
138*4d7e907cSAndroid Build Coastguard Worker return;
139*4d7e907cSAndroid Build Coastguard Worker }
140*4d7e907cSAndroid Build Coastguard Worker
141*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(set_status, OemLockSecureStatus::OK);
142*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(allowed, !originallyAllowed);
143*4d7e907cSAndroid Build Coastguard Worker
144*4d7e907cSAndroid Build Coastguard Worker // Restore the state
145*4d7e907cSAndroid Build Coastguard Worker const auto restore_ret = oemlock->setOemUnlockAllowedByCarrier(originallyAllowed, noSignature, &secure_status);
146*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(restore_ret.isOk());
147*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(secure_status, OemLockSecureStatus::OK);
148*4d7e907cSAndroid Build Coastguard Worker
149*4d7e907cSAndroid Build Coastguard Worker const auto check_restore_ret = oemlock->isOemUnlockAllowedByCarrier(&allowed);
150*4d7e907cSAndroid Build Coastguard Worker ASSERT_TRUE(check_restore_ret.isOk());
151*4d7e907cSAndroid Build Coastguard Worker ASSERT_EQ(allowed, originallyAllowed);
152*4d7e907cSAndroid Build Coastguard Worker }
153*4d7e907cSAndroid Build Coastguard Worker
154*4d7e907cSAndroid Build Coastguard Worker GTEST_ALLOW_UNINSTANTIATED_PARAMETERIZED_TEST(OemLockAidlTest);
155*4d7e907cSAndroid Build Coastguard Worker INSTANTIATE_TEST_SUITE_P(
156*4d7e907cSAndroid Build Coastguard Worker PerInstance, OemLockAidlTest,
157*4d7e907cSAndroid Build Coastguard Worker testing::ValuesIn(android::getAidlHalInstanceNames(IOemLock::descriptor)),
158*4d7e907cSAndroid Build Coastguard Worker android::PrintInstanceNameToString);
159*4d7e907cSAndroid Build Coastguard Worker
main(int argc,char ** argv)160*4d7e907cSAndroid Build Coastguard Worker int main(int argc, char** argv) {
161*4d7e907cSAndroid Build Coastguard Worker ::testing::InitGoogleTest(&argc, argv);
162*4d7e907cSAndroid Build Coastguard Worker ABinderProcess_setThreadPoolMaxThreadCount(1);
163*4d7e907cSAndroid Build Coastguard Worker ABinderProcess_startThreadPool();
164*4d7e907cSAndroid Build Coastguard Worker return RUN_ALL_TESTS();
165*4d7e907cSAndroid Build Coastguard Worker }
166