1*8542734aSAndroid Build Coastguard Worker /*
2*8542734aSAndroid Build Coastguard Worker * Copyright (C) 2020 The Android Open Source Project
3*8542734aSAndroid Build Coastguard Worker *
4*8542734aSAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License");
5*8542734aSAndroid Build Coastguard Worker * you may not use this file except in compliance with the License.
6*8542734aSAndroid Build Coastguard Worker * You may obtain a copy of the License at
7*8542734aSAndroid Build Coastguard Worker *
8*8542734aSAndroid Build Coastguard Worker * http://www.apache.org/licenses/LICENSE-2.0
9*8542734aSAndroid Build Coastguard Worker *
10*8542734aSAndroid Build Coastguard Worker * Unless required by applicable law or agreed to in writing, software
11*8542734aSAndroid Build Coastguard Worker * distributed under the License is distributed on an "AS IS" BASIS,
12*8542734aSAndroid Build Coastguard Worker * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13*8542734aSAndroid Build Coastguard Worker * See the License for the specific language governing permissions and
14*8542734aSAndroid Build Coastguard Worker * limitations under the License.
15*8542734aSAndroid Build Coastguard Worker */
16*8542734aSAndroid Build Coastguard Worker
17*8542734aSAndroid Build Coastguard Worker #include <netdb.h>
18*8542734aSAndroid Build Coastguard Worker #include <netinet/in.h>
19*8542734aSAndroid Build Coastguard Worker #include <poll.h> /* poll */
20*8542734aSAndroid Build Coastguard Worker #include <sys/socket.h>
21*8542734aSAndroid Build Coastguard Worker #include <sys/types.h>
22*8542734aSAndroid Build Coastguard Worker
23*8542734aSAndroid Build Coastguard Worker #include <android-base/unique_fd.h>
24*8542734aSAndroid Build Coastguard Worker #include <gtest/gtest.h>
25*8542734aSAndroid Build Coastguard Worker
26*8542734aSAndroid Build Coastguard Worker #include "NetdClient.h"
27*8542734aSAndroid Build Coastguard Worker
28*8542734aSAndroid Build Coastguard Worker #define SKIP_IF_NO_NETWORK_CONNECTIVITY \
29*8542734aSAndroid Build Coastguard Worker do { \
30*8542734aSAndroid Build Coastguard Worker if (!checkNetworkConnectivity()) GTEST_SKIP() << "Skip. Requires Network Connectivity."; \
31*8542734aSAndroid Build Coastguard Worker } while (0)
32*8542734aSAndroid Build Coastguard Worker
33*8542734aSAndroid Build Coastguard Worker namespace {
34*8542734aSAndroid Build Coastguard Worker
35*8542734aSAndroid Build Coastguard Worker constexpr char TEST_DOMAIN[] = "www.google.com";
36*8542734aSAndroid Build Coastguard Worker
checkNetworkConnectivity()37*8542734aSAndroid Build Coastguard Worker bool checkNetworkConnectivity() {
38*8542734aSAndroid Build Coastguard Worker android::base::unique_fd sock(socket(AF_INET6, SOCK_DGRAM | SOCK_CLOEXEC, IPPROTO_UDP));
39*8542734aSAndroid Build Coastguard Worker if (sock == -1) return false;
40*8542734aSAndroid Build Coastguard Worker static const sockaddr_in6 server6 = {
41*8542734aSAndroid Build Coastguard Worker .sin6_family = AF_INET6,
42*8542734aSAndroid Build Coastguard Worker .sin6_addr.s6_addr = {// 2000::
43*8542734aSAndroid Build Coastguard Worker 0x20, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0}};
44*8542734aSAndroid Build Coastguard Worker int ret = connect(sock, reinterpret_cast<const sockaddr*>(&server6), sizeof(server6));
45*8542734aSAndroid Build Coastguard Worker if (ret == 0) return true;
46*8542734aSAndroid Build Coastguard Worker sock.reset(socket(AF_INET, SOCK_DGRAM | SOCK_CLOEXEC, IPPROTO_UDP));
47*8542734aSAndroid Build Coastguard Worker if (sock == -1) return false;
48*8542734aSAndroid Build Coastguard Worker static const sockaddr_in server4 = {
49*8542734aSAndroid Build Coastguard Worker .sin_family = AF_INET,
50*8542734aSAndroid Build Coastguard Worker .sin_addr.s_addr = __constant_htonl(0x08080808L) // 8.8.8.8
51*8542734aSAndroid Build Coastguard Worker };
52*8542734aSAndroid Build Coastguard Worker ret = connect(sock, reinterpret_cast<const sockaddr*>(&server4), sizeof(server4));
53*8542734aSAndroid Build Coastguard Worker return !ret;
54*8542734aSAndroid Build Coastguard Worker }
55*8542734aSAndroid Build Coastguard Worker
expectHasNetworking()56*8542734aSAndroid Build Coastguard Worker void expectHasNetworking() {
57*8542734aSAndroid Build Coastguard Worker // Socket
58*8542734aSAndroid Build Coastguard Worker android::base::unique_fd ipv4(socket(AF_INET, SOCK_STREAM | SOCK_CLOEXEC, 0)),
59*8542734aSAndroid Build Coastguard Worker ipv6(socket(AF_INET6, SOCK_STREAM | SOCK_CLOEXEC, 0));
60*8542734aSAndroid Build Coastguard Worker EXPECT_LE(3, ipv4);
61*8542734aSAndroid Build Coastguard Worker EXPECT_LE(3, ipv6);
62*8542734aSAndroid Build Coastguard Worker
63*8542734aSAndroid Build Coastguard Worker // DNS
64*8542734aSAndroid Build Coastguard Worker addrinfo* result = nullptr;
65*8542734aSAndroid Build Coastguard Worker errno = 0;
66*8542734aSAndroid Build Coastguard Worker const addrinfo hints = {
67*8542734aSAndroid Build Coastguard Worker .ai_family = AF_UNSPEC,
68*8542734aSAndroid Build Coastguard Worker .ai_socktype = SOCK_DGRAM,
69*8542734aSAndroid Build Coastguard Worker };
70*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(0, getaddrinfo(TEST_DOMAIN, nullptr, &hints, &result));
71*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(0, errno);
72*8542734aSAndroid Build Coastguard Worker freeaddrinfo(result);
73*8542734aSAndroid Build Coastguard Worker }
74*8542734aSAndroid Build Coastguard Worker
expectNoNetworking()75*8542734aSAndroid Build Coastguard Worker void expectNoNetworking() {
76*8542734aSAndroid Build Coastguard Worker // Socket
77*8542734aSAndroid Build Coastguard Worker android::base::unique_fd unixSocket(socket(AF_UNIX, SOCK_STREAM | SOCK_CLOEXEC, 0));
78*8542734aSAndroid Build Coastguard Worker EXPECT_LE(3, unixSocket);
79*8542734aSAndroid Build Coastguard Worker android::base::unique_fd ipv4(socket(AF_INET, SOCK_STREAM | SOCK_CLOEXEC, 0));
80*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(-1, ipv4);
81*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(EPERM, errno);
82*8542734aSAndroid Build Coastguard Worker android::base::unique_fd ipv6(socket(AF_INET6, SOCK_STREAM | SOCK_CLOEXEC, 0));
83*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(-1, ipv6);
84*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(EPERM, errno);
85*8542734aSAndroid Build Coastguard Worker
86*8542734aSAndroid Build Coastguard Worker // DNS
87*8542734aSAndroid Build Coastguard Worker addrinfo* result = nullptr;
88*8542734aSAndroid Build Coastguard Worker errno = 0;
89*8542734aSAndroid Build Coastguard Worker const addrinfo hints = {
90*8542734aSAndroid Build Coastguard Worker .ai_family = AF_UNSPEC,
91*8542734aSAndroid Build Coastguard Worker .ai_socktype = SOCK_DGRAM,
92*8542734aSAndroid Build Coastguard Worker };
93*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(EAI_NODATA, getaddrinfo(TEST_DOMAIN, nullptr, &hints, &result));
94*8542734aSAndroid Build Coastguard Worker EXPECT_EQ(EPERM, errno);
95*8542734aSAndroid Build Coastguard Worker freeaddrinfo(result);
96*8542734aSAndroid Build Coastguard Worker }
97*8542734aSAndroid Build Coastguard Worker
98*8542734aSAndroid Build Coastguard Worker } // namespace
99*8542734aSAndroid Build Coastguard Worker
TEST(NetdClientIntegrationTest,setAllowNetworkingForProcess)100*8542734aSAndroid Build Coastguard Worker TEST(NetdClientIntegrationTest, setAllowNetworkingForProcess) {
101*8542734aSAndroid Build Coastguard Worker SKIP_IF_NO_NETWORK_CONNECTIVITY;
102*8542734aSAndroid Build Coastguard Worker // At the beginning, we should be able to use socket since the default setting is allowing.
103*8542734aSAndroid Build Coastguard Worker expectHasNetworking();
104*8542734aSAndroid Build Coastguard Worker // Disable
105*8542734aSAndroid Build Coastguard Worker setAllowNetworkingForProcess(false);
106*8542734aSAndroid Build Coastguard Worker expectNoNetworking();
107*8542734aSAndroid Build Coastguard Worker // Reset
108*8542734aSAndroid Build Coastguard Worker setAllowNetworkingForProcess(true);
109*8542734aSAndroid Build Coastguard Worker expectHasNetworking();
110*8542734aSAndroid Build Coastguard Worker }
111