tests/tests/os/src/android/os/cts/EnvironmentTest.java - platform/cts - Git at Google

 /*
  * Copyright (C) 2009 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
 package android.os.cts;

 import static androidx.test.InstrumentationRegistry.getContext;

 import android.app.AppOpsManager;
 import android.os.Environment;
 import android.os.Process;
 import android.platform.test.annotations.AppModeFull;
 import android.system.Os;
 import android.system.StructStatVfs;

 import androidx.test.InstrumentationRegistry;

 import junit.framework.TestCase;

 import java.io.BufferedReader;
 import java.io.File;
 import java.io.FileReader;

 public class EnvironmentTest extends TestCase {
     public void testEnvironment() {
         new Environment();
         assertNotNull(Environment.getExternalStorageState());
         assertTrue(Environment.getRootDirectory().isDirectory());
         assertTrue(Environment.getDownloadCacheDirectory().isDirectory());
         assertTrue(Environment.getDataDirectory().isDirectory());
     }

     @AppModeFull(reason = "External directory not accessible by instant apps")
     public void testEnvironmentExternal() {
         assertTrue(Environment.getStorageDirectory().isDirectory());
         assertTrue(Environment.getExternalStorageDirectory().isDirectory());
     }

     /**
      * TMPDIR being set prevents apps from asking to have temporary files
      * placed in their own storage, instead forcing their location to
      * something OS-defined. If TMPDIR points to a global shared directory,
      * this could compromise the security of the files.
      */
     public void testNoTmpDir() {
         assertNull("environment variable TMPDIR should not be set",
                 System.getenv("TMPDIR"));
     }

     /**
      * Verify that all writable block filesystems are mounted "noatime" to avoid
      * unnecessary flash churn.
      */
     public void testNoAtime() throws Exception {
         try (BufferedReader br = new BufferedReader(new FileReader("/proc/mounts"))) {
             String line;
             while ((line = br.readLine()) != null) {
                 final String[] fields = line.split(" ");
                 final String source = fields[0];
                 final String options = fields[3];

                 if (source.startsWith("/dev/block/") && !options.startsWith("ro,")
                         && !options.contains("noatime")) {
                     fail("Found device mounted at " + source + " without 'noatime' option, "
                             + "which can cause unnecessary flash churn; please update your fstab.");
                 }
             }
         }
     }

     /**
      * verify hidepid=2 on /proc
      */
     public void testHidePid2() throws Exception {
         try (BufferedReader br = new BufferedReader(new FileReader("/proc/mounts"))) {
             String line;
             while ((line = br.readLine()) != null) {
                 final String[] fields = line.split(" ");
                 final String source = fields[0];
                 final String options = fields[3];

                 if (source.equals("proc") && !options.contains("hidepid=2")) {
                     fail("proc filesystem mounted without hidepid=2");
                 }
             }
         }
     }

     public void testHidePid2_direct() throws Exception {
         assertFalse(new File("/proc/1").exists());
     }

     /**
      * Verify that all writable block filesystems are mounted with "resgid" to
      * mitigate disk-full trouble.
      */
     public void testSaneInodes() throws Exception {
         final File file = Environment.getDataDirectory();
         final StructStatVfs stat = Os.statvfs(file.getAbsolutePath());

         // By default ext4 creates one inode per 16KiB; we're okay with a much
         // wider range, but we want to make sure the device isn't going totally
         // crazy; too few inodes can result in system instability, and too many
         // inodes can result in wasted space.
         final long maxsize = stat.f_blocks * stat.f_frsize;
         final long maxInodes = maxsize / 4096;
         // Assuming the smallest storage would be 4GB, min # of free inodes
         // in EXT4/F2FS must be larger than 128k for Android to work properly.
         long minInodes = 128 * 1024;
         final long size4GB = 4294967296l;
         //If the storage size is smaller than 4GB, let's consider 32k for 1GB.
         if (maxsize < size4GB) {
             minInodes = 32 * 1024;
         }

         if (stat.f_ffree >= minInodes && stat.f_ffree <= maxInodes
             && stat.f_favail <= stat.f_ffree) {
             // Sweet, sounds great!
         } else {
             fail("Number of inodes " + stat.f_ffree + "/" + stat.f_favail
               + " not within sane range for partition of " + maxsize + " bytes; expected ["
               + minInodes + "," + maxInodes + "]");
         }
     }

     public void testIsExternalStorageManager() throws Exception {
         final int initialMode = getContext().getSystemService(AppOpsManager.class)
                 .unsafeCheckOpNoThrow(AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE, Process.myUid(),
                         getContext().getPackageName());

         try {
             setAppOpsModeForUid(Process.myUid(), AppOpsManager.MODE_DEFAULT,
                     AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE);
             // By default, this test app is not an external storage manager
             assertFalse(Environment.isExternalStorageManager());
             // Allow the external storage manager app-op to the test app. This mirrors what happens
             // when the user grants this special app access to an app.
             setAppOpsModeForUid(Process.myUid(), AppOpsManager.MODE_ALLOWED,
                     AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE);
             // Once we allow the right app-op for the test, it becomes an external storage manager
             assertTrue(Environment.isExternalStorageManager());
         } finally {
             setAppOpsModeForUid(Process.myUid(), initialMode,
                     AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE);
         }
     }

     /**
      * Sets {@code mode} for the given {@code ops} and the given {@code uid}.
      *
      * <p>This method drops shell permission identity.
      */
     private static void setAppOpsModeForUid(int uid, int mode, String... ops) {
         if (ops == null) {
             return;
         }
         InstrumentationRegistry.getInstrumentation()
                 .getUiAutomation()
                 .adoptShellPermissionIdentity();
         try {
             for (String op : ops) {
                 InstrumentationRegistry.getContext().getSystemService(AppOpsManager.class)
                         .setUidMode(op, uid, mode);
             }
         } finally {
             InstrumentationRegistry.getInstrumentation()
                     .getUiAutomation()
                     .dropShellPermissionIdentity();
         }
     }
 }
	/*
	* Copyright (C) 2009 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/
	package android.os.cts;

	import static androidx.test.InstrumentationRegistry.getContext;

	import android.app.AppOpsManager;
	import android.os.Environment;
	import android.os.Process;
	import android.platform.test.annotations.AppModeFull;
	import android.system.Os;
	import android.system.StructStatVfs;

	import androidx.test.InstrumentationRegistry;

	import junit.framework.TestCase;

	import java.io.BufferedReader;
	import java.io.File;
	import java.io.FileReader;

	public class EnvironmentTest extends TestCase {
	public void testEnvironment() {
	new Environment();
	assertNotNull(Environment.getExternalStorageState());
	assertTrue(Environment.getRootDirectory().isDirectory());
	assertTrue(Environment.getDownloadCacheDirectory().isDirectory());
	assertTrue(Environment.getDataDirectory().isDirectory());
	}

	@AppModeFull(reason = "External directory not accessible by instant apps")
	public void testEnvironmentExternal() {
	assertTrue(Environment.getStorageDirectory().isDirectory());
	assertTrue(Environment.getExternalStorageDirectory().isDirectory());
	}

	/**
	* TMPDIR being set prevents apps from asking to have temporary files
	* placed in their own storage, instead forcing their location to
	* something OS-defined. If TMPDIR points to a global shared directory,
	* this could compromise the security of the files.
	*/
	public void testNoTmpDir() {
	assertNull("environment variable TMPDIR should not be set",
	System.getenv("TMPDIR"));
	}

	/**
	* Verify that all writable block filesystems are mounted "noatime" to avoid
	* unnecessary flash churn.
	*/
	public void testNoAtime() throws Exception {
	try (BufferedReader br = new BufferedReader(new FileReader("/proc/mounts"))) {
	String line;
	while ((line = br.readLine()) != null) {
	final String[] fields = line.split(" ");
	final String source = fields[0];
	final String options = fields[3];

	if (source.startsWith("/dev/block/") && !options.startsWith("ro,")
	&& !options.contains("noatime")) {
	fail("Found device mounted at " + source + " without 'noatime' option, "
	+ "which can cause unnecessary flash churn; please update your fstab.");
	}
	}
	}
	}

	/**
	* verify hidepid=2 on /proc
	*/
	public void testHidePid2() throws Exception {
	try (BufferedReader br = new BufferedReader(new FileReader("/proc/mounts"))) {
	String line;
	while ((line = br.readLine()) != null) {
	final String[] fields = line.split(" ");
	final String source = fields[0];
	final String options = fields[3];

	if (source.equals("proc") && !options.contains("hidepid=2")) {
	fail("proc filesystem mounted without hidepid=2");
	}
	}
	}
	}

	public void testHidePid2_direct() throws Exception {
	assertFalse(new File("/proc/1").exists());
	}

	/**
	* Verify that all writable block filesystems are mounted with "resgid" to
	* mitigate disk-full trouble.
	*/
	public void testSaneInodes() throws Exception {
	final File file = Environment.getDataDirectory();
	final StructStatVfs stat = Os.statvfs(file.getAbsolutePath());

	// By default ext4 creates one inode per 16KiB; we're okay with a much
	// wider range, but we want to make sure the device isn't going totally
	// crazy; too few inodes can result in system instability, and too many
	// inodes can result in wasted space.
	final long maxsize = stat.f_blocks * stat.f_frsize;
	final long maxInodes = maxsize / 4096;
	// Assuming the smallest storage would be 4GB, min # of free inodes
	// in EXT4/F2FS must be larger than 128k for Android to work properly.
	long minInodes = 128 * 1024;
	final long size4GB = 4294967296l;
	//If the storage size is smaller than 4GB, let's consider 32k for 1GB.
	if (maxsize < size4GB) {
	minInodes = 32 * 1024;
	}

	if (stat.f_ffree >= minInodes && stat.f_ffree <= maxInodes
	&& stat.f_favail <= stat.f_ffree) {
	// Sweet, sounds great!
	} else {
	fail("Number of inodes " + stat.f_ffree + "/" + stat.f_favail
	+ " not within sane range for partition of " + maxsize + " bytes; expected ["
	+ minInodes + "," + maxInodes + "]");
	}
	}

	public void testIsExternalStorageManager() throws Exception {
	final int initialMode = getContext().getSystemService(AppOpsManager.class)
	.unsafeCheckOpNoThrow(AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE, Process.myUid(),
	getContext().getPackageName());

	try {
	setAppOpsModeForUid(Process.myUid(), AppOpsManager.MODE_DEFAULT,
	AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE);
	// By default, this test app is not an external storage manager
	assertFalse(Environment.isExternalStorageManager());
	// Allow the external storage manager app-op to the test app. This mirrors what happens
	// when the user grants this special app access to an app.
	setAppOpsModeForUid(Process.myUid(), AppOpsManager.MODE_ALLOWED,
	AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE);
	// Once we allow the right app-op for the test, it becomes an external storage manager
	assertTrue(Environment.isExternalStorageManager());
	} finally {
	setAppOpsModeForUid(Process.myUid(), initialMode,
	AppOpsManager.OPSTR_MANAGE_EXTERNAL_STORAGE);
	}
	}

	/**
	* Sets {@code mode} for the given {@code ops} and the given {@code uid}.
	*
	* <p>This method drops shell permission identity.
	*/
	private static void setAppOpsModeForUid(int uid, int mode, String... ops) {
	if (ops == null) {
	return;
	}
	InstrumentationRegistry.getInstrumentation()
	.getUiAutomation()
	.adoptShellPermissionIdentity();
	try {
	for (String op : ops) {
	InstrumentationRegistry.getContext().getSystemService(AppOpsManager.class)
	.setUidMode(op, uid, mode);
	}
	} finally {
	InstrumentationRegistry.getInstrumentation()
	.getUiAutomation()
	.dropShellPermissionIdentity();
	}
	}
	}