tests/tests/security/src/android/security/cts/RestrictedInformationTest.java - platform/cts - Git at Google

 /*
  * Copyright (C) 2015 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package android.security.cts;

 import android.test.AndroidTestCase;
 import java.net.NetworkInterface;
 import java.net.SocketException;
 import java.util.Enumeration;
 import android.content.pm.PackageManager;
 import android.net.wifi.WifiManager;
 import android.content.Context;

 /**
  * Check that restricted information is not available
  * to the untrusted_app domain
  */
 public class RestrictedInformationTest extends AndroidTestCase {
    /*
     * Test that wifi Mac address is not available through sysfs
     */
     public void testWifiMacAddr() throws Exception {
         /* if wifi does not exist, exit - PASS */
         PackageManager pm = getContext().getPackageManager();
         if (!pm.hasSystemFeature(PackageManager.FEATURE_WIFI))
             return;

         /* Wifi exists, but is not on - FAIL */
         WifiManager wifi = (WifiManager) getContext().getSystemService(Context.WIFI_SERVICE);
         assertTrue("Wifi must be enabled to pass this test.", wifi.isWifiEnabled());

         /* Enumerate through the interfaces */
         Enumeration<NetworkInterface> theInterfaces = NetworkInterface.getNetworkInterfaces();

         while (theInterfaces.hasMoreElements()) {
             NetworkInterface netif = theInterfaces.nextElement();
             String name = netif.getName();
             /* some devices label wifi network interface as eth */
             if (!name.contains("wlan") && !name.contains("eth"))
                 continue;
             /* PASS means that getHardwareAddress throws a socket exception */
             try {
                 byte[] hwAddr = netif.getHardwareAddress();
                 fail("Mac address for " + name + "is accessible: " + new String(hwAddr) +
                         "\nTo pass this test, label the address with the sysfs_mac_address\n" +
                         "selinux label. " +
                         "e.g. https://android-review.googlesource.com/#/c/162180/1\n");
             } catch (SocketException se) {/* socket exception if MAC blocked - PASS */}
         }
     }
 }
	/*
	* Copyright (C) 2015 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package android.security.cts;

	import android.test.AndroidTestCase;
	import java.net.NetworkInterface;
	import java.net.SocketException;
	import java.util.Enumeration;
	import android.content.pm.PackageManager;
	import android.net.wifi.WifiManager;
	import android.content.Context;

	/**
	* Check that restricted information is not available
	* to the untrusted_app domain
	*/
	public class RestrictedInformationTest extends AndroidTestCase {
	/*
	* Test that wifi Mac address is not available through sysfs
	*/
	public void testWifiMacAddr() throws Exception {
	/* if wifi does not exist, exit - PASS */
	PackageManager pm = getContext().getPackageManager();
	if (!pm.hasSystemFeature(PackageManager.FEATURE_WIFI))
	return;

	/* Wifi exists, but is not on - FAIL */
	WifiManager wifi = (WifiManager) getContext().getSystemService(Context.WIFI_SERVICE);
	assertTrue("Wifi must be enabled to pass this test.", wifi.isWifiEnabled());

	/* Enumerate through the interfaces */
	Enumeration<NetworkInterface> theInterfaces = NetworkInterface.getNetworkInterfaces();

	while (theInterfaces.hasMoreElements()) {
	NetworkInterface netif = theInterfaces.nextElement();
	String name = netif.getName();
	/* some devices label wifi network interface as eth */
	if (!name.contains("wlan") && !name.contains("eth"))
	continue;
	/* PASS means that getHardwareAddress throws a socket exception */
	try {
	byte[] hwAddr = netif.getHardwareAddress();
	fail("Mac address for " + name + "is accessible: " + new String(hwAddr) +
	"\nTo pass this test, label the address with the sysfs_mac_address\n" +
	"selinux label. " +
	"e.g. https://android-review.googlesource.com/#/c/162180/1\n");
	} catch (SocketException se) {/* socket exception if MAC blocked - PASS */}
	}
	}
	}