tests/tests/permission/src/android/permission/cts/SharedUidPermissionsTest.java - platform/cts - Git at Google

 /*
  * Copyright (C) 2019 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package android.permission.cts;

 import static android.Manifest.permission.INTERNET;
 import static android.Manifest.permission.READ_CONTACTS;
 import static android.permission.cts.PermissionUtils.grantPermission;
 import static android.permission.cts.PermissionUtils.install;
 import static android.permission.cts.PermissionUtils.isPermissionGranted;
 import static android.permission.cts.PermissionUtils.revokePermission;
 import static android.permission.cts.PermissionUtils.uninstallApp;

 import static com.google.common.truth.Truth.assertThat;

 import android.platform.test.annotations.AppModeFull;

 import androidx.test.runner.AndroidJUnit4;

 import org.junit.After;
 import org.junit.Before;
 import org.junit.Test;
 import org.junit.runner.RunWith;

 @RunWith(AndroidJUnit4.class)
 @AppModeFull(reason = "Instant apps cannot read properties of other packages which is needed "
         + "to grant permissions to them.")
 public class SharedUidPermissionsTest {
     /** The package name of all apps used in the test */
     private static final String PKG_THAT_REQUESTS_PERMISSIONS =
             "android.permission.cts.appthatrequestpermission";
     private static final String PKG_THAT_REQUESTS_NO_PERMISSIONS =
             "android.permission.cts.appthatrequestnopermission";

     private static final String TMP_DIR = "/data/local/tmp/cts/permissions/";
     private static final String APK_THAT_REQUESTS_PERMISSIONS =
             TMP_DIR + "CtsAppWithSharedUidThatRequestsPermissions.apk";
     private static final String APK_THAT_REQUESTS_NO_PERMISSIONS =
             TMP_DIR + "CtsAppWithSharedUidThatRequestsNoPermissions.apk";

     @Before
     @After
     public void uninstallTestApps() {
         uninstallApp(PKG_THAT_REQUESTS_PERMISSIONS);
         uninstallApp(PKG_THAT_REQUESTS_NO_PERMISSIONS);
     }

     @Test
     public void packageGainsRuntimePermissionsWhenJoiningSharedUid() throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);

         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS)).isTrue();
         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isTrue();
     }

     @Test
     public void packageGainsNormalPermissionsWhenJoiningSharedUid() throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);

         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, INTERNET)).isTrue();
         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, INTERNET)).isTrue();
     }

     @Test
     public void grantingRuntimePermissionAffectsAllPackageInSharedUid() throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);
         grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);

         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS)).isTrue();
         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isTrue();
     }

     @Test
     public void revokingRuntimePermissionAffectsAllPackageInSharedUid() throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);
         grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);
         revokePermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);

         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS)).isFalse();
         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isFalse();
     }

     @Test(expected = SecurityException.class)
     public void runtimePermissionsCannotBeRevokedOnPackageThatDoesNotDeclarePermission()
             throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);
         grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);

         revokePermission(APK_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS);
     }

     @Test(expected = SecurityException.class)
     public void runtimePermissionsCannotBeGrantedOnPackageThatDoesNotDeclarePermission()
             throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);

         grantPermission(APK_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS);
     }

     @Test
     public void sharedUidLoosesRuntimePermissionWhenLastAppDeclaringItGetsUninstalled()
             throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);
         grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);
         uninstallApp(PKG_THAT_REQUESTS_PERMISSIONS);

         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isFalse();
     }

     @Test
     public void sharedUidLoosesNormalPermissionWhenLastAppDeclaringItGetsUninstalled()
             throws Exception {
         install(APK_THAT_REQUESTS_PERMISSIONS);
         install(APK_THAT_REQUESTS_NO_PERMISSIONS);
         uninstallApp(PKG_THAT_REQUESTS_PERMISSIONS);

         assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, INTERNET)).isFalse();
     }
 }
	/*
	* Copyright (C) 2019 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package android.permission.cts;

	import static android.Manifest.permission.INTERNET;
	import static android.Manifest.permission.READ_CONTACTS;
	import static android.permission.cts.PermissionUtils.grantPermission;
	import static android.permission.cts.PermissionUtils.install;
	import static android.permission.cts.PermissionUtils.isPermissionGranted;
	import static android.permission.cts.PermissionUtils.revokePermission;
	import static android.permission.cts.PermissionUtils.uninstallApp;

	import static com.google.common.truth.Truth.assertThat;

	import android.platform.test.annotations.AppModeFull;

	import androidx.test.runner.AndroidJUnit4;

	import org.junit.After;
	import org.junit.Before;
	import org.junit.Test;
	import org.junit.runner.RunWith;

	@RunWith(AndroidJUnit4.class)
	@AppModeFull(reason = "Instant apps cannot read properties of other packages which is needed "
	+ "to grant permissions to them.")
	public class SharedUidPermissionsTest {
	/** The package name of all apps used in the test */
	private static final String PKG_THAT_REQUESTS_PERMISSIONS =
	"android.permission.cts.appthatrequestpermission";
	private static final String PKG_THAT_REQUESTS_NO_PERMISSIONS =
	"android.permission.cts.appthatrequestnopermission";

	private static final String TMP_DIR = "/data/local/tmp/cts/permissions/";
	private static final String APK_THAT_REQUESTS_PERMISSIONS =
	TMP_DIR + "CtsAppWithSharedUidThatRequestsPermissions.apk";
	private static final String APK_THAT_REQUESTS_NO_PERMISSIONS =
	TMP_DIR + "CtsAppWithSharedUidThatRequestsNoPermissions.apk";

	@Before
	@After
	public void uninstallTestApps() {
	uninstallApp(PKG_THAT_REQUESTS_PERMISSIONS);
	uninstallApp(PKG_THAT_REQUESTS_NO_PERMISSIONS);
	}

	@Test
	public void packageGainsRuntimePermissionsWhenJoiningSharedUid() throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);

	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS)).isTrue();
	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isTrue();
	}

	@Test
	public void packageGainsNormalPermissionsWhenJoiningSharedUid() throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);

	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, INTERNET)).isTrue();
	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, INTERNET)).isTrue();
	}

	@Test
	public void grantingRuntimePermissionAffectsAllPackageInSharedUid() throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);
	grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);

	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS)).isTrue();
	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isTrue();
	}

	@Test
	public void revokingRuntimePermissionAffectsAllPackageInSharedUid() throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);
	grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);
	revokePermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);

	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS)).isFalse();
	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isFalse();
	}

	@Test(expected = SecurityException.class)
	public void runtimePermissionsCannotBeRevokedOnPackageThatDoesNotDeclarePermission()
	throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);
	grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);

	revokePermission(APK_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS);
	}

	@Test(expected = SecurityException.class)
	public void runtimePermissionsCannotBeGrantedOnPackageThatDoesNotDeclarePermission()
	throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);

	grantPermission(APK_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS);
	}

	@Test
	public void sharedUidLoosesRuntimePermissionWhenLastAppDeclaringItGetsUninstalled()
	throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);
	grantPermission(PKG_THAT_REQUESTS_PERMISSIONS, READ_CONTACTS);
	uninstallApp(PKG_THAT_REQUESTS_PERMISSIONS);

	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, READ_CONTACTS)).isFalse();
	}

	@Test
	public void sharedUidLoosesNormalPermissionWhenLastAppDeclaringItGetsUninstalled()
	throws Exception {
	install(APK_THAT_REQUESTS_PERMISSIONS);
	install(APK_THAT_REQUESTS_NO_PERMISSIONS);
	uninstallApp(PKG_THAT_REQUESTS_PERMISSIONS);

	assertThat(isPermissionGranted(PKG_THAT_REQUESTS_NO_PERMISSIONS, INTERNET)).isFalse();
	}
	}