tests/wifitests/src/com/android/server/wifi/WifiKeyStoreTest.java - platform/frameworks/opt/net/wifi - Git at Google

 /*
  * Copyright (C) 2019 The Android Open Source Project
  *
  * Licensed under the Apache License, Version 2.0 (the "License");
  * you may not use this file except in compliance with the License.
  * You may obtain a copy of the License at
  *
  *      http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package com.android.server.wifi;

 import static org.mockito.Mockito.validateMockitoUsage;
 import static org.mockito.Mockito.verify;
 import static org.mockito.Mockito.verifyNoMoreInteractions;
 import static org.mockito.Mockito.when;

 import android.net.wifi.WifiEnterpriseConfig;
 import android.os.Process;
 import android.security.Credentials;
 import android.security.KeyStore;

 import androidx.test.filters.SmallTest;

 import org.junit.After;
 import org.junit.Before;
 import org.junit.Test;
 import org.mockito.Mock;
 import org.mockito.MockitoAnnotations;

 /**
  * Unit tests for {@link com.android.server.wifi.WifiConfigManager}.
  */
 @SmallTest
 public class WifiKeyStoreTest {
     @Mock private WifiEnterpriseConfig mWifiEnterpriseConfig;
     @Mock private KeyStore mKeyStore;

     private WifiKeyStore mWifiKeyStore;
     private static final String USER_CERT_ALIAS = "aabbccddee";
     private static final String [] USER_CA_CERT_ALIAS = {"aacccddd", "bbbqqqqmmm"};

     /**
      * Setup the mocks and an instance of WifiConfigManager before each test.
      */
     @Before
     public void setUp() throws Exception {
         MockitoAnnotations.initMocks(this);
         mWifiKeyStore = new WifiKeyStore(mKeyStore);

         when(mWifiEnterpriseConfig.getClientCertificateAlias()).thenReturn(USER_CERT_ALIAS);
         when(mWifiEnterpriseConfig.getCaCertificateAliases())
                 .thenReturn(USER_CA_CERT_ALIAS);
     }

     /**
      * Called after each test
      */
     @After
     public void cleanup() {
         validateMockitoUsage();
     }

     /**
      * Verifies that keys and certs are removed when they were installed by an app.
      */
     @Test
     public void testRemoveKeysForAppInstalledCerts() {
         when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(true);
         when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(true);
         mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);

         // Method calls the KeyStore#delete method 4 times, user key, user cert, and 2 CA cert
         verify(mKeyStore).delete(Credentials.USER_PRIVATE_KEY + USER_CERT_ALIAS, Process.WIFI_UID);
         verify(mKeyStore).delete(Credentials.USER_CERTIFICATE + USER_CERT_ALIAS, Process.WIFI_UID);
         verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[0],
                 Process.WIFI_UID);
         verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[1],
                 Process.WIFI_UID);
     }

     /**
      * Verifies that keys and certs are removed when they were installed by an app and not removed
      * when CA certs are installed by the user.
      */
     @Test
     public void testRemoveKeysForMixedInstalledCerts1() {
         when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(true);
         when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(false);
         mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);

         // Method calls the KeyStore#delete method 2 times: user key and user cert
         verify(mKeyStore).delete(Credentials.USER_PRIVATE_KEY + USER_CERT_ALIAS, Process.WIFI_UID);
         verify(mKeyStore).delete(Credentials.USER_CERTIFICATE + USER_CERT_ALIAS, Process.WIFI_UID);
         verifyNoMoreInteractions(mKeyStore);
     }

     /**
      * Verifies that keys and certs are not removed when they were installed by the user and
      * removed when CA certs are installed by the app.
      */
     @Test
     public void testRemoveKeysForMixedInstalledCerts2() {
         when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(false);
         when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(true);
         mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);

         // Method calls the KeyStore#delete method 2 times: 2 CA certs
         verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[0],
                 Process.WIFI_UID);
         verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[1],
                 Process.WIFI_UID);
         verifyNoMoreInteractions(mKeyStore);
     }

     /**
      * Verifies that keys and certs are not removed when they were installed by the user.
      */
     @Test
     public void testRemoveKeysForUserInstalledCerts() {
         when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(false);
         when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(false);
         mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);
         verifyNoMoreInteractions(mKeyStore);
     }
 }
	/*
	* Copyright (C) 2019 The Android Open Source Project
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package com.android.server.wifi;

	import static org.mockito.Mockito.validateMockitoUsage;
	import static org.mockito.Mockito.verify;
	import static org.mockito.Mockito.verifyNoMoreInteractions;
	import static org.mockito.Mockito.when;

	import android.net.wifi.WifiEnterpriseConfig;
	import android.os.Process;
	import android.security.Credentials;
	import android.security.KeyStore;

	import androidx.test.filters.SmallTest;

	import org.junit.After;
	import org.junit.Before;
	import org.junit.Test;
	import org.mockito.Mock;
	import org.mockito.MockitoAnnotations;

	/**
	* Unit tests for {@link com.android.server.wifi.WifiConfigManager}.
	*/
	@SmallTest
	public class WifiKeyStoreTest {
	@Mock private WifiEnterpriseConfig mWifiEnterpriseConfig;
	@Mock private KeyStore mKeyStore;

	private WifiKeyStore mWifiKeyStore;
	private static final String USER_CERT_ALIAS = "aabbccddee";
	private static final String [] USER_CA_CERT_ALIAS = {"aacccddd", "bbbqqqqmmm"};

	/**
	* Setup the mocks and an instance of WifiConfigManager before each test.
	*/
	@Before
	public void setUp() throws Exception {
	MockitoAnnotations.initMocks(this);
	mWifiKeyStore = new WifiKeyStore(mKeyStore);

	when(mWifiEnterpriseConfig.getClientCertificateAlias()).thenReturn(USER_CERT_ALIAS);
	when(mWifiEnterpriseConfig.getCaCertificateAliases())
	.thenReturn(USER_CA_CERT_ALIAS);
	}

	/**
	* Called after each test
	*/
	@After
	public void cleanup() {
	validateMockitoUsage();
	}

	/**
	* Verifies that keys and certs are removed when they were installed by an app.
	*/
	@Test
	public void testRemoveKeysForAppInstalledCerts() {
	when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(true);
	when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(true);
	mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);

	// Method calls the KeyStore#delete method 4 times, user key, user cert, and 2 CA cert
	verify(mKeyStore).delete(Credentials.USER_PRIVATE_KEY + USER_CERT_ALIAS, Process.WIFI_UID);
	verify(mKeyStore).delete(Credentials.USER_CERTIFICATE + USER_CERT_ALIAS, Process.WIFI_UID);
	verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[0],
	Process.WIFI_UID);
	verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[1],
	Process.WIFI_UID);
	}

	/**
	* Verifies that keys and certs are removed when they were installed by an app and not removed
	* when CA certs are installed by the user.
	*/
	@Test
	public void testRemoveKeysForMixedInstalledCerts1() {
	when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(true);
	when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(false);
	mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);

	// Method calls the KeyStore#delete method 2 times: user key and user cert
	verify(mKeyStore).delete(Credentials.USER_PRIVATE_KEY + USER_CERT_ALIAS, Process.WIFI_UID);
	verify(mKeyStore).delete(Credentials.USER_CERTIFICATE + USER_CERT_ALIAS, Process.WIFI_UID);
	verifyNoMoreInteractions(mKeyStore);
	}

	/**
	* Verifies that keys and certs are not removed when they were installed by the user and
	* removed when CA certs are installed by the app.
	*/
	@Test
	public void testRemoveKeysForMixedInstalledCerts2() {
	when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(false);
	when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(true);
	mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);

	// Method calls the KeyStore#delete method 2 times: 2 CA certs
	verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[0],
	Process.WIFI_UID);
	verify(mKeyStore).delete(Credentials.CA_CERTIFICATE + USER_CA_CERT_ALIAS[1],
	Process.WIFI_UID);
	verifyNoMoreInteractions(mKeyStore);
	}

	/**
	* Verifies that keys and certs are not removed when they were installed by the user.
	*/
	@Test
	public void testRemoveKeysForUserInstalledCerts() {
	when(mWifiEnterpriseConfig.isAppInstalledDeviceKeyAndCert()).thenReturn(false);
	when(mWifiEnterpriseConfig.isAppInstalledCaCert()).thenReturn(false);
	mWifiKeyStore.removeKeys(mWifiEnterpriseConfig);
	verifyNoMoreInteractions(mKeyStore);
	}
	}