hostsidetests/appsecurity/test-apps/AppAccessData/src/com/android/cts/appaccessdata/AccessPrivateDataTest.java


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126

/*
 * Copyright (C) 2009 The Android Open Source Project
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package com.android.cts.appaccessdata;

import java.io.BufferedReader;
import java.io.DataInputStream;
import java.io.FileInputStream;
import java.io.FileNotFoundException;
import java.io.FileReader;
import java.io.IOException;

import android.test.AndroidTestCase;

/**
 * Test that another app's private data cannot be accessed, while its public data can.
 *
 * Assumes that {@link APP_WITH_DATA_PKG} has already created the private and public data.
 */
public class AccessPrivateDataTest extends AndroidTestCase {

    /**
     * The Android package name of the application that owns the data
     */
    private static final String APP_WITH_DATA_PKG = "com.android.cts.appwithdata";

    /**
     * Name of private file to access. This must match the name of the file created by
     * {@link APP_WITH_DATA_PKG}.
     */
    private static final String PRIVATE_FILE_NAME = "private_file.txt";
    /**
     * Name of public file to access. This must match the name of the file created by
     * {@link APP_WITH_DATA_PKG}.
     */
    private static final String PUBLIC_FILE_NAME = "public_file.txt";

    /**
     * Tests that another app's private data cannot be accessed. It includes file
     * and detailed traffic stats.
     * @throws IOException
     */
    public void testAccessPrivateData() throws IOException {
        try {
            // construct the absolute file path to the app's private file
            String privateFilePath = String.format("/data/data/%s/%s", APP_WITH_DATA_PKG,
                    PRIVATE_FILE_NAME);
            FileInputStream inputStream = new FileInputStream(privateFilePath);
            inputStream.read();
            inputStream.close();
            fail("Was able to access another app's private data");
        } catch (FileNotFoundException e) {
            // expected
        } catch (SecurityException e) {
            // also valid
        }
        accessPrivateTrafficStats();
    }

    /**
     * Tests that another app's public file can be accessed
     * @throws IOException
     */
    public void testAccessPublicData() throws IOException {
        try {
            getOtherAppUid();
        } catch (FileNotFoundException e) {
            fail("Was not able to access another app's public file: " + e);
        } catch (SecurityException e) {
            fail("Was not able to access another app's public file: " + e);
        }
    }

    private int getOtherAppUid() throws IOException, FileNotFoundException, SecurityException {
        // construct the absolute file path to the other app's public file
        String publicFilePath = String.format("/data/data/%s/files/%s", APP_WITH_DATA_PKG,
                PUBLIC_FILE_NAME);
        DataInputStream inputStream = new DataInputStream(new FileInputStream(publicFilePath));
        int otherAppUid = (int)inputStream.readInt();
        inputStream.close();
        return otherAppUid;
    }

    private void accessPrivateTrafficStats() throws IOException {
        int otherAppUid = -1;
        try {
            otherAppUid = getOtherAppUid();
        } catch (FileNotFoundException e) {
            fail("Was not able to access another app's public file: " + e);
        } catch (SecurityException e) {
            fail("Was not able to access another app's public file: " + e);
        }

        boolean foundOtherStats = false;
        try {
            BufferedReader qtaguidReader = new BufferedReader(new FileReader("/proc/net/xt_qtaguid/stats"));
            String line;
            while ((line = qtaguidReader.readLine()) != null) {
                String tokens[] = line.split(" ");
                if (tokens.length > 3 && tokens[3].equals(String.valueOf(otherAppUid))) {
                    foundOtherStats = true;
                    if (!tokens[2].equals("0x0")) {
                        fail("Other apps detailed traffic stats leaked");
                    }
                }
            }
            qtaguidReader.close();
        } catch (FileNotFoundException e) {
            fail("Was not able to access qtaguid/stats: " + e);
        }
        assertTrue("Was expecting to find other apps' traffic stats", foundOtherStats);
    }
}