summaryrefslogtreecommitdiffstats
path: root/tests/wifitests/src/com/android/server/wifi/scanner
diff options
context:
space:
mode:
authorRoshan Pius <rpius@google.com>2018-11-20 15:26:11 -0800
committerRoshan Pius <rpius@google.com>2018-11-26 09:32:27 -0800
commit55729181dc2e526f77c58bcc8955b3d23d9ecc03 (patch)
tree9af671204b5ab62b56b1814c64b069606b794690 /tests/wifitests/src/com/android/server/wifi/scanner
parent4cb68a9e3f2a3ddd62743fc24409e796255fa627 (diff)
downloadandroid_frameworks_opt_net_wifi-55729181dc2e526f77c58bcc8955b3d23d9ecc03.tar.gz
android_frameworks_opt_net_wifi-55729181dc2e526f77c58bcc8955b3d23d9ecc03.tar.bz2
android_frameworks_opt_net_wifi-55729181dc2e526f77c58bcc8955b3d23d9ecc03.zip
WifiScanningService: Add location permission & app-ops checks
Functional changes: For all scan requests NOT originating from the wifi stack (from system- apps), a) Check for ACCESS_FINE_LOCATION permission. b) Check & note for OP_FINE_LOCATION & OP_WIFI_SCAN app ops. c) Pass in the requested package name in every request. Code Structure changes: a) Moved all the permission checks from WifiScanner to WifiPermissionsUtil class so that all location checks (for WifiManager and WifiScanner surface) are in one place to allow for better auditing in future. b) Use LocationManager to check for location state in WifiPermissionsUtil (previously used global setting is now deprecated) Bug: 117612744 Bug: 113542524 Test: ./frameworks/opt/net/wifi/tests/wifitests/runtests.sh Test: Able to see scan results in wifi picker. Test: Verified maps working with wifi scans. Change-Id: If3e0a00f20d4af6597f69a347607bab499d46267
Diffstat (limited to 'tests/wifitests/src/com/android/server/wifi/scanner')
-rw-r--r--tests/wifitests/src/com/android/server/wifi/scanner/WifiScanningServiceTest.java36
1 files changed, 10 insertions, 26 deletions
diff --git a/tests/wifitests/src/com/android/server/wifi/scanner/WifiScanningServiceTest.java b/tests/wifitests/src/com/android/server/wifi/scanner/WifiScanningServiceTest.java
index 1280013fe..de095a597 100644
--- a/tests/wifitests/src/com/android/server/wifi/scanner/WifiScanningServiceTest.java
+++ b/tests/wifitests/src/com/android/server/wifi/scanner/WifiScanningServiceTest.java
@@ -39,7 +39,6 @@ import static org.mockito.Mockito.anyBoolean;
import static org.mockito.Mockito.anyInt;
import static org.mockito.Mockito.anyString;
import static org.mockito.Mockito.argThat;
-import static org.mockito.Mockito.doNothing;
import static org.mockito.Mockito.doThrow;
import static org.mockito.Mockito.eq;
import static org.mockito.Mockito.inOrder;
@@ -56,7 +55,6 @@ import android.app.test.MockAnswerUtil.AnswerWithArguments;
import android.app.test.TestAlarmManager;
import android.content.BroadcastReceiver;
import android.content.Context;
-import android.location.LocationManager;
import android.net.wifi.ScanResult;
import android.net.wifi.WifiScanner;
import android.os.Binder;
@@ -85,6 +83,7 @@ import com.android.server.wifi.aware.WifiAwareMetrics;
import com.android.server.wifi.nano.WifiMetricsProto;
import com.android.server.wifi.rtt.RttMetrics;
import com.android.server.wifi.util.WifiAsyncChannel;
+import com.android.server.wifi.util.WifiPermissionsUtil;
import org.junit.After;
import org.junit.Before;
@@ -122,7 +121,7 @@ public class WifiScanningServiceTest {
@Mock FrameworkFacade mFrameworkFacade;
@Mock Clock mClock;
@Spy FakeWifiLog mLog;
- @Mock LocationManager mLocationManager;
+ @Mock WifiPermissionsUtil mWifiPermissionsUtil;
WifiMetrics mWifiMetrics;
TestLooper mLooper;
WifiScanningServiceImpl mWifiScanningServiceImpl;
@@ -135,8 +134,8 @@ public class WifiScanningServiceTest {
mAlarmManager = new TestAlarmManager();
when(mContext.getSystemService(Context.ALARM_SERVICE))
.thenReturn(mAlarmManager.getAlarmManager());
- when(mContext.getSystemService(Context.LOCATION_SERVICE))
- .thenReturn(mLocationManager);
+ when(mWifiInjector.getWifiPermissionsUtil())
+ .thenReturn(mWifiPermissionsUtil);
ChannelHelper channelHelper = new PresetKnownBandsChannelHelper(
new int[]{2400, 2450},
@@ -2507,15 +2506,16 @@ public class WifiScanningServiceTest {
}
/**
- * Verifies that clients without NETWORK_STACK permission cannot issue any messages when
- * location is turned off.
+ * Verifies that clients without NETWORK_STACK permission cannot issue any messages when they
+ * don't have the necessary location permissions & location is enabled.
*/
@Test
- public void rejectAllMessagesFromNonPrivilegedAppsWhenLocationIsTurnedOff() throws Exception {
+ public void rejectAllMessagesFromNonPrivilegedAppsWithoutLocationPermission() throws Exception {
// Start service & initialize it.
startServiceAndLoadDriver();
- // Location turned off.
- when(mLocationManager.isLocationEnabled()).thenReturn(false);
+ // Location permission or mode check fail.
+ doThrow(new SecurityException()).when(mWifiPermissionsUtil)
+ .enforceCanAccessScanResultsForWifiScanner(any(), eq(Binder.getCallingUid()));
Handler handler = mock(Handler.class);
BidirectionalAsyncChannel controlChannel = connectChannel(handler);
@@ -2551,20 +2551,4 @@ public class WifiScanningServiceTest {
// Ensure we didn't start any scans after.
verifyNoMoreInteractions(mWifiScannerImpl);
}
-
- /**
- * Verifies that clients with NETWORK_STACK permission can issue any messages even when
- * location is turned off.
- */
- @Test
- public void allowMessagesFromPrivilegedAppsWhenLocationIsTurnedOff() throws Exception {
- // Location turned off.
- when(mLocationManager.isLocationEnabled()).thenReturn(false);
- // Client does have NETWORK_STACK permission.
- doNothing().when(mContext).enforcePermission(
- eq(Manifest.permission.NETWORK_STACK), anyInt(), eq(Binder.getCallingUid()), any());
-
- sendSingleScanAllChannelsRequest();
- sendBackgroundScanBandRequest();
- }
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-01 12:24:11 +0000