blob: 37fd88c667d53a37babc65eb5018079092e1ca68 [file] [log] [blame]
// Copyright 2019 The Chromium OS Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "cryptohome/userdataauth.h"
#include <memory>
#include <vector>
#include <base/files/file_path.h>
#include <base/files/file_util.h>
#include <base/location.h>
#include <base/stl_util.h>
#include <brillo/cryptohome.h>
#include <chaps/token_manager_client_mock.h>
#include <dbus/mock_bus.h>
#include <metrics/metrics_library_mock.h>
#include <tpm_manager-client-test/tpm_manager/dbus-proxy-mocks.h>
#include "cryptohome/bootlockbox/mock_boot_lockbox.h"
#include "cryptohome/challenge_credentials/challenge_credentials_helper.h"
#include "cryptohome/challenge_credentials/mock_challenge_credentials_helper.h"
#include "cryptohome/cryptohome_common.h"
#include "cryptohome/cryptohome_metrics.h"
#include "cryptohome/cryptolib.h"
#include "cryptohome/filesystem_layout.h"
#include "cryptohome/homedirs.h"
#include "cryptohome/mock_arc_disk_quota.h"
#include "cryptohome/mock_crypto.h"
#include "cryptohome/mock_disk_cleanup.h"
#include "cryptohome/mock_fingerprint_manager.h"
#include "cryptohome/mock_firmware_management_parameters.h"
#include "cryptohome/mock_homedirs.h"
#include "cryptohome/mock_install_attributes.h"
#include "cryptohome/mock_key_challenge_service.h"
#include "cryptohome/mock_key_challenge_service_factory.h"
#include "cryptohome/mock_le_credential_backend.h"
#include "cryptohome/mock_mount.h"
#include "cryptohome/mock_mount_factory.h"
#include "cryptohome/mock_pkcs11_init.h"
#include "cryptohome/mock_platform.h"
#include "cryptohome/mock_tpm.h"
#include "cryptohome/mock_tpm_init.h"
#include "cryptohome/mock_vault_keyset.h"
#include "cryptohome/protobuf_test_utils.h"
#include "cryptohome/tpm.h"
using base::FilePath;
using brillo::SecureBlob;
using brillo::cryptohome::home::SanitizeUserNameWithSalt;
using ::testing::_;
using ::testing::AtLeast;
using ::testing::ByMove;
using ::testing::ElementsAre;
using ::testing::ElementsAreArray;
using ::testing::EndsWith;
using ::testing::Eq;
using ::testing::Invoke;
using ::testing::InvokeWithoutArgs;
using ::testing::Mock;
using ::testing::NiceMock;
using ::testing::Pointee;
using ::testing::Property;
using ::testing::Return;
using ::testing::ReturnRef;
using ::testing::SaveArgPointee;
using ::testing::SetArgPointee;
using ::testing::WithArgs;
namespace cryptohome {
namespace {
bool AssignSalt(size_t size, SecureBlob* salt) {
SecureBlob fake_salt(size, 'S');
salt->swap(fake_salt);
return true;
}
} // namespace
// UserDataAuthTestNotInitialized is a test fixture that does not call
// UserDataAuth::Initialize() during setup. Therefore, it's suited to tests that
// can be conducted without calling UserDataAuth::Initialize(), or for tests
// that wants some flexibility before calling UserDataAuth::Initialize(), note
// that in this case the test have to call UserDataAuth::Initialize().
class UserDataAuthTestNotInitialized : public ::testing::Test {
public:
UserDataAuthTestNotInitialized() = default;
UserDataAuthTestNotInitialized(const UserDataAuthTestNotInitialized&) =
delete;
UserDataAuthTestNotInitialized& operator=(
const UserDataAuthTestNotInitialized&) = delete;
~UserDataAuthTestNotInitialized() override = default;
void SetUp() override {
tpm_init_.set_tpm(&tpm_);
dbus::Bus::Options options;
options.bus_type = dbus::Bus::SYSTEM;
bus_ = new NiceMock<dbus::MockBus>(options);
if (!userdataauth_) {
// Note that this branch is usually taken as |userdataauth_| is usually
// NULL. The reason for this branch is because some derived-class of this
// class (such as UserDataAuthTestThreaded) need to have the constructor
// of UserDataAuth run on a specific thread, and therefore will construct
// |userdataauth_| before calling UserDataAuthTestNotInitialized::SetUp().
userdataauth_.reset(new UserDataAuth());
}
userdataauth_->set_crypto(&crypto_);
userdataauth_->set_homedirs(&homedirs_);
userdataauth_->set_install_attrs(&attrs_);
userdataauth_->set_tpm(&tpm_);
userdataauth_->set_tpm_init(&tpm_init_);
userdataauth_->set_platform(&platform_);
userdataauth_->set_chaps_client(&chaps_client_);
userdataauth_->set_boot_lockbox(&lockbox_);
userdataauth_->set_firmware_management_parameters(&fwmp_);
userdataauth_->set_fingerprint_manager(&fingerprint_manager_);
userdataauth_->set_arc_disk_quota(&arc_disk_quota_);
userdataauth_->set_disk_cleanup(&cleanup_);
userdataauth_->set_pkcs11_init(&pkcs11_init_);
userdataauth_->set_mount_factory(&mount_factory_);
userdataauth_->set_tpm_ownership_proxy(&tpm_ownership_proxy_);
userdataauth_->set_challenge_credentials_helper(
&challenge_credentials_helper_);
userdataauth_->set_key_challenge_service_factory(
&key_challenge_service_factory_);
userdataauth_->set_disable_threading(true);
ON_CALL(homedirs_, shadow_root()).WillByDefault(ReturnRef(kShadowRoot));
// Return valid values for the amount of free space.
ON_CALL(cleanup_, AmountOfFreeDiskSpace())
.WillByDefault(Return(kFreeSpaceThresholdToTriggerCleanup));
ON_CALL(cleanup_, GetFreeDiskSpaceState(_))
.WillByDefault(Return(DiskCleanup::FreeSpaceState::kNeedNormalCleanup));
// Empty token list by default. The effect is that there are no attempts
// to unload tokens unless a test explicitly sets up the token list.
ON_CALL(chaps_client_, GetTokenList(_, _)).WillByDefault(Return(true));
// Skip CleanUpStaleMounts by default.
ON_CALL(platform_, GetMountsBySourcePrefix(_, _))
.WillByDefault(Return(false));
// Setup fake salt by default.
ON_CALL(crypto_, GetOrCreateSalt(_, _, _, _))
.WillByDefault(WithArgs<1, 3>(Invoke(AssignSalt)));
// ARC Disk Quota initialization will do nothing.
ON_CALL(arc_disk_quota_, Initialize()).WillByDefault(Return());
}
// This is a utility function for tests to setup a mount for a particular
// user. After calling this function, |mount_| is available for use.
void SetupMount(const std::string& username) {
brillo::SecureBlob salt;
AssignSalt(CRYPTOHOME_DEFAULT_SALT_LENGTH, &salt);
mount_ = new NiceMock<MockMount>();
session_ = new UserSession(&homedirs_, salt, mount_);
userdataauth_->set_session_for_user(username, session_.get());
}
// This is a helper function that compute the obfuscated username with the
// fake salt.
std::string GetObfuscatedUsername(const std::string& username) {
brillo::SecureBlob salt;
AssignSalt(CRYPTOHOME_DEFAULT_SALT_LENGTH, &salt);
return SanitizeUserNameWithSalt(username, salt);
}
// Helper function for creating a brillo::Error
static brillo::ErrorPtr CreateDefaultError(const base::Location& from_here) {
brillo::ErrorPtr error;
brillo::Error::AddTo(&error, from_here, brillo::errors::dbus::kDomain,
DBUS_ERROR_FAILED, "Here's a fake error");
return error;
}
protected:
// Mock Crypto object, will be passed to UserDataAuth for its internal use.
NiceMock<MockCrypto> crypto_;
// Mock HomeDirs object, will be passed to UserDataAuth for its internal use.
NiceMock<MockHomeDirs> homedirs_;
// Mock DiskCleanup object, will be passed to UserDataAuth for its internal
// use.
NiceMock<MockDiskCleanup> cleanup_;
// Mock InstallAttributes object, will be passed to UserDataAuth for its
// internal use.
NiceMock<MockInstallAttributes> attrs_;
// Mock BootLockBox object, will be passed to UserDataAuth for its internal
// use.
NiceMock<MockBootLockbox> lockbox_;
// Mock Platform object, will be passed to UserDataAuth for its internal use.
NiceMock<MockPlatform> platform_;
// Mock TPM object, will be passed to UserDataAuth for its internal use.
NiceMock<MockTpm> tpm_;
// Mock TPM Init object, will be passed to UserDataAuth for its internal use.
NiceMock<MockTpmInit> tpm_init_;
// Mock ARC Disk Quota object, will be passed to UserDataAuth for its internal
// use.
NiceMock<MockArcDiskQuota> arc_disk_quota_;
// Mock chaps token manager client, will be passed to UserDataAuth for its
// internal use.
NiceMock<chaps::TokenManagerClientMock> chaps_client_;
// Mock PKCS#11 init object, will be passed to UserDataAuth for its internal
// use.
NiceMock<MockPkcs11Init> pkcs11_init_;
// Mock Firmware Management Parameters object, will be passed to UserDataAuth
// for its internal use.
NiceMock<MockFirmwareManagementParameters> fwmp_;
// Mock Fingerprint Manager object, will be passed to UserDataAuth for its
// internal use.
NiceMock<MockFingerprintManager> fingerprint_manager_;
// Mock tpm ownership proxy object, will be passed to UserDataAuth for its
// internal use.
NiceMock<org::chromium::TpmManagerProxyMock> tpm_ownership_proxy_;
// Mock challenge credential helper utility object, will be passed to
// UserDataAuth for its internal use.
NiceMock<MockChallengeCredentialsHelper> challenge_credentials_helper_;
// Mock factory of key challenge services, will be passed to UserDataAuth for
// its internal use.
NiceMock<MockKeyChallengeServiceFactory> key_challenge_service_factory_;
// Mock Mount Factory object, will be passed to UserDataAuth for its internal
// use.
NiceMock<MockMountFactory> mount_factory_;
// Mock DBus object, will be passed to UserDataAuth for its internal use.
scoped_refptr<NiceMock<dbus::MockBus>> bus_;
// Session object
scoped_refptr<UserSession> session_;
// This is used to hold the mount object when we create a mock mount with
// SetupMount().
scoped_refptr<MockMount> mount_;
// Declare |userdataauth_| last so it gets destroyed before all the mocks.
// This is important because otherwise the background thread may call into
// mocks that have already been destroyed.
std::unique_ptr<UserDataAuth> userdataauth_;
// Passed to homedirs_.
base::FilePath kShadowRoot = base::FilePath("/home/.shadow");
};
// Variant of UserDataAuthTestNotInitialized for DeathTest. We should be careful
// in not creating threads in this class.
using UserDataAuthTestNotInitializedDeathTest = UserDataAuthTestNotInitialized;
// Standard, fully initialized UserDataAuth test fixture
class UserDataAuthTest : public UserDataAuthTestNotInitialized {
public:
UserDataAuthTest() = default;
UserDataAuthTest(const UserDataAuthTest&) = delete;
UserDataAuthTest& operator=(const UserDataAuthTest&) = delete;
~UserDataAuthTest() override = default;
void SetUp() override {
UserDataAuthTestNotInitialized::SetUp();
ASSERT_TRUE(userdataauth_->Initialize());
}
};
namespace CryptohomeErrorCodeEquivalenceTest {
// This test is completely static, so it is not wrapped in the TEST_F() block.
static_assert(static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_NOT_SET) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_NOT_SET),
"Enum member CRYPTOHOME_ERROR_NOT_SET differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_ACCOUNT_NOT_FOUND) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_ACCOUNT_NOT_FOUND),
"Enum member CRYPTOHOME_ERROR_ACCOUNT_NOT_FOUND differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_NOT_FOUND) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_NOT_FOUND),
"Enum member CRYPTOHOME_ERROR_AUTHORIZATION_KEY_NOT_FOUND differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_FAILED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_FAILED),
"Enum member CRYPTOHOME_ERROR_AUTHORIZATION_KEY_FAILED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_NOT_IMPLEMENTED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_NOT_IMPLEMENTED),
"Enum member CRYPTOHOME_ERROR_NOT_IMPLEMENTED differs between "
"user_data_auth:: and cryptohome::");
static_assert(static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_MOUNT_FATAL) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_MOUNT_FATAL),
"Enum member CRYPTOHOME_ERROR_MOUNT_FATAL differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_MOUNT_MOUNT_POINT_BUSY) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_MOUNT_MOUNT_POINT_BUSY),
"Enum member CRYPTOHOME_ERROR_MOUNT_MOUNT_POINT_BUSY differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_TPM_COMM_ERROR) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_TPM_COMM_ERROR),
"Enum member CRYPTOHOME_ERROR_TPM_COMM_ERROR differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_TPM_DEFEND_LOCK) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_TPM_DEFEND_LOCK),
"Enum member CRYPTOHOME_ERROR_TPM_DEFEND_LOCK differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_TPM_NEEDS_REBOOT) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_TPM_NEEDS_REBOOT),
"Enum member CRYPTOHOME_ERROR_TPM_NEEDS_REBOOT differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_DENIED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_DENIED),
"Enum member CRYPTOHOME_ERROR_AUTHORIZATION_KEY_DENIED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_KEY_QUOTA_EXCEEDED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_KEY_QUOTA_EXCEEDED),
"Enum member CRYPTOHOME_ERROR_KEY_QUOTA_EXCEEDED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_KEY_LABEL_EXISTS) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_KEY_LABEL_EXISTS),
"Enum member CRYPTOHOME_ERROR_KEY_LABEL_EXISTS differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_BACKING_STORE_FAILURE) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_BACKING_STORE_FAILURE),
"Enum member CRYPTOHOME_ERROR_BACKING_STORE_FAILURE differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_UPDATE_SIGNATURE_INVALID) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_UPDATE_SIGNATURE_INVALID),
"Enum member CRYPTOHOME_ERROR_UPDATE_SIGNATURE_INVALID differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_KEY_NOT_FOUND) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_KEY_NOT_FOUND),
"Enum member CRYPTOHOME_ERROR_KEY_NOT_FOUND differs between "
"user_data_auth:: and cryptohome::");
static_assert(static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_LOCKBOX_SIGNATURE_INVALID) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_LOCKBOX_SIGNATURE_INVALID),
"Enum member CRYPTOHOME_ERROR_LOCKBOX_SIGNATURE_INVALID differs "
"between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_LOCKBOX_CANNOT_SIGN) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_LOCKBOX_CANNOT_SIGN),
"Enum member CRYPTOHOME_ERROR_LOCKBOX_CANNOT_SIGN differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_BOOT_ATTRIBUTE_NOT_FOUND) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_BOOT_ATTRIBUTE_NOT_FOUND),
"Enum member CRYPTOHOME_ERROR_BOOT_ATTRIBUTE_NOT_FOUND differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_BOOT_ATTRIBUTES_CANNOT_SIGN) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_BOOT_ATTRIBUTES_CANNOT_SIGN),
"Enum member CRYPTOHOME_ERROR_BOOT_ATTRIBUTES_CANNOT_SIGN differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_TPM_EK_NOT_AVAILABLE) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_TPM_EK_NOT_AVAILABLE),
"Enum member CRYPTOHOME_ERROR_TPM_EK_NOT_AVAILABLE differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_ATTESTATION_NOT_READY) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_ATTESTATION_NOT_READY),
"Enum member CRYPTOHOME_ERROR_ATTESTATION_NOT_READY differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_CANNOT_CONNECT_TO_CA) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_CANNOT_CONNECT_TO_CA),
"Enum member CRYPTOHOME_ERROR_CANNOT_CONNECT_TO_CA differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_CA_REFUSED_ENROLLMENT) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_CA_REFUSED_ENROLLMENT),
"Enum member CRYPTOHOME_ERROR_CA_REFUSED_ENROLLMENT differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_CA_REFUSED_CERTIFICATE) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_CA_REFUSED_CERTIFICATE),
"Enum member CRYPTOHOME_ERROR_CA_REFUSED_CERTIFICATE differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_INTERNAL_ATTESTATION_ERROR) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_INTERNAL_ATTESTATION_ERROR),
"Enum member CRYPTOHOME_ERROR_INTERNAL_ATTESTATION_ERROR differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_INVALID) ==
static_cast<int>(
cryptohome::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_INVALID),
"Enum member CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_INVALID "
"differs between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_STORE) ==
static_cast<int>(
cryptohome::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_STORE),
"Enum member CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_STORE "
"differs between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_REMOVE) ==
static_cast<int>(
cryptohome::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_REMOVE),
"Enum member CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_REMOVE "
"differs between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_MOUNT_OLD_ENCRYPTION) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_MOUNT_OLD_ENCRYPTION),
"Enum member CRYPTOHOME_ERROR_MOUNT_OLD_ENCRYPTION differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_MOUNT_PREVIOUS_MIGRATION_INCOMPLETE) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_MOUNT_PREVIOUS_MIGRATION_INCOMPLETE),
"Enum member CRYPTOHOME_ERROR_MOUNT_PREVIOUS_MIGRATION_INCOMPLETE differs "
"between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_MIGRATE_KEY_FAILED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_MIGRATE_KEY_FAILED),
"Enum member CRYPTOHOME_ERROR_MIGRATE_KEY_FAILED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_REMOVE_FAILED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_REMOVE_FAILED),
"Enum member CRYPTOHOME_ERROR_REMOVE_FAILED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_INVALID_ARGUMENT),
"Enum member CRYPTOHOME_ERROR_INVALID_ARGUMENT differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_GET_FAILED) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_GET_FAILED),
"Enum member CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_GET_FAILED differs "
"between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_SET_FAILED) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_SET_FAILED),
"Enum member CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_SET_FAILED differs "
"between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_FINALIZE_FAILED) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_FINALIZE_FAILED),
"Enum member CRYPTOHOME_ERROR_INSTALL_ATTRIBUTES_FINALIZE_FAILED differs "
"between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(
user_data_auth::
CRYPTOHOME_ERROR_UPDATE_USER_ACTIVITY_TIMESTAMP_FAILED) ==
static_cast<int>(
cryptohome::CRYPTOHOME_ERROR_UPDATE_USER_ACTIVITY_TIMESTAMP_FAILED),
"Enum member CRYPTOHOME_ERROR_UPDATE_USER_ACTIVITY_TIMESTAMP_FAILED "
"differs between user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_FAILED_TO_READ_PCR) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_FAILED_TO_READ_PCR),
"Enum member CRYPTOHOME_ERROR_FAILED_TO_READ_PCR differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_PCR_ALREADY_EXTENDED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_PCR_ALREADY_EXTENDED),
"Enum member CRYPTOHOME_ERROR_PCR_ALREADY_EXTENDED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_FAILED_TO_EXTEND_PCR) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_FAILED_TO_EXTEND_PCR),
"Enum member CRYPTOHOME_ERROR_FAILED_TO_EXTEND_PCR differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_TPM_UPDATE_REQUIRED) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_TPM_UPDATE_REQUIRED),
"Enum member CRYPTOHOME_ERROR_TPM_UPDATE_REQUIRED differs between "
"user_data_auth:: and cryptohome::");
static_assert(
static_cast<int>(user_data_auth::CRYPTOHOME_ERROR_VAULT_UNRECOVERABLE) ==
static_cast<int>(cryptohome::CRYPTOHOME_ERROR_VAULT_UNRECOVERABLE),
"Enum member CRYPTOHOME_ERROR_VAULT_UNRECOVERABLE differs between "
"user_data_auth:: and cryptohome::");
static_assert(
user_data_auth::CryptohomeErrorCode_MAX == 45,
"user_data_auth::CrytpohomeErrorCode's element count is incorrect");
static_assert(cryptohome::CryptohomeErrorCode_MAX == 45,
"cryptohome::CrytpohomeErrorCode's element count is incorrect");
} // namespace CryptohomeErrorCodeEquivalenceTest
TEST_F(UserDataAuthTest, IsMounted) {
// By default there are no mount right after initialization
EXPECT_FALSE(userdataauth_->IsMounted());
EXPECT_FALSE(userdataauth_->IsMounted("foo@gmail.com"));
// Add a mount associated with foo@gmail.com
SetupMount("foo@gmail.com");
// Test the code path that doesn't specify a user, and when there's a mount
// that's unmounted.
EXPECT_CALL(*mount_, IsMounted()).WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->IsMounted());
// Test to see if is_ephemeral works and test the code path that doesn't
// specify a user.
bool is_ephemeral = true;
EXPECT_CALL(*mount_, IsMounted()).WillOnce(Return(true));
EXPECT_CALL(*mount_, IsNonEphemeralMounted()).WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->IsMounted("", &is_ephemeral));
EXPECT_FALSE(is_ephemeral);
// Test to see if is_ephemeral works, and test the code path that specify the
// user.
EXPECT_CALL(*mount_, IsMounted()).WillOnce(Return(true));
EXPECT_CALL(*mount_, IsNonEphemeralMounted()).WillOnce(Return(false));
EXPECT_TRUE(userdataauth_->IsMounted("foo@gmail.com", &is_ephemeral));
EXPECT_TRUE(is_ephemeral);
// Note: IsMounted will not be called in this case.
EXPECT_FALSE(userdataauth_->IsMounted("bar@gmail.com", &is_ephemeral));
EXPECT_FALSE(is_ephemeral);
}
TEST_F(UserDataAuthTest, Unmount) {
// Unmount validity test.
// The tests on whether stale mount are cleaned up is in another set of tests
// called CleanUpStale_*
// Add a mount associated with foo@gmail.com
SetupMount("foo@gmail.com");
// Unmount will be successful.
EXPECT_CALL(*mount_, UnmountCryptohome()).WillOnce(Return(true));
// If anyone asks, this mount is still mounted.
ON_CALL(*mount_, IsMounted()).WillByDefault(Return(true));
// Unmount should be successful.
EXPECT_TRUE(userdataauth_->Unmount());
// It should be unmounted in the end.
EXPECT_FALSE(userdataauth_->IsMounted());
// Add another mount associated with bar@gmail.com
SetupMount("bar@gmail.com");
// Unmount will be unsuccessful.
EXPECT_CALL(*mount_, UnmountCryptohome()).WillOnce(Return(false));
// If anyone asks, this mount is still mounted.
ON_CALL(*mount_, IsMounted()).WillByDefault(Return(true));
// Unmount should be honest about failures.
EXPECT_FALSE(userdataauth_->Unmount());
// Unmount will remove all mounts even if it failed.
EXPECT_FALSE(userdataauth_->IsMounted());
}
TEST_F(UserDataAuthTest, InitializePkcs11Success) {
// This test the most common success case for PKCS#11 initialization.
EXPECT_FALSE(userdataauth_->IsMounted());
// Add a mount associated with foo@gmail.com
SetupMount("foo@gmail.com");
// PKCS#11 will initialization works only when it's mounted.
ON_CALL(*mount_, IsMounted()).WillByDefault(Return(true));
// The initialization code should at least check, right?
EXPECT_CALL(*mount_, IsMounted())
.Times(AtLeast(1))
.WillRepeatedly(Return(true));
// |mount_| should get a request to insert PKCS#11 token.
EXPECT_CALL(*mount_, InsertPkcs11Token()).WillOnce(Return(true));
userdataauth_->InitializePkcs11(session_.get());
EXPECT_EQ(mount_->pkcs11_state(), cryptohome::Mount::kIsInitialized);
}
TEST_F(UserDataAuthTest, InitializePkcs11TpmNotOwned) {
// Test when TPM isn't owned.
// Add a mount associated with foo@gmail.com
SetupMount("foo@gmail.com");
// PKCS#11 will initialization works only when it's mounted.
ON_CALL(*mount_, IsMounted()).WillByDefault(Return(true));
// |mount_| should not get a request to insert PKCS#11 token.
EXPECT_CALL(*mount_, InsertPkcs11Token()).Times(0);
// TPM is enabled but not owned.
ON_CALL(tpm_, IsEnabled()).WillByDefault(Return(true));
EXPECT_CALL(tpm_, IsOwned()).Times(AtLeast(1)).WillRepeatedly(Return(false));
userdataauth_->InitializePkcs11(session_.get());
EXPECT_EQ(mount_->pkcs11_state(), cryptohome::Mount::kIsWaitingOnTPM);
// We'll need to call InsertPkcs11Token() and IsEnabled() later in the test.
Mock::VerifyAndClearExpectations(mount_.get());
Mock::VerifyAndClearExpectations(&tpm_);
// Next check when the TPM is now owned.
// The initialization code should at least check, right?
EXPECT_CALL(*mount_, IsMounted())
.Times(AtLeast(1))
.WillRepeatedly(Return(true));
// |mount_| should get a request to insert PKCS#11 token.
EXPECT_CALL(*mount_, InsertPkcs11Token()).WillOnce(Return(true));
// TPM is enabled and owned.
ON_CALL(tpm_, IsEnabled()).WillByDefault(Return(true));
EXPECT_CALL(tpm_, IsOwned()).Times(AtLeast(1)).WillRepeatedly(Return(true));
userdataauth_->InitializePkcs11(session_.get());
EXPECT_EQ(mount_->pkcs11_state(), cryptohome::Mount::kIsInitialized);
}
TEST_F(UserDataAuthTest, InitializePkcs11Unmounted) {
// Add a mount associated with foo@gmail.com
SetupMount("foo@gmail.com");
ON_CALL(*mount_, IsMounted()).WillByDefault(Return(false));
// The initialization code should at least check, right?
EXPECT_CALL(*mount_, IsMounted())
.Times(AtLeast(1))
.WillRepeatedly(Return(false));
// |mount_| should not get a request to insert PKCS#11 token.
EXPECT_CALL(*mount_, InsertPkcs11Token()).Times(0);
userdataauth_->InitializePkcs11(session_.get());
EXPECT_EQ(mount_->pkcs11_state(), cryptohome::Mount::kUninitialized);
}
TEST_F(UserDataAuthTest, Pkcs11IsTpmTokenReady) {
// When there's no mount at all, it should be true.
EXPECT_TRUE(userdataauth_->Pkcs11IsTpmTokenReady());
constexpr char kUsername1[] = "foo@gmail.com";
constexpr char kUsername2[] = "bar@gmail.com";
brillo::SecureBlob salt;
AssignSalt(CRYPTOHOME_DEFAULT_SALT_LENGTH, &salt);
// Check when there's 1 mount, and it's initialized.
scoped_refptr<NiceMock<MockMount>> mount1 = new NiceMock<MockMount>();
scoped_refptr<UserSession> session1 =
new UserSession(&homedirs_, salt, mount1);
userdataauth_->set_session_for_user(kUsername1, session1.get());
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsInitialized));
EXPECT_TRUE(userdataauth_->Pkcs11IsTpmTokenReady());
// Check various other PKCS#11 states.
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kUninitialized));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsWaitingOnTPM));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsBeingInitialized));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsFailed));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kInvalidState));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
// Check when there's another mount.
scoped_refptr<NiceMock<MockMount>> mount2 = new NiceMock<MockMount>();
scoped_refptr<UserSession> session2 =
new UserSession(&homedirs_, salt, mount2);
userdataauth_->set_session_for_user(kUsername2, session2.get());
// Both is initialized.
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsInitialized));
EXPECT_CALL(*mount2, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsInitialized));
EXPECT_TRUE(userdataauth_->Pkcs11IsTpmTokenReady());
// Only one is initialized.
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kIsInitialized));
EXPECT_CALL(*mount2, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kUninitialized));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
// Both uninitialized.
EXPECT_CALL(*mount1, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kUninitialized));
EXPECT_CALL(*mount2, pkcs11_state())
.WillOnce(Return(cryptohome::Mount::kUninitialized));
EXPECT_FALSE(userdataauth_->Pkcs11IsTpmTokenReady());
}
TEST_F(UserDataAuthTest, Pkcs11GetTpmTokenInfo) {
user_data_auth::TpmTokenInfo info;
constexpr CK_SLOT_ID kSlot = 42;
constexpr char kUsername1[] = "foo@gmail.com";
// Check the system token case.
EXPECT_CALL(pkcs11_init_, GetTpmTokenSlotForPath(_, _))
.WillOnce(DoAll(SetArgPointee<1>(kSlot), Return(true)));
info = userdataauth_->Pkcs11GetTpmTokenInfo("");
EXPECT_EQ(info.label(), Pkcs11Init::kDefaultSystemLabel);
EXPECT_EQ(info.user_pin(), Pkcs11Init::kDefaultPin);
EXPECT_EQ(info.slot(), kSlot);
// Check the user token case.
EXPECT_CALL(pkcs11_init_, GetTpmTokenSlotForPath(_, _))
.WillOnce(DoAll(SetArgPointee<1>(kSlot), Return(true)));
info = userdataauth_->Pkcs11GetTpmTokenInfo(kUsername1);
// Note that the label will usually be appended with a part of the sanitized
// username. However, the sanitized username cannot be generated during
// testing as we can't mock global functions in libbrillo. Therefore, we'll
// only test that it is prefixed by prefix.
EXPECT_EQ(info.label().substr(0, strlen(Pkcs11Init::kDefaultUserLabelPrefix)),
Pkcs11Init::kDefaultUserLabelPrefix);
EXPECT_EQ(info.user_pin(), Pkcs11Init::kDefaultPin);
EXPECT_EQ(info.slot(), kSlot);
// Verify that if GetTpmTokenSlotForPath fails, we'll get -1 for slot.
EXPECT_CALL(pkcs11_init_, GetTpmTokenSlotForPath(_, _))
.WillOnce(DoAll(SetArgPointee<1>(kSlot), Return(false)));
info = userdataauth_->Pkcs11GetTpmTokenInfo("");
EXPECT_EQ(info.slot(), -1);
EXPECT_CALL(pkcs11_init_, GetTpmTokenSlotForPath(_, _))
.WillOnce(DoAll(SetArgPointee<1>(kSlot), Return(false)));
info = userdataauth_->Pkcs11GetTpmTokenInfo(kUsername1);
EXPECT_EQ(info.slot(), -1);
}
TEST_F(UserDataAuthTest, Pkcs11Terminate) {
// Check that it'll not crash when there's no mount
userdataauth_->Pkcs11Terminate();
// Check that we'll indeed get the Mount object to remove the PKCS#11 token.
constexpr char kUsername1[] = "foo@gmail.com";
SetupMount(kUsername1);
EXPECT_CALL(*mount_, RemovePkcs11Token()).WillOnce(Return());
userdataauth_->Pkcs11Terminate();
}
TEST_F(UserDataAuthTestNotInitialized, InstallAttributesEnterpriseOwned) {
EXPECT_CALL(attrs_, Init(_)).WillOnce(Return(true));
std::string str_true = "true";
std::vector<uint8_t> blob_true(str_true.begin(), str_true.end());
blob_true.push_back(0);
EXPECT_CALL(attrs_, Get("enterprise.owned", _))
.WillOnce(DoAll(SetArgPointee<1>(blob_true), Return(true)));
userdataauth_->Initialize();
userdataauth_->set_dbus(bus_);
userdataauth_->PostDBusInitialize();
EXPECT_TRUE(userdataauth_->IsEnterpriseOwned());
}
TEST_F(UserDataAuthTestNotInitialized, InstallAttributesNotEnterpriseOwned) {
EXPECT_CALL(attrs_, Init(_)).WillOnce(Return(true));
std::string str_true = "false";
std::vector<uint8_t> blob_true(str_true.begin(), str_true.end());
blob_true.push_back(0);
EXPECT_CALL(attrs_, Get("enterprise.owned", _))
.WillOnce(DoAll(SetArgPointee<1>(blob_true), Return(true)));
userdataauth_->Initialize();
userdataauth_->set_dbus(bus_);
userdataauth_->PostDBusInitialize();
EXPECT_FALSE(userdataauth_->IsEnterpriseOwned());
}
constexpr char kInstallAttributeName[] = "SomeAttribute";
constexpr uint8_t kInstallAttributeData[] = {0x01, 0x02, 0x00,
0x03, 0xFF, 0xAB};
TEST_F(UserDataAuthTest, InstallAttributesGet) {
// Test for successful case.
EXPECT_CALL(attrs_, Get(kInstallAttributeName, _))
.WillOnce(
Invoke([](const std::string& name, std::vector<uint8_t>* data_out) {
*data_out = std::vector<uint8_t>(
kInstallAttributeData,
kInstallAttributeData + sizeof(kInstallAttributeData));
return true;
}));
std::vector<uint8_t> data;
EXPECT_TRUE(
userdataauth_->InstallAttributesGet(kInstallAttributeName, &data));
EXPECT_THAT(data, ElementsAreArray(kInstallAttributeData));
// Test for unsuccessful case.
EXPECT_CALL(attrs_, Get(kInstallAttributeName, _)).WillOnce(Return(false));
EXPECT_FALSE(
userdataauth_->InstallAttributesGet(kInstallAttributeName, &data));
}
TEST_F(UserDataAuthTest, InstallAttributesSet) {
// Test for successful case.
EXPECT_CALL(attrs_, Set(kInstallAttributeName,
ElementsAreArray(kInstallAttributeData)))
.WillOnce(Return(true));
std::vector<uint8_t> data(
kInstallAttributeData,
kInstallAttributeData + sizeof(kInstallAttributeData));
EXPECT_TRUE(userdataauth_->InstallAttributesSet(kInstallAttributeName, data));
// Test for unsuccessful case.
EXPECT_CALL(attrs_, Set(kInstallAttributeName,
ElementsAreArray(kInstallAttributeData)))
.WillOnce(Return(false));
EXPECT_FALSE(
userdataauth_->InstallAttributesSet(kInstallAttributeName, data));
}
TEST_F(UserDataAuthTest, InstallAttributesFinalize) {
// Test for successful case.
EXPECT_CALL(attrs_, Finalize()).WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->InstallAttributesFinalize());
// Test for unsuccessful case.
EXPECT_CALL(attrs_, Finalize()).WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->InstallAttributesFinalize());
}
TEST_F(UserDataAuthTest, InstallAttributesCount) {
constexpr int kCount = 42; // The Answer!!
EXPECT_CALL(attrs_, Count()).WillOnce(Return(kCount));
EXPECT_EQ(kCount, userdataauth_->InstallAttributesCount());
}
TEST_F(UserDataAuthTest, InstallAttributesIsSecure) {
// Test for successful case.
EXPECT_CALL(attrs_, is_secure()).WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->InstallAttributesIsSecure());
// Test for unsuccessful case.
EXPECT_CALL(attrs_, is_secure()).WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->InstallAttributesIsSecure());
}
TEST_F(UserDataAuthTest, InstallAttributesGetStatus) {
std::vector<InstallAttributes::Status> status_list = {
InstallAttributes::Status::kUnknown,
InstallAttributes::Status::kTpmNotOwned,
InstallAttributes::Status::kFirstInstall,
InstallAttributes::Status::kValid, InstallAttributes::Status::kInvalid};
for (auto& s : status_list) {
EXPECT_CALL(attrs_, status()).WillOnce(Return(s));
EXPECT_EQ(s, userdataauth_->InstallAttributesGetStatus());
}
}
TEST_F(UserDataAuthTestNotInitialized, InstallAttributesStatusToProtoEnum) {
EXPECT_EQ(user_data_auth::InstallAttributesState::UNKNOWN,
UserDataAuth::InstallAttributesStatusToProtoEnum(
InstallAttributes::Status::kUnknown));
EXPECT_EQ(user_data_auth::InstallAttributesState::TPM_NOT_OWNED,
UserDataAuth::InstallAttributesStatusToProtoEnum(
InstallAttributes::Status::kTpmNotOwned));
EXPECT_EQ(user_data_auth::InstallAttributesState::FIRST_INSTALL,
UserDataAuth::InstallAttributesStatusToProtoEnum(
InstallAttributes::Status::kFirstInstall));
EXPECT_EQ(user_data_auth::InstallAttributesState::VALID,
UserDataAuth::InstallAttributesStatusToProtoEnum(
InstallAttributes::Status::kValid));
EXPECT_EQ(user_data_auth::InstallAttributesState::INVALID,
UserDataAuth::InstallAttributesStatusToProtoEnum(
InstallAttributes::Status::kInvalid));
static_assert(
user_data_auth::InstallAttributesState_MAX == 4,
"Incorrect element count in user_data_auth::InstallAttributesState");
static_assert(static_cast<int>(InstallAttributes::Status::COUNT) == 5,
"Incorrect element count in InstallAttributes::Status");
}
TEST_F(UserDataAuthTestNotInitialized, InitializeArcDiskQuota) {
EXPECT_CALL(arc_disk_quota_, Initialize()).Times(1);
EXPECT_TRUE(userdataauth_->Initialize());
}
TEST_F(UserDataAuthTestNotInitialized, IsArcQuotaSupported) {
EXPECT_CALL(arc_disk_quota_, IsQuotaSupported()).WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->IsArcQuotaSupported());
EXPECT_CALL(arc_disk_quota_, IsQuotaSupported()).WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->IsArcQuotaSupported());
}
TEST_F(UserDataAuthTestNotInitialized, GetCurrentSpaceFoArcUid) {
constexpr uid_t kUID = 42; // The Answer.
constexpr int64_t kSpaceUsage = 98765432198765;
EXPECT_CALL(arc_disk_quota_, GetCurrentSpaceForUid(kUID))
.WillOnce(Return(kSpaceUsage));
EXPECT_EQ(kSpaceUsage, userdataauth_->GetCurrentSpaceForArcUid(kUID));
}
TEST_F(UserDataAuthTestNotInitialized, GetCurrentSpaceForArcGid) {
constexpr uid_t kGID = 42; // Yet another answer.
constexpr int64_t kSpaceUsage = 87654321987654;
EXPECT_CALL(arc_disk_quota_, GetCurrentSpaceForGid(kGID))
.WillOnce(Return(kSpaceUsage));
EXPECT_EQ(kSpaceUsage, userdataauth_->GetCurrentSpaceForArcGid(kGID));
}
TEST_F(UserDataAuthTestNotInitialized, GetCurrentSpaceForArcProjectId) {
constexpr int kProjectId = 1001; // Yet another answer.
constexpr int64_t kSpaceUsage = 87654321987654;
EXPECT_CALL(arc_disk_quota_, GetCurrentSpaceForProjectId(kProjectId))
.WillOnce(Return(kSpaceUsage));
EXPECT_EQ(kSpaceUsage,
userdataauth_->GetCurrentSpaceForArcProjectId(kProjectId));
}
TEST_F(UserDataAuthTestNotInitialized, SeedUrandomInitialize) {
// Should Get Random from TPM
EXPECT_CALL(tpm_, GetRandomDataBlob(kDefaultRandomSeedLength, _))
.WillOnce(Return(true));
EXPECT_CALL(platform_, WriteFile(FilePath(kDefaultEntropySourcePath), _))
.WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->Initialize());
}
TEST_F(UserDataAuthTest, LockToSingleUserMountUntilRebootValidity20) {
constexpr char kUsername1[] = "foo@gmail.com";
cryptohome::AccountIdentifier account_id;
account_id.set_account_id(kUsername1);
const std::string kUsername1Obfuscated = GetObfuscatedUsername(kUsername1);
// We'll test the TPM 2.0 case.
ON_CALL(tpm_, GetVersion()).WillByDefault(Return(cryptohome::Tpm::TPM_2_0));
EXPECT_CALL(homedirs_, SetLockedToSingleUser()).WillOnce(Return(true));
brillo::Blob empty_pcr = brillo::Blob(32, 0);
EXPECT_CALL(tpm_, ReadPCR(kTpmSingleUserPCR, _))
.WillOnce(DoAll(SetArgPointee<1>(empty_pcr), Return(true)));
brillo::Blob extention_blob(kUsername1Obfuscated.begin(),
kUsername1Obfuscated.end());
EXPECT_CALL(tpm_, ExtendPCR(kTpmSingleUserPCR, extention_blob))
.WillOnce(Return(true));
EXPECT_EQ(userdataauth_->LockToSingleUserMountUntilReboot(account_id),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
}
TEST_F(UserDataAuthTest, LockToSingleUserMountUntilRebootValidity12) {
constexpr char kUsername1[] = "foo@gmail.com";
cryptohome::AccountIdentifier account_id;
account_id.set_account_id(kUsername1);
const std::string kUsername1Obfuscated = GetObfuscatedUsername(kUsername1);
// We'll test the TPM 1.2 case.
ON_CALL(tpm_, GetVersion()).WillByDefault(Return(cryptohome::Tpm::TPM_1_2));
EXPECT_CALL(homedirs_, SetLockedToSingleUser()).WillOnce(Return(true));
brillo::Blob empty_pcr = brillo::Blob(32, 0);
EXPECT_CALL(tpm_, ReadPCR(kTpmSingleUserPCR, _))
.WillOnce(DoAll(SetArgPointee<1>(empty_pcr), Return(true)));
brillo::Blob extention_blob(kUsername1Obfuscated.begin(),
kUsername1Obfuscated.end());
extention_blob = CryptoLib::Sha1(extention_blob);
EXPECT_CALL(tpm_, ExtendPCR(kTpmSingleUserPCR, extention_blob))
.WillOnce(Return(true));
EXPECT_EQ(userdataauth_->LockToSingleUserMountUntilReboot(account_id),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
}
TEST_F(UserDataAuthTest, LockToSingleUserMountUntilRebootReadPCRFail) {
constexpr char kUsername1[] = "foo@gmail.com";
cryptohome::AccountIdentifier account_id;
account_id.set_account_id(kUsername1);
ON_CALL(homedirs_, SetLockedToSingleUser()).WillByDefault(Return(true));
EXPECT_CALL(tpm_, ReadPCR(kTpmSingleUserPCR, _)).WillOnce(Return(false));
EXPECT_EQ(userdataauth_->LockToSingleUserMountUntilReboot(account_id),
user_data_auth::CRYPTOHOME_ERROR_FAILED_TO_READ_PCR);
}
TEST_F(UserDataAuthTest, LockToSingleUserMountUntilRebootAlreadyExtended) {
constexpr char kUsername1[] = "foo@gmail.com";
cryptohome::AccountIdentifier account_id;
account_id.set_account_id(kUsername1);
// We'll test the TPM 2.0 case.
ON_CALL(tpm_, GetVersion()).WillByDefault(Return(cryptohome::Tpm::TPM_2_0));
ON_CALL(homedirs_, SetLockedToSingleUser()).WillByDefault(Return(true));
brillo::Blob empty_pcr =
brillo::Blob(32, 0x42); // Incorrect PCR value, should cause it to fail.
EXPECT_CALL(tpm_, ReadPCR(kTpmSingleUserPCR, _))
.WillOnce(DoAll(SetArgPointee<1>(empty_pcr), Return(true)));
EXPECT_EQ(userdataauth_->LockToSingleUserMountUntilReboot(account_id),
user_data_auth::CRYPTOHOME_ERROR_PCR_ALREADY_EXTENDED);
}
TEST_F(UserDataAuthTest, LockToSingleUserMountUntilRebootExtendFail) {
constexpr char kUsername1[] = "foo@gmail.com";
cryptohome::AccountIdentifier account_id;
account_id.set_account_id(kUsername1);
const std::string kUsername1Obfuscated = GetObfuscatedUsername(kUsername1);
// We'll test the TPM 2.0 case.
ON_CALL(tpm_, GetVersion()).WillByDefault(Return(cryptohome::Tpm::TPM_2_0));
EXPECT_CALL(homedirs_, SetLockedToSingleUser()).WillOnce(Return(true));
brillo::Blob empty_pcr = brillo::Blob(32, 0);
EXPECT_CALL(tpm_, ReadPCR(kTpmSingleUserPCR, _))
.WillOnce(DoAll(SetArgPointee<1>(empty_pcr), Return(true)));
brillo::Blob extention_blob(kUsername1Obfuscated.begin(),
kUsername1Obfuscated.end());
EXPECT_CALL(tpm_, ExtendPCR(kTpmSingleUserPCR, extention_blob))
.WillOnce(Return(false));
EXPECT_EQ(userdataauth_->LockToSingleUserMountUntilReboot(account_id),
user_data_auth::CRYPTOHOME_ERROR_FAILED_TO_EXTEND_PCR);
}
// ================== Firmware Management Parameters tests ==================
TEST_F(UserDataAuthTest, GetFirmwareManagementParametersSuccess) {
const std::string kHash = "its_a_hash";
std::vector<uint8_t> hash(kHash.begin(), kHash.end());
constexpr uint32_t kFlag = 0x1234;
EXPECT_CALL(fwmp_, Load()).WillOnce(Return(true));
EXPECT_CALL(fwmp_, GetFlags(_))
.WillRepeatedly(DoAll(SetArgPointee<0>(kFlag), Return(true)));
EXPECT_CALL(fwmp_, GetDeveloperKeyHash(_))
.WillRepeatedly(DoAll(SetArgPointee<0>(hash), Return(true)));
user_data_auth::FirmwareManagementParameters fwmp;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET,
userdataauth_->GetFirmwareManagementParameters(&fwmp));
EXPECT_EQ(kFlag, fwmp.flags());
EXPECT_EQ(kHash, fwmp.developer_key_hash());
}
TEST_F(UserDataAuthTest, GetFirmwareManagementParametersError) {
constexpr uint32_t kFlag = 0x1234;
// Test Load() fail.
EXPECT_CALL(fwmp_, Load()).WillRepeatedly(Return(false));
user_data_auth::FirmwareManagementParameters fwmp;
EXPECT_EQ(
user_data_auth::CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_INVALID,
userdataauth_->GetFirmwareManagementParameters(&fwmp));
// Test GetFlags() fail.
EXPECT_CALL(fwmp_, Load()).WillRepeatedly(Return(true));
EXPECT_CALL(fwmp_, GetFlags(_)).WillRepeatedly(Return(false));
EXPECT_EQ(
user_data_auth::CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_INVALID,
userdataauth_->GetFirmwareManagementParameters(&fwmp));
// Test GetDeveloperKeyHash fail.
EXPECT_CALL(fwmp_, Load()).WillRepeatedly(Return(true));
EXPECT_CALL(fwmp_, GetFlags(_))
.WillRepeatedly(DoAll(SetArgPointee<0>(kFlag), Return(true)));
EXPECT_CALL(fwmp_, GetDeveloperKeyHash(_)).WillRepeatedly(Return(false));
EXPECT_EQ(
user_data_auth::CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_INVALID,
userdataauth_->GetFirmwareManagementParameters(&fwmp));
}
TEST_F(UserDataAuthTest, SetFirmwareManagementParametersSuccess) {
const std::string kHash = "its_a_hash";
std::vector<uint8_t> hash(kHash.begin(), kHash.end());
constexpr uint32_t kFlag = 0x1234;
std::vector<uint8_t> out_hash;
EXPECT_CALL(fwmp_, Create()).WillOnce(Return(true));
EXPECT_CALL(fwmp_, Store(kFlag, _))
.WillOnce(DoAll(SaveArgPointee<1>(&out_hash), Return(true)));
user_data_auth::FirmwareManagementParameters fwmp;
fwmp.set_flags(kFlag);
fwmp.set_developer_key_hash(kHash);
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET,
userdataauth_->SetFirmwareManagementParameters(fwmp));
EXPECT_EQ(hash, out_hash);
}
TEST_F(UserDataAuthTest, SetFirmwareManagementParametersNoHash) {
constexpr uint32_t kFlag = 0x1234;
EXPECT_CALL(fwmp_, Create()).WillOnce(Return(true));
EXPECT_CALL(fwmp_, Store(kFlag, nullptr)).WillOnce(Return(true));
user_data_auth::FirmwareManagementParameters fwmp;
fwmp.set_flags(kFlag);
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET,
userdataauth_->SetFirmwareManagementParameters(fwmp));
}
TEST_F(UserDataAuthTest, SetFirmwareManagementParametersCreateError) {
const std::string kHash = "its_a_hash";
constexpr uint32_t kFlag = 0x1234;
EXPECT_CALL(fwmp_, Create()).WillOnce(Return(false));
user_data_auth::FirmwareManagementParameters fwmp;
fwmp.set_flags(kFlag);
fwmp.set_developer_key_hash(kHash);
EXPECT_EQ(user_data_auth::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_STORE,
userdataauth_->SetFirmwareManagementParameters(fwmp));
}
TEST_F(UserDataAuthTest, SetFirmwareManagementParametersStoreError) {
const std::string kHash = "its_a_hash";
constexpr uint32_t kFlag = 0x1234;
EXPECT_CALL(fwmp_, Create()).WillOnce(Return(true));
EXPECT_CALL(fwmp_, Store(_, _)).WillOnce(Return(false));
user_data_auth::FirmwareManagementParameters fwmp;
fwmp.set_flags(kFlag);
fwmp.set_developer_key_hash(kHash);
EXPECT_EQ(user_data_auth::
CRYPTOHOME_ERROR_FIRMWARE_MANAGEMENT_PARAMETERS_CANNOT_STORE,
userdataauth_->SetFirmwareManagementParameters(fwmp));
}
TEST_F(UserDataAuthTest, RemoveFirmwareManagementParametersSuccess) {
EXPECT_CALL(fwmp_, Destroy()).WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->RemoveFirmwareManagementParameters());
}
TEST_F(UserDataAuthTest, RemoveFirmwareManagementParametersError) {
EXPECT_CALL(fwmp_, Destroy()).WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->RemoveFirmwareManagementParameters());
}
TEST_F(UserDataAuthTest, GetSystemSaltSucess) {
brillo::SecureBlob salt;
AssignSalt(CRYPTOHOME_DEFAULT_SALT_LENGTH, &salt);
EXPECT_EQ(salt, userdataauth_->GetSystemSalt());
}
TEST_F(UserDataAuthTestNotInitializedDeathTest, GetSystemSaltUninitialized) {
EXPECT_DEBUG_DEATH(userdataauth_->GetSystemSalt(),
"Cannot call GetSystemSalt before initialization");
}
TEST_F(UserDataAuthTest, OwnershipCallbackValidity) {
SetupMount("foo@gmail.com");
// Called by OwnershipCallback().
EXPECT_CALL(tpm_, HandleOwnershipTakenEvent).WillOnce(Return());
// Called by ResetAllTPMContext().
EXPECT_CALL(crypto_, EnsureTpm(true)).WillOnce(Return(CryptoError::CE_NONE));
// Called by InitializeInstallAttributes()
EXPECT_CALL(attrs_, Init(_)).WillOnce(Return(true));
userdataauth_->OwnershipCallback(true, true);
}
TEST_F(UserDataAuthTest, OwnershipCallbackRepeated) {
SetupMount("foo@gmail.com");
// Called by OwnershipCallback().
EXPECT_CALL(tpm_, HandleOwnershipTakenEvent).WillOnce(Return());
// Called by ResetAllTPMContext().
EXPECT_CALL(crypto_, EnsureTpm(true)).WillOnce(Return(CryptoError::CE_NONE));
// Called by InitializeInstallAttributes()
EXPECT_CALL(attrs_, Init(_)).WillOnce(Return(true));
// Call OwnershipCallback twice and see if any of the above gets called more
// than once.
userdataauth_->OwnershipCallback(true, true);
userdataauth_->OwnershipCallback(true, true);
}
TEST_F(UserDataAuthTest, UpdateCurrentUserActivityTimestampSuccess) {
constexpr int kTimeshift = 5;
// Test case for single mount
SetupMount("foo@gmail.com");
EXPECT_CALL(*mount_, IsNonEphemeralMounted()).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, UpdateActivityTimestamp(_, _, kTimeshift))
.WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->UpdateCurrentUserActivityTimestamp(kTimeshift));
// Test case for multiple mounts
scoped_refptr<MockMount> prev_mount = mount_;
SetupMount("bar@gmail.com");
EXPECT_CALL(*mount_, IsNonEphemeralMounted()).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, UpdateActivityTimestamp(_, _, kTimeshift))
.WillOnce(Return(true))
.WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->UpdateCurrentUserActivityTimestamp(kTimeshift));
}
TEST_F(UserDataAuthTest, UpdateCurrentUserActivityTimestampFailure) {
constexpr int kTimeshift = 5;
// Test case for single mount
SetupMount("foo@gmail.com");
EXPECT_CALL(*mount_, IsNonEphemeralMounted()).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, UpdateActivityTimestamp(_, _, kTimeshift))
.WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->UpdateCurrentUserActivityTimestamp(kTimeshift));
}
// ======================= CleanUpStaleMounts tests ==========================
namespace {
struct Mounts {
const FilePath src;
const FilePath dst;
};
const std::vector<Mounts> kShadowMounts = {
{FilePath("/home/.shadow/a"), FilePath("/home/root/0")},
{FilePath("/home/.shadow/a"), FilePath("/home/user/0")},
{FilePath("/home/.shadow/a"), FilePath("/home/chronos/user")},
{FilePath("/home/.shadow/a/Downloads"),
FilePath("/home/chronos/user/MyFiles/Downloads")},
{FilePath("/home/.shadow/a/server/run"),
FilePath("/daemon-store/server/a")},
{FilePath("/home/.shadow/b"), FilePath("/home/root/1")},
{FilePath("/home/.shadow/b"), FilePath("/home/user/1")},
{FilePath("/home/.shadow/b/Downloads"),
FilePath("/home/chronos/u-b/MyFiles/Downloads")},
{FilePath("/home/.shadow/b/Downloads"),
FilePath("/home/user/b/MyFiles/Downloads")},
{FilePath("/home/.shadow/b/server/run"),
FilePath("/daemon-store/server/b")},
};
// Ephemeral mounts must be at the beginning.
const std::vector<Mounts> kLoopDevMounts = {
{FilePath("/dev/loop7"), FilePath("/run/cryptohome/ephemeral_mount/1")},
{FilePath("/dev/loop7"), FilePath("/home/user/0")},
{FilePath("/dev/loop7"), FilePath("/home/root/0")},
{FilePath("/dev/loop7"), FilePath("/home/chronos/u-1")},
{FilePath("/dev/loop7"), FilePath("/home/chronos/user")},
{FilePath("/dev/loop1"), FilePath("/opt/google/containers")},
{FilePath("/dev/loop2"), FilePath("/home/root/1")},
{FilePath("/dev/loop2"), FilePath("/home/user/1")},
};
// 5 Mounts in the above are from /dev/loop7, which is ephemeral as seen
// in kLoopDevices.
const int kEphemeralMountsCount = 5;
// Constants used by CleanUpStaleMounts tests.
const std::vector<Platform::LoopDevice> kLoopDevices = {
{FilePath("/mnt/stateful_partition/encrypted.block"),
FilePath("/dev/loop0")},
{FilePath("/run/cryptohome/ephemeral_data/1"), FilePath("/dev/loop7")},
};
const std::vector<FilePath> kSparseFiles = {
FilePath("/run/cryptohome/ephemeral_data/2"),
FilePath("/run/cryptohome/ephemeral_data/1"),
};
// Utility functions used by CleanUpStaleMounts tests.
bool StaleShadowMounts(const FilePath& from_prefix,
std::multimap<const FilePath, const FilePath>* mounts) {
int i = 0;
for (const auto& m : kShadowMounts) {
if (m.src.value().find(from_prefix.value()) == 0) {
i++;
if (mounts)
mounts->insert(std::make_pair(m.src, m.dst));
}
}
return i > 0;
}
bool LoopDeviceMounts(std::multimap<const FilePath, const FilePath>* mounts) {
if (!mounts)
return false;
for (const auto& m : kLoopDevMounts)
mounts->insert(std::make_pair(m.src, m.dst));
return true;
}
bool EnumerateSparseFiles(const base::FilePath& path,
bool is_recursive,
std::vector<base::FilePath>* ent_list) {
if (path != FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir))
return false;
ent_list->insert(ent_list->begin(), kSparseFiles.begin(), kSparseFiles.end());
return true;
}
} // namespace
TEST_F(UserDataAuthTest, CleanUpStale_NoOpenFiles_Ephemeral) {
// Check that when we have ephemeral mounts, no active mounts,
// and no open filehandles, all stale mounts are unmounted, loop device is
// detached and sparse file is deleted.
EXPECT_CALL(platform_, GetMountsBySourcePrefix(homedirs_.shadow_root(), _))
.WillOnce(Return(false));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(kLoopDevices));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_))
.WillOnce(Invoke(LoopDeviceMounts));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Invoke(EnumerateSparseFiles));
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _))
.Times(kEphemeralMountsCount);
for (int i = 0; i < kEphemeralMountsCount; ++i) {
EXPECT_CALL(platform_, Unmount(kLoopDevMounts[i].dst, true, _))
.WillRepeatedly(Return(true));
}
EXPECT_CALL(platform_, DetachLoop(FilePath("/dev/loop7")))
.WillOnce(Return(true));
EXPECT_CALL(platform_, DeleteFile(kSparseFiles[0], _)).WillOnce(Return(true));
EXPECT_CALL(platform_, DeleteFile(kSparseFiles[1], _)).WillOnce(Return(true));
EXPECT_CALL(platform_, DeleteFile(kLoopDevMounts[0].dst, _))
.WillOnce(Return(true));
EXPECT_FALSE(userdataauth_->CleanUpStaleMounts(false));
}
TEST_F(UserDataAuthTest, CleanUpStale_OpenLegacy_Ephemeral) {
// Check that when we have ephemeral mounts, no active mounts,
// and some open filehandles to the legacy homedir, everything is kept.
EXPECT_CALL(platform_, GetMountsBySourcePrefix(homedirs_.shadow_root(), _))
.WillOnce(Return(false));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(kLoopDevices));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_))
.WillOnce(Invoke(LoopDeviceMounts));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Invoke(EnumerateSparseFiles));
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _))
.Times(kEphemeralMountsCount - 1);
std::vector<ProcessInformation> processes(1);
std::vector<std::string> cmd_line(1, "test");
processes[0].set_process_id(1);
processes[0].set_cmd_line(&cmd_line);
EXPECT_CALL(platform_,
GetProcessesWithOpenFiles(FilePath("/home/chronos/user"), _))
.Times(1)
.WillRepeatedly(SetArgPointee<1>(processes));
EXPECT_CALL(platform_, GetMountsBySourcePrefix(FilePath("/dev/loop7"), _))
.WillOnce(Return(false));
EXPECT_CALL(platform_, Unmount(_, _, _)).Times(0);
EXPECT_TRUE(userdataauth_->CleanUpStaleMounts(false));
}
TEST_F(UserDataAuthTest, CleanUpStale_OpenLegacy_Ephemeral_Forced) {
// Check that when we have ephemeral mounts, no active mounts,
// and some open filehandles to the legacy homedir, but cleanup is forced,
// all mounts are unmounted, loop device is detached and file is deleted.
EXPECT_CALL(platform_, GetMountsBySourcePrefix(homedirs_.shadow_root(), _))
.WillOnce(Return(false));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(kLoopDevices));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_))
.WillOnce(Invoke(LoopDeviceMounts));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Invoke(EnumerateSparseFiles));
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _)).Times(0);
for (int i = 0; i < kEphemeralMountsCount; ++i) {
EXPECT_CALL(platform_, Unmount(kLoopDevMounts[i].dst, true, _))
.WillRepeatedly(Return(true));
}
EXPECT_CALL(platform_, DetachLoop(FilePath("/dev/loop7")))
.WillOnce(Return(true));
EXPECT_CALL(platform_, DeleteFile(kSparseFiles[0], _)).WillOnce(Return(true));
EXPECT_CALL(platform_, DeleteFile(kSparseFiles[1], _)).WillOnce(Return(true));
EXPECT_CALL(platform_, DeleteFile(kLoopDevMounts[0].dst, _))
.WillOnce(Return(true));
EXPECT_FALSE(userdataauth_->CleanUpStaleMounts(true));
}
TEST_F(UserDataAuthTest, CleanUpStale_EmptyMap_NoOpenFiles_ShadowOnly) {
// Check that when we have a bunch of stale shadow mounts, no active mounts,
// and no open filehandles, all stale mounts are unmounted.
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _))
.WillOnce(Invoke(StaleShadowMounts));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Return(false));
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _))
.Times(kShadowMounts.size());
EXPECT_CALL(platform_, Unmount(_, true, _))
.Times(kShadowMounts.size())
.WillRepeatedly(Return(true));
EXPECT_FALSE(userdataauth_->CleanUpStaleMounts(false));
}
TEST_F(UserDataAuthTest, CleanUpStale_EmptyMap_NoOpenFiles_ShadowOnly_Forced) {
// Check that when we have a bunch of stale shadow mounts, no active mounts,
// and no open filehandles, all stale mounts are unmounted and we attempt
// to clear the encryption key for fscrypt/ecryptfs mounts.
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _))
.WillOnce(Invoke(StaleShadowMounts));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Return(false));
EXPECT_CALL(platform_, Unmount(_, true, _))
.Times(kShadowMounts.size())
.WillRepeatedly(Return(true));
// Expect the cleanup to clear user keys.
EXPECT_CALL(platform_, ClearUserKeyring()).WillOnce(Return(true));
EXPECT_CALL(platform_, InvalidateDirCryptoKey(_, _))
.Times(kShadowMounts.size())
.WillRepeatedly(Return(true));
EXPECT_FALSE(userdataauth_->CleanUpStaleMounts(true));
}
TEST_F(UserDataAuthTest, CleanUpStale_EmptyMap_OpenLegacy_ShadowOnly) {
// Check that when we have a bunch of stale shadow mounts, no active mounts,
// and some open filehandles to the legacy homedir, all mounts without
// filehandles are unmounted.
// Called by CleanUpStaleMounts and each time a directory is excluded.
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _))
.Times(4)
.WillRepeatedly(Invoke(StaleShadowMounts));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Return(false));
std::vector<ProcessInformation> processes(1);
std::vector<std::string> cmd_line(1, "test");
processes[0].set_process_id(1);
processes[0].set_cmd_line(&cmd_line);
// In addition to /home/chronos/user mount point, /home/.shadow/a/Downloads
// is not considered anymore, as it is under /home/.shadow/a.
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _))
.Times(kShadowMounts.size() - 3);
EXPECT_CALL(platform_,
GetProcessesWithOpenFiles(FilePath("/home/chronos/user"), _))
.Times(1)
.WillRepeatedly(SetArgPointee<1>(processes));
// Given /home/chronos/user is still used, a is still used, so only
// b mounts should be removed.
EXPECT_CALL(
platform_,
Unmount(Property(&FilePath::value,
AnyOf(EndsWith("/1"), EndsWith("b/MyFiles/Downloads"))),
true, _))
.Times(4)
.WillRepeatedly(Return(true));
EXPECT_CALL(platform_, Unmount(FilePath("/daemon-store/server/b"), true, _))
.WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->CleanUpStaleMounts(false));
}
TEST_F(UserDataAuthTest, CleanUpStale_FilledMap_NoOpenFiles_ShadowOnly) {
// Checks that when we have a bunch of stale shadow mounts, some active
// mounts, and no open filehandles, all inactive mounts are unmounted.
// ownership handed off to the Service MountMap
MockMountFactory mount_factory;
MockMount* mount = new MockMount();
EXPECT_CALL(mount_factory, New(_, _)).WillOnce(Return(mount));
userdataauth_->set_mount_factory(&mount_factory);
EXPECT_CALL(platform_, FileExists(_)).WillOnce(Return(true));
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _)).WillOnce(Return(false));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
ASSERT_TRUE(userdataauth_->Initialize());
EXPECT_CALL(lockbox_, FinalizeBoot());
EXPECT_CALL(*mount, Init()).WillOnce(Return(true));
EXPECT_CALL(homedirs_, CryptohomeExists(_)).WillOnce(Return(true));
auto vk = std::make_unique<VaultKeyset>();
EXPECT_CALL(homedirs_, LoadUnwrappedKeyset(_, _))
.WillOnce(Return(ByMove(std::move(vk))));
EXPECT_CALL(*mount, MountCryptohome(_, _, _, _, _)).WillOnce(Return(true));
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _)).WillOnce(Return(false));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
user_data_auth::MountRequest mount_req;
mount_req.mutable_account()->set_account_id("foo@bar.net");
mount_req.mutable_authorization()->mutable_key()->set_secret("key");
mount_req.mutable_authorization()->mutable_key()->mutable_data()->set_label(
"password");
mount_req.mutable_create()->set_copy_authorization_key(true);
bool mount_done = false;
userdataauth_->DoMount(
mount_req,
base::Bind(
[](bool* mount_done_ptr, const user_data_auth::MountReply& reply) {
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET, reply.error());
*mount_done_ptr = true;
},
base::Unretained(&mount_done)));
ASSERT_EQ(TRUE, mount_done);
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _))
.Times(4)
.WillRepeatedly(Invoke(StaleShadowMounts));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Return(false));
// Only 5 look ups: user/1 and root/1 are owned, children of these
// directories are excluded.
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _)).Times(5);
EXPECT_CALL(*mount, OwnsMountPoint(_)).WillRepeatedly(Return(false));
EXPECT_CALL(*mount, OwnsMountPoint(FilePath("/home/user/1")))
.WillOnce(Return(true));
EXPECT_CALL(*mount, OwnsMountPoint(FilePath("/home/root/1")))
.WillOnce(Return(true));
EXPECT_CALL(platform_,
Unmount(Property(&FilePath::value, EndsWith("/0")), true, _))
.Times(2)
.WillRepeatedly(Return(true));
EXPECT_CALL(platform_, Unmount(FilePath("/home/chronos/user"), true, _))
.WillOnce(Return(true));
EXPECT_CALL(platform_, Unmount(Property(&FilePath::value,
EndsWith("user/MyFiles/Downloads")),
true, _))
.WillOnce(Return(true));
EXPECT_CALL(platform_, Unmount(FilePath("/daemon-store/server/a"), true, _))
.WillOnce(Return(true));
std::vector<std::string> fake_token_list;
fake_token_list.push_back("/home/chronos/user/token");
fake_token_list.push_back("/home/user/1/token");
fake_token_list.push_back("/home/root/1/token");
EXPECT_CALL(chaps_client_, GetTokenList(_, _))
.WillRepeatedly(DoAll(SetArgPointee<1>(fake_token_list), Return(true)));
EXPECT_CALL(chaps_client_,
UnloadToken(_, FilePath("/home/chronos/user/token")))
.Times(1);
// Expect that CleanUpStaleMounts() tells us it skipped mounts since 1 is
// still logged in.
EXPECT_TRUE(userdataauth_->CleanUpStaleMounts(false));
}
TEST_F(UserDataAuthTest,
CleanUpStale_FilledMap_NoOpenFiles_ShadowOnly_FirstBoot) {
// Checks that when we have a bunch of stale shadow mounts, some active
// mounts, and no open filehandles, all inactive mounts are unmounted.
// ownership handed off to the Service MountMap
MockMountFactory mount_factory;
MockMount* mount = new MockMount();
EXPECT_CALL(mount_factory, New(_, _)).WillOnce(Return(mount));
userdataauth_->set_mount_factory(&mount_factory);
EXPECT_CALL(platform_, FileExists(_)).WillOnce(Return(false));
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _)).Times(0);
EXPECT_CALL(platform_, GetAttachedLoopDevices()).Times(0);
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).Times(0);
ASSERT_TRUE(userdataauth_->Initialize());
EXPECT_CALL(lockbox_, FinalizeBoot());
EXPECT_CALL(*mount, Init()).WillOnce(Return(true));
EXPECT_CALL(homedirs_, CryptohomeExists(_)).WillOnce(Return(true));
auto vk = std::make_unique<VaultKeyset>();
EXPECT_CALL(homedirs_, LoadUnwrappedKeyset(_, _))
.WillOnce(Return(ByMove(std::move(vk))));
EXPECT_CALL(*mount, MountCryptohome(_, _, _, _, _)).WillOnce(Return(true));
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _)).WillOnce(Return(false));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
user_data_auth::MountRequest mount_req;
mount_req.mutable_account()->set_account_id("foo@bar.net");
mount_req.mutable_authorization()->mutable_key()->set_secret("key");
mount_req.mutable_authorization()->mutable_key()->mutable_data()->set_label(
"password");
mount_req.mutable_create()->set_copy_authorization_key(true);
bool mount_done = false;
userdataauth_->DoMount(
mount_req,
base::Bind(
[](bool* mount_done_ptr, const user_data_auth::MountReply& reply) {
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET, reply.error());
*mount_done_ptr = true;
},
base::Unretained(&mount_done)));
ASSERT_EQ(TRUE, mount_done);
EXPECT_CALL(platform_, GetMountsBySourcePrefix(_, _))
.Times(4)
.WillRepeatedly(Invoke(StaleShadowMounts));
EXPECT_CALL(platform_, GetAttachedLoopDevices())
.WillRepeatedly(Return(std::vector<Platform::LoopDevice>()));
EXPECT_CALL(platform_, GetLoopDeviceMounts(_)).WillOnce(Return(false));
EXPECT_CALL(
platform_,
EnumerateDirectoryEntries(
FilePath(kEphemeralCryptohomeDir).Append(kSparseFileDir), _, _))
.WillOnce(Return(false));
// Only 5 look ups: user/1 and root/1 are owned, children of these
// directories are excluded.
EXPECT_CALL(platform_, GetProcessesWithOpenFiles(_, _)).Times(5);
EXPECT_CALL(*mount, OwnsMountPoint(_)).WillRepeatedly(Return(false));
EXPECT_CALL(*mount, OwnsMountPoint(FilePath("/home/user/1")))
.WillOnce(Return(true));
EXPECT_CALL(*mount, OwnsMountPoint(FilePath("/home/root/1")))
.WillOnce(Return(true));
EXPECT_CALL(platform_,
Unmount(Property(&FilePath::value, EndsWith("/0")), true, _))
.Times(2)
.WillRepeatedly(Return(true));
EXPECT_CALL(platform_, Unmount(FilePath("/home/chronos/user"), true, _))
.WillOnce(Return(true));
EXPECT_CALL(platform_, Unmount(Property(&FilePath::value,
EndsWith("user/MyFiles/Downloads")),
true, _))
.WillOnce(Return(true));
EXPECT_CALL(platform_, Unmount(FilePath("/daemon-store/server/a"), true, _))
.WillOnce(Return(true));
std::vector<std::string> fake_token_list;
fake_token_list.push_back("/home/chronos/user/token");
fake_token_list.push_back("/home/user/1/token");
fake_token_list.push_back("/home/root/1/token");
EXPECT_CALL(chaps_client_, GetTokenList(_, _))
.WillRepeatedly(DoAll(SetArgPointee<1>(fake_token_list), Return(true)));
EXPECT_CALL(chaps_client_,
UnloadToken(_, FilePath("/home/chronos/user/token")))
.Times(1);
// Expect that CleanUpStaleMounts() tells us it skipped mounts since 1 is
// still logged in.
EXPECT_TRUE(userdataauth_->CleanUpStaleMounts(false));
}
TEST_F(UserDataAuthTest, StartMigrateToDircryptoValidity) {
constexpr char kUsername1[] = "foo@gmail.com";
user_data_auth::StartMigrateToDircryptoRequest request;
request.mutable_account_id()->set_account_id(kUsername1);
request.set_minimal_migration(false);
SetupMount(kUsername1);
EXPECT_CALL(*mount_, MigrateToDircrypto(_, MigrationType::FULL))
.WillOnce(Return(true));
int success_cnt = 0;
userdataauth_->StartMigrateToDircrypto(
request,
base::Bind(
[](int* success_cnt_ptr,
const user_data_auth::DircryptoMigrationProgress& progress) {
EXPECT_EQ(progress.status(),
user_data_auth::DIRCRYPTO_MIGRATION_SUCCESS);
(*success_cnt_ptr)++;
},
base::Unretained(&success_cnt)));
EXPECT_EQ(success_cnt, 1);
}
TEST_F(UserDataAuthTest, StartMigrateToDircryptoFailure) {
constexpr char kUsername1[] = "foo@gmail.com";
user_data_auth::StartMigrateToDircryptoRequest request;
request.mutable_account_id()->set_account_id(kUsername1);
request.set_minimal_migration(false);
// Test mount non-existent.
int call_cnt = 0;
userdataauth_->StartMigrateToDircrypto(
request,
base::Bind(
[](int* call_cnt_ptr,
const user_data_auth::DircryptoMigrationProgress& progress) {
EXPECT_EQ(progress.status(),
user_data_auth::DIRCRYPTO_MIGRATION_FAILED);
(*call_cnt_ptr)++;
},
base::Unretained(&call_cnt)));
EXPECT_EQ(call_cnt, 1);
// Test MigrateToDircrypto failed
SetupMount(kUsername1);
EXPECT_CALL(*mount_, MigrateToDircrypto(_, MigrationType::FULL))
.WillOnce(Return(false));
call_cnt = 0;
userdataauth_->StartMigrateToDircrypto(
request,
base::Bind(
[](int* call_cnt_ptr,
const user_data_auth::DircryptoMigrationProgress& progress) {
EXPECT_EQ(progress.status(),
user_data_auth::DIRCRYPTO_MIGRATION_FAILED);
(*call_cnt_ptr)++;
},
base::Unretained(&call_cnt)));
EXPECT_EQ(call_cnt, 1);
}
TEST_F(UserDataAuthTest, NeedsDircryptoMigration) {
bool result;
AccountIdentifier account;
account.set_account_id("foo@gmail.com");
// Test the case when we are forced to use eCryptfs, and thus no migration is
// needed.
userdataauth_->set_force_ecryptfs(true);
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
EXPECT_EQ(userdataauth_->NeedsDircryptoMigration(account, &result),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
EXPECT_FALSE(result);
// Test the case when dircrypto is already in use.
userdataauth_->set_force_ecryptfs(false);
EXPECT_CALL(homedirs_, NeedsDircryptoMigration(_)).WillOnce(Return(false));
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
EXPECT_EQ(userdataauth_->NeedsDircryptoMigration(account, &result),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
EXPECT_FALSE(result);
// Test the case when eCryptfs is being used.
userdataauth_->set_force_ecryptfs(false);
EXPECT_CALL(homedirs_, NeedsDircryptoMigration(_)).WillOnce(Return(true));
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
EXPECT_EQ(userdataauth_->NeedsDircryptoMigration(account, &result),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
EXPECT_TRUE(result);
// Test for account not found.
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(false));
EXPECT_EQ(userdataauth_->NeedsDircryptoMigration(account, &result),
user_data_auth::CRYPTOHOME_ERROR_ACCOUNT_NOT_FOUND);
}
TEST_F(UserDataAuthTest, LowEntropyCredentialSupported) {
// Test when there's no Low Entropy Credential Backend.
EXPECT_CALL(tpm_, GetLECredentialBackend()).WillOnce(Return(nullptr));
EXPECT_FALSE(userdataauth_->IsLowEntropyCredentialSupported());
NiceMock<MockLECredentialBackend> backend;
EXPECT_CALL(tpm_, GetLECredentialBackend()).WillRepeatedly(Return(&backend));
// Test when the backend says it's not supported.
EXPECT_CALL(backend, IsSupported()).WillOnce(Return(false));
EXPECT_FALSE(userdataauth_->IsLowEntropyCredentialSupported());
// Test when it's supported.
EXPECT_CALL(backend, IsSupported()).WillOnce(Return(true));
EXPECT_TRUE(userdataauth_->IsLowEntropyCredentialSupported());
}
TEST_F(UserDataAuthTest, GetAccountDiskUsage) {
// Test when the user is non-existent.
AccountIdentifier account;
account.set_account_id("non_existent_user");
EXPECT_EQ(0, userdataauth_->GetAccountDiskUsage(account));
// Test when the user exists and home directory is not empty.
constexpr char kUsername1[] = "foo@gmail.com";
account.set_account_id(kUsername1);
constexpr int64_t kHomedirSize = 12345678912345;
EXPECT_CALL(homedirs_, ComputeDiskUsage(kUsername1))
.WillOnce(Return(kHomedirSize));
EXPECT_EQ(kHomedirSize, userdataauth_->GetAccountDiskUsage(account));
}
// A test fixture with some utility functions for testing mount and keys related
// functionalities.
class UserDataAuthExTest : public UserDataAuthTest {
public:
UserDataAuthExTest() { platform_.GetFake()->SetStandardUsersAndGroups(); }
UserDataAuthExTest(const UserDataAuthExTest&) = delete;
UserDataAuthExTest& operator=(const UserDataAuthExTest&) = delete;
~UserDataAuthExTest() override = default;
std::unique_ptr<VaultKeyset> GetNiceMockVaultKeyset(
const std::string& obfuscated_username,
const std::string& key_label) const {
// Note that technically speaking this is not strictly a mock, and probably
// closer to a stub. However, the underlying class is
// NiceMock<MockVaultKeyset>, thus we name the method accordingly.
std::unique_ptr<VaultKeyset> mvk(new NiceMock<MockVaultKeyset>);
mvk->mutable_serialized()->mutable_key_data()->set_label(key_label);
return mvk;
}
void CallCheckKeyAndVerify(
user_data_auth::CryptohomeErrorCode expected_error_code) {
// Create a callback and verify the error code there.
bool called = false;
auto on_done = base::BindOnce(
[](bool* called_ptr,
user_data_auth::CryptohomeErrorCode expected_error_code,
user_data_auth::CryptohomeErrorCode error_code) {
EXPECT_EQ(error_code, expected_error_code);
*called_ptr = true;
},
base::Unretained(&called), expected_error_code);
userdataauth_->CheckKey(*check_req_.get(), std::move(on_done));
EXPECT_TRUE(called);
}
protected:
void PrepareArguments() {
add_req_.reset(new user_data_auth::AddKeyRequest);
add_data_restore_req_.reset(new user_data_auth::AddDataRestoreKeyRequest);
check_req_.reset(new user_data_auth::CheckKeyRequest);
mount_req_.reset(new user_data_auth::MountRequest);
remove_req_.reset(new user_data_auth::RemoveKeyRequest);
mass_remove_req_.reset(new user_data_auth::MassRemoveKeysRequest);
list_keys_req_.reset(new user_data_auth::ListKeysRequest);
get_key_data_req_.reset(new user_data_auth::GetKeyDataRequest);
update_req_.reset(new user_data_auth::UpdateKeyRequest);
migrate_req_.reset(new user_data_auth::MigrateKeyRequest);
remove_homedir_req_.reset(new user_data_auth::RemoveRequest);
rename_homedir_req_.reset(new user_data_auth::RenameRequest);
}
template <class ProtoBuf>
brillo::Blob BlobFromProtobuf(const ProtoBuf& pb) {
std::string serialized;
CHECK(pb.SerializeToString(&serialized));
return brillo::BlobFromString(serialized);
}
template <class ProtoBuf>
brillo::SecureBlob SecureBlobFromProtobuf(const ProtoBuf& pb) {
std::string serialized;
CHECK(pb.SerializeToString(&serialized));
return brillo::SecureBlob(serialized);
}
std::unique_ptr<user_data_auth::AddKeyRequest> add_req_;
std::unique_ptr<user_data_auth::AddDataRestoreKeyRequest>
add_data_restore_req_;
std::unique_ptr<user_data_auth::CheckKeyRequest> check_req_;
std::unique_ptr<user_data_auth::MountRequest> mount_req_;
std::unique_ptr<user_data_auth::RemoveKeyRequest> remove_req_;
std::unique_ptr<user_data_auth::MassRemoveKeysRequest> mass_remove_req_;
std::unique_ptr<user_data_auth::ListKeysRequest> list_keys_req_;
std::unique_ptr<user_data_auth::GetKeyDataRequest> get_key_data_req_;
std::unique_ptr<user_data_auth::UpdateKeyRequest> update_req_;
std::unique_ptr<user_data_auth::MigrateKeyRequest> migrate_req_;
std::unique_ptr<user_data_auth::RemoveRequest> remove_homedir_req_;
std::unique_ptr<user_data_auth::RenameRequest> rename_homedir_req_;
static constexpr char kUser[] = "chromeos-user";
static constexpr char kKey[] = "274146c6e8886a843ddfea373e2dc71b";
};
constexpr char UserDataAuthExTest::kUser[];
constexpr char UserDataAuthExTest::kKey[];
TEST_F(UserDataAuthExTest, MountGuestValidity) {
PrepareArguments();
mount_req_->set_guest_mount(true);
SetupMount(kUser);
// Expect that existing mounts will be removed.
EXPECT_CALL(*mount_, IsMounted()).WillOnce(Return(true));
EXPECT_CALL(*mount_, UnmountCryptohome()).WillOnce(Return(true));
EXPECT_CALL(mount_factory_, New(_, _))
.WillOnce(Invoke([](Platform*, HomeDirs*) {
NiceMock<MockMount>* res = new NiceMock<MockMount>();
EXPECT_CALL(*res, Init()).WillOnce(Return(true));
EXPECT_CALL(*res, MountGuestCryptohome()).WillOnce(Return(true));
return reinterpret_cast<Mount*>(res);
}));
bool called = false;
userdataauth_->DoMount(
*mount_req_,
base::BindOnce(
[](bool* called_ptr, const user_data_auth::MountReply& reply) {
*called_ptr = true;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET, reply.error());
},
base::Unretained(&called)));
EXPECT_TRUE(called);
EXPECT_NE(userdataauth_->get_session_for_user(
brillo::cryptohome::home::kGuestUserName),
nullptr);
}
TEST_F(UserDataAuthExTest, MountGuestMountPointBusy) {
PrepareArguments();
mount_req_->set_guest_mount(true);
SetupMount(kUser);
// Expect that existing mounts will be removed, but unmounting will fail.
EXPECT_CALL(*mount_, IsMounted()).WillOnce(Return(true));
EXPECT_CALL(*mount_, UnmountCryptohome()).WillOnce(Return(false));
EXPECT_CALL(mount_factory_, New(_, _)).Times(0);
bool called = false;
userdataauth_->DoMount(
*mount_req_,
base::BindOnce(
[](bool* called_ptr, const user_data_auth::MountReply& reply) {
*called_ptr = true;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_MOUNT_MOUNT_POINT_BUSY,
reply.error());
},
base::Unretained(&called)));
EXPECT_TRUE(called);
EXPECT_EQ(userdataauth_->get_session_for_user(
brillo::cryptohome::home::kGuestUserName),
nullptr);
}
TEST_F(UserDataAuthExTest, MountGuestMountFailed) {
PrepareArguments();
mount_req_->set_guest_mount(true);
EXPECT_CALL(mount_factory_, New(_, _))
.WillOnce(Invoke([](Platform*, HomeDirs*) {
NiceMock<MockMount>* res = new NiceMock<MockMount>();
EXPECT_CALL(*res, Init()).WillOnce(Return(true));
EXPECT_CALL(*res, MountGuestCryptohome()).WillOnce(Return(false));
return reinterpret_cast<Mount*>(res);
}));
bool called = false;
userdataauth_->DoMount(
*mount_req_,
base::BindOnce(
[](bool* called_ptr, const user_data_auth::MountReply& reply) {
*called_ptr = true;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_MOUNT_FATAL,
reply.error());
},
base::Unretained(&called)));
EXPECT_TRUE(called);
}
TEST_F(UserDataAuthExTest, MountInvalidArgs) {
// Note that this test doesn't distinguish between different causes of invalid
// argument, that is, this doesn't check that
// CRYPTOHOME_ERROR_INVALID_ARGUMENT is coming back because of the right
// reason. This is because in the current structuring of the code, it would
// not be possible to distinguish between those cases. This test only checks
// that parameters that should lead to invalid argument does indeed lead to
// invalid argument error.
bool called;
// This calls DoMount and check that the result is reported (i.e. the callback
// is called), and is CRYPTOHOME_ERROR_INVALID_ARGUMENT.
auto CallDoMountAndCheckResultIsInvalidArgument = [&called, this]() {
called = false;
userdataauth_->DoMount(
*mount_req_,
base::BindOnce(
[](bool* called_ptr, const user_data_auth::MountReply& reply) {
*called_ptr = true;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT,
reply.error());
},
base::Unretained(&called)));
EXPECT_TRUE(called);
};
// Test for case with no email.
PrepareArguments();
CallDoMountAndCheckResultIsInvalidArgument();
// Test for case with no secrets.
PrepareArguments();
mount_req_->mutable_account()->set_account_id("foo@gmail.com");
CallDoMountAndCheckResultIsInvalidArgument();
// Test for case with empty secret.
PrepareArguments();
mount_req_->mutable_account()->set_account_id("foo@gmail.com");
mount_req_->mutable_authorization()->mutable_key()->set_secret("");
CallDoMountAndCheckResultIsInvalidArgument();
// Test for create request given but without key.
PrepareArguments();
mount_req_->mutable_account()->set_account_id("foo@gmail.com");
mount_req_->mutable_authorization()->mutable_key()->set_secret("blerg");
mount_req_->mutable_create();
CallDoMountAndCheckResultIsInvalidArgument();
// Test for create request given but with an empty key.
PrepareArguments();
mount_req_->mutable_account()->set_account_id("foo@gmail.com");
mount_req_->mutable_authorization()->mutable_key()->set_secret("blerg");
mount_req_->mutable_create()->add_keys();
// TODO(wad) Add remaining missing field tests and NULL tests
CallDoMountAndCheckResultIsInvalidArgument();
}
TEST_F(UserDataAuthExTest, MountPublicWithExistingMounts) {
constexpr char kUser[] = "chromeos-user";
PrepareArguments();
SetupMount("foo@gmail.com");
mount_req_->mutable_account()->set_account_id(kUser);
mount_req_->set_public_mount(true);
EXPECT_CALL(lockbox_, FinalizeBoot());
bool called = false;
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
userdataauth_->DoMount(
*mount_req_,
base::BindOnce(
[](bool* called_ptr, const user_data_auth::MountReply& reply) {
*called_ptr = true;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_MOUNT_MOUNT_POINT_BUSY,
reply.error());
},
base::Unretained(&called)));
EXPECT_TRUE(called);
}
TEST_F(UserDataAuthExTest, MountPublicUsesPublicMountPasskey) {
constexpr char kUser[] = "chromeos-user";
PrepareArguments();
mount_req_->mutable_account()->set_account_id(kUser);
mount_req_->set_public_mount(true);
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(testing::InvokeWithoutArgs([&]() {
SetupMount(kUser);
EXPECT_CALL(homedirs_, CryptohomeExists(_)).WillOnce(Return(true));
auto vk = std::make_unique<VaultKeyset>();
EXPECT_CALL(homedirs_, LoadUnwrappedKeyset(_, _))
.WillOnce(Return(ByMove(std::move(vk))));
EXPECT_CALL(*mount_, MountCryptohome(_, _, _, _, _)).WillOnce(Return(true));
return true;
}));
bool called = false;
userdataauth_->DoMount(
*mount_req_,
base::BindOnce(
[](bool* called_ptr, const user_data_auth::MountReply& reply) {
*called_ptr = true;
EXPECT_EQ(user_data_auth::CRYPTOHOME_ERROR_NOT_SET, reply.error());
},
base::Unretained(&called)));
EXPECT_TRUE(called);
}
TEST_F(UserDataAuthExTest, AddKeyInvalidArgs) {
PrepareArguments();
// Test for when there's no email supplied.
EXPECT_EQ(userdataauth_->AddKey(*add_req_.get()),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
// Test for when there's no secret.
add_req_->mutable_account_id()->set_account_id("foo@gmail.com");
EXPECT_EQ(userdataauth_->AddKey(*add_req_.get()),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
// Test for when there's no new key.
add_req_->mutable_authorization_request()->mutable_key()->set_secret("blerg");
add_req_->clear_key();
EXPECT_EQ(userdataauth_->AddKey(*add_req_.get()),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
// Test for no new key label.
add_req_->mutable_key();
// No label
add_req_->mutable_key()->set_secret("some secret");
EXPECT_EQ(userdataauth_->AddKey(*add_req_.get()),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
}
TEST_F(UserDataAuthExTest, AddKeyValidity) {
PrepareArguments();
add_req_->mutable_account_id()->set_account_id("foo@gmail.com");
add_req_->mutable_authorization_request()->mutable_key()->set_secret("blerg");
add_req_->mutable_key();
add_req_->mutable_key()->set_secret("some secret");
add_req_->mutable_key()->mutable_data()->set_label("just a label");
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
EXPECT_CALL(homedirs_, AddKeyset(_, _, _, _, _))
.WillOnce(Return(cryptohome::CRYPTOHOME_ERROR_NOT_SET));
EXPECT_EQ(userdataauth_->AddKey(*add_req_.get()),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
}
TEST_F(UserDataAuthExTest, AddDataRestoreKeyInvalidArgsNoEmail) {
PrepareArguments();
brillo::SecureBlob data_restore_key;
EXPECT_EQ(userdataauth_->AddDataRestoreKey(*add_data_restore_req_.get(),
&data_restore_key),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
}
TEST_F(UserDataAuthExTest, AddDataRestoreKeyInvalidArgsNoSecret) {
PrepareArguments();
add_data_restore_req_->mutable_account_id()->set_account_id("foo@gmail.com");
brillo::SecureBlob data_restore_key;
EXPECT_EQ(userdataauth_->AddDataRestoreKey(*add_data_restore_req_.get(),
&data_restore_key),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
}
TEST_F(UserDataAuthExTest, AddDataRestoreKeyAccountNotExist) {
PrepareArguments();
add_data_restore_req_->mutable_account_id()->set_account_id("foo@gmail.com");
add_data_restore_req_->mutable_authorization_request()
->mutable_key()
->set_secret("blerg");
EXPECT_CALL(homedirs_, Exists(_)).WillRepeatedly(Return(false));
brillo::SecureBlob data_restore_key;
EXPECT_EQ(userdataauth_->AddDataRestoreKey(*add_data_restore_req_.get(),
&data_restore_key),
user_data_auth::CRYPTOHOME_ERROR_ACCOUNT_NOT_FOUND);
}
TEST_F(UserDataAuthExTest, AddDataRestoreKeyAccountExistAddFail) {
PrepareArguments();
add_data_restore_req_->mutable_account_id()->set_account_id("foo@gmail.com");
add_data_restore_req_->mutable_authorization_request()
->mutable_key()
->set_secret("blerg");
EXPECT_CALL(homedirs_, Exists(_)).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, AddKeyset(_, _, _, _, _))
.WillRepeatedly(Return(CRYPTOHOME_ERROR_BACKING_STORE_FAILURE));
brillo::SecureBlob data_restore_key;
EXPECT_EQ(userdataauth_->AddDataRestoreKey(*add_data_restore_req_.get(),
&data_restore_key),
user_data_auth::CRYPTOHOME_ERROR_BACKING_STORE_FAILURE);
}
TEST_F(UserDataAuthExTest, AddDataRestoreKeyAccountExistAddSuccess) {
PrepareArguments();
add_data_restore_req_->mutable_account_id()->set_account_id("foo@gmail.com");
add_data_restore_req_->mutable_authorization_request()
->mutable_key()
->set_secret("blerg");
EXPECT_CALL(homedirs_, Exists(_)).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, AddKeyset(_, _, _, _, _))
.WillRepeatedly(Return(CRYPTOHOME_ERROR_NOT_SET));
brillo::SecureBlob data_restore_key;
EXPECT_EQ(userdataauth_->AddDataRestoreKey(*add_data_restore_req_.get(),
&data_restore_key),
user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
EXPECT_EQ(32, data_restore_key.size());
}
// Note that CheckKey tries to two method to check whether a key is valid or
// not. The first is through Homedirs, and the second is through Mount.
// Therefore, we test the combinations of (Homedirs, Mount) x (Success, Fail)
// below.
TEST_F(UserDataAuthExTest, CheckKeyHomedirsCheckSuccess) {
PrepareArguments();
SetupMount(kUser);
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()->mutable_key()->set_secret(kKey);
Credentials credentials("another", brillo::SecureBlob(kKey));
session_->SetCredentials(credentials, 0);
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
EXPECT_CALL(homedirs_, AreCredentialsValid(_)).WillOnce(Return(true));
CallCheckKeyAndVerify(user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
}
TEST_F(UserDataAuthExTest, CheckKeyHomedirsCheckFail) {
PrepareArguments();
SetupMount(kUser);
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()->mutable_key()->set_secret(kKey);
// Ensure failure
Credentials credentials("another", brillo::SecureBlob(kKey));
session_->SetCredentials(credentials, 0);
EXPECT_CALL(homedirs_, Exists(_)).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, AreCredentialsValid(_)).WillOnce(Return(false));
CallCheckKeyAndVerify(
user_data_auth::CRYPTOHOME_ERROR_AUTHORIZATION_KEY_FAILED);
}
TEST_F(UserDataAuthExTest, CheckKeyMountCheckSuccess) {
PrepareArguments();
SetupMount(kUser);
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()->mutable_key()->set_secret(kKey);
Credentials credentials(kUser, brillo::SecureBlob(kKey));
session_->SetCredentials(credentials, 0);
CallCheckKeyAndVerify(user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
}
TEST_F(UserDataAuthExTest, CheckKeyMountCheckFail) {
PrepareArguments();
SetupMount(kUser);
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()->mutable_key()->set_secret(kKey);
Credentials credentials(kUser, brillo::SecureBlob("wrong"));
session_->SetCredentials(credentials, 0);
EXPECT_CALL(homedirs_, Exists(_)).WillRepeatedly(Return(true));
EXPECT_CALL(homedirs_, AreCredentialsValid(_)).WillOnce(Return(false));
CallCheckKeyAndVerify(user_data_auth::CryptohomeErrorCode::
CRYPTOHOME_ERROR_AUTHORIZATION_KEY_FAILED);
}
TEST_F(UserDataAuthExTest, StartFingerprintAuthSessionInvalid) {
PrepareArguments();
// No account_id, request is invalid.
user_data_auth::StartFingerprintAuthSessionRequest req;
bool called = false;
userdataauth_->StartFingerprintAuthSession(
req,
base::Bind(
[](bool* called_ptr,
const user_data_auth::StartFingerprintAuthSessionReply& reply) {
EXPECT_EQ(reply.error(),
user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
*called_ptr = true;
},
base::Unretained(&called)));
EXPECT_TRUE(called);
}
TEST_F(UserDataAuthExTest, StartFingerprintAuthSessionFail) {
PrepareArguments();
user_data_auth::StartFingerprintAuthSessionRequest req;
req.mutable_account_id()->set_account_id(kUser);
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
// Let the fingerprint auth session fail to start.
EXPECT_CALL(fingerprint_manager_, StartAuthSessionAsyncForUser(_, _))
.WillOnce([](const std::string& user,
base::Callback<void(bool success)>
auth_session_start_client_callback) {
std::move(auth_session_start_client_callback).Run(false);
});
bool called = false;
userdataauth_->StartFingerprintAuthSession(
req,
base::Bind(
[](bool* called_ptr,
const user_data_auth::StartFingerprintAuthSessionReply& reply) {
EXPECT_EQ(reply.error(),
user_data_auth::CryptohomeErrorCode::
CRYPTOHOME_ERROR_FINGERPRINT_ERROR_INTERNAL);
*called_ptr = true;
},
base::Unretained(&called)));
EXPECT_TRUE(called);
}
TEST_F(UserDataAuthExTest, StartFingerprintAuthSessionSuccess) {
PrepareArguments();
user_data_auth::StartFingerprintAuthSessionRequest req;
req.mutable_account_id()->set_account_id(kUser);
EXPECT_CALL(homedirs_, Exists(_)).WillOnce(Return(true));
EXPECT_CALL(fingerprint_manager_, StartAuthSessionAsyncForUser(_, _))
.WillOnce([](const std::string& user,
base::Callback<void(bool success)>
auth_session_start_client_callback) {
std::move(auth_session_start_client_callback).Run(true);
});
bool called = false;
userdataauth_->StartFingerprintAuthSession(
req,
base::Bind(
[](bool* called_ptr,
const user_data_auth::StartFingerprintAuthSessionReply& reply) {
EXPECT_EQ(reply.error(), user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
*called_ptr = true;
},
base::Unretained(&called)));
EXPECT_TRUE(called);
}
TEST_F(UserDataAuthExTest, CheckKeyFingerprintFailRetry) {
PrepareArguments();
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()
->mutable_key()
->mutable_data()
->set_type(cryptohome::KeyData::KEY_TYPE_FINGERPRINT);
EXPECT_CALL(fingerprint_manager_, HasAuthSessionForUser(_))
.WillOnce(Return(true));
// Simulate a scan result immediately following SetAuthScanDoneCallback().
EXPECT_CALL(fingerprint_manager_, SetAuthScanDoneCallback(_))
.WillOnce([](base::Callback<void(FingerprintScanStatus status)>
auth_scan_done_callback) {
std::move(auth_scan_done_callback)
.Run(FingerprintScanStatus::FAILED_RETRY_ALLOWED);
});
CallCheckKeyAndVerify(user_data_auth::CryptohomeErrorCode::
CRYPTOHOME_ERROR_FINGERPRINT_RETRY_REQUIRED);
}
TEST_F(UserDataAuthExTest, CheckKeyFingerprintFailNoRetry) {
PrepareArguments();
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()
->mutable_key()
->mutable_data()
->set_type(cryptohome::KeyData::KEY_TYPE_FINGERPRINT);
EXPECT_CALL(fingerprint_manager_, HasAuthSessionForUser(_))
.WillOnce(Return(true));
// Simulate a scan result immediately following SetAuthScanDoneCallback().
EXPECT_CALL(fingerprint_manager_, SetAuthScanDoneCallback(_))
.WillOnce([](base::Callback<void(FingerprintScanStatus status)>
auth_scan_done_callback) {
std::move(auth_scan_done_callback)
.Run(FingerprintScanStatus::FAILED_RETRY_NOT_ALLOWED);
});
CallCheckKeyAndVerify(
user_data_auth::CryptohomeErrorCode::CRYPTOHOME_ERROR_FINGERPRINT_DENIED);
}
TEST_F(UserDataAuthExTest, CheckKeyFingerprintWrongUser) {
PrepareArguments();
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()
->mutable_key()
->mutable_data()
->set_type(cryptohome::KeyData::KEY_TYPE_FINGERPRINT);
EXPECT_CALL(fingerprint_manager_, HasAuthSessionForUser(_))
.WillOnce(Return(false));
CallCheckKeyAndVerify(
user_data_auth::CryptohomeErrorCode::CRYPTOHOME_ERROR_FINGERPRINT_DENIED);
}
TEST_F(UserDataAuthExTest, CheckKeyFingerprintSuccess) {
PrepareArguments();
check_req_->mutable_account_id()->set_account_id(kUser);
check_req_->mutable_authorization_request()
->mutable_key()
->mutable_data()
->set_type(cryptohome::KeyData::KEY_TYPE_FINGERPRINT);
EXPECT_CALL(fingerprint_manager_, HasAuthSessionForUser(_))
.WillOnce(Return(true));
// Simulate a scan result immediately following SetAuthScanDoneCallback().
EXPECT_CALL(fingerprint_manager_, SetAuthScanDoneCallback(_))
.WillOnce([](base::Callback<void(FingerprintScanStatus status)>
auth_scan_done_callback) {
std::move(auth_scan_done_callback).Run(FingerprintScanStatus::SUCCESS);
});
CallCheckKeyAndVerify(user_data_auth::CRYPTOHOME_ERROR_NOT_SET);
}
TEST_F(UserDataAuthExTest, CheckKeyInvalidArgs) {
PrepareArguments();
// No email supplied.
CallCheckKeyAndVerify(user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
// No secret.
check_req_->mutable_account_id()->set_account_id("foo@gmail.com");
CallCheckKeyAndVerify(user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
// Empty secret.
check_req_->mutable_authorization_request()->mutable_key()->set_secret("");
CallCheckKeyAndVerify(user_data_auth::CRYPTOHOME_ERROR_INVALID_ARGUMENT);
}
TEST_F(UserDataAuthExTest, RemoveKeyValidity) {
PrepareArguments();
constexpr char kUsername1[] = "foo@gmail.com";
constexpr char kLabel1[] = "some label";
remove_req_->mutable_account_id()->set_account_id(kUsername1);
remove_req_->mutable_authorization_request()->mutable_key()->set_secret(