1*dd0948b3SAndroid Build Coastguard Worker /*
2*dd0948b3SAndroid Build Coastguard Worker * Copyright (C) 2023 The Android Open Source Project
3*dd0948b3SAndroid Build Coastguard Worker *
4*dd0948b3SAndroid Build Coastguard Worker * Licensed under the Apache License, Version 2.0 (the "License");
5*dd0948b3SAndroid Build Coastguard Worker * you may not use this file except in compliance with the License.
6*dd0948b3SAndroid Build Coastguard Worker * You may obtain a copy of the License at
7*dd0948b3SAndroid Build Coastguard Worker *
8*dd0948b3SAndroid Build Coastguard Worker * http://www.apache.org/licenses/LICENSE-2.0
9*dd0948b3SAndroid Build Coastguard Worker *
10*dd0948b3SAndroid Build Coastguard Worker * Unless required by applicable law or agreed to in writing, software
11*dd0948b3SAndroid Build Coastguard Worker * distributed under the License is distributed on an "AS IS" BASIS,
12*dd0948b3SAndroid Build Coastguard Worker * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13*dd0948b3SAndroid Build Coastguard Worker * See the License for the specific language governing permissions and
14*dd0948b3SAndroid Build Coastguard Worker * limitations under the License.
15*dd0948b3SAndroid Build Coastguard Worker */
16*dd0948b3SAndroid Build Coastguard Worker
17*dd0948b3SAndroid Build Coastguard Worker #include "./test-app.h"
18*dd0948b3SAndroid Build Coastguard Worker
19*dd0948b3SAndroid Build Coastguard Worker #include <fcntl.h>
20*dd0948b3SAndroid Build Coastguard Worker #include <stdlib.h>
21*dd0948b3SAndroid Build Coastguard Worker #include <string.h>
22*dd0948b3SAndroid Build Coastguard Worker #include <sys/stat.h>
23*dd0948b3SAndroid Build Coastguard Worker #include <unistd.h>
24*dd0948b3SAndroid Build Coastguard Worker
25*dd0948b3SAndroid Build Coastguard Worker #include <iostream>
26*dd0948b3SAndroid Build Coastguard Worker #include <string>
27*dd0948b3SAndroid Build Coastguard Worker
28*dd0948b3SAndroid Build Coastguard Worker #include "./string-utils.h"
29*dd0948b3SAndroid Build Coastguard Worker
30*dd0948b3SAndroid Build Coastguard Worker namespace shell_as {
31*dd0948b3SAndroid Build Coastguard Worker
32*dd0948b3SAndroid Build Coastguard Worker // Returns a pointer to bytes of the test app APK along with the length in bytes
33*dd0948b3SAndroid Build Coastguard Worker // of the APK.
34*dd0948b3SAndroid Build Coastguard Worker //
35*dd0948b3SAndroid Build Coastguard Worker // This function is defined by the shell-as-test-app-apk-cpp genrule.
36*dd0948b3SAndroid Build Coastguard Worker void GetTestApk(uint8_t **apk, size_t *length);
37*dd0948b3SAndroid Build Coastguard Worker
38*dd0948b3SAndroid Build Coastguard Worker namespace {
39*dd0948b3SAndroid Build Coastguard Worker
40*dd0948b3SAndroid Build Coastguard Worker // The staging path for the test app APK.
41*dd0948b3SAndroid Build Coastguard Worker const char kTestAppApkStagingPath[] = "/data/local/tmp/shell-as-test-app.apk";
42*dd0948b3SAndroid Build Coastguard Worker
43*dd0948b3SAndroid Build Coastguard Worker // Writes the test app to a staging location and then installs the APK via the
44*dd0948b3SAndroid Build Coastguard Worker // 'pm' utility. The app is granted runtime permissions on installation. Returns
45*dd0948b3SAndroid Build Coastguard Worker // true if the app is installed successfully.
InstallTestApp()46*dd0948b3SAndroid Build Coastguard Worker bool InstallTestApp() {
47*dd0948b3SAndroid Build Coastguard Worker uint8_t *apk = nullptr;
48*dd0948b3SAndroid Build Coastguard Worker size_t apk_size = 0;
49*dd0948b3SAndroid Build Coastguard Worker GetTestApk(&apk, &apk_size);
50*dd0948b3SAndroid Build Coastguard Worker
51*dd0948b3SAndroid Build Coastguard Worker int staging_file = open(kTestAppApkStagingPath, O_WRONLY | O_CREAT | O_TRUNC,
52*dd0948b3SAndroid Build Coastguard Worker S_IRUSR | S_IWUSR);
53*dd0948b3SAndroid Build Coastguard Worker if (staging_file == -1) {
54*dd0948b3SAndroid Build Coastguard Worker std::cerr << "Unable to open staging APK path." << std::endl;
55*dd0948b3SAndroid Build Coastguard Worker return false;
56*dd0948b3SAndroid Build Coastguard Worker }
57*dd0948b3SAndroid Build Coastguard Worker
58*dd0948b3SAndroid Build Coastguard Worker size_t bytes_written = write(staging_file, apk, apk_size);
59*dd0948b3SAndroid Build Coastguard Worker close(staging_file);
60*dd0948b3SAndroid Build Coastguard Worker if (bytes_written != apk_size) {
61*dd0948b3SAndroid Build Coastguard Worker std::cerr << "Unable to write entire test app APK." << std::endl;
62*dd0948b3SAndroid Build Coastguard Worker return false;
63*dd0948b3SAndroid Build Coastguard Worker }
64*dd0948b3SAndroid Build Coastguard Worker
65*dd0948b3SAndroid Build Coastguard Worker const char cmd_template[] = "pm install -g %s > /dev/null 2> /dev/null";
66*dd0948b3SAndroid Build Coastguard Worker char system_cmd[sizeof(cmd_template) + sizeof(kTestAppApkStagingPath) + 1] =
67*dd0948b3SAndroid Build Coastguard Worker {};
68*dd0948b3SAndroid Build Coastguard Worker sprintf(system_cmd, cmd_template, kTestAppApkStagingPath);
69*dd0948b3SAndroid Build Coastguard Worker return system(system_cmd) == 0;
70*dd0948b3SAndroid Build Coastguard Worker }
71*dd0948b3SAndroid Build Coastguard Worker
72*dd0948b3SAndroid Build Coastguard Worker // Uninstalls the test app if it is installed. This method is a no-op if the app
73*dd0948b3SAndroid Build Coastguard Worker // is not installed.
UninstallTestApp()74*dd0948b3SAndroid Build Coastguard Worker void UninstallTestApp() {
75*dd0948b3SAndroid Build Coastguard Worker system(
76*dd0948b3SAndroid Build Coastguard Worker "pm uninstall com.android.google.tools.security.shell_as"
77*dd0948b3SAndroid Build Coastguard Worker " > /dev/null 2> /dev/null");
78*dd0948b3SAndroid Build Coastguard Worker }
79*dd0948b3SAndroid Build Coastguard Worker
80*dd0948b3SAndroid Build Coastguard Worker // Starts the main activity of the test app. This is necessary as some aspects
81*dd0948b3SAndroid Build Coastguard Worker // of the security context can only be inferred from a running process.
StartTestApp()82*dd0948b3SAndroid Build Coastguard Worker bool StartTestApp() {
83*dd0948b3SAndroid Build Coastguard Worker return system(
84*dd0948b3SAndroid Build Coastguard Worker "am start-activity "
85*dd0948b3SAndroid Build Coastguard Worker "com.android.google.tools.security.shell_as/"
86*dd0948b3SAndroid Build Coastguard Worker ".MainActivity"
87*dd0948b3SAndroid Build Coastguard Worker " > /dev/null 2> /dev/null") == 0;
88*dd0948b3SAndroid Build Coastguard Worker }
89*dd0948b3SAndroid Build Coastguard Worker
90*dd0948b3SAndroid Build Coastguard Worker // Obtain the process ID of the test app and returns true if it is running.
91*dd0948b3SAndroid Build Coastguard Worker // Returns false otherwise.
GetTestAppProcessId(pid_t * test_app_pid)92*dd0948b3SAndroid Build Coastguard Worker bool GetTestAppProcessId(pid_t *test_app_pid) {
93*dd0948b3SAndroid Build Coastguard Worker FILE *pgrep = popen(
94*dd0948b3SAndroid Build Coastguard Worker "pgrep -f "
95*dd0948b3SAndroid Build Coastguard Worker "com.android.google.tools.security.shell_as",
96*dd0948b3SAndroid Build Coastguard Worker "r");
97*dd0948b3SAndroid Build Coastguard Worker if (!pgrep) {
98*dd0948b3SAndroid Build Coastguard Worker std::cerr << "Unable to execute pgrep." << std::endl;
99*dd0948b3SAndroid Build Coastguard Worker return false;
100*dd0948b3SAndroid Build Coastguard Worker }
101*dd0948b3SAndroid Build Coastguard Worker
102*dd0948b3SAndroid Build Coastguard Worker char pgrep_output[128];
103*dd0948b3SAndroid Build Coastguard Worker memset(pgrep_output, 0, sizeof(pgrep_output));
104*dd0948b3SAndroid Build Coastguard Worker int bytes_read = fread(pgrep_output, 1, sizeof(pgrep_output) - 1, pgrep);
105*dd0948b3SAndroid Build Coastguard Worker pclose(pgrep);
106*dd0948b3SAndroid Build Coastguard Worker if (bytes_read <= 0) {
107*dd0948b3SAndroid Build Coastguard Worker // Unable to find the process. This may happen if the app is still starting
108*dd0948b3SAndroid Build Coastguard Worker // up.
109*dd0948b3SAndroid Build Coastguard Worker return false;
110*dd0948b3SAndroid Build Coastguard Worker }
111*dd0948b3SAndroid Build Coastguard Worker return StringToUInt32(pgrep_output, (uint32_t *)test_app_pid);
112*dd0948b3SAndroid Build Coastguard Worker }
113*dd0948b3SAndroid Build Coastguard Worker } // namespace
114*dd0948b3SAndroid Build Coastguard Worker
SetupAndStartTestApp(pid_t * test_app_pid)115*dd0948b3SAndroid Build Coastguard Worker bool SetupAndStartTestApp(pid_t *test_app_pid) {
116*dd0948b3SAndroid Build Coastguard Worker UninstallTestApp();
117*dd0948b3SAndroid Build Coastguard Worker
118*dd0948b3SAndroid Build Coastguard Worker if (!InstallTestApp()) {
119*dd0948b3SAndroid Build Coastguard Worker std::cerr << "Unable to install test app." << std::endl;
120*dd0948b3SAndroid Build Coastguard Worker return false;
121*dd0948b3SAndroid Build Coastguard Worker }
122*dd0948b3SAndroid Build Coastguard Worker
123*dd0948b3SAndroid Build Coastguard Worker if (!StartTestApp()) {
124*dd0948b3SAndroid Build Coastguard Worker std::cerr << "Unable to start and obtain test app PID." << std::endl;
125*dd0948b3SAndroid Build Coastguard Worker return false;
126*dd0948b3SAndroid Build Coastguard Worker }
127*dd0948b3SAndroid Build Coastguard Worker
128*dd0948b3SAndroid Build Coastguard Worker for (int i = 0; i < 5; i++) {
129*dd0948b3SAndroid Build Coastguard Worker if (GetTestAppProcessId(test_app_pid)) {
130*dd0948b3SAndroid Build Coastguard Worker return true;
131*dd0948b3SAndroid Build Coastguard Worker }
132*dd0948b3SAndroid Build Coastguard Worker sleep(1);
133*dd0948b3SAndroid Build Coastguard Worker }
134*dd0948b3SAndroid Build Coastguard Worker return false;
135*dd0948b3SAndroid Build Coastguard Worker }
136*dd0948b3SAndroid Build Coastguard Worker } // namespace shell_as
137