Mercurial Mercurial > oss > FCL > sf > os > kernelhwsrv / diff
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
kerneltest/e32test/property/t_security_slave.cpp
changeset 0 a41df078684a 
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/kerneltest/e32test/property/t_security_slave.cpp	Mon Oct 19 15:55:17 2009 +0100
@@ -0,0 +1,393 @@
+// Copyright (c) 2002-2009 Nokia Corporation and/or its subsidiary(-ies).
+// All rights reserved.
+// This component and the accompanying materials are made available
+// under the terms of the License "Eclipse Public License v1.0"
+// which accompanies this distribution, and is available
+// at the URL "http://www.eclipse.org/legal/epl-v10.html".
+//
+// Initial Contributors:
+// Nokia Corporation - initial contribution.
+//
+// Contributors:
+//
+// Description:
+//
+
+#include <e32test.h>
+#include "t_property.h"
+
+TSecureId TestSecureId;
+TVendorId TestVendorId;
+TCapability TestCaps[ECapability_Limit];
+TCapability TestMissingCaps[ECapability_Limit];
+
+TSecurityPolicy CorrectCapPolicy;
+TSecurityPolicy IncorrectCapPolicy;
+
+TUint TestPolicyCount=0;
+
+#include <e32svr.h>
+
+TBool MakeTestSecurityPolicy()
+	{
+	TCapability* c =TestCaps;
+	TCapability* m =TestMissingCaps;
+	TUint t=++TestPolicyCount;
+	RDebug::Print(_L("Test policy %d\n"),t);
+	if(t==1)
+		{
+		_LIT_SECURITY_POLICY_PASS(KSecurityPolicyPass);
+		CorrectCapPolicy = KSecurityPolicyPass;
+		_LIT_SECURITY_POLICY_FAIL(KSecurityPolicyFail);
+		IncorrectCapPolicy = KSecurityPolicyFail;
+		return ETrue;
+		}
+	t -= 1;
+	if(t<7)
+		{
+		switch(t)
+			{
+		case 0:
+			CorrectCapPolicy = TSecurityPolicy(c[0]);
+			IncorrectCapPolicy = TSecurityPolicy(m[0]);
+			break;
+		case 1:
+			CorrectCapPolicy = TSecurityPolicy(c[0],c[1]);
+			IncorrectCapPolicy = TSecurityPolicy(m[0],c[1]);
+			break;
+		case 2:
+			CorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2]);
+			IncorrectCapPolicy = TSecurityPolicy(c[0],m[1],c[2]);
+			break;
+		case 3:
+			CorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],c[3]);
+			IncorrectCapPolicy = TSecurityPolicy(c[0],c[1],m[2],c[3]);
+			break;
+		case 4:
+			CorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],c[3],c[4]);
+			IncorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],m[3],c[4]);
+			break;
+		case 5:
+			CorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],c[3],c[4],c[5]);
+			IncorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],c[3],m[4],c[5]);
+			break;
+		case 6:
+			CorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],c[3],c[4],c[5],c[6]);
+			IncorrectCapPolicy = TSecurityPolicy(c[0],c[1],c[2],c[3],c[4],m[5],c[6]);
+			break;
+			}
+		return ETrue;
+		}
+	t -= 7;
+	if(t<4)
+		{
+		TSecureId id = TestSecureId;
+		TSecureId id2 = TSecureId((TUint32)TestVendorId);
+		switch(t)
+			{
+		case 0:
+			CorrectCapPolicy = TSecurityPolicy(id);
+			IncorrectCapPolicy = TSecurityPolicy(id2);
+			break;
+		case 1:
+			CorrectCapPolicy = TSecurityPolicy(id,c[0]);
+			IncorrectCapPolicy = TSecurityPolicy(id2,c[0]);
+			break;
+		case 2:
+			CorrectCapPolicy = TSecurityPolicy(id,c[0],c[1]);
+			IncorrectCapPolicy = TSecurityPolicy(id2,c[0],c[1]);
+			break;
+		case 3:
+			CorrectCapPolicy = TSecurityPolicy(id,c[0],c[1],c[2]);
+			IncorrectCapPolicy = TSecurityPolicy(id2,c[0],c[1],c[2]);
+			break;
+			}
+		return ETrue;
+		}
+	t -= 4;
+	if(t<4)
+		{
+		TVendorId id = TestVendorId;
+		TVendorId id2 = TVendorId((TUint32)TestSecureId);
+		switch(t)
+			{
+		case 0:
+			CorrectCapPolicy = TSecurityPolicy(id);
+			IncorrectCapPolicy = TSecurityPolicy(id2);
+			break;
+		case 1:
+			CorrectCapPolicy = TSecurityPolicy(id,c[0]);
+			IncorrectCapPolicy = TSecurityPolicy(id2,c[0]);
+			break;
+		case 2:
+			CorrectCapPolicy = TSecurityPolicy(id,c[0],c[1]);
+			IncorrectCapPolicy = TSecurityPolicy(id2,c[0],c[1]);
+			break;
+		case 3:
+			CorrectCapPolicy = TSecurityPolicy(id,c[0],c[1],c[2]);
+			IncorrectCapPolicy = TSecurityPolicy(id2,c[0],c[1],c[2]);
+			break;
+			}
+		return ETrue;
+		}
+	t -= 4;
+	TestPolicyCount = 0;
+	return EFalse;
+	}
+
+_LIT(KSecurityReadCapabilityName, "RProperty Security: Read Capability Basics");
+
+class CPropSecurityReadCapability : public CTestProgram
+	{
+public:
+	CPropSecurityReadCapability(TUid aCategory, TUint aKey1, TUint aKey2, RProperty::TType aType) :
+		CTestProgram(KSecurityReadCapabilityName), iCategory(aCategory), iKey1(aKey1), iKey2(aKey2), iType(aType)
+		{
+		}
+
+	void Run(TUint aCount);
+
+private:
+	TUid				iCategory;
+	TUint				iKey1;
+	TUint				iKey2;
+	RProperty::TType	iType;
+	};
+
+void CPropSecurityReadCapability::Run(TUint aCount)
+	{
+	while(MakeTestSecurityPolicy())
+	for (TUint i = 0; i < aCount; ++i)
+		{
+		RProperty	prop1;
+		RProperty	prop2;
+
+		TInt r = prop1.Attach(iCategory, iKey1);
+		TF_ERROR(r, r == KErrNone);
+		r = prop2.Attach(iCategory, iKey2);
+		TF_ERROR(r, r == KErrNone);
+
+		// If the property has not been defined, the request will not complete until the property
+		// is defined and published.
+		// When defined if the caller does not have read capabilities the request completes
+		// with KErrPermissionDenied.
+		TRequestStatus status1;
+		prop1.Subscribe(status1);
+		TF_ERROR(status1.Int(), status1.Int() == KRequestPending);
+		r = prop1.Define(iCategory, iKey1, iType, IncorrectCapPolicy, CorrectCapPolicy);
+		TF_ERROR(r, r == KErrNone);
+		User::WaitForRequest(status1);
+		TF_ERROR(status1.Int(), status1.Int() == KErrPermissionDenied);
+
+		TRequestStatus status2;
+		prop2.Subscribe(status2);
+		TF_ERROR(status2.Int(), status2.Int() == KRequestPending);
+		r = prop2.Define(iCategory, iKey2, iType, CorrectCapPolicy, IncorrectCapPolicy);
+		TF_ERROR(r, r == KErrNone);
+		TF_ERROR(status2.Int(), status2.Int() == KRequestPending);
+		prop2.Cancel();
+		User::WaitForRequest(status2);
+		TF_ERROR(status2.Int(), status2.Int() == KErrCancel);
+
+		// If the Subscribe() caller does not have the read capabilities the request completes immediately
+		// with KErrPermissionDenied.
+		prop1.Subscribe(status1);
+		User::WaitForRequest(status1);
+		TF_ERROR(status1.Int(), status1.Int() == KErrPermissionDenied);
+
+		prop2.Subscribe(status2);
+		TF_ERROR(status2.Int(), status2.Int() == KRequestPending);
+		prop2.Cancel();
+		User::WaitForRequest(status2);
+		TF_ERROR(status2.Int(), status2.Int() == KErrCancel);
+
+		// If the caller does not have the read capabilities Get() fails with KErrPermissionDenied.
+		if (iType == RProperty::EInt)
+			{
+			TInt value;
+			r = prop1.Get(iCategory, iKey1, value);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Get(iCategory, iKey2, value);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Get(value);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Get(value);
+			TF_ERROR(r, r == KErrNone);
+			}
+		else 
+			{
+			TBuf<16> buf;
+			TBuf8<16> buf8;
+			r = prop1.Get(iCategory, iKey1, buf);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Get(iCategory, iKey2, buf);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Get(iCategory, iKey1, buf8);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Get(iCategory, iKey2, buf8);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Get(buf);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Get(buf);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Get(buf8);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Get(buf8);
+			TF_ERROR(r, r == KErrNone);
+			}
+
+		r = prop1.Delete(iCategory, iKey1);
+		TF_ERROR(r, r == KErrNone);
+		r = prop2.Delete(iCategory, iKey2);
+		TF_ERROR(r, r == KErrNone);
+		prop1.Close();
+		prop2.Close();
+		}
+	}
+
+_LIT(KSecurityWriteCapabilityName, "RProperty Security: Write Cpability Basics");
+
+class CPropSecurityWriteCapability : public CTestProgram
+	{
+public:
+	CPropSecurityWriteCapability(TUid aCategory, TUint aKey1, TUint aKey2, RProperty::TType aType) :
+		CTestProgram(KSecurityWriteCapabilityName), iCategory(aCategory), iKey1(aKey1), iKey2(aKey2), iType(aType)
+		{
+		}
+
+	void Run(TUint aCount);
+
+private:
+	TUid				iCategory;
+	TUint				iKey1;
+	TUint				iKey2;
+	RProperty::TType	iType;
+	};
+
+void CPropSecurityWriteCapability::Run(TUint aCount)
+	{
+	while(MakeTestSecurityPolicy())
+	for (TUint i = 0; i < aCount; ++i)
+		{
+		RProperty	prop1;
+		RProperty	prop2;
+
+		TInt r = prop1.Attach(iCategory, iKey1);
+		TF_ERROR(r, r == KErrNone);
+		r = prop2.Attach(iCategory, iKey2);
+		TF_ERROR(r, r == KErrNone);
+
+		r = prop1.Define(iCategory, iKey1, iType, CorrectCapPolicy, IncorrectCapPolicy);
+		TF_ERROR(r, r == KErrNone);
+		r = prop2.Define(iCategory, iKey2, iType, IncorrectCapPolicy, CorrectCapPolicy);
+		TF_ERROR(r, r == KErrNone);
+
+		// If the caller does not have the write capabilities Set() fails with KErrPermissionDenied.
+		if (iType == RProperty::EInt)
+			{
+			TInt value = 1;
+			r = prop1.Set(iCategory, iKey1, value);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Set(iCategory, iKey2, value);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Set(value);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Set(value);
+			TF_ERROR(r, r == KErrNone);
+			}
+		else 
+			{
+			TBuf<16> buf(_L("Foo"));
+			TBuf8<16> buf8((TUint8*) "Foo");
+			r = prop1.Set(iCategory, iKey1, buf);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Set(iCategory, iKey2, buf);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Set(iCategory, iKey1, buf8);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Set(iCategory, iKey2, buf8);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Set(buf);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Set(buf);
+			TF_ERROR(r, r == KErrNone);
+			r = prop1.Set(buf8);
+			TF_ERROR(r, r == KErrPermissionDenied);
+			r = prop2.Set(buf8);
+			TF_ERROR(r, r == KErrNone);
+			}
+		
+		r = prop1.Delete(iCategory, iKey1);
+		TF_ERROR(r, r == KErrNone);
+		r = prop2.Delete(iCategory, iKey2);
+		TF_ERROR(r, r == KErrNone);
+		prop1.Close();
+		prop2.Close();
+		}
+	}
+
+GLDEF_C TInt E32Main()
+	{
+
+	TSecurityInfo info;
+	info.Set(RProcess());
+	TestSecureId = info.iSecureId;
+	TestVendorId = info.iVendorId;
+	{
+	TInt c=0;
+	TInt m=0;
+	for(TInt i=0; i<ECapability_Limit; i++)
+		{
+		if(info.iCaps.HasCapability((TCapability)i))
+			TestCaps[c++] = (TCapability)i;
+		else
+			TestMissingCaps[m++] = (TCapability)i;
+		}
+	__ASSERT_ALWAYS(c>=7,User::Panic(_L("not enough caps"), 1));
+	__ASSERT_ALWAYS(m>=6,User::Panic(_L("missing caps <6"), 1));
+	}
+		
+	TInt len = User::CommandLineLength();
+	__ASSERT_ALWAYS(len, User::Panic(_L("t_prop_sec: bad args"), 0));
+
+	// Get arguments for the command line
+	TInt size = len * sizeof(TUint16);
+	HBufC8* hb = HBufC8::NewMax(size);
+	__ASSERT_ALWAYS(hb, User::Panic(_L("t_prop_sec: no memory"), 0));
+	TPtr cmd((TUint16*) hb->Ptr(), len);
+	User::CommandLine(cmd);
+	CPropSecurity::TArgs* args = (CPropSecurity::TArgs*) hb->Ptr();	
+
+	CTestProgram::Start();
+
+	CTestProgram* progs[] = 
+		{ 
+		new CPropSecurityReadCapability(args->iCategory, args->iSlaveKeySlot + 0, args->iSlaveKeySlot + 1, 
+										RProperty::EInt),
+		new CPropSecurityReadCapability(args->iCategory, args->iSlaveKeySlot + 2, args->iSlaveKeySlot + 3, 
+										RProperty::EByteArray),
+		new CPropSecurityWriteCapability(args->iCategory, args->iSlaveKeySlot + 4, args->iSlaveKeySlot + 5, 
+										RProperty::EInt),
+		new CPropSecurityWriteCapability(args->iCategory, args->iSlaveKeySlot + 6, args->iSlaveKeySlot + 7, 
+										RProperty::EByteArray),
+		NULL 
+		};
+
+	TInt i;
+	TInt n = (sizeof(progs)/sizeof(*progs)) - 1;
+	for (i = 0; i < n; ++i)
+		{
+		__ASSERT_ALWAYS(progs[i], User::Panic(_L("t_property: no memory"), 0));
+		}
+	
+	CTestProgram::LaunchGroup(progs, 2);
+
+	for (i = 0; i < n; ++i)
+		{
+		delete progs[i];
+		}
+
+	CTestProgram::End();
+
+	return KErrNone;
+	}
FCL/sf/os/kernelhwsrv