/* * Copyright (C) 2023 The Android Open Source Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package com.android.settings.password; import static com.android.settings.password.ConfirmLockPassword.ConfirmLockPasswordFragment; import static com.android.settings.password.TestUtils.GUESS_INVALID_RESULT; import static com.android.settings.password.TestUtils.GUESS_VALID_RESULT; import static com.android.settings.password.TestUtils.LOCKOUT_RESULT; import static com.android.settings.password.TestUtils.NO_REMAINING_ATTEMPTS_RESULT; import static com.android.settings.password.TestUtils.PACKAGE_NAME; import static com.android.settings.password.TestUtils.SERVICE_NAME; import static com.android.settings.password.TestUtils.TIMEOUT_MS; import static com.android.settings.password.TestUtils.VALID_REMAINING_ATTEMPTS; import static com.android.settings.password.TestUtils.buildConfirmDeviceCredentialBaseActivity; import static com.android.settings.password.TestUtils.createRemoteLockscreenValidationIntent; import static com.android.settings.password.TestUtils.getConfirmDeviceCredentialBaseFragment; import static com.google.common.truth.Truth.assertThat; import static org.mockito.ArgumentMatchers.any; import static org.mockito.ArgumentMatchers.anyBoolean; import static org.mockito.ArgumentMatchers.anyInt; import static org.mockito.ArgumentMatchers.eq; import static org.mockito.Mockito.never; import static org.mockito.Mockito.verify; import static org.mockito.Mockito.verifyNoInteractions; import android.Manifest; import android.app.KeyguardManager; import android.app.admin.ManagedSubscriptionsPolicy; import android.content.Context; import android.content.Intent; import android.os.UserHandle; import android.service.remotelockscreenvalidation.IRemoteLockscreenValidationCallback; import android.service.remotelockscreenvalidation.RemoteLockscreenValidationClient; import android.text.InputType; import android.util.FeatureFlagUtils; import android.widget.ImeAwareEditText; import androidx.test.core.app.ApplicationProvider; import com.android.internal.widget.LockPatternUtils; import com.android.settings.R; import com.android.settings.testutils.shadow.ShadowDevicePolicyManager; import com.android.settings.testutils.shadow.ShadowLockPatternUtils; import com.android.settings.testutils.shadow.ShadowUserManager; import com.android.settings.testutils.shadow.ShadowUtils; import org.junit.After; import org.junit.Before; import org.junit.Ignore; import org.junit.Test; import org.junit.runner.RunWith; import org.mockito.ArgumentCaptor; import org.mockito.Captor; import org.mockito.Mock; import org.mockito.MockitoAnnotations; import org.robolectric.Robolectric; import org.robolectric.RobolectricTestRunner; import org.robolectric.Shadows; import org.robolectric.annotation.Config; import org.robolectric.shadows.ShadowApplicationPackageManager; import org.robolectric.util.ReflectionHelpers; @RunWith(RobolectricTestRunner.class) @Config(shadows = { ShadowLockPatternUtils.class, ShadowUtils.class, ShadowDevicePolicyManager.class, ShadowUserManager.class, ShadowApplicationPackageManager.class }) public class ConfirmLockPasswordTest { @Mock CredentialCheckResultTracker mCredentialCheckResultTracker; @Mock RemoteLockscreenValidationClient mRemoteLockscreenValidationClient; @Captor ArgumentCaptor mCallbackCaptor; private Context mContext; private LockPatternUtils mLockPatternUtils; @Before public void setUp() { MockitoAnnotations.initMocks(this); mContext = ApplicationProvider.getApplicationContext(); mLockPatternUtils = new LockPatternUtils(mContext); ShadowApplicationPackageManager shadowApplicationPackageManager = (ShadowApplicationPackageManager) Shadows.shadowOf(mContext.getPackageManager()); shadowApplicationPackageManager.addPackageNoDefaults( TestUtils.createPackageInfoWithService( PACKAGE_NAME, SERVICE_NAME, Manifest.permission.BIND_REMOTE_LOCKSCREEN_VALIDATION_SERVICE)); final ShadowDevicePolicyManager shadowDpm = ShadowDevicePolicyManager.getShadow(); shadowDpm.setManagedSubscriptionsPolicy( new ManagedSubscriptionsPolicy( ManagedSubscriptionsPolicy.TYPE_ALL_PERSONAL_SUBSCRIPTIONS)); // Set false by default so we can check if lock was set when remote validation succeeds. ShadowLockPatternUtils.setIsSecure(UserHandle.myUserId(), false); FeatureFlagUtils.setEnabled(mContext, FeatureFlagUtils.SETTINGS_REMOTE_DEVICE_CREDENTIAL_VALIDATION, true); } @After public void tearDown() { ShadowLockPatternUtils.reset(); } @Test public void onCreate_remoteValidation_password_successfullyStart() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PASSWORD, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); assertThat(activity.isFinishing()).isFalse(); assertThat(fragment.mRemoteValidation).isTrue(); ImeAwareEditText editText = (ImeAwareEditText) activity.findViewById(R.id.password_entry); assertThat(editText.getInputType()).isEqualTo( InputType.TYPE_CLASS_TEXT | InputType.TYPE_TEXT_VARIATION_PASSWORD); } @Test public void onCreate_remoteValidation_pin_successfullyStart() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PIN, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); assertThat(activity.isFinishing()).isFalse(); assertThat(fragment.mRemoteValidation).isTrue(); ImeAwareEditText editText = (ImeAwareEditText) activity.findViewById(R.id.password_entry); assertThat(editText.getInputType()).isEqualTo( InputType.TYPE_CLASS_NUMBER | InputType.TYPE_NUMBER_VARIATION_PASSWORD); } @Test public void handleNext_normalFlow_doesNotAttemptRemoteLockscreenValidation() { ConfirmLockPassword activity = Robolectric.buildActivity( ConfirmLockPassword.class, new Intent()).setup().get(); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); ImeAwareEditText passwordEntry = activity.findViewById(R.id.password_entry); fragment.mRemoteLockscreenValidationClient = mRemoteLockscreenValidationClient; triggerHandleNext(fragment, passwordEntry); verifyNoInteractions(mRemoteLockscreenValidationClient); } @Test @Ignore("b/295325503") public void handleNext_remoteValidation_correctGuess_checkboxChecked() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PASSWORD, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); ReflectionHelpers.setField(fragment, "mCredentialCheckResultTracker", mCredentialCheckResultTracker); ImeAwareEditText passwordEntry = activity.findViewById(R.id.password_entry); fragment.mRemoteLockscreenValidationClient = mRemoteLockscreenValidationClient; triggerHandleNext(fragment, passwordEntry); verify(mRemoteLockscreenValidationClient) .validateLockscreenGuess(any(), mCallbackCaptor.capture()); mCallbackCaptor.getValue().onSuccess(GUESS_VALID_RESULT); verify(mCredentialCheckResultTracker).setResult( eq(true), any(), eq(0), eq(fragment.mEffectiveUserId)); assertThat(mLockPatternUtils.isSecure(fragment.mEffectiveUserId)).isTrue(); assertThat(fragment.mRemoteLockscreenValidationFragment.getLockscreenCredential()).isNull(); } @Test @Ignore("b/295325503") public void handleNext_remoteValidation_correctGuess_checkboxUnchecked() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PASSWORD, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); ReflectionHelpers.setField(fragment, "mCredentialCheckResultTracker", mCredentialCheckResultTracker); fragment.mCheckBox.setChecked(false); ImeAwareEditText passwordEntry = activity.findViewById(R.id.password_entry); fragment.mRemoteLockscreenValidationClient = mRemoteLockscreenValidationClient; triggerHandleNext(fragment, passwordEntry); verify(mRemoteLockscreenValidationClient) .validateLockscreenGuess(any(), mCallbackCaptor.capture()); mCallbackCaptor.getValue().onSuccess(GUESS_VALID_RESULT); verify(mCredentialCheckResultTracker).setResult( eq(true), any(), eq(0), eq(fragment.mEffectiveUserId)); assertThat(mLockPatternUtils.isSecure(fragment.mEffectiveUserId)).isFalse(); assertThat(fragment.mRemoteLockscreenValidationFragment.getLockscreenCredential()).isNull(); } @Test @Ignore("b/295325503") public void handleNext_remoteValidation_guessInvalid() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PASSWORD, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); ReflectionHelpers.setField(fragment, "mCredentialCheckResultTracker", mCredentialCheckResultTracker); ImeAwareEditText passwordEntry = activity.findViewById(R.id.password_entry); fragment.mRemoteLockscreenValidationClient = mRemoteLockscreenValidationClient; triggerHandleNext(fragment, passwordEntry); verify(mRemoteLockscreenValidationClient) .validateLockscreenGuess(any(), mCallbackCaptor.capture()); mCallbackCaptor.getValue().onSuccess(GUESS_INVALID_RESULT); verify(mCredentialCheckResultTracker).setResult( eq(false), any(), eq(0), eq(fragment.mEffectiveUserId)); assertThat(mLockPatternUtils.isSecure(fragment.mEffectiveUserId)).isFalse(); } @Test @Ignore("b/295325503") public void handleNext_remoteValidation_lockout() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PASSWORD, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); ReflectionHelpers.setField(fragment, "mCredentialCheckResultTracker", mCredentialCheckResultTracker); ImeAwareEditText passwordEntry = activity.findViewById(R.id.password_entry); fragment.mRemoteLockscreenValidationClient = mRemoteLockscreenValidationClient; triggerHandleNext(fragment, passwordEntry); verify(mRemoteLockscreenValidationClient) .validateLockscreenGuess(any(), mCallbackCaptor.capture()); mCallbackCaptor.getValue().onSuccess(LOCKOUT_RESULT); verify(mCredentialCheckResultTracker).setResult( eq(false), any(), eq(TIMEOUT_MS), eq(fragment.mEffectiveUserId)); assertThat(mLockPatternUtils.isSecure(fragment.mEffectiveUserId)).isFalse(); } @Test @Ignore("b/295325503") public void handleNext_remoteValidation_noRemainingAttempts_finishActivity() throws Exception { ConfirmDeviceCredentialBaseActivity activity = buildConfirmDeviceCredentialBaseActivity( ConfirmLockPassword.class, createRemoteLockscreenValidationIntent( KeyguardManager.PASSWORD, VALID_REMAINING_ATTEMPTS)); ConfirmLockPasswordFragment fragment = (ConfirmLockPasswordFragment) getConfirmDeviceCredentialBaseFragment(activity); ReflectionHelpers.setField(fragment, "mCredentialCheckResultTracker", mCredentialCheckResultTracker); ImeAwareEditText passwordEntry = activity.findViewById(R.id.password_entry); fragment.mRemoteLockscreenValidationClient = mRemoteLockscreenValidationClient; triggerHandleNext(fragment, passwordEntry); verify(mRemoteLockscreenValidationClient) .validateLockscreenGuess(any(), mCallbackCaptor.capture()); mCallbackCaptor.getValue().onSuccess(NO_REMAINING_ATTEMPTS_RESULT); assertThat(activity.isFinishing()).isTrue(); verify(mCredentialCheckResultTracker, never()) .setResult(anyBoolean(), any(), anyInt(), anyInt()); assertThat(mLockPatternUtils.isSecure(fragment.mEffectiveUserId)).isFalse(); } private void triggerHandleNext( ConfirmLockPasswordFragment fragment, ImeAwareEditText passwordEntry) { passwordEntry.setText("Password"); ReflectionHelpers.callInstanceMethod(fragment, "handleNext"); } }