/* * Copyright 2017 The Android Open Source Project * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ package com.android.server.wifi.hotspot2; import static org.junit.Assert.assertEquals; import static org.junit.Assert.assertTrue; import static org.mockito.ArgumentMatchers.anyMap; import static org.mockito.ArgumentMatchers.isNull; import static org.mockito.Mockito.any; import static org.mockito.Mockito.anyInt; import static org.mockito.Mockito.atLeastOnce; import static org.mockito.Mockito.doAnswer; import static org.mockito.Mockito.doReturn; import static org.mockito.Mockito.doThrow; import static org.mockito.Mockito.eq; import static org.mockito.Mockito.lenient; import static org.mockito.Mockito.mock; import static org.mockito.Mockito.never; import static org.mockito.Mockito.verify; import static org.mockito.Mockito.verifyNoMoreInteractions; import static org.mockito.Mockito.when; import android.app.test.MockAnswerUtil; import android.content.Context; import android.content.Intent; import android.content.pm.ActivityInfo; import android.content.pm.ApplicationInfo; import android.content.pm.PackageManager; import android.content.pm.ResolveInfo; import android.net.Network; import android.net.wifi.ScanResult; import android.net.wifi.WifiManager; import android.net.wifi.WifiSsid; import android.net.wifi.hotspot2.IProvisioningCallback; import android.net.wifi.hotspot2.OsuProvider; import android.net.wifi.hotspot2.PasspointConfiguration; import android.net.wifi.hotspot2.ProvisioningCallback; import android.net.wifi.hotspot2.omadm.PpsMoParser; import android.net.wifi.hotspot2.pps.Credential; import android.net.wifi.hotspot2.pps.HomeSp; import android.net.wifi.hotspot2.pps.UpdateParameter; import android.os.Build; import android.os.Handler; import android.os.RemoteException; import android.os.test.TestLooper; import android.telephony.TelephonyManager; import androidx.test.filters.SmallTest; import com.android.dx.mockito.inline.extended.ExtendedMockito; import com.android.server.wifi.WifiBaseTest; import com.android.server.wifi.WifiMetrics; import com.android.server.wifi.WifiNative; import com.android.server.wifi.hotspot2.anqp.ANQPElement; import com.android.server.wifi.hotspot2.anqp.Constants; import com.android.server.wifi.hotspot2.anqp.HSOsuProvidersElement; import com.android.server.wifi.hotspot2.anqp.OsuProviderInfo; import com.android.server.wifi.hotspot2.anqp.OsuProviderInfoTestUtil; import com.android.server.wifi.hotspot2.soap.ExchangeCompleteMessage; import com.android.server.wifi.hotspot2.soap.PostDevDataResponse; import com.android.server.wifi.hotspot2.soap.RedirectListener; import com.android.server.wifi.hotspot2.soap.SppConstants; import com.android.server.wifi.hotspot2.soap.SppResponseMessage; import com.android.server.wifi.hotspot2.soap.UpdateResponseMessage; import com.android.server.wifi.hotspot2.soap.command.BrowserUri; import com.android.server.wifi.hotspot2.soap.command.PpsMoData; import com.android.server.wifi.hotspot2.soap.command.SppCommand; import org.junit.After; import org.junit.Before; import org.junit.Test; import org.ksoap2.serialization.SoapSerializationEnvelope; import org.mockito.ArgumentCaptor; import org.mockito.Mock; import org.mockito.MockitoAnnotations; import org.mockito.MockitoSession; import java.net.URL; import java.nio.charset.StandardCharsets; import java.security.KeyStore; import java.security.cert.X509Certificate; import java.util.ArrayList; import java.util.Arrays; import java.util.HashMap; import java.util.List; import java.util.Map; import javax.net.ssl.SSLContext; import javax.net.ssl.TrustManagerFactory; /** * Unit tests for {@link PasspointProvisioner}. */ @SmallTest public class PasspointProvisionerTest extends WifiBaseTest { private static final int TEST_UID = 1500; private static final int STEP_INIT = 0; private static final int STEP_AP_CONNECT = 1; private static final int STEP_SERVER_CONNECT = 2; private static final int STEP_WAIT_FOR_REDIRECT_RESPONSE = 3; private static final int STEP_WAIT_FOR_SECOND_SOAP_RESPONSE = 4; private static final int STEP_WAIT_FOR_THIRD_SOAP_RESPONSE = 5; private static final int STEP_WAIT_FOR_TRUST_ROOT_CERTS = 6; private static final String TEST_DEV_ID = "12312341"; private static final String TEST_MANUFACTURER = Build.MANUFACTURER; private static final String TEST_MODEL = Build.MODEL; private static final String TEST_LANGUAGE = "en"; private static final String TEST_SESSION_ID = "123456"; private static final String TEST_URL = "https://127.0.0.1/session_id=" + TEST_SESSION_ID; private static final String TEST_MAC_ADDR = "11:22:33:44:55:66"; private static final String TEST_IMSI = "310150123456789"; private static final String TEST_SW_VERSION = "Android Test 1.0"; private static final String TEST_REDIRECT_URL = "http://127.0.0.1:12345/index.htm"; private static final String TEST_SSID = "TestSSID"; private static final String TEST_BSSID_STRING = "11:22:33:44:55:66"; private static final String TEST_SSID2 = "TestSSID2"; private static final String TEST_BSSID_STRING2 = "11:22:33:44:55:77"; private static final String TEST_SSID3 = "TestSSID3"; private static final String TEST_BSSID_STRING3 = "11:22:33:44:55:88"; private static final String OSU_APP_PACKAGE = "com.android.hotspot2.osulogin"; private static final String OSU_APP_NAME = "OsuLogin"; private static final byte[] TEST_OSU_SSID_BYTES = "OSU_SSID".getBytes(StandardCharsets.UTF_8); private static final byte[] TEST_OSU_SSID3_BYTES = "OSU_SSID3".getBytes(StandardCharsets.UTF_8); private static final WifiSsid TEST_OSU_SSID = WifiSsid.fromBytes(TEST_OSU_SSID_BYTES); private static final WifiSsid TEST_OSU_SSID3 = WifiSsid.fromBytes(TEST_OSU_SSID3_BYTES); private static final List TEST_PROVIDER_LIST = Arrays.asList(OsuProviderInfoTestUtil.TEST_OSU_PROVIDER_INFO); private static final HSOsuProvidersElement TEST_OSU_PROVIDERS_ELEMENT = new HSOsuProvidersElement(TEST_OSU_SSID, TEST_PROVIDER_LIST); private static final HSOsuProvidersElement TEST_OSU_PROVIDERS3_ELEMENT = new HSOsuProvidersElement(TEST_OSU_SSID3, TEST_PROVIDER_LIST); private PasspointProvisioner mPasspointProvisioner; private TestLooper mLooper = new TestLooper(); private Handler mHandler; private OsuNetworkConnection.Callbacks mOsuNetworkCallbacks; private PasspointProvisioner.OsuServerCallbacks mOsuServerCallbacks; private RedirectListener.RedirectCallback mRedirectReceivedListener; private ArgumentCaptor mOsuNetworkCallbacksCaptor = ArgumentCaptor.forClass(OsuNetworkConnection.Callbacks.class); private ArgumentCaptor mOsuServerCallbacksCaptor = ArgumentCaptor.forClass(PasspointProvisioner.OsuServerCallbacks.class); private ArgumentCaptor mOnRedirectReceivedArgumentCaptor = ArgumentCaptor.forClass(RedirectListener.RedirectCallback.class); private ArgumentCaptor mHandlerCaptor = ArgumentCaptor.forClass(Handler.class); private OsuProvider mOsuProvider; private TrustManagerFactory mDelegate; private URL mTestUrl; private MockitoSession mSession; @Mock PasspointObjectFactory mObjectFactory; @Mock PasspointManager mPasspointManager; @Mock Context mContext; @Mock WifiManager mWifiManager; @Mock IProvisioningCallback mCallback; @Mock OsuNetworkConnection mOsuNetworkConnection; @Mock OsuServerConnection mOsuServerConnection; @Mock Network mNetwork; @Mock WfaKeyStore mWfaKeyStore; @Mock KeyStore mKeyStore; @Mock SSLContext mTlsContext; @Mock WifiNative mWifiNative; @Mock PostDevDataResponse mSppResponseMessage; @Mock ExchangeCompleteMessage mExchangeCompleteMessage; @Mock SystemInfo mSystemInfo; @Mock TelephonyManager mTelephonyManager; @Mock TelephonyManager mDataTelephonyManager; @Mock SppCommand mSppCommand; @Mock BrowserUri mBrowserUri; @Mock PpsMoData mPpsMoData; @Mock RedirectListener mRedirectListener; @Mock PackageManager mPackageManager; @Mock PasspointConfiguration mPasspointConfiguration; @Mock X509Certificate mX509Certificate; @Mock SoapSerializationEnvelope mSoapSerializationEnvelope; @Mock WifiMetrics mWifiMetrics; @Before public void setUp() throws Exception { MockitoAnnotations.initMocks(this); mTestUrl = new URL(TEST_REDIRECT_URL); mSession = ExtendedMockito.mockitoSession().mockStatic( RedirectListener.class).mockStatic(PpsMoParser.class).mockStatic( UpdateResponseMessage.class).startMocking(); when(RedirectListener.createInstance(mLooper.getLooper())).thenReturn(mRedirectListener); when(mRedirectListener.getServerUrl()).thenReturn(new URL(TEST_REDIRECT_URL)); when(mRedirectListener.startServer( any(RedirectListener.RedirectCallback.class), any(Handler.class))).thenReturn(true); when(mRedirectListener.isAlive()).thenReturn(true); when(mWifiManager.isWifiEnabled()).thenReturn(true); when(mObjectFactory.makeOsuNetworkConnection(any(Context.class))) .thenReturn(mOsuNetworkConnection); when(mObjectFactory.makeOsuServerConnection()).thenReturn(mOsuServerConnection); when(mWfaKeyStore.get()).thenReturn(mKeyStore); when(mObjectFactory.makeWfaKeyStore()).thenReturn(mWfaKeyStore); when(mObjectFactory.getSSLContext(any(String.class))).thenReturn(mTlsContext); when(mObjectFactory.getSystemInfo(any(Context.class), any(WifiNative.class))).thenReturn( mSystemInfo); doReturn(mWifiManager).when(mContext) .getSystemService(eq(Context.WIFI_SERVICE)); mPasspointProvisioner = new PasspointProvisioner(mContext, mWifiNative, mObjectFactory, mPasspointManager, mWifiMetrics); when(mOsuNetworkConnection.connect(any(WifiSsid.class), any(), any())).thenReturn(true); when(mOsuServerConnection.connect(any(URL.class), any(Network.class))).thenReturn(true); when(mOsuServerConnection.validateProvider( anyMap())).thenReturn(true); when(mOsuServerConnection.canValidateServer()).thenReturn(true); mPasspointProvisioner.enableVerboseLogging(true); mOsuProvider = PasspointProvisioningTestUtil.generateOsuProvider(true); mDelegate = TrustManagerFactory.getInstance(TrustManagerFactory.getDefaultAlgorithm()); mDelegate.init(PasspointProvisioningTestUtil.createFakeKeyStore()); when(mObjectFactory.getTrustManagerFactory(any(KeyStore.class))).thenReturn(mDelegate); when(mContext.getSystemService(TelephonyManager.class)).thenReturn(mTelephonyManager); when(mTelephonyManager.createForSubscriptionId(anyInt())).thenReturn(mDataTelephonyManager); when(mSystemInfo.getDeviceModel()).thenReturn(TEST_MODEL); when(mSystemInfo.getLanguage()).thenReturn(TEST_LANGUAGE); when(mSystemInfo.getDeviceId()).thenReturn(TEST_DEV_ID); when(mSystemInfo.getDeviceManufacturer()).thenReturn(TEST_MANUFACTURER); when(mSystemInfo.getMacAddress(any(String.class))).thenReturn(TEST_MAC_ADDR); when(mSystemInfo.getSoftwareVersion()).thenReturn(TEST_SW_VERSION); when(mDataTelephonyManager.getSubscriberId()).thenReturn(TEST_IMSI); when(mExchangeCompleteMessage.getMessageType()).thenReturn( SppResponseMessage.MessageType.EXCHANGE_COMPLETE); when(mExchangeCompleteMessage.getStatus()).thenReturn( SppConstants.SppStatus.EXCHANGE_COMPLETE); when(mExchangeCompleteMessage.getSessionID()).thenReturn(TEST_SESSION_ID); when(mExchangeCompleteMessage.getError()).thenReturn(SppConstants.INVALID_SPP_CONSTANT); when(mSppResponseMessage.getMessageType()).thenReturn( SppResponseMessage.MessageType.POST_DEV_DATA_RESPONSE); when(mSppResponseMessage.getSppCommand()).thenReturn(mSppCommand); when(mSppResponseMessage.getSessionID()).thenReturn(TEST_SESSION_ID); when(mSppCommand.getSppCommandId()).thenReturn(SppCommand.CommandId.EXEC); when(mSppCommand.getExecCommandId()).thenReturn(SppCommand.ExecCommandId.BROWSER); when(mSppCommand.getCommandData()).thenReturn(mBrowserUri); when(mBrowserUri.getUri()).thenReturn(TEST_URL); when(mOsuServerConnection.exchangeSoapMessage( any(SoapSerializationEnvelope.class))).thenReturn(true); when(mContext.getPackageManager()).thenReturn(mPackageManager); ResolveInfo resolveInfo = new ResolveInfo(); resolveInfo.activityInfo = new ActivityInfo(); resolveInfo.activityInfo.applicationInfo = new ApplicationInfo(); resolveInfo.activityInfo.name = OSU_APP_NAME; resolveInfo.activityInfo.applicationInfo.packageName = OSU_APP_PACKAGE; when(mPackageManager.queryIntentActivities(any(Intent.class), anyInt())) .thenReturn(Arrays.asList(resolveInfo)); Map trustCertInfo = new HashMap<>(); trustCertInfo.put("https://testurl.com", "testData".getBytes()); when(mPasspointConfiguration.getTrustRootCertList()).thenReturn(trustCertInfo); when(mPasspointConfiguration.getCredential()).thenReturn(new Credential()); HomeSp homeSp = new HomeSp(); homeSp.setFqdn("test.com"); when(mPasspointConfiguration.getHomeSp()).thenReturn(homeSp); UpdateParameter updateParameter = new UpdateParameter(); updateParameter.setTrustRootCertUrl("https://testurl.com"); updateParameter.setTrustRootCertSha256Fingerprint("testData".getBytes()); when(mPasspointConfiguration.getSubscriptionUpdate()).thenReturn(updateParameter); when(mOsuServerConnection.retrieveTrustRootCerts(anyMap())).thenReturn(true); lenient().when(PpsMoParser.parseMoText(isNull())).thenReturn(mPasspointConfiguration); when(mPasspointConfiguration.validateForR2()).thenReturn(true); lenient().when(UpdateResponseMessage.serializeToSoapEnvelope(any(String.class), any(Boolean.class))).thenReturn(mSoapSerializationEnvelope); } @After public void cleanUp() { mSession.finishMocking(); } private void initAndStartProvisioning() { mPasspointProvisioner.init(mLooper.getLooper()); verify(mOsuNetworkConnection).init(mHandlerCaptor.capture()); mHandler = mHandlerCaptor.getValue(); assertEquals(mHandler.getLooper(), mLooper.getLooper()); mLooper.dispatchAll(); assertTrue(mPasspointProvisioner.startSubscriptionProvisioning( TEST_UID, mOsuProvider, mCallback)); // Runnable posted by the provisioning start request assertEquals(mHandler.hasMessagesOrCallbacks(), true); mLooper.dispatchAll(); assertEquals(mHandler.hasMessagesOrCallbacks(), false); verify(mOsuNetworkConnection, atLeastOnce()) .setEventCallback(mOsuNetworkCallbacksCaptor.capture()); mOsuNetworkCallbacks = mOsuNetworkCallbacksCaptor.getAllValues().get(0); verify(mOsuServerConnection, atLeastOnce()) .setEventCallback(mOsuServerCallbacksCaptor.capture()); mOsuServerCallbacks = mOsuServerCallbacksCaptor.getAllValues().get(0); } private void stopAfterStep(int finalStep) throws RemoteException { for (int step = STEP_INIT; step <= finalStep; step++) { if (step == STEP_INIT) { initAndStartProvisioning(); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_AP_CONNECTING); } else if (step == STEP_AP_CONNECT) { // Connection to OSU AP successful mOsuNetworkCallbacks.onConnected(mNetwork); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_AP_CONNECTED); } else if (step == STEP_SERVER_CONNECT) { verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SERVER_CONNECTING); } else if (step == STEP_WAIT_FOR_REDIRECT_RESPONSE) { // Server validation passed mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId(), true); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SERVER_VALIDATED); // Server connection succeeded mOsuServerCallbacks.onServerConnectionStatus(mOsuServerCallbacks.getSessionId(), true); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SERVER_CONNECTED); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_INIT_SOAP_EXCHANGE); // Received a first soapMessageResponse mOsuServerCallbacks.onReceivedSoapMessage(mOsuServerCallbacks.getSessionId(), mSppResponseMessage); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_WAITING_FOR_REDIRECT_RESPONSE); verify(mRedirectListener, atLeastOnce()) .startServer(mOnRedirectReceivedArgumentCaptor.capture(), any(Handler.class)); mRedirectReceivedListener = mOnRedirectReceivedArgumentCaptor.getValue(); verifyNoMoreInteractions(mCallback); } else if (step == STEP_WAIT_FOR_SECOND_SOAP_RESPONSE) { when(mSppCommand.getSppCommandId()).thenReturn(SppCommand.CommandId.ADD_MO); when(mSppCommand.getExecCommandId()).thenReturn(-1); when(mSppCommand.getCommandData()).thenReturn(mPpsMoData); // Received HTTP redirect response. mRedirectReceivedListener.onRedirectReceived(); mLooper.dispatchAll(); verify(mRedirectListener, atLeastOnce()).stopServer(any(Handler.class)); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_REDIRECT_RESPONSE_RECEIVED); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SECOND_SOAP_EXCHANGE); // Received a second soapMessageResponse mOsuServerCallbacks.onReceivedSoapMessage(mOsuServerCallbacks.getSessionId(), mSppResponseMessage); mLooper.dispatchAll(); } else if (step == STEP_WAIT_FOR_THIRD_SOAP_RESPONSE) { ExtendedMockito.verify( () -> UpdateResponseMessage.serializeToSoapEnvelope(eq(TEST_SESSION_ID), eq(false))); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_THIRD_SOAP_EXCHANGE); // Received a third soapMessageResponse mOsuServerCallbacks.onReceivedSoapMessage(mOsuServerCallbacks.getSessionId(), mExchangeCompleteMessage); mLooper.dispatchAll(); } else if (step == STEP_WAIT_FOR_TRUST_ROOT_CERTS) { verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_RETRIEVING_TRUST_ROOT_CERTS); Map> trustRootCertificates = new HashMap<>(); List certificates = new ArrayList<>(); certificates.add(mX509Certificate); trustRootCertificates.put(OsuServerConnection.TRUST_CERT_TYPE_AAA, certificates); trustRootCertificates.put(OsuServerConnection.TRUST_CERT_TYPE_REMEDIATION, certificates); // Received trust root CA certificates mOsuServerCallbacks.onReceivedTrustRootCertificates( mOsuServerCallbacks.getSessionId(), trustRootCertificates); mLooper.dispatchAll(); verify(mCallback).onProvisioningComplete(); // Verify WifiMetrics for provisioning success. verify(mWifiMetrics).incrementPasspointProvisionSuccess(); } } } /** * Verifies provisioning failure state. */ private void verifyProvisioningFailure(int failureCode) throws RemoteException { verify(mCallback).onProvisioningFailure(failureCode); // Verify WifiMetrics for provisioning failure. // incrementPasspointProvisionFailure() has to be called only once // and with correct failureCode verify(mWifiMetrics).incrementPasspointProvisionFailure(failureCode); verify(mWifiMetrics).incrementPasspointProvisionFailure(anyInt()); } /** * Verifies initialization and starting subscription provisioning flow. */ @Test public void verifyInitAndStartProvisioning() { initAndStartProvisioning(); } /** * Verifies Provisioning flow is aborted when OSU server is not possible for the flow. */ @Test public void verifyProvisioningUnavailable() throws RemoteException { when(mOsuServerConnection.canValidateServer()).thenReturn(false); initAndStartProvisioning(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_PROVISIONING_NOT_AVAILABLE); } /** * Verifies Provisioning flow is aborted when an {@link OsuProvider} is not found for the flow. */ @Test public void verifyOsuProviderNotFoundForProvisioning() throws RemoteException { mOsuProvider.setOsuSsid(null); when(mWifiManager.getScanResults()).thenReturn(null); initAndStartProvisioning(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_OSU_PROVIDER_NOT_FOUND); } /** * Verifies Provisioning flow is started with the OSU SSID of AP that has strongest signal * strength. */ @Test public void verifySelectBestOsuProviderForProvisioning() throws RemoteException { List scanResults = new ArrayList<>(); // Passpoint AP ScanResult scanResult = new ScanResult(); scanResult.SSID = TEST_SSID; scanResult.BSSID = TEST_BSSID_STRING; scanResult.flags = ScanResult.FLAG_PASSPOINT_NETWORK; scanResult.level = -70; scanResults.add(scanResult); // Non-Passpoint AP ScanResult scanResult2 = new ScanResult(); scanResult2.SSID = TEST_SSID2; scanResult2.BSSID = TEST_BSSID_STRING2; scanResult2.flags = 0; scanResult2.level = -50; scanResults.add(scanResult2); // Passpoint AP ScanResult scanResult3 = new ScanResult(); scanResult3.SSID = TEST_SSID3; scanResult3.BSSID = TEST_BSSID_STRING3; scanResult3.flags = ScanResult.FLAG_PASSPOINT_NETWORK; scanResult3.level = -60; scanResults.add(scanResult3); when(mWifiManager.getScanResults()).thenReturn(scanResults); doAnswer(new MockAnswerUtil.AnswerWithArguments() { public Map answer(ScanResult scanResult) { Map anqpElementMap = new HashMap<>(); if (scanResult.SSID.equals(TEST_SSID)) { anqpElementMap.put(Constants.ANQPElementType.HSOSUProviders, TEST_OSU_PROVIDERS_ELEMENT); } else if (scanResult.SSID.equals(TEST_SSID3)) { anqpElementMap.put(Constants.ANQPElementType.HSOSUProviders, TEST_OSU_PROVIDERS3_ELEMENT); } return anqpElementMap; } }).when(mPasspointManager).getANQPElements(any(ScanResult.class)); OsuProviderInfo info = OsuProviderInfoTestUtil.TEST_OSU_PROVIDER_INFO; mOsuProvider = new OsuProvider((WifiSsid) null, info.getFriendlyNames(), info.getServiceDescription(), info.getServerUri(), info.getNetworkAccessIdentifier(), info.getMethodList()); stopAfterStep(STEP_INIT); ArgumentCaptor wifiSsidArgumentCaptor = ArgumentCaptor.forClass(WifiSsid.class); verify(mOsuNetworkConnection, atLeastOnce()).connect(wifiSsidArgumentCaptor.capture(), any(String.class), any(String.class)); assertEquals(TEST_OSU_SSID3, wifiSsidArgumentCaptor.getValue()); } /** * Verifies existing provisioning flow is aborted before starting another one. */ @Test public void verifyProvisioningAbort() throws RemoteException { initAndStartProvisioning(); IProvisioningCallback mCallback2 = mock(IProvisioningCallback.class); assertTrue(mPasspointProvisioner.startSubscriptionProvisioning( TEST_UID, mOsuProvider, mCallback2)); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_PROVISIONING_ABORTED); } /** * Verifies existing provisioning flow is aborted when failing to create an instance of {@link * RedirectListener}. */ @Test public void verifyRedirectStartFailure() throws RemoteException { when(RedirectListener.createInstance(mLooper.getLooper())).thenReturn(null); mPasspointProvisioner.init(mLooper.getLooper()); verify(mOsuNetworkConnection).init(mHandlerCaptor.capture()); mHandler = mHandlerCaptor.getValue(); assertEquals(mHandler.getLooper(), mLooper.getLooper()); mLooper.dispatchAll(); assertTrue(mPasspointProvisioner.startSubscriptionProvisioning( TEST_UID, mOsuProvider, mCallback)); mLooper.dispatchAll(); // Since creating an instance of RedirectListener, directly move to FAILED_STATE verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_START_REDIRECT_LISTENER); // Failure case, no more runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that if connection attempt to OSU AP fails, corresponding error callback is invoked. */ @Test public void verifyConnectAttemptFailure() throws RemoteException { when(mOsuNetworkConnection.connect(any(WifiSsid.class), any(), any())).thenReturn(false); initAndStartProvisioning(); // Since connection attempt fails, directly move to FAILED_STATE verifyProvisioningFailure(ProvisioningCallback.OSU_FAILURE_AP_CONNECTION); // Failure case, no more runnables posted verifyNoMoreInteractions(mCallback); } /** * Verifies that after connection attempt succeeds and a network disconnection occurs, the * corresponding failure callback is invoked. */ @Test public void verifyConnectAttemptedAndConnectionFailed() throws RemoteException { stopAfterStep(STEP_INIT); // state expected is WAITING_TO_CONNECT verify(mCallback).onProvisioningStatus(ProvisioningCallback.OSU_STATUS_AP_CONNECTING); // Connection to OSU AP fails mOsuNetworkCallbacks.onDisconnected(); // Move to failed state verifyProvisioningFailure(ProvisioningCallback.OSU_FAILURE_AP_CONNECTION); // Failure case, no more runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that a connection drop is reported via callback. */ @Test public void verifyConnectionDrop() throws RemoteException { stopAfterStep(STEP_SERVER_CONNECT); // Disconnect received mOsuNetworkCallbacks.onDisconnected(); // Move to failed state verifyProvisioningFailure(ProvisioningCallback.OSU_FAILURE_AP_CONNECTION); // No more callbacks, Osu server validation not initiated verifyNoMoreInteractions(mCallback); } /** * Verifies that Wifi Disable while provisioning is communicated as provisioning failure */ @Test public void verifyFailureDueToWifiDisable() throws RemoteException { stopAfterStep(STEP_SERVER_CONNECT); // Wifi disabled notification mOsuNetworkCallbacks.onWifiDisabled(); // Wifi Disable is processed first and move to failed state verifyProvisioningFailure(ProvisioningCallback.OSU_FAILURE_AP_CONNECTION); // OSU server connection event is not handled verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked as the provisioner connects * to OSU AP and OSU server and that invalid server URL generates the right error callback. */ @Test public void verifyInvalidOsuServerURL() throws RemoteException { mOsuProvider = PasspointProvisioningTestUtil.generateInvalidServerUrlOsuProvider(); initAndStartProvisioning(); // Attempting to connect to OSU server fails due to invalid server URL, move to failed state verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_SERVER_URL_INVALID); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked as the provisioner progresses * to associating with the OSU AP and connection to OSU server fails. */ @Test public void verifyServerConnectionFailure() throws RemoteException { when(mOsuServerConnection.connect(any(URL.class), any(Network.class))).thenReturn(false); stopAfterStep(STEP_AP_CONNECT); // Connection to OSU Server fails, move to failed state verifyProvisioningFailure(ProvisioningCallback.OSU_FAILURE_SERVER_CONNECTION); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked as the provisioner is unable * to validate the OSU Server */ @Test public void verifyServerValidationFailure() throws RemoteException { stopAfterStep(STEP_SERVER_CONNECT); // OSU Server validation of certs fails mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId(), false); mLooper.dispatchAll(); // Server validation failure, move to failed state verifyProvisioningFailure(ProvisioningCallback.OSU_FAILURE_SERVER_VALIDATION); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the status for server validation from a previous session is ignored * by the provisioning state machine */ @Test public void verifyServerValidationFailurePreviousSession() throws RemoteException { stopAfterStep(STEP_SERVER_CONNECT); // OSU Server validation of certs failure but from a previous session mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId() - 1, false); // Runnable posted by server callback assertTrue(mHandler.hasMessagesOrCallbacks()); mLooper.dispatchAll(); // Server validation failure, move to failed state verify(mCallback, never()).onProvisioningFailure( ProvisioningCallback.OSU_FAILURE_SERVER_VALIDATION); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the status for server validation from a previous session is ignored * by the provisioning state machine */ @Test public void verifyServerValidationSuccessPreviousSession() throws RemoteException { stopAfterStep(STEP_SERVER_CONNECT); // OSU Server validation success but from a previous session mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId() - 1, true); // Runnable posted by server callback assertTrue(mHandler.hasMessagesOrCallbacks()); mLooper.dispatchAll(); // Ignore the validation complete event because of different session id. verify(mCallback, never()).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SERVER_VALIDATED); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked when provisioner is unable * to validate the OSU provider */ @Test public void verifyProviderVerificationFailure() throws RemoteException { when(mOsuServerConnection.validateProvider( anyMap())).thenReturn(false); stopAfterStep(STEP_SERVER_CONNECT); // Wait for OSU server validation callback mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId(), true); // Runnable posted by server callback assertTrue(mHandler.hasMessagesOrCallbacks()); // OSU server validation success posts another runnable to validate the provider mLooper.dispatchAll(); // Provider validation failure is processed next, move to failed state verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_SERVICE_PROVIDER_VERIFICATION); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked when SOAP message exchange fails. */ @Test public void verifyExchangingSoapMessageFailure() throws RemoteException { // Fail to exchange the SOAP message when(mOsuServerConnection.exchangeSoapMessage( any(SoapSerializationEnvelope.class))).thenReturn(false); stopAfterStep(STEP_SERVER_CONNECT); // Server validation passed mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId(), true); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus(ProvisioningCallback.OSU_STATUS_SERVER_VALIDATED); // Server connection passed mOsuServerCallbacks.onServerConnectionStatus(mOsuServerCallbacks.getSessionId(), true); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SERVER_CONNECTED); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_SOAP_MESSAGE_EXCHANGE); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked when there is no OSU activity for * the intent */ @Test public void verifyNoOsuActivityFoundFailure() throws RemoteException { // There is no activity found for the intent when(mPackageManager.queryIntentActivities(any(Intent.class), anyInt())).thenReturn(null); stopAfterStep(STEP_SERVER_CONNECT); // Server validation passed mOsuServerCallbacks.onServerValidationStatus(mOsuServerCallbacks.getSessionId(), true); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus(ProvisioningCallback.OSU_STATUS_SERVER_VALIDATED); // Server connection passed mOsuServerCallbacks.onServerConnectionStatus(mOsuServerCallbacks.getSessionId(), true); mLooper.dispatchAll(); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SERVER_CONNECTED); verify(mCallback).onProvisioningStatus(ProvisioningCallback.OSU_STATUS_INIT_SOAP_EXCHANGE); // Received soapMessageResponse mOsuServerCallbacks.onReceivedSoapMessage(mOsuServerCallbacks.getSessionId(), mSppResponseMessage); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_NO_OSU_ACTIVITY_FOUND); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked when timeout occurs for HTTP * redirect response. */ @Test public void verifyRedirectResponseTimeout() throws RemoteException { stopAfterStep(STEP_WAIT_FOR_REDIRECT_RESPONSE); // Timed out for HTTP redirect response. mRedirectReceivedListener.onRedirectTimedOut(); mLooper.dispatchAll(); verify(mRedirectListener, atLeastOnce()).stopServer(any(Handler.class)); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_TIMED_OUT_REDIRECT_LISTENER); // No further runnable posted verifyNoMoreInteractions(mCallback); } /** * Verifies that the right provisioning callbacks are invoked when a command of a second soap * response {@link PostDevDataResponse} is not for ADD MO command. */ @Test public void verifyNotAddMoCommandFailureForSecondSoapResponse() throws RemoteException { stopAfterStep(STEP_WAIT_FOR_REDIRECT_RESPONSE); // Received HTTP redirect response. mRedirectReceivedListener.onRedirectReceived(); mLooper.dispatchAll(); verify(mRedirectListener, atLeastOnce()).stopServer(any(Handler.class)); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_REDIRECT_RESPONSE_RECEIVED); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_SECOND_SOAP_EXCHANGE); // Received a second soapMessageResponse mOsuServerCallbacks.onReceivedSoapMessage(mOsuServerCallbacks.getSessionId(), mSppResponseMessage); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_UNEXPECTED_COMMAND_TYPE); } /** * Verifies that the right provisioning callbacks are invoked when a message of a third soap * response {@link ExchangeCompleteMessage} has an error property. */ @Test public void verifyHandlingErrorPropertyInThirdSoapResponse() throws RemoteException { when(mExchangeCompleteMessage.getError()).thenReturn( SppConstants.SppError.PROVISIONING_FAILED); stopAfterStep(STEP_WAIT_FOR_SECOND_SOAP_RESPONSE); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_THIRD_SOAP_EXCHANGE); // Received a third soapMessageResponse mOsuServerCallbacks.onReceivedSoapMessage(mOsuServerCallbacks.getSessionId(), mExchangeCompleteMessage); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_PROVISIONING_ABORTED); } /** * Verifies that the {@link UpdateResponseMessage#serializeToSoapEnvelope(String, boolean)} is * invoked with right arguments when a PPS-MO xml received from server is not valid in terms of * schema of PPS MO. */ @Test public void verifyHandlingInvalidPpsMoForSoapResponse() throws RemoteException { when(mPasspointConfiguration.validateForR2()).thenReturn(false); stopAfterStep(STEP_WAIT_FOR_SECOND_SOAP_RESPONSE); ExtendedMockito.verify( () -> UpdateResponseMessage.serializeToSoapEnvelope(eq(TEST_SESSION_ID), eq(true))); } /** * Verifies that the right provisioning callbacks are invoked when failing to call {@link * OsuServerConnection#retrieveTrustRootCerts(Map)}. */ @Test public void verifyHandlingErrorForCallingRetrieveTrustRootCerts() throws RemoteException { when(mOsuServerConnection.retrieveTrustRootCerts(anyMap())).thenReturn(false); stopAfterStep(STEP_WAIT_FOR_THIRD_SOAP_RESPONSE); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_SERVER_CONNECTION); } /** * Verifies that the right provisioning callbacks are invoked when a new {@link * PasspointConfiguration} is failed to add. */ @Test public void verifyHandlingErrorForAddingPasspointConfiguration() throws RemoteException { doThrow(IllegalArgumentException.class).when( mWifiManager).addOrUpdatePasspointConfiguration(any(PasspointConfiguration.class)); stopAfterStep(STEP_WAIT_FOR_THIRD_SOAP_RESPONSE); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_RETRIEVING_TRUST_ROOT_CERTS); Map> trustRootCertificates = new HashMap<>(); List certificates = new ArrayList<>(); certificates.add(mX509Certificate); trustRootCertificates.put(OsuServerConnection.TRUST_CERT_TYPE_AAA, certificates); trustRootCertificates.put(OsuServerConnection.TRUST_CERT_TYPE_REMEDIATION, certificates); // Received trust root CA certificates mOsuServerCallbacks.onReceivedTrustRootCertificates( mOsuServerCallbacks.getSessionId(), trustRootCertificates); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_ADD_PASSPOINT_CONFIGURATION); } /** * Verifies that the right provisioning callbacks are invoked when it is failed to retrieve * trust root certificates from the URLs provided. */ @Test public void verifyHandlingEmptyTrustRootCertificateRetrieved() throws RemoteException { stopAfterStep(STEP_WAIT_FOR_THIRD_SOAP_RESPONSE); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_RETRIEVING_TRUST_ROOT_CERTS); // Empty trust root certificates. Map> trustRootCertificates = new HashMap<>(); // Received trust root CA certificates mOsuServerCallbacks.onReceivedTrustRootCertificates( mOsuServerCallbacks.getSessionId(), trustRootCertificates); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_RETRIEVE_TRUST_ROOT_CERTIFICATES); } /** * Verifies that the right provisioning callbacks are invoked when it is failed to retrieve * trust root certificate for remediation server from the URLs provided. */ @Test public void verifyHandlingEmptyRemediationTrustRootCertificateRetrieved() throws RemoteException { stopAfterStep(STEP_WAIT_FOR_THIRD_SOAP_RESPONSE); verify(mCallback).onProvisioningStatus( ProvisioningCallback.OSU_STATUS_RETRIEVING_TRUST_ROOT_CERTS); // trust root certificates. Map> trustRootCertificates = new HashMap<>(); List certificates = new ArrayList<>(); certificates.add(mX509Certificate); // Add trust root certificate for AAA server trustRootCertificates.put(OsuServerConnection.TRUST_CERT_TYPE_AAA, certificates); // Received trust root CA certificates mOsuServerCallbacks.onReceivedTrustRootCertificates( mOsuServerCallbacks.getSessionId(), trustRootCertificates); mLooper.dispatchAll(); verifyProvisioningFailure( ProvisioningCallback.OSU_FAILURE_RETRIEVE_TRUST_ROOT_CERTIFICATES); } /** * Verifies that the right provisioning callbacks are invoked as the provisioner progresses * to the end as successful case. */ @Test public void verifyProvisioningFlowForSuccessfulCase() throws RemoteException { stopAfterStep(STEP_WAIT_FOR_TRUST_ROOT_CERTS); // No further runnable posted verifyNoMoreInteractions(mCallback); } }