]> git.saurik.com Git - apple/security.git/blob - OSX/sec/securityd/Regressions/secd-201-coders.c
projects / apple / security.git / blob
? search:


c5fc67122f87e0474b0e7259f1b37450c928886b
[apple/security.git] / OSX / sec / securityd / Regressions / secd-201-coders.c
1 /*
2 * Copyright (c) 2013-2016 Apple Inc. All Rights Reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
11 * file.
12 *
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
20 *
21 * @APPLE_LICENSE_HEADER_END@
22 */
23 //
24 // secd_201_coders
25 // sec
26 //
27
28 #include <stdio.h>
29
30
31
32
33 #include <Security/SecBase.h>
34 #include <Security/SecItem.h>
35
36 #include <CoreFoundation/CFDictionary.h>
37
38 #include <Security/SecureObjectSync/SOSAccount.h>
39 #include <Security/SecureObjectSync/SOSCloudCircle.h>
40 #include <Security/SecureObjectSync/SOSInternal.h>
41 #include <Security/SecureObjectSync/SOSUserKeygen.h>
42 #include <Security/SecureObjectSync/SOSTransport.h>
43 #include <Security/SecureObjectSync/SOSEnginePriv.h>
44 #include "SOSCloudKeychainLogging.h"
45
46 #include <stdlib.h>
47 #include <unistd.h>
48
49 #include "secd_regressions.h"
50 #include "SOSTestDataSource.h"
51 #include "SOSTestDevice.h"
52
53 #include "SOSRegressionUtilities.h"
54 #include <utilities/SecCFWrappers.h>
55 #include <Security/SecKeyPriv.h>
56
57 #include <securityd/SOSCloudCircleServer.h>
58
59 #include "SOSAccountTesting.h"
60
61 #include "SecdTestKeychainUtilities.h"
62
63 static int kTestTestCount = 182;
64
65 static void TestSOSEngineDoOnQueue(SOSEngineRef engine, dispatch_block_t action)
66 {
67 dispatch_sync(engine->queue, action);
68 }
69
70 static bool SOSAccountIsThisPeerIDMe(SOSAccountRef account, CFStringRef peerID) {
71 SOSPeerInfoRef mypi = SOSFullPeerInfoGetPeerInfo(account->my_identity);
72 CFStringRef myPeerID = SOSPeerInfoGetPeerID(mypi);
73
74 return myPeerID && CFEqualSafe(myPeerID, peerID);
75 }
76
77 static bool TestSOSEngineDoTxnOnQueue(SOSEngineRef engine, CFErrorRef *error, void(^transaction)(SOSTransactionRef txn, bool *commit))
78 {
79 return SOSDataSourceWithCommitQueue(engine->dataSource, error, ^(SOSTransactionRef txn, bool *commit) {
80 TestSOSEngineDoOnQueue(engine, ^{ transaction(txn, commit); });
81 });
82 }
83
84 static void compareCoders(CFMutableDictionaryRef beforeCoders, CFMutableDictionaryRef afterCoderState)
85 {
86 CFDictionaryForEach(beforeCoders, ^(const void *key, const void *value) {
87 CFStringRef beforePeerid = (CFStringRef)key;
88 SOSCoderRef beforeCoderData = (SOSCoderRef)value;
89 SOSCoderRef afterCoderData = (SOSCoderRef)CFDictionaryGetValue(afterCoderState, beforePeerid);
90 ok(CFEqual(beforeCoderData,afterCoderData));
91 });
92 }
93
94 static void ids_test_sync(SOSAccountRef alice_account, SOSAccountRef bob_account){
95
96 CFMutableDictionaryRef changes = CFDictionaryCreateMutableForCFTypes(kCFAllocatorDefault);
97 __block bool SyncingCompletedOverIDS = false;
98 __block CFErrorRef localError = NULL;
99 __block bool done = false;
100 do{
101 SOSCircleForEachValidPeer(alice_account->trusted_circle, alice_account->user_public, ^(SOSPeerInfoRef peer) {
102 if (!SOSAccountIsThisPeerIDMe(alice_account, SOSPeerInfoGetPeerID(peer))) {
103 if(SOSPeerInfoShouldUseIDSTransport(SOSFullPeerInfoGetPeerInfo(alice_account->my_identity), peer) &&
104 SOSPeerInfoShouldUseIDSMessageFragmentation(SOSFullPeerInfoGetPeerInfo(alice_account->my_identity), peer)){
105 secnotice("IDS Transport","Syncing with IDS capable peers using IDS!");
106
107 CFMutableDictionaryRef circleToIdsId = CFDictionaryCreateMutableForCFTypes(kCFAllocatorDefault);
108 CFMutableArrayRef ids = CFArrayCreateMutableForCFTypes(kCFAllocatorDefault);
109 CFArrayAppendValue(ids, SOSPeerInfoGetPeerID(peer));
110 CFDictionaryAddValue(circleToIdsId, SOSCircleGetName(alice_account->trusted_circle), ids);
111 SOSEngineRef alice_engine = SOSTransportMessageGetEngine(alice_account->ids_message_transport);
112
113 //testing loading and saving coders
114 ok(alice_engine->coders);
115 CFMutableDictionaryRef beforeCoders = CFDictionaryCreateMutableCopy(kCFAllocatorDefault, CFDictionaryGetCount(alice_engine->coders), alice_engine->coders);
116 TestSOSEngineDoTxnOnQueue(alice_engine, &localError, ^(SOSTransactionRef txn, bool *commit) {
117 ok(TestSOSEngineLoadCoders(SOSTransportMessageGetEngine(alice_account->ids_message_transport), txn, &localError));
118 });
119
120 ok(alice_engine->coders);
121
122 TestSOSEngineDoTxnOnQueue(alice_engine, &localError, ^(SOSTransactionRef txn, bool *commit) {
123 ok(SOSTestEngineSaveCoders(alice_engine, txn, &localError));
124 });
125
126 compareCoders(beforeCoders, alice_engine->coders);
127
128 //syncing with all peers
129 SyncingCompletedOverIDS = SOSTransportMessageSyncWithPeers(alice_account->ids_message_transport, circleToIdsId, &localError);
130
131 //testing load after sync with all peers
132 CFMutableDictionaryRef codersAfterSyncBeforeLoad = CFDictionaryCreateMutableCopy(kCFAllocatorDefault, CFDictionaryGetCount(alice_engine->coders), alice_engine->coders);
133 TestSOSEngineDoTxnOnQueue(alice_engine, &localError, ^(SOSTransactionRef txn, bool *commit) {
134 ok(TestSOSEngineLoadCoders(SOSTransportMessageGetEngine(alice_account->ids_message_transport), txn, &localError));
135 });
136 compareCoders(codersAfterSyncBeforeLoad, alice_engine->coders);
137
138 CFReleaseNull(codersAfterSyncBeforeLoad);
139 CFReleaseNull(beforeCoders);
140 CFReleaseNull(circleToIdsId);
141 CFReleaseNull(ids);
142 }
143 }
144 });
145
146 ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL);
147
148 SOSCircleForEachValidPeer(bob_account->trusted_circle, bob_account->user_public, ^(SOSPeerInfoRef peer) {
149 if (!SOSAccountIsThisPeerIDMe(bob_account, SOSPeerInfoGetPeerID(peer))) {
150 if(SOSPeerInfoShouldUseIDSTransport(SOSFullPeerInfoGetPeerInfo(bob_account->my_identity), peer) &&
151 SOSPeerInfoShouldUseIDSMessageFragmentation(SOSFullPeerInfoGetPeerInfo(bob_account->my_identity), peer)){
152 secnotice("IDS Transport","Syncing with IDS capable peers using IDS!");
153
154 CFMutableDictionaryRef circleToIdsId = CFDictionaryCreateMutableForCFTypes(kCFAllocatorDefault);
155 CFMutableArrayRef ids = CFArrayCreateMutableForCFTypes(kCFAllocatorDefault);
156 CFArrayAppendValue(ids, SOSPeerInfoGetPeerID(peer));
157 CFDictionaryAddValue(circleToIdsId, SOSCircleGetName(bob_account->trusted_circle), ids);
158 SOSEngineRef bob_engine = SOSTransportMessageGetEngine(bob_account->ids_message_transport);
159
160 //testing loading and saving coders
161 ok(bob_engine->coders);
162 CFMutableDictionaryRef beforeCoders = CFDictionaryCreateMutableCopy(kCFAllocatorDefault, CFDictionaryGetCount(bob_engine->coders), bob_engine->coders);
163 TestSOSEngineDoTxnOnQueue(bob_engine, &localError, ^(SOSTransactionRef txn, bool *commit) {
164 ok(TestSOSEngineLoadCoders(SOSTransportMessageGetEngine(bob_account->ids_message_transport), txn, &localError));
165 });
166
167 ok(bob_engine->coders);
168
169 TestSOSEngineDoTxnOnQueue(bob_engine, &localError, ^(SOSTransactionRef txn, bool *commit) {
170 ok(SOSTestEngineSaveCoders(bob_engine, txn, &localError));
171 });
172
173 compareCoders(beforeCoders, bob_engine->coders);
174
175 SyncingCompletedOverIDS &= SOSTransportMessageSyncWithPeers(bob_account->ids_message_transport, circleToIdsId, &localError);
176
177 //testing load after sync with all peers
178 CFMutableDictionaryRef codersAfterSyncBeforeLoad = CFDictionaryCreateMutableCopy(kCFAllocatorDefault, CFDictionaryGetCount(bob_engine->coders), bob_engine->coders);
179 TestSOSEngineDoTxnOnQueue(bob_engine, &localError, ^(SOSTransactionRef txn, bool *commit) {
180 ok(TestSOSEngineLoadCoders(SOSTransportMessageGetEngine(bob_account->ids_message_transport), txn, &localError));
181 });
182 compareCoders(codersAfterSyncBeforeLoad, bob_engine->coders);
183 CFReleaseNull(codersAfterSyncBeforeLoad);
184 CFReleaseNull(beforeCoders);
185 CFReleaseNull(circleToIdsId);
186 CFReleaseNull(ids);
187 }
188 }
189 });
190
191 if(CFDictionaryGetCount(SOSTransportMessageIDSTestGetChanges(alice_account->ids_message_transport)) == 0 && CFDictionaryGetCount(SOSTransportMessageIDSTestGetChanges(bob_account->ids_message_transport)) == 0){
192 done = true;
193 break;
194 }
195
196 ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL);
197
198 }while(done == false);
199 CFReleaseNull(changes);
200
201 ok(SyncingCompletedOverIDS, "synced items over IDS");
202
203 }
204
205 static void tests(void)
206 {
207
208 __block CFErrorRef error = NULL;
209 CFDataRef cfpassword = CFDataCreate(NULL, (uint8_t *) "FooFooFoo", 10);
210 CFDataRef cfwrong_password = CFDataCreate(NULL, (uint8_t *) "NotFooFooFoo", 10);
211 CFStringRef cfaccount = CFSTR("test@test.org");
212
213 CFMutableDictionaryRef changes = CFDictionaryCreateMutableForCFTypes(kCFAllocatorDefault);
214 SOSAccountRef alice_account = CreateAccountForLocalChanges(CFSTR("Alice"), CFSTR("TestSource"));
215 SOSAccountRef bob_account = CreateAccountForLocalChanges(CFSTR("Bob"), CFSTR("TestSource"));
216
217 ok(SOSAccountAssertUserCredentialsAndUpdate(bob_account, cfaccount, cfpassword, &error), "Credential setting (%@)", error);
218
219 // Bob wins writing at this point, feed the changes back to alice.
220 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 1, "updates");
221
222 ok(SOSAccountAssertUserCredentialsAndUpdate(alice_account, cfaccount, cfpassword, &error), "Credential setting (%@)", error);
223 CFReleaseNull(error);
224 ok(SOSAccountTryUserCredentials(alice_account, cfaccount, cfpassword, &error), "Credential trying (%@)", error);
225 CFReleaseNull(error);
226 ok(!SOSAccountTryUserCredentials(alice_account, cfaccount, cfwrong_password, &error), "Credential failing (%@)", error);
227 CFReleaseNull(cfwrong_password);
228 is(error ? CFErrorGetCode(error) : 0, kSOSErrorWrongPassword, "Expected SOSErrorWrongPassword");
229 CFReleaseNull(error);
230
231 ok(SOSAccountResetToOffering_wTxn(alice_account, &error), "Reset to offering (%@)", error);
232 CFReleaseNull(error);
233
234 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 2, "updates");
235
236 ok(SOSAccountHasCompletedInitialSync(alice_account), "Alice thinks she's completed initial sync");
237
238 ok(SOSAccountJoinCircles_wTxn(bob_account, &error), "Bob Applies (%@)", error);
239 CFReleaseNull(error);
240
241 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 2, "updates");
242
243 {
244 CFArrayRef applicants = SOSAccountCopyApplicants(alice_account, &error);
245
246 ok(applicants && CFArrayGetCount(applicants) == 1, "See one applicant %@ (%@)", applicants, error);
247 ok(SOSAccountAcceptApplicants(alice_account, applicants, &error), "Alice accepts (%@)", error);
248 CFReleaseNull(error);
249 CFReleaseNull(applicants);
250 }
251
252 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 3, "updates");
253
254 accounts_agree("bob&alice pair", bob_account, alice_account);
255
256 CFArrayRef peers = SOSAccountCopyPeers(alice_account, &error);
257 ok(peers && CFArrayGetCount(peers) == 2, "See two peers %@ (%@)", peers, error);
258 CFReleaseNull(peers);
259
260 //creating test devices
261 CFIndex version = 0;
262
263 // Optionally prefix each peer with name to make them more unique.
264 CFArrayRef deviceIDs = CFArrayCreateForCFTypes(kCFAllocatorDefault,SOSAccountGetMyPeerID(alice_account), SOSAccountGetMyPeerID(bob_account), NULL);
265 CFSetRef views = SOSViewsCopyTestV2Default();
266 CFMutableArrayRef peerMetas = CFArrayCreateMutableForCFTypes(kCFAllocatorDefault);
267 CFStringRef deviceID;
268 CFArrayForEachC(deviceIDs, deviceID) {
269 SOSPeerMetaRef peerMeta = SOSPeerMetaCreateWithComponents(deviceID, views, NULL);
270 CFArrayAppendValue(peerMetas, peerMeta);
271 CFReleaseNull(peerMeta);
272 }
273
274 CFReleaseNull(views);
275 CFArrayForEachC(deviceIDs, deviceID) {
276 SOSTestDeviceRef device = SOSTestDeviceCreateWithDbNamed(kCFAllocatorDefault, deviceID, deviceID);
277 SOSTestDeviceSetPeerIDs(device, peerMetas, version, NULL);
278
279 if(CFEqualSafe(deviceID, SOSAccountGetMyPeerID(alice_account))){
280 alice_account->factory = device->dsf;
281 SOSTestDeviceAddGenericItem(device, CFSTR("Alice"), CFSTR("Alice-add"));
282 }
283 else{
284 bob_account->factory = device->dsf;
285 SOSTestDeviceAddGenericItem(device, CFSTR("Bob"), CFSTR("Bob-add"));
286 }
287
288 CFReleaseNull(device);
289 }
290 CFReleaseNull(deviceIDs);
291 CFReleaseNull(peerMetas);
292
293 SOSUnregisterAllTransportMessages();
294 CFArrayRemoveAllValues(message_transports);
295
296 alice_account->ids_message_transport = (SOSTransportMessageRef)SOSTransportMessageIDSTestCreate(alice_account, CFSTR("Alice"), CFSTR("TestSource"), &error);
297 bob_account->ids_message_transport = (SOSTransportMessageRef)SOSTransportMessageIDSTestCreate(bob_account, CFSTR("Bob"), CFSTR("TestSource"), &error);
298
299 bool result = SOSAccountModifyCircle(alice_account, &error, ^bool(SOSCircleRef circle) {
300 CFErrorRef localError = NULL;
301
302 SOSFullPeerInfoUpdateTransportType(alice_account->my_identity, SOSTransportMessageTypeIDSV2, &localError);
303 SOSFullPeerInfoUpdateTransportPreference(alice_account->my_identity, kCFBooleanFalse, &localError);
304 SOSFullPeerInfoUpdateTransportFragmentationPreference(alice_account->my_identity, kCFBooleanTrue, &localError);
305
306 return SOSCircleHasPeer(circle, SOSFullPeerInfoGetPeerInfo(alice_account->my_identity), NULL);
307 });
308
309 ok(result, "Alice account update circle with transport type");
310
311 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 2, "updates");
312
313 result = SOSAccountModifyCircle(bob_account, &error, ^bool(SOSCircleRef circle) {
314 CFErrorRef localError = NULL;
315
316 SOSFullPeerInfoUpdateTransportType(bob_account->my_identity, SOSTransportMessageTypeIDSV2, &localError);
317 SOSFullPeerInfoUpdateTransportPreference(bob_account->my_identity, kCFBooleanFalse, &localError);
318 SOSFullPeerInfoUpdateTransportFragmentationPreference(bob_account->my_identity, kCFBooleanTrue, &localError);
319
320 return SOSCircleHasPeer(circle, SOSFullPeerInfoGetPeerInfo(bob_account->my_identity), NULL);
321 });
322
323 ok(result, "Bob account update circle with transport type");
324 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 2, "updates");
325
326 CFStringRef alice_transportType =SOSPeerInfoCopyTransportType(SOSAccountGetMyPeerInfo(alice_account));
327 CFStringRef bob_accountTransportType = SOSPeerInfoCopyTransportType(SOSAccountGetMyPeerInfo(bob_account));
328 ok(CFEqualSafe(alice_transportType, CFSTR("IDS2.0")), "Alice transport type not IDS");
329 ok(CFEqualSafe(bob_accountTransportType, CFSTR("IDS2.0")), "Bob transport type not IDS");
330
331 CFReleaseNull(alice_transportType);
332 CFReleaseNull(bob_accountTransportType);
333
334 SOSTransportMessageIDSTestSetName(alice_account->ids_message_transport, CFSTR("Alice Account"));
335 ok(SOSTransportMessageIDSTestGetName(alice_account->ids_message_transport) != NULL, "retrieved getting account name");
336 ok(SOSAccountRetrieveDeviceIDFromIDSKeychainSyncingProxy(alice_account, &error) != false, "device ID from IDSKeychainSyncingProxy");
337
338 SOSTransportMessageIDSTestSetName(bob_account->ids_message_transport, CFSTR("Bob Account"));
339 ok(SOSTransportMessageIDSTestGetName(bob_account->ids_message_transport) != NULL, "retrieved getting account name");
340 ok(SOSAccountRetrieveDeviceIDFromIDSKeychainSyncingProxy(bob_account, &error) != false, "device ID from IDSKeychainSyncingProxy");
341
342
343 ok(SOSAccountSetMyDSID(alice_account, CFSTR("Alice"),&error), "Setting IDS device ID");
344 CFStringRef alice_dsid = SOSAccountCopyDeviceID(alice_account, &error);
345 ok(CFEqualSafe(alice_dsid, CFSTR("Alice")), "Getting IDS device ID");
346
347 ok(SOSAccountSetMyDSID(bob_account, CFSTR("Bob"),&error), "Setting IDS device ID");
348 CFStringRef bob_dsid = SOSAccountCopyDeviceID(bob_account, &error);
349 ok(CFEqualSafe(bob_dsid, CFSTR("Bob")), "Getting IDS device ID");
350
351 is(ProcessChangesUntilNoChange(changes, alice_account, bob_account, NULL), 3, "updates");
352
353 ok(SOSAccountEnsurePeerRegistration(alice_account, NULL), "ensure peer registration - alice");
354 ok(SOSAccountEnsurePeerRegistration(bob_account, NULL), "ensure peer registration - bob");
355
356 ids_test_sync(alice_account, bob_account);
357
358 SOSUnregisterAllTransportMessages();
359 SOSUnregisterAllTransportCircles();
360 SOSUnregisterAllTransportKeyParameters();
361 CFArrayRemoveAllValues(key_transports);
362 CFArrayRemoveAllValues(circle_transports);
363 CFArrayRemoveAllValues(message_transports);
364 CFReleaseNull(alice_account);
365 CFReleaseNull(bob_account);
366
367 }
368
369 int secd_201_coders(int argc, char *const *argv)
370 {
371 plan_tests(kTestTestCount);
372
373 secd_test_setup_temp_keychain(__FUNCTION__, NULL);
374
375 tests();
376
377 return 0;
378 }
mirror of Security