bundles/org.eclipse.equinox.p2.tests/src/org/eclipse/equinox/p2/tests/engine/CertificateCheckerTest.java - equinox/rt.equinox.p2 - Git at Google

 /*******************************************************************************
  * Copyright (c) 2009, 2019 IBM Corporation and others.
  *
  * This program and the accompanying materials
  * are made available under the terms of the Eclipse Public License 2.0
  * which accompanies this distribution, and is available at
  * https://www.eclipse.org/legal/epl-2.0/
  *
  * SPDX-License-Identifier: EPL-2.0
  *
  * Contributors:
  *     IBM Corporation - initial API and implementation
  *******************************************************************************/
 package org.eclipse.equinox.p2.tests.engine;

 import java.io.File;
 import java.io.IOException;
 import java.security.cert.Certificate;
 import java.util.Map;
 import org.eclipse.core.runtime.IStatus;
 import org.eclipse.equinox.internal.p2.core.ProvisioningAgent;
 import org.eclipse.equinox.internal.p2.engine.EngineActivator;
 import org.eclipse.equinox.internal.p2.engine.phases.CertificateChecker;
 import org.eclipse.equinox.internal.p2.metadata.ArtifactKey;
 import org.eclipse.equinox.p2.core.UIServices;
 import org.eclipse.equinox.p2.metadata.Version;
 import org.eclipse.equinox.p2.repository.artifact.spi.ArtifactDescriptor;
 import org.eclipse.equinox.p2.tests.AbstractProvisioningTest;
 import org.eclipse.equinox.p2.tests.TestActivator;
 import org.eclipse.equinox.p2.tests.TestData;

 /**
  * Tests for {@link CertificateChecker}.
  */
 public class CertificateCheckerTest extends AbstractProvisioningTest {
 	class CertificateTestService extends UIServices {
 		public boolean unsignedReturnValue = true;
 		public boolean wasPrompted = false;

 		@Override
 		public AuthenticationInfo getUsernamePassword(String location) {
 			return null;
 		}

 		@Override
 		public AuthenticationInfo getUsernamePassword(String location, AuthenticationInfo previousInfo) {
 			return null;
 		}

 		@Override
 		public TrustInfo getTrustInfo(Certificate[][] untrustedChain, String[] unsignedDetail) {
 			wasPrompted = true;
 			return new TrustInfo(null, false, unsignedReturnValue);
 		}

 	}

 	CertificateChecker checker;
 	CertificateTestService serviceUI;
 	File unsigned;
 	private ProvisioningAgent testAgent;

 	@Override
 	protected void setUp() throws Exception {
 		serviceUI = new CertificateTestService();
 		testAgent = new ProvisioningAgent();
 		testAgent.registerService(UIServices.SERVICE_NAME, serviceUI);
 		testAgent.setBundleContext(TestActivator.getContext());
 		checker = new CertificateChecker(testAgent);
 		try {
 			unsigned = TestData.getFile("CertificateChecker", "unsigned.jar");
 		} catch (IOException e) {
 			fail("0.99", e);
 		}
 		assertNotNull("1.0", unsigned);
 		assertTrue("1.0", unsigned.exists());
 	}

 	/**
 	 * Tests that installing unsigned content is not allowed when the policy says it must fail.
 	 */
 	public void testPolicyAllow() {
 		try {
 			//if the service is consulted it will say no
 			serviceUI.unsignedReturnValue = false;
 			System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_ALLOW);
 			checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
 			IStatus result = checker.start();
 			assertEquals("1.0", IStatus.OK, result.getSeverity());
 		} finally {
 			System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
 		}
 	}

 	/**
 	 * Tests that installing unsigned content is not allowed when the policy says it must fail.
 	 */
 	public void testPolicyFail() {
 		try {
 			System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_FAIL);
 			checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
 			IStatus result = checker.start();
 			assertEquals("1.0", IStatus.ERROR, result.getSeverity());

 		} finally {
 			System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
 		}
 	}

 	/**
 	 * Tests that installing unsigned content with the "prompt" policy and the prompt succeeds.
 	 */
 	public void testPolicyPromptSuccess() {
 		try {
 			System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_PROMPT);
 			serviceUI.unsignedReturnValue = true;
 			checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
 			IStatus result = checker.start();
 			assertEquals("1.0", IStatus.OK, result.getSeverity());
 			assertTrue("1.1", serviceUI.wasPrompted);
 		} finally {
 			System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
 		}
 	}

 	/**
 	 * Tests that the default policy for unsigned content is to prompt.
 	 */
 	public void testPolicyDefault() {
 		System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
 		serviceUI.unsignedReturnValue = true;
 		checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
 		IStatus result = checker.start();
 		assertEquals("1.0", IStatus.OK, result.getSeverity());
 		assertTrue("1.1", serviceUI.wasPrompted);
 	}

 	/**
 	 * Tests that installing unsigned content with the "prompt" policy and the prompt says no.
 	 */
 	public void testPolicyPromptCancel() {
 		try {
 			System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_PROMPT);
 			serviceUI.unsignedReturnValue = false;
 			checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
 			IStatus result = checker.start();
 			assertEquals("1.0", IStatus.CANCEL, result.getSeverity());
 			assertTrue("1.1", serviceUI.wasPrompted);
 		} finally {
 			System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
 		}
 	}

 	/**
 	 * Tests that trust checks that occur in a headless environment are properly treated
 	 * as permissive, but not persistent, the same way as it would be if the service registration
 	 * were not there.
 	 */
 	public void testBug291049() {
 		try {
 			// Intentionally replace our service with a null service
 			testAgent.registerService(UIServices.SERVICE_NAME, null);
 			checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
 			// TODO need to add some untrusted files here, too.  To prove that we treated them as trusted temporarily
 			System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_PROMPT);
 			IStatus result = checker.start();
 			assertTrue("1.0", result.isOK());
 		} finally {
 			System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
 		}
 	}

 }
	/*******************************************************************************
	* Copyright (c) 2009, 2019 IBM Corporation and others.
	*
	* This program and the accompanying materials
	* are made available under the terms of the Eclipse Public License 2.0
	* which accompanies this distribution, and is available at
	* https://www.eclipse.org/legal/epl-2.0/
	*
	* SPDX-License-Identifier: EPL-2.0
	*
	* Contributors:
	* IBM Corporation - initial API and implementation
	*******************************************************************************/
	package org.eclipse.equinox.p2.tests.engine;

	import java.io.File;
	import java.io.IOException;
	import java.security.cert.Certificate;
	import java.util.Map;
	import org.eclipse.core.runtime.IStatus;
	import org.eclipse.equinox.internal.p2.core.ProvisioningAgent;
	import org.eclipse.equinox.internal.p2.engine.EngineActivator;
	import org.eclipse.equinox.internal.p2.engine.phases.CertificateChecker;
	import org.eclipse.equinox.internal.p2.metadata.ArtifactKey;
	import org.eclipse.equinox.p2.core.UIServices;
	import org.eclipse.equinox.p2.metadata.Version;
	import org.eclipse.equinox.p2.repository.artifact.spi.ArtifactDescriptor;
	import org.eclipse.equinox.p2.tests.AbstractProvisioningTest;
	import org.eclipse.equinox.p2.tests.TestActivator;
	import org.eclipse.equinox.p2.tests.TestData;

	/**
	* Tests for {@link CertificateChecker}.
	*/
	public class CertificateCheckerTest extends AbstractProvisioningTest {
	class CertificateTestService extends UIServices {
	public boolean unsignedReturnValue = true;
	public boolean wasPrompted = false;

	@Override
	public AuthenticationInfo getUsernamePassword(String location) {
	return null;
	}

	@Override
	public AuthenticationInfo getUsernamePassword(String location, AuthenticationInfo previousInfo) {
	return null;
	}

	@Override
	public TrustInfo getTrustInfo(Certificate[][] untrustedChain, String[] unsignedDetail) {
	wasPrompted = true;
	return new TrustInfo(null, false, unsignedReturnValue);
	}

	}

	CertificateChecker checker;
	CertificateTestService serviceUI;
	File unsigned;
	private ProvisioningAgent testAgent;

	@Override
	protected void setUp() throws Exception {
	serviceUI = new CertificateTestService();
	testAgent = new ProvisioningAgent();
	testAgent.registerService(UIServices.SERVICE_NAME, serviceUI);
	testAgent.setBundleContext(TestActivator.getContext());
	checker = new CertificateChecker(testAgent);
	try {
	unsigned = TestData.getFile("CertificateChecker", "unsigned.jar");
	} catch (IOException e) {
	fail("0.99", e);
	}
	assertNotNull("1.0", unsigned);
	assertTrue("1.0", unsigned.exists());
	}

	/**
	* Tests that installing unsigned content is not allowed when the policy says it must fail.
	*/
	public void testPolicyAllow() {
	try {
	//if the service is consulted it will say no
	serviceUI.unsignedReturnValue = false;
	System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_ALLOW);
	checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
	IStatus result = checker.start();
	assertEquals("1.0", IStatus.OK, result.getSeverity());
	} finally {
	System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
	}
	}

	/**
	* Tests that installing unsigned content is not allowed when the policy says it must fail.
	*/
	public void testPolicyFail() {
	try {
	System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_FAIL);
	checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
	IStatus result = checker.start();
	assertEquals("1.0", IStatus.ERROR, result.getSeverity());

	} finally {
	System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
	}
	}

	/**
	* Tests that installing unsigned content with the "prompt" policy and the prompt succeeds.
	*/
	public void testPolicyPromptSuccess() {
	try {
	System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_PROMPT);
	serviceUI.unsignedReturnValue = true;
	checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
	IStatus result = checker.start();
	assertEquals("1.0", IStatus.OK, result.getSeverity());
	assertTrue("1.1", serviceUI.wasPrompted);
	} finally {
	System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
	}
	}

	/**
	* Tests that the default policy for unsigned content is to prompt.
	*/
	public void testPolicyDefault() {
	System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
	serviceUI.unsignedReturnValue = true;
	checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
	IStatus result = checker.start();
	assertEquals("1.0", IStatus.OK, result.getSeverity());
	assertTrue("1.1", serviceUI.wasPrompted);
	}

	/**
	* Tests that installing unsigned content with the "prompt" policy and the prompt says no.
	*/
	public void testPolicyPromptCancel() {
	try {
	System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_PROMPT);
	serviceUI.unsignedReturnValue = false;
	checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
	IStatus result = checker.start();
	assertEquals("1.0", IStatus.CANCEL, result.getSeverity());
	assertTrue("1.1", serviceUI.wasPrompted);
	} finally {
	System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
	}
	}

	/**
	* Tests that trust checks that occur in a headless environment are properly treated
	* as permissive, but not persistent, the same way as it would be if the service registration
	* were not there.
	*/
	public void testBug291049() {
	try {
	// Intentionally replace our service with a null service
	testAgent.registerService(UIServices.SERVICE_NAME, null);
	checker.add(Map.of(new ArtifactDescriptor(new ArtifactKey("what", "ever", Version.create("1"))), unsigned));
	// TODO need to add some untrusted files here, too. To prove that we treated them as trusted temporarily
	System.getProperties().setProperty(EngineActivator.PROP_UNSIGNED_POLICY, EngineActivator.UNSIGNED_PROMPT);
	IStatus result = checker.start();
	assertTrue("1.0", result.isOK());
	} finally {
	System.getProperties().remove(EngineActivator.PROP_UNSIGNED_POLICY);
	}
	}

	}