Symaptic: os/persistentdata/persistentstorage/sql/TEST/t_sqlsecurity3.cpp@260cb5ec6c19 (annotated)

sl@0	1	// Copyright (c) 2006-2009 Nokia Corporation and/or its subsidiary(-ies).
sl@0	2	// All rights reserved.
sl@0	3	// This component and the accompanying materials are made available
sl@0	4	// under the terms of "Eclipse Public License v1.0"
sl@0	5	// which accompanies this distribution, and is available
sl@0	6	// at the URL "http://www.eclipse.org/legal/epl-v10.html".
sl@0	7	//
sl@0	8	// Initial Contributors:
sl@0	9	// Nokia Corporation - initial contribution.
sl@0	10	//
sl@0	11	// Contributors:
sl@0	12	//
sl@0	13	// Description:
sl@0	14	// t_sqlsecurity3 application has capabilities allowing write-only access to the test database
sl@0	15	//
sl@0	16	//
sl@0	17
sl@0	18	#include <e32test.h>
sl@0	19	#include <bautils.h>
sl@0	20	#include <sqldb.h>
sl@0	21
sl@0	22	///////////////////////////////////////////////////////////////////////////////////////
sl@0	23	//The test database has:
sl@0	24	// SCHEMA database policy: ECapabilityReadDeviceData, ECapabilityWriteUserData, ECapabilityReadUserData
sl@0	25	// WRITE database policy: ECapabilityWriteUserData
sl@0	26	// READ database policy: ECapabilityReadUserData
sl@0	27	//
sl@0	28	//Database tables:
sl@0	29	// TABLE A(F1 INTEGER, B1 BLOB)
sl@0	30	// TABLE B(F2 INTEGER, F3 TEXT, B2 BLOB)
sl@0	31	//
sl@0	32	//Database data:
sl@0	33	// TABLE A: {1, x'41414141414141414141'}, {2, x'42424242424242424242'}, {3, x'43434343434343434343'}, {4, x'44444444444444444444'}
sl@0	34	// TABLE B: {2, "ABC", x'45454545454545454545'}, {4, "DEF", x'46464646464646464646'}
sl@0	35
sl@0	36	///////////////////////////////////////////////////////////////////////////////////////
sl@0	37
sl@0	38	#define UNUSED_VAR(a) (a) = (a)
sl@0	39
sl@0	40	RSqlDatabase TheDb;
sl@0	41	RTest TheTest(_L("t_sqlsecurity3 test"));
sl@0	42
sl@0	43	_LIT(KTestDbName, "c:[21212125]t_ab.db");
sl@0	44
sl@0	45	///////////////////////////////////////////////////////////////////////////////////////
sl@0	46	//Restore original test database function
sl@0	47	void RestoreOriginalDb()
sl@0	48	{
sl@0	49	TheDb.Close();
sl@0	50	TheDb.Open(KTestDbName);
sl@0	51
sl@0	52	// Delete and restore the content of table A (unconditional DELETE, no READ operations)
sl@0	53	TheDb.Exec(_L("DELETE FROM A"));
sl@0	54	TheDb.Exec(_L("INSERT INTO A(F1,B1) VALUES(1,x'41414141414141414141');INSERT INTO A(F1,B1) VALUES(2,x'42424242424242424242');INSERT INTO A(F1,B1) VALUES(3,x'43434343434343434343');INSERT INTO A(F1,B1) VALUES(4,x'44444444444444444444');"));
sl@0	55
sl@0	56	// Delete and restore the content of table B (unconditional DELETE, no READ operations)
sl@0	57	TheDb.Exec(_L("DELETE FROM B"));
sl@0	58	TheDb.Exec(_L("INSERT INTO B(F2,F3,B2) VALUES(2, 'ABC',x'45454545454545454545');INSERT INTO B(F2,F3,B2) VALUES(4,'DEF',x'46464646464646464646');"));
sl@0	59
sl@0	60	TheDb.Close();
sl@0	61	}
sl@0	62
sl@0	63	///////////////////////////////////////////////////////////////////////////////////////
sl@0	64	//Test macros and functions
sl@0	65	void Check1(TInt aValue, TInt aLine)
sl@0	66	{
sl@0	67	if(!aValue)
sl@0	68	{
sl@0	69	RestoreOriginalDb();
sl@0	70	RDebug::Print(_L("*** Line %d\r\n"), aLine);
sl@0	71	TheTest(EFalse, aLine);
sl@0	72	}
sl@0	73	}
sl@0	74	void Check2(TInt aValue, TInt aExpected, TInt aLine)
sl@0	75	{
sl@0	76	if(aValue != aExpected)
sl@0	77	{
sl@0	78	RestoreOriginalDb();
sl@0	79	RDebug::Print(_L("*** Line %d, Expected error: %d, got: %d\r\n"), aLine, aExpected, aValue);
sl@0	80	TheTest(EFalse, aLine);
sl@0	81	}
sl@0	82	}
sl@0	83	#define TEST(arg) ::Check1((arg), __LINE__)
sl@0	84	#define TEST2(aValue, aExpected) ::Check2(aValue, aExpected, __LINE__)
sl@0	85
sl@0	86	///////////////////////////////////////////////////////////////////////////////////////
sl@0	87
sl@0	88	/**
sl@0	89	@SYMTestCaseID SYSLIB-SQL-CT-1645
sl@0	90	@SYMTestCaseDesc Testing database operations on a secure database.
sl@0	91	The test application's capabilities allow write-only access to the test secure database.
sl@0	92	Verify that any other kind of a database operation will fail with KErrPermissionDenied error.
sl@0	93	@SYMTestPriority High
sl@0	94	@SYMTestActions Testing database operations on a secure database.
sl@0	95	@SYMTestExpectedResults Test must not fail
sl@0	96	@SYMREQ REQ5792
sl@0	97	REQ5793
sl@0	98	*/
sl@0	99	void WriteOnlyDatabaseTest()
sl@0	100	{
sl@0	101	TInt err = TheDb.Open(KTestDbName);
sl@0	102	TEST2(err, KErrNone);
sl@0	103
sl@0	104	//Attempt to modify the database schema
sl@0	105	err = TheDb.Exec(_L("CREATE TABLE C(FFF TEXT)"));
sl@0	106	TEST2(err, KErrPermissionDenied);
sl@0	107	err = TheDb.Exec(_L("CREATE TRIGGER upd_a_b1 UPDATE OF B1 ON A BEGIN UPDATE B SET F3 = 'AAAA' WHERE F2 = A.F1; END;"));
sl@0	108	TEST2(err, KErrPermissionDenied);
sl@0	109	err = TheDb.Exec(_L("CREATE TEMP TRIGGER upd_a_b1 UPDATE OF B1 ON A BEGIN UPDATE B SET F3 = 'AAAA' WHERE F2 = A.F1; END;"));
sl@0	110	TEST2(err, KErrPermissionDenied);//Temp trigger which attempts to update one of the tables.
sl@0	111	err = TheDb.Exec(_L("CREATE VIEW V1 AS SELECT * FROM A"));
sl@0	112	TEST2(err, KErrPermissionDenied);
sl@0	113	err = TheDb.Exec(_L("CREATE TEMP VIEW V1 AS SELECT * FROM A"));
sl@0	114	TEST(err >= 0);
sl@0	115	err = TheDb.Exec(_L("DROP VIEW V1"));
sl@0	116	TEST(err >= 0);
sl@0	117	//Attempt to update the user data (but it includes a READ operation)
sl@0	118	err = TheDb.Exec(_L("UPDATE A SET F1 = 11 WHERE F1 = 1"));
sl@0	119	TEST2(err, KErrPermissionDenied);
sl@0	120	//Attempt to update the user data (unconditional UPDATE, no READ operations)
sl@0	121	err = TheDb.Exec(_L("UPDATE A SET F1 = 11"));
sl@0	122	TEST(err >= 0);
sl@0	123	//Attempt to delete the user data (but it includes a READ operation)
sl@0	124	err = TheDb.Exec(_L("DELETE FROM B WHERE F2 = 2"));
sl@0	125	TEST2(err, KErrPermissionDenied);
sl@0	126	//Attempt to delete the user data (unconditional DELETE, no READ operations)
sl@0	127	err = TheDb.Exec(_L("DELETE FROM A"));
sl@0	128	TEST(err >= 0);
sl@0	129	//Restore the deleted table A
sl@0	130	err = TheDb.Exec(_L("INSERT INTO A(F1,B1) VALUES(1,x'41414141414141414141');INSERT INTO A(F1,B1) VALUES(2,x'42424242424242424242');INSERT INTO A(F1,B1) VALUES(3,x'43434343434343434343');INSERT INTO A(F1,B1) VALUES(4,x'44444444444444444444');"));
sl@0	131	TEST(err >= 0);
sl@0	132	//Attempt to insert new user data
sl@0	133	err = TheDb.Exec(_L("INSERT INTO B(F2, F3, B2) VALUES(22, 'AAA', x'47474747474747474747')"));
sl@0	134	TEST2(err, 1);
sl@0	135	//Attempt to change the isolation level.
sl@0	136	err = TheDb.SetIsolationLevel(RSqlDatabase::ESerializable);
sl@0	137	TEST2(err, KErrNone);
sl@0	138	err = TheDb.SetIsolationLevel(RSqlDatabase::EReadUncommitted);
sl@0	139	TEST2(err, KErrNone);
sl@0	140	//Attempt to read the user data
sl@0	141	RSqlStatement stmt;
sl@0	142	err = stmt.Prepare(TheDb, _L("SELECT A.F1 FROM B,A WHERE A.F1 = B.F2"));
sl@0	143	TEST2(err, KErrPermissionDenied);
sl@0	144	//Attempt to read the system data
sl@0	145	err = stmt.Prepare(TheDb, _L("SELECT * FROM SQLITE_MASTER"));
sl@0	146	TEST2(err, KErrNone);
sl@0	147	err = stmt.Next();
sl@0	148	TEST2(err, KSqlAtRow);
sl@0	149	TPtrC p;
sl@0	150	err = stmt.ColumnText(0, p);
sl@0	151	TEST2(err, KErrNone);
sl@0	152	RDebug::Print(_L("Value=%S\r\n"), &p);
sl@0	153	stmt.Close();
sl@0	154
sl@0	155	TheDb.Close();
sl@0	156	}
sl@0	157
sl@0	158	/**
sl@0	159	@SYMTestCaseID SYSLIB-SQL-UT-4096
sl@0	160	@SYMTestCaseDesc Testing incremental blob writes on a secure database.
sl@0	161	The test application's capabilities allow write-only access to the blobs.
sl@0	162	Verify that any attempt to read a blob will fail with KErrPermissionDenied.
sl@0	163	@SYMTestPriority High
sl@0	164	@SYMTestActions Testing incremental blob writes on a secure database.
sl@0	165	@SYMTestExpectedResults Test must not fail
sl@0	166	@SYMREQ REQ5794
sl@0	167	*/
sl@0	168	void WriteOnlyBlobTestL()
sl@0	169	{
sl@0	170	TInt err = TheDb.Open(KTestDbName);
sl@0	171	TEST2(err, KErrNone);
sl@0	172
sl@0	173	// Attempt to write the blobs in tables A and B
sl@0	174	RSqlBlobWriteStream wrStrm;
sl@0	175	CleanupClosePushL(wrStrm);
sl@0	176	TRAP(err, wrStrm.OpenL(TheDb, _L("A"), _L("B1"), 2));
sl@0	177	TEST2(err, KErrNone);
sl@0	178	TRAP(err, wrStrm.WriteL(_L8("YYYYYYY")));
sl@0	179	TEST2(err, KErrNone);
sl@0	180	wrStrm.Close();
sl@0	181	TRAP(err, wrStrm.OpenL(TheDb, _L("B"), _L("B2"), 1));
sl@0	182	TEST2(err, KErrNone);
sl@0	183	TRAP(err, wrStrm.WriteL(_L8("XXXXXXXXX")));
sl@0	184	TEST2(err, KErrNone);
sl@0	185	CleanupStack::PopAndDestroy(&wrStrm);
sl@0	186
sl@0	187	TRAP(err, TSqlBlob::SetL(TheDb, _L("A"), _L("B1"), _L8("UUUUUUUU"), 4));
sl@0	188	TEST2(err, KErrNone);
sl@0	189	TRAP(err, TSqlBlob::SetL(TheDb, _L("B"), _L("B2"), _L8("SSS"), 2));
sl@0	190	TEST2(err, KErrNone);
sl@0	191
sl@0	192	// Attempt to read from the blobs in tables A and B
sl@0	193	RSqlBlobReadStream rdStrm;
sl@0	194	CleanupClosePushL(rdStrm);
sl@0	195	TRAP(err, rdStrm.OpenL(TheDb, _L("A"), _L("B1"), 1));
sl@0	196	TEST2(err, KErrPermissionDenied);
sl@0	197	rdStrm.Close();
sl@0	198	TRAP(err, rdStrm.OpenL(TheDb, _L("B"), _L("B2"), 1));
sl@0	199	TEST2(err, KErrPermissionDenied);
sl@0	200	CleanupStack::PopAndDestroy(&rdStrm);
sl@0	201
sl@0	202	HBufC8* wholeBuf = NULL;
sl@0	203	TRAP(err, wholeBuf = TSqlBlob::GetLC(TheDb, _L("A"), _L("B1"), 1));
sl@0	204	TEST2(err, KErrPermissionDenied);
sl@0	205	TRAP(err, wholeBuf = TSqlBlob::GetLC(TheDb, _L("B"), _L("B2"), 1));
sl@0	206	TEST2(err, KErrPermissionDenied);
sl@0	207
sl@0	208	HBufC8* buf = HBufC8::NewLC(10);
sl@0	209	TPtr8 bufPtr(buf->Des());
sl@0	210	err = TSqlBlob::Get(TheDb, _L("A"), _L("B1"), bufPtr, 2);
sl@0	211	TEST2(err, KErrPermissionDenied);
sl@0	212	err = TSqlBlob::Get(TheDb, _L("B"), _L("B2"), bufPtr, 1);
sl@0	213	TEST2(err, KErrPermissionDenied);
sl@0	214	CleanupStack::PopAndDestroy(buf);
sl@0	215
sl@0	216	// SQLite and system tables
sl@0	217
sl@0	218	// Attempt to read from and write to the SQLite master table -
sl@0	219	// reads should be permitted because write capability is enough for this,
sl@0	220	// writes should not be permitted because schema capability is required for this
sl@0	221	CleanupClosePushL(rdStrm);
sl@0	222	TRAP(err, rdStrm.OpenL(TheDb, _L("sqlite_master"), _L("tbl_name"), 1)); // TEXT column
sl@0	223	TEST2(err, KErrNone);
sl@0	224	TBuf8<20> data;
sl@0	225	TRAP(err, rdStrm.ReadL(data, 1));
sl@0	226	TEST2(err, KErrNone);
sl@0	227	CleanupStack::PopAndDestroy(&rdStrm);
sl@0	228
sl@0	229	wholeBuf = TSqlBlob::GetLC(TheDb, _L("sqlite_master"), _L("tbl_name"), 1);
sl@0	230	TEST(wholeBuf->Length() > 0);
sl@0	231	CleanupStack::PopAndDestroy(wholeBuf);
sl@0	232
sl@0	233	buf = HBufC8::NewLC(100);
sl@0	234	bufPtr.Set(buf->Des());
sl@0	235	err = TSqlBlob::Get(TheDb, _L("sqlite_master"), _L("tbl_name"), bufPtr, 1);
sl@0	236	TEST2(err, KErrNone);
sl@0	237	TEST(bufPtr.Length() > 0);
sl@0	238	CleanupStack::PopAndDestroy(buf);
sl@0	239
sl@0	240	CleanupClosePushL(wrStrm);
sl@0	241	TRAP(err, wrStrm.OpenL(TheDb, _L("sqlite_master"), _L("tbl_name"), 1));
sl@0	242	TEST2(err, KErrPermissionDenied);
sl@0	243	CleanupStack::PopAndDestroy(&wrStrm);
sl@0	244
sl@0	245	TRAP(err, TSqlBlob::SetL(TheDb, _L("sqlite_master"), _L("tbl_name"), _L8("VVVV"), 1));
sl@0	246	TEST2(err, KErrPermissionDenied);
sl@0	247
sl@0	248	// Attempt to read from and write to the system tables - neither reads nor writes should be permitted
sl@0	249	CleanupClosePushL(rdStrm);
sl@0	250	TRAP(err, rdStrm.OpenL(TheDb, _L("symbian_security"), _L("PolicyData"), 1)); // BLOB column
sl@0	251	TEST2(err, KErrPermissionDenied);
sl@0	252	CleanupStack::PopAndDestroy(&rdStrm);
sl@0	253
sl@0	254	TRAP(err, wholeBuf = TSqlBlob::GetLC(TheDb, _L("symbian_security"), _L("PolicyData"), 1));
sl@0	255	TEST2(err, KErrPermissionDenied);
sl@0	256
sl@0	257	buf = HBufC8::NewLC(100);
sl@0	258	bufPtr.Set(buf->Des());
sl@0	259	err = TSqlBlob::Get(TheDb, _L("symbian_security"), _L("PolicyData"), bufPtr, 1);
sl@0	260	TEST2(err, KErrPermissionDenied);
sl@0	261	CleanupStack::PopAndDestroy(buf);
sl@0	262
sl@0	263	CleanupClosePushL(wrStrm);
sl@0	264	TRAP(err, wrStrm.OpenL(TheDb, _L("symbian_security"), _L("PolicyData"), 1));
sl@0	265	TEST2(err, KErrPermissionDenied);
sl@0	266	CleanupStack::PopAndDestroy(&wrStrm);
sl@0	267
sl@0	268	TRAP(err, TSqlBlob::SetL(TheDb, _L("symbian_security"), _L("PolicyData"), _L8("VVVV"), 1));
sl@0	269	TEST2(err, KErrPermissionDenied);
sl@0	270
sl@0	271	TheDb.Close();
sl@0	272	}
sl@0	273
sl@0	274	void DoTestsL()
sl@0	275	{
sl@0	276	TheTest.Start(_L(" @SYMTestCaseID:SYSLIB-SQL-CT-1645 Write-only database access test "));
sl@0	277	WriteOnlyDatabaseTest();
sl@0	278
sl@0	279	TheTest.Next(_L(" @SYMTestCaseID:SYSLIB-SQL-UT-4096 Write-only blob access test"));
sl@0	280	WriteOnlyBlobTestL();
sl@0	281
sl@0	282	RestoreOriginalDb(); // the same db is used by the other t_security test exe's
sl@0	283	}
sl@0	284
sl@0	285	TInt E32Main()
sl@0	286	{
sl@0	287	TheTest.Title();
sl@0	288
sl@0	289	CTrapCleanup* tc = CTrapCleanup::New();
sl@0	290
sl@0	291	__UHEAP_MARK;
sl@0	292
sl@0	293	TRAPD(err, DoTestsL());
sl@0	294	TEST2(err, KErrNone);
sl@0	295
sl@0	296	__UHEAP_MARKEND;
sl@0	297
sl@0	298	TheTest.End();
sl@0	299	TheTest.Close();
sl@0	300
sl@0	301	delete tc;
sl@0	302
sl@0	303	User::Heap().Check();
sl@0	304	return KErrNone;
sl@0	305	}

author	sl
	Tue, 10 Jun 2014 14:32:02 +0200
changeset 1	260cb5ec6c19
permissions	-rw-r--r--