sl@0: // Copyright (c) 2006-2009 Nokia Corporation and/or its subsidiary(-ies). sl@0: // All rights reserved. sl@0: // This component and the accompanying materials are made available sl@0: // under the terms of "Eclipse Public License v1.0" sl@0: // which accompanies this distribution, and is available sl@0: // at the URL "http://www.eclipse.org/legal/epl-v10.html". sl@0: // sl@0: // Initial Contributors: sl@0: // Nokia Corporation - initial contribution. sl@0: // sl@0: // Contributors: sl@0: // sl@0: // Description: sl@0: // t_sqlsecurity2 application has capabilities allowing read-only access to the test database sl@0: // sl@0: // sl@0: sl@0: #include sl@0: #include sl@0: #include sl@0: sl@0: /////////////////////////////////////////////////////////////////////////////////////// sl@0: //The test database has: sl@0: // SCHEMA database policy: ECapabilityReadDeviceData, ECapabilityWriteUserData, ECapabilityReadUserData sl@0: // WRITE database policy: ECapabilityWriteUserData sl@0: // READ database policy: ECapabilityReadUserData sl@0: // sl@0: //Database tables: sl@0: // TABLE A(F1 INTEGER, B1 BLOB) sl@0: // TABLE B(F2 INTEGER, F3 TEXT, B2 BLOB) sl@0: // sl@0: //Database data: sl@0: // TABLE A: {1, x'41414141414141414141'}, {2, x'42424242424242424242'}, {3, x'43434343434343434343'}, {4, x'44444444444444444444'} sl@0: // TABLE B: {2, "ABC", x'45454545454545454545'}, {4, "DEF", x'46464646464646464646'} sl@0: sl@0: /////////////////////////////////////////////////////////////////////////////////////// sl@0: sl@0: #define UNUSED_VAR(a) (a) = (a) sl@0: sl@0: RTest TheTest(_L("t_sqlsecurity2 test")); sl@0: RSqlDatabase TheDb; sl@0: sl@0: _LIT(KTestDbName, "c:[21212125]t_ab.db"); sl@0: _LIT(KTestDbName2, "c:\\test\\t_sqlsecurity2_2.db"); sl@0: sl@0: /////////////////////////////////////////////////////////////////////////////////////// sl@0: sl@0: void DeleteTestDb() sl@0: { sl@0: TheDb.Close(); sl@0: (void)RSqlDatabase::Delete(KTestDbName2); sl@0: } sl@0: sl@0: /////////////////////////////////////////////////////////////////////////////////////// sl@0: /////////////////////////////////////////////////////////////////////////////////////// sl@0: //Test macros and functions sl@0: void Check1(TInt aValue, TInt aLine) sl@0: { sl@0: if(!aValue) sl@0: { sl@0: DeleteTestDb(); sl@0: RDebug::Print(_L("*** Line %d\r\n"), aLine); sl@0: TheTest(EFalse, aLine); sl@0: } sl@0: } sl@0: void Check2(TInt aValue, TInt aExpected, TInt aLine) sl@0: { sl@0: if(aValue != aExpected) sl@0: { sl@0: DeleteTestDb(); sl@0: RDebug::Print(_L("*** Line %d, Expected error: %d, got: %d\r\n"), aLine, aExpected, aValue); sl@0: TheTest(EFalse, aLine); sl@0: } sl@0: } sl@0: #define TEST(arg) ::Check1((arg), __LINE__) sl@0: #define TEST2(aValue, aExpected) ::Check2(aValue, aExpected, __LINE__) sl@0: sl@0: /////////////////////////////////////////////////////////////////////////////////////// sl@0: sl@0: /** sl@0: @SYMTestCaseID SYSLIB-SQL-CT-1644 sl@0: @SYMTestCaseDesc Testing database operations on a secure database. sl@0: The test application's capabilities allow read-only access to the test secure database. sl@0: Verify that any other kind of a database operation will fail with KErrPermissionDenied error. sl@0: @SYMTestPriority High sl@0: @SYMTestActions Testing database operations on a secure database. sl@0: @SYMTestExpectedResults Test must not fail sl@0: @SYMREQ REQ5792 sl@0: REQ5793 sl@0: */ sl@0: void ReadOnlyDatabaseTest() sl@0: { sl@0: TInt err = TheDb.Open(KTestDbName); sl@0: TEST2(err, KErrNone); sl@0: sl@0: //Attempt to modify the database schema sl@0: err = TheDb.Exec(_L("CREATE TABLE C(FFF TEXT)")); sl@0: TEST2(err, KErrPermissionDenied); sl@0: err = TheDb.Exec(_L("CREATE TEMP TABLE TBL100(COL1 INTEGER)")); sl@0: TEST(err >= 0); sl@0: err = TheDb.Exec(_L("CREATE INDEX IDX100 ON TBL100(COL1)")); sl@0: TEST(err >= 0); sl@0: err = TheDb.Exec(_L("DROP INDEX IDX100")); sl@0: TEST(err >= 0); sl@0: err = TheDb.Exec(_L("DROP TABLE TBL100")); sl@0: TEST(err >= 0); sl@0: //Attempt to update the user data sl@0: err = TheDb.Exec(_L("UPDATE A SET F1 = 11 WHERE F1 = 1")); sl@0: TEST2(err, KErrPermissionDenied); sl@0: //Attempt to delete the user data sl@0: err = TheDb.Exec(_L("DELETE FROM B WHERE F2 = 2")); sl@0: TEST2(err, KErrPermissionDenied); sl@0: //Attempt to insert new user data sl@0: err = TheDb.Exec(_L("INSERT INTO B(F2, F3) VALUES(22, 'AAA')")); sl@0: TEST2(err, KErrPermissionDenied); sl@0: //Attempt to read the user data sl@0: RSqlStatement stmt; sl@0: err = stmt.Prepare(TheDb, _L("SELECT A.F1 FROM B,A WHERE A.F1 = B.F2")); sl@0: TEST2(err, KErrNone); sl@0: //ColumnCount() has no capabilities assigned sl@0: TInt colCnt = stmt.ColumnCount(); sl@0: TEST2(colCnt, 1); sl@0: //DeclaredColumnType() has no capabilities assigned sl@0: TSqlColumnType colType; sl@0: err = stmt.DeclaredColumnType(0, colType); sl@0: TEST2(err, KErrNone); sl@0: TEST2(colType, ESqlInt); sl@0: err = stmt.Next(); sl@0: TEST2(err, KSqlAtRow); sl@0: RDebug::Print(_L("Value=%d\r\n"), stmt.ColumnInt(0)); sl@0: err = stmt.Next(); sl@0: TEST2(err, KSqlAtRow); sl@0: RDebug::Print(_L("Value=%d\r\n"), stmt.ColumnInt(0)); sl@0: stmt.Close(); sl@0: //Attempt to read the system data sl@0: err = stmt.Prepare(TheDb, _L("SELECT * FROM SQLITE_MASTER")); sl@0: TEST2(err, KErrNone); sl@0: err = stmt.Next(); sl@0: TEST2(err, KSqlAtRow); sl@0: TPtrC p; sl@0: err = stmt.ColumnText(0, p); sl@0: TEST2(err, KErrNone); sl@0: RDebug::Print(_L("Value=%S\r\n"), &p); sl@0: stmt.Close(); sl@0: sl@0: //Attempt to execute PRAGMA statement directly sl@0: err = TheDb.Exec(_L("PRAGMA encoding = \"UTF-8\"")); sl@0: TEST2(err, KErrPermissionDenied); sl@0: sl@0: TheDb.Close(); sl@0: } sl@0: sl@0: /** sl@0: @SYMTestCaseID SYSLIB-SQL-UT-4009 sl@0: @SYMTestCaseDesc PlatSec warnings can occur even if an SQL database is successfully opened. sl@0: This test application has a "ReadUserData" capability, and that should allow the sl@0: test database ("c:[21212125]t_ab.db") to be opened successfully, because the "read" sl@0: database policy consists of a "ReadUserData" capability only. sl@0: No platsec warnings should be seen in the log file ("epocwind.out" file). sl@0: @SYMTestPriority High sl@0: @SYMTestActions PlatSec warnings can occur even if an SQL database is successfully opened. sl@0: @SYMTestExpectedResults Test must not fail sl@0: @SYMDEF DEF115811 sl@0: */ sl@0: void DEF115811() sl@0: { sl@0: TInt err = TheDb.Open(KTestDbName); sl@0: TEST2(err, KErrNone); sl@0: TheDb.Close(); sl@0: } sl@0: sl@0: /** sl@0: @SYMTestCaseID SYSLIB-SQL-UT-4095 sl@0: @SYMTestCaseDesc Testing incremental blob reads on a secure database. sl@0: The test application's capabilities allow read-only access to the blobs. sl@0: Verify that any attempt to write to a blob will fail with KErrPermissionDenied. sl@0: @SYMTestPriority High sl@0: @SYMTestActions Testing incremental blob reads on a secure database. sl@0: @SYMTestExpectedResults Test must not fail sl@0: @SYMREQ REQ5794 sl@0: */ sl@0: void ReadOnlyBlobTestL() sl@0: { sl@0: TInt err = TheDb.Open(KTestDbName); sl@0: TEST2(err, KErrNone); sl@0: sl@0: // Attempt to read the blobs in tables A and B sl@0: RSqlBlobReadStream rdStrm; sl@0: CleanupClosePushL(rdStrm); sl@0: TBuf8<20> data; sl@0: TRAP(err, rdStrm.OpenL(TheDb, _L("A"), _L("B1"), 1)); sl@0: TEST2(err, KErrNone); sl@0: TRAP(err, rdStrm.ReadL(data, 3)); sl@0: TEST2(err, KErrNone); sl@0: TEST(data.Compare(_L8("AAA")) == 0); sl@0: rdStrm.Close(); sl@0: TRAP(err, rdStrm.OpenL(TheDb, _L("B"), _L("B2"), 2)); sl@0: TEST2(err, KErrNone); sl@0: TRAP(err, rdStrm.ReadL(data, 10)); sl@0: TEST2(err, KErrNone); sl@0: TEST(data.Compare(_L8("FFFFFFFFFF")) == 0); sl@0: CleanupStack::PopAndDestroy(&rdStrm); sl@0: sl@0: HBufC8* wholeBuf = TSqlBlob::GetLC(TheDb, _L("A"), _L("B1"), 4); sl@0: TEST(wholeBuf->Des().Compare(_L8("DDDDDDDDDD")) == 0); sl@0: CleanupStack::PopAndDestroy(wholeBuf); sl@0: wholeBuf = TSqlBlob::GetLC(TheDb, _L("B"), _L("B2"), 1); sl@0: TEST(wholeBuf->Des().Compare(_L8("EEEEEEEEEE")) == 0); sl@0: CleanupStack::PopAndDestroy(wholeBuf); sl@0: sl@0: HBufC8* buf = HBufC8::NewLC(10); sl@0: TPtr8 bufPtr(buf->Des()); sl@0: err = TSqlBlob::Get(TheDb, _L("A"), _L("B1"), bufPtr, 2); sl@0: TEST2(err, KErrNone); sl@0: TEST(bufPtr.Compare(_L8("BBBBBBBBBB")) == 0); sl@0: err = TSqlBlob::Get(TheDb, _L("B"), _L("B2"), bufPtr, 2); sl@0: TEST2(err, KErrNone); sl@0: TEST(bufPtr.Compare(_L8("FFFFFFFFFF")) == 0); sl@0: CleanupStack::PopAndDestroy(buf); sl@0: sl@0: // Attempt to write to the blobs in tables A and B sl@0: RSqlBlobWriteStream wrStrm; sl@0: CleanupClosePushL(wrStrm); sl@0: TRAP(err, wrStrm.OpenL(TheDb, _L("A"), _L("B1"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: wrStrm.Close(); sl@0: TRAP(err, wrStrm.OpenL(TheDb, _L("B"), _L("B2"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: CleanupStack::PopAndDestroy(&wrStrm); sl@0: sl@0: TRAP(err, TSqlBlob::SetL(TheDb, _L("A"), _L("B1"), _L8("VVVV"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: TRAP(err, TSqlBlob::SetL(TheDb, _L("B"), _L("B2"), _L8("VVVV"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: sl@0: // SQLite and system tables sl@0: sl@0: // Attempt to read from and write to the SQLite master table - only reads should be permitted sl@0: CleanupClosePushL(rdStrm); sl@0: TRAP(err, rdStrm.OpenL(TheDb, _L("sqlite_master"), _L("tbl_name"), 1)); // TEXT column sl@0: TEST2(err, KErrNone); sl@0: TRAP(err, rdStrm.ReadL(data, 1)); sl@0: TEST2(err, KErrNone); sl@0: CleanupStack::PopAndDestroy(&rdStrm); sl@0: sl@0: wholeBuf = TSqlBlob::GetLC(TheDb, _L("sqlite_master"), _L("tbl_name"), 1); sl@0: TEST(wholeBuf->Length() > 0); sl@0: CleanupStack::PopAndDestroy(wholeBuf); sl@0: sl@0: buf = HBufC8::NewLC(100); sl@0: bufPtr.Set(buf->Des()); sl@0: err = TSqlBlob::Get(TheDb, _L("sqlite_master"), _L("tbl_name"), bufPtr, 1); sl@0: TEST2(err, KErrNone); sl@0: TEST(bufPtr.Length() > 0); sl@0: CleanupStack::PopAndDestroy(buf); sl@0: sl@0: CleanupClosePushL(wrStrm); sl@0: TRAP(err, wrStrm.OpenL(TheDb, _L("sqlite_master"), _L("tbl_name"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: CleanupStack::PopAndDestroy(&wrStrm); sl@0: sl@0: TRAP(err, TSqlBlob::SetL(TheDb, _L("sqlite_master"), _L("tbl_name"), _L8("VVVV"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: sl@0: // Attempt to read from and write to the system tables - neither reads nor writes should be permitted sl@0: CleanupClosePushL(rdStrm); sl@0: TRAP(err, rdStrm.OpenL(TheDb, _L("symbian_security"), _L("PolicyData"), 1)); // BLOB column sl@0: TEST2(err, KErrPermissionDenied); sl@0: CleanupStack::PopAndDestroy(&rdStrm); sl@0: sl@0: TRAP(err, wholeBuf = TSqlBlob::GetLC(TheDb, _L("symbian_security"), _L("PolicyData"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: sl@0: buf = HBufC8::NewLC(100); sl@0: bufPtr.Set(buf->Des()); sl@0: err = TSqlBlob::Get(TheDb, _L("symbian_security"), _L("PolicyData"), bufPtr, 1); sl@0: TEST2(err, KErrPermissionDenied); sl@0: CleanupStack::PopAndDestroy(buf); sl@0: sl@0: CleanupClosePushL(wrStrm); sl@0: TRAP(err, wrStrm.OpenL(TheDb, _L("symbian_security"), _L("PolicyData"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: CleanupStack::PopAndDestroy(&wrStrm); sl@0: sl@0: TRAP(err, TSqlBlob::SetL(TheDb, _L("symbian_security"), _L("PolicyData"), _L8("VVVV"), 1)); sl@0: TEST2(err, KErrPermissionDenied); sl@0: sl@0: TheDb.Close(); sl@0: } sl@0: sl@0: /** sl@0: @SYMTestCaseID SYSLIB-SQL-UT-4078 sl@0: @SYMTestCaseDesc RSqlDatabase::Compact(), platsec test. sl@0: The test verifies that RSqlDatabase::Compact() can be called sl@0: on the main or on an attached database no matter what the client capabilities are. sl@0: @SYMTestPriority Medium sl@0: @SYMTestActions RSqlDatabase::Compact(), platsec test. sl@0: @SYMTestExpectedResults Test must not fail sl@0: @SYMREQ REQ10405 sl@0: */ sl@0: void CompactTest() sl@0: { sl@0: TInt err = TheDb.Open(KTestDbName); sl@0: TEST2(err, KErrNone); sl@0: sl@0: err = TheDb.Compact(RSqlDatabase::EMaxCompaction); sl@0: TEST(err >= 0); sl@0: sl@0: TRequestStatus stat; sl@0: TheDb.Compact(RSqlDatabase::EMaxCompaction, stat); sl@0: User::WaitForRequest(stat); sl@0: TEST(stat.Int() >= 0); sl@0: sl@0: TheDb.Close(); sl@0: sl@0: err = TheDb.Create(KTestDbName2); sl@0: TEST2(err, KErrNone); sl@0: _LIT(KDbName, "Db"); sl@0: err = TheDb.Attach(KTestDbName, KDbName); sl@0: TEST2(err, KErrNone); sl@0: sl@0: err = TheDb.Compact(RSqlDatabase::EMaxCompaction, KDbName); sl@0: TEST(err >= 0); sl@0: sl@0: TheDb.Compact(RSqlDatabase::EMaxCompaction, stat, KDbName); sl@0: User::WaitForRequest(stat); sl@0: TEST(stat.Int() >= 0); sl@0: sl@0: err = TheDb.Detach(KDbName); sl@0: TheDb.Close(); sl@0: (void)RSqlDatabase::Delete(KTestDbName2); sl@0: } sl@0: sl@0: void DoTestsL() sl@0: { sl@0: TheTest.Start(_L(" @SYMTestCaseID:SYSLIB-SQL-CT-1644 Read-only database access test ")); sl@0: ReadOnlyDatabaseTest(); sl@0: sl@0: TheTest.Next(_L(" @SYMTestCaseID:SYSLIB-SQL-UT-4009 DEF115811 - PlatSec warnings can occur even if an SQL database is successfully opened ")); sl@0: DEF115811(); sl@0: sl@0: TheTest.Next(_L(" @SYMTestCaseID:SYSLIB-SQL-UT-4095 - Read-only blob access test")); sl@0: ReadOnlyBlobTestL(); sl@0: sl@0: TheTest.Next(_L(" @SYMTestCaseID:SYSLIB-SQL-UT-4078 - RSqlDatabase::Compact() test")); sl@0: CompactTest(); sl@0: } sl@0: sl@0: TInt E32Main() sl@0: { sl@0: TheTest.Title(); sl@0: sl@0: CTrapCleanup* tc = CTrapCleanup::New(); sl@0: sl@0: __UHEAP_MARK; sl@0: sl@0: TRAPD(err, DoTestsL()); sl@0: TEST2(err, KErrNone); sl@0: sl@0: __UHEAP_MARKEND; sl@0: sl@0: TheTest.End(); sl@0: TheTest.Close(); sl@0: sl@0: delete tc; sl@0: sl@0: User::Heap().Check(); sl@0: return KErrNone; sl@0: }