pa-fazil
/
android_packages_modules_Virtualization
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add extra apk mount test 

system/etc/fsverity/security/BuildManifest.apk contains a protobuf file
as an asset. This test tries to parse the protobuf file, thus verifying
the extra APK mount.

Bug: 203483081
Test: atest MicrodroidTests
Change-Id: I2ca0bf337fcee0c2df3c32d43685c4cdadcbac91
This commit is contained in:
Inseob Kim 2022-01-20 13:12:43 +09:00
parent 287e3deeed
commit db31970236
3 changed files with 33 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
tests/testapk/Android.bp
View File

@ -30,6 +30,11 @@ cc_library_shared {
"libbinder_rpc_unstable",
"MicrodroidTestNativeLibSub",
],
static_libs: [
"libfsverity_digests_proto_cc",
"liblog",
"libprotobuf-cpp-lite-ndk",
],
}
cc_library_shared {

8
tests/testapk/src/java/com/android/microdroid/test/MicrodroidTests.java
View File

@ -140,7 +140,8 @@ public class MicrodroidTests {
@Test
public void connectToVmService() throws VirtualMachineException, InterruptedException {
VirtualMachineConfig.Builder builder =
new VirtualMachineConfig.Builder(mInner.mContext, "assets/vm_config.json");
new VirtualMachineConfig.Builder(mInner.mContext,
"assets/vm_config_extra_apk.json");
if (Build.SUPPORTED_ABIS.length > 0) {
String primaryAbi = Build.SUPPORTED_ABIS[0];
switch(primaryAbi) {
@ -154,7 +155,7 @@ public class MicrodroidTests {
}
VirtualMachineConfig config = builder.build();
mInner.mVm = mInner.mVmm.getOrCreate("test_vm", config);
mInner.mVm = mInner.mVmm.getOrCreate("test_vm_extra_apk", config);
VmEventListener listener =
new VmEventListener() {
private boolean mPayloadReadyCalled = false;
@ -177,6 +178,9 @@ public class MicrodroidTests {
assertEquals(
testService.readProperty("debug.microdroid.test.keystore"),
"PASS");
assertEquals(
testService.readProperty("debug.microdroid.test.extra_apk"),
"PASS");
} catch (Exception e) {
fail("Exception while testing service: " + e.toString());
}

24
tests/testapk/src/native/testbinary.cpp
View File

@ -16,12 +16,14 @@
#include <aidl/android/system/keystore2/IKeystoreService.h>
#include <aidl/android/system/virtualmachineservice/IVirtualMachineService.h>
#include <aidl/com/android/microdroid/testservice/BnTestService.h>
#include <android-base/file.h>
#include <android-base/properties.h>
#include <android-base/result.h>
#include <android-base/unique_fd.h>
#include <android/binder_auto_utils.h>
#include <android/binder_manager.h>
#include <fcntl.h>
#include <fsverity_digests.pb.h>
#include <linux/vm_sockets.h>
#include <stdint.h>
#include <stdio.h>
@ -193,8 +195,8 @@ Result<T> report_test(std::string name, Result<T> result) {
outcome << "PASS";
} else {
outcome << "FAIL: " << result.error();
// Pollute stdout with the error in case the property is truncated.
std::cout << "[" << name << "] test failed: " << result.error() << "\n";
// Pollute stderr with the error in case the property is truncated.
std::cerr << "[" << name << "] test failed: " << result.error() << "\n";
}
__system_property_set(property.c_str(), outcome.str().c_str());
return result;
@ -243,6 +245,21 @@ Result<void> start_test_service() {
return {};
}
Result<void> verify_apk() {
const char* path = "/mnt/extra-apk/0/assets/build_manifest.pb";
std::string str;
if (!android::base::ReadFileToString(path, &str)) {
return ErrnoError() << "failed to read build_manifest.pb";
}
if (!android::security::fsverity::FSVerityDigests().ParseFromString(str)) {
return Error() << "invalid build_manifest.pb";
}
return {};
}
} // Anonymous namespace
extern "C" int android_native_main(int argc, char* argv[]) {
@ -262,6 +279,9 @@ extern "C" int android_native_main(int argc, char* argv[]) {
testlib_sub();
printf("\n");
// Extra apks may be missing; this is not a fatal error
report_test("extra_apk", verify_apk());
__system_property_set("debug.microdroid.app.run", "true");
if (!report_test("keystore", test_keystore()).ok()) return 1;