Google Git
Sign in
chromium / chromiumos / platform / libchromeos / 601d167bcdcfdb8a9b21f4bd77a4570d0bc5a6e6 / . / chromeos / policy / tests / libpolicy_unittest.cc
blob: d3042e655d0a4a896ec10d5d370c2f59bbbe9d00 [file] [log] [blame]
// Copyright (c) 2012 The Chromium OS Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <base/logging.h>
#include <gtest/gtest.h>
#include <openssl/err.h>
#include <openssl/ssl.h>
#if BASE_VER >= 242728
#include <base/files/file_path.h>
#else
#include <base/file_path.h>
#endif
#include <chromeos/policy/device_policy_impl.h>
#include <chromeos/policy/libpolicy.h>
#if BASE_VER >= 242728
using base::FilePath;
#endif
namespace policy {
static const char kPolicyFileAllSet[] =
"chromeos/policy/tests/whitelist/policy_all";
static const char kPolicyFileNoneSet[] =
"chromeos/policy/tests/whitelist/policy_none";
static const char kKeyFile[] = "chromeos/policy/tests/whitelist/owner.key";
// This class mocks only the minimally needed functionionality to run tests
// that would otherwise fail because of hard restrictions like root file
// ownership. Otherwise, it preserves all the functionallity of the original
// class.
class MockDevicePolicyImpl : public DevicePolicyImpl {
public:
MockDevicePolicyImpl(const FilePath& policy_path,
const FilePath& keyfile_path,
bool verify_files)
: verify_files_(verify_files) {
policy_path_ = policy_path;
keyfile_path_ = keyfile_path;
}
private:
// We don't care if files are owned by root for most tests.
virtual bool VerifyPolicyFiles() {
return !verify_files_ || DevicePolicyImpl::VerifyPolicyFiles();
}
bool verify_files_;
};
// Test that a policy file can be verified and parsed correctly. The file
// contains all possible fields, so reading should succeed for all.
TEST(PolicyTest, DevicePolicyAllSetTest) {
FilePath policy_file(kPolicyFileAllSet);
FilePath key_file(kKeyFile);
MockDevicePolicyImpl* device_policy =
new MockDevicePolicyImpl(policy_file, key_file, false);
PolicyProvider provider(device_policy);
provider.Reload();
// Ensure we successfully loaded the device policy file.
ASSERT_TRUE(provider.device_policy_is_loaded());
const DevicePolicy& policy = provider.GetDevicePolicy();
// Check that we can read out all fields of the sample protobuf.
int int_value = -1;
ASSERT_TRUE(policy.GetPolicyRefreshRate(&int_value));
ASSERT_EQ(100, int_value);
std::vector<std::string> list_value;
ASSERT_TRUE(policy.GetUserWhitelist(&list_value));
ASSERT_EQ(3, list_value.size());
ASSERT_EQ("me@here.com", list_value[0]);
ASSERT_EQ("you@there.com", list_value[1]);
ASSERT_EQ("*@monsters.com", list_value[2]);
bool bool_value = true;
ASSERT_TRUE(policy.GetGuestModeEnabled(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetCameraEnabled(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetShowUserNames(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetDataRoamingEnabled(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetAllowNewUsers(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetMetricsEnabled(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetReportVersionInfo(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetReportActivityTimes(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetReportBootMode(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetEphemeralUsersEnabled(&bool_value));
ASSERT_FALSE(bool_value);
std::string string_value;
ASSERT_TRUE(policy.GetProxyMode(&string_value));
ASSERT_EQ("direct", string_value);
ASSERT_TRUE(policy.GetProxyServer(&string_value));
ASSERT_EQ("myproxy", string_value);
ASSERT_TRUE(policy.GetProxyPacUrl(&string_value));
ASSERT_EQ("http://mypac.pac", string_value);
ASSERT_TRUE(policy.GetProxyBypassList(&string_value));
ASSERT_EQ("a, b, c", string_value);
ASSERT_TRUE(policy.GetReleaseChannel(&string_value));
ASSERT_EQ("stable-channel", string_value);
bool_value = false;
ASSERT_TRUE(policy.GetReleaseChannelDelegated(&bool_value));
ASSERT_TRUE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetUpdateDisabled(&bool_value));
ASSERT_FALSE(bool_value);
int64 int64_value = -1LL;
ASSERT_TRUE(policy.GetScatterFactorInSeconds(&int64_value));
ASSERT_EQ(17LL, int64_value);
ASSERT_TRUE(policy.GetTargetVersionPrefix(&string_value));
ASSERT_EQ("42.0.", string_value);
std::set<std::string> types;
ASSERT_TRUE(policy.GetAllowedConnectionTypesForUpdate(&types));
ASSERT_TRUE(types.end() != types.find("ethernet"));
ASSERT_TRUE(types.end() != types.find("wifi"));
ASSERT_EQ(2, types.size());
ASSERT_TRUE(policy.GetOpenNetworkConfiguration(&string_value));
ASSERT_EQ("{}", string_value);
ASSERT_TRUE(policy.GetOwner(&string_value));
ASSERT_EQ("", string_value);
bool_value = true;
ASSERT_TRUE(policy.GetHttpDownloadsEnabled(&bool_value));
ASSERT_FALSE(bool_value);
bool_value = true;
ASSERT_TRUE(policy.GetAuP2PEnabled(&bool_value));
ASSERT_FALSE(bool_value);
ASSERT_TRUE(policy.GetCleanUpStrategy(&string_value));
ASSERT_EQ("remove-lru", string_value);
// Reloading the protobuf should succeed.
ASSERT_TRUE(provider.Reload());
}
// Test that a policy file can be verified and parsed correctly. The file
// contains none of the possible fields, so reading should fail for all.
TEST(PolicyTest, DevicePolicyNoneSetTest) {
FilePath policy_file(kPolicyFileNoneSet);
FilePath key_file(kKeyFile);
MockDevicePolicyImpl* device_policy =
new MockDevicePolicyImpl(policy_file, key_file, false);
PolicyProvider provider(device_policy);
provider.Reload();
// Ensure we successfully loaded the device policy file.
ASSERT_TRUE(provider.device_policy_is_loaded());
const DevicePolicy& policy = provider.GetDevicePolicy();
// Check that we cannot read any fields out of the sample protobuf.
int int_value;
int64 int64_value;
std::vector<std::string> list_value;
bool bool_value;
std::string string_value;
ASSERT_FALSE(policy.GetPolicyRefreshRate(&int_value));
ASSERT_FALSE(policy.GetUserWhitelist(&list_value));
ASSERT_FALSE(policy.GetGuestModeEnabled(&bool_value));
ASSERT_FALSE(policy.GetCameraEnabled(&bool_value));
ASSERT_FALSE(policy.GetShowUserNames(&bool_value));
ASSERT_FALSE(policy.GetDataRoamingEnabled(&bool_value));
ASSERT_FALSE(policy.GetAllowNewUsers(&bool_value));
ASSERT_FALSE(policy.GetMetricsEnabled(&bool_value));
ASSERT_FALSE(policy.GetReportVersionInfo(&bool_value));
ASSERT_FALSE(policy.GetReportActivityTimes(&bool_value));
ASSERT_FALSE(policy.GetReportBootMode(&bool_value));
ASSERT_FALSE(policy.GetEphemeralUsersEnabled(&bool_value));
ASSERT_FALSE(policy.GetProxyMode(&string_value));
ASSERT_FALSE(policy.GetProxyServer(&string_value));
ASSERT_FALSE(policy.GetProxyPacUrl(&string_value));
ASSERT_FALSE(policy.GetProxyBypassList(&string_value));
ASSERT_FALSE(policy.GetReleaseChannel(&string_value));
ASSERT_FALSE(policy.GetUpdateDisabled(&bool_value));
ASSERT_FALSE(policy.GetTargetVersionPrefix(&string_value));
ASSERT_FALSE(policy.GetScatterFactorInSeconds(&int64_value));
ASSERT_FALSE(policy.GetOpenNetworkConfiguration(&string_value));
ASSERT_FALSE(policy.GetHttpDownloadsEnabled(&bool_value));
ASSERT_FALSE(policy.GetAuP2PEnabled(&bool_value));
ASSERT_FALSE(policy.GetCleanUpStrategy(&string_value));
}
// Verify that the library will correctly recognize and signal missing files.
TEST(PolicyTest, DevicePolicyFailure) {
LOG(INFO) << "Errors expected.";
// Try loading non-existing protobuf should fail.
FilePath non_existing("this_file_is_doof");
MockDevicePolicyImpl* device_policy =
new MockDevicePolicyImpl(non_existing, non_existing, true);
PolicyProvider provider(device_policy);
// Even after reload the policy should still be not loaded.
ASSERT_FALSE(provider.Reload());
ASSERT_FALSE(provider.device_policy_is_loaded());
}
} // namespace policy
int main(int argc, char* argv[]) {
::testing::InitGoogleTest(&argc, argv);
return RUN_ALL_TESTS();
}