Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_update_engine / 0d04ce38f933c06b34a696c5f56f776baa0925b8 / . / delta_performer_integration_test.cc
blob: 143d21d9ab695d07079a634c06f722088077b65a [file] [log] [blame]
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]1//
2// Copyright (C) 2012 The Android Open Source Project
3//
4// Licensed under the Apache License, Version 2.0 (the "License");
5// you may not use this file except in compliance with the License.
6// You may obtain a copy of the License at
7//
8// http://www.apache.org/licenses/LICENSE-2.0
9//
10// Unless required by applicable law or agreed to in writing, software
11// distributed under the License is distributed on an "AS IS" BASIS,
12// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13// See the License for the specific language governing permissions and
14// limitations under the License.
15//
16
17#include "update_engine/delta_performer.h"
18
19#include <inttypes.h>
20#include <sys/mount.h>
21
22#include <algorithm>
23#include <string>
24#include <vector>
25
26#include <base/files/file_path.h>
27#include <base/files/file_util.h>
28#include <base/strings/stringprintf.h>
29#include <base/strings/string_util.h>
30#include <google/protobuf/repeated_field.h>
31#include <gtest/gtest.h>
32
33#include "update_engine/constants.h"
34#include "update_engine/fake_hardware.h"
35#include "update_engine/fake_system_state.h"
36#include "update_engine/mock_prefs.h"
37#include "update_engine/payload_constants.h"
38#include "update_engine/payload_generator/delta_diff_generator.h"
39#include "update_engine/payload_generator/payload_signer.h"
40#include "update_engine/payload_verifier.h"
41#include "update_engine/test_utils.h"
42#include "update_engine/update_metadata.pb.h"
43#include "update_engine/utils.h"
44
45namespace chromeos_update_engine {
46
47using std::string;
48using std::vector;
49using testing::Return;
50using testing::_;
51using test_utils::kRandomString;
52using test_utils::ScopedLoopMounter;
53using test_utils::System;
54
55extern const char* kUnittestPrivateKeyPath;
56extern const char* kUnittestPublicKeyPath;
57extern const char* kUnittestPrivateKey2Path;
58extern const char* kUnittestPublicKey2Path;
59
60static const int kDefaultKernelSize = 4096; // Something small for a test
61static const uint8_t kNewData[] = {'T', 'h', 'i', 's', ' ', 'i', 's', ' ',
62 'n', 'e', 'w', ' ', 'd', 'a', 't', 'a', '.'};
63
64namespace {
65struct DeltaState {
66 string a_img;
67 string b_img;
68 string result_img;
69 size_t image_size;
70
71 string delta_path;
72 uint64_t metadata_size;
73
74 string old_kernel;
75 chromeos::Blob old_kernel_data;
76
77 string new_kernel;
78 chromeos::Blob new_kernel_data;
79
80 string result_kernel;
81 chromeos::Blob result_kernel_data;
82 size_t kernel_size;
83
84 // The in-memory copy of delta file.
85 chromeos::Blob delta;
86
87 // The mock system state object with which we initialize the
88 // delta performer.
89 FakeSystemState fake_system_state;
90};
91
92enum SignatureTest {
93 kSignatureNone, // No payload signing.
94 kSignatureGenerator, // Sign the payload at generation time.
95 kSignatureGenerated, // Sign the payload after it's generated.
96 kSignatureGeneratedPlaceholder, // Insert placeholder signatures, then real.
97 kSignatureGeneratedPlaceholderMismatch, // Insert a wrong sized placeholder.
98 kSignatureGeneratedShell, // Sign the generated payload through shell cmds.
99 kSignatureGeneratedShellBadKey, // Sign with a bad key through shell cmds.
100 kSignatureGeneratedShellRotateCl1, // Rotate key, test client v1
101 kSignatureGeneratedShellRotateCl2, // Rotate key, test client v2
102};
103
104enum OperationHashTest {
105 kInvalidOperationData,
106 kValidOperationData,
107};
108
109} // namespace
110
111class DeltaPerformerIntegrationTest : public ::testing::Test {
112 public:
113 static void SetSupportedVersion(DeltaPerformer* performer,
114 uint64_t minor_version) {
115 performer->supported_minor_version_ = minor_version;
116 }
117};
118
119static void CompareFilesByBlock(const string& a_file, const string& b_file,
120 size_t image_size) {
121 EXPECT_EQ(0, image_size % kBlockSize);
122
123 chromeos::Blob a_data, b_data;
124 EXPECT_TRUE(utils::ReadFile(a_file, &a_data)) << "file failed: " << a_file;
125 EXPECT_TRUE(utils::ReadFile(b_file, &b_data)) << "file failed: " << b_file;
126
127 EXPECT_GE(a_data.size(), image_size);
128 EXPECT_GE(b_data.size(), image_size);
129 for (size_t i = 0; i < image_size; i += kBlockSize) {
130 EXPECT_EQ(0, i % kBlockSize);
131 chromeos::Blob a_sub(&a_data[i], &a_data[i + kBlockSize]);
132 chromeos::Blob b_sub(&b_data[i], &b_data[i + kBlockSize]);
133 EXPECT_TRUE(a_sub == b_sub) << "Block " << (i/kBlockSize) << " differs";
134 }
135 if (::testing::Test::HasNonfatalFailure()) {
136 LOG(INFO) << "Compared filesystems with size " << image_size
137 << ", partition A " << a_file << " size: " << a_data.size()
138 << ", partition B " << b_file << " size: " << b_data.size();
139 }
140}
141
142static bool WriteSparseFile(const string& path, off_t size) {
143 int fd = open(path.c_str(), O_CREAT | O_TRUNC | O_WRONLY, 0644);
144 TEST_AND_RETURN_FALSE_ERRNO(fd >= 0);
145 ScopedFdCloser fd_closer(&fd);
146 off_t rc = lseek(fd, size + 1, SEEK_SET);
147 TEST_AND_RETURN_FALSE_ERRNO(rc != static_cast<off_t>(-1));
148 int return_code = ftruncate(fd, size);
149 TEST_AND_RETURN_FALSE_ERRNO(return_code == 0);
150 return true;
151}
152
153static size_t GetSignatureSize(const string& private_key_path) {
154 const chromeos::Blob data(1, 'x');
155 chromeos::Blob hash;
156 EXPECT_TRUE(OmahaHashCalculator::RawHashOfData(data, &hash));
157 chromeos::Blob signature;
158 EXPECT_TRUE(PayloadSigner::SignHash(hash,
159 private_key_path,
160 &signature));
161 return signature.size();
162}
163
164static bool InsertSignaturePlaceholder(int signature_size,
165 const string& payload_path,
166 uint64_t* out_metadata_size) {
167 vector<chromeos::Blob> signatures;
168 signatures.push_back(chromeos::Blob(signature_size, 0));
169
170 return PayloadSigner::AddSignatureToPayload(
171 payload_path,
172 signatures,
173 payload_path,
174 out_metadata_size);
175}
176
177static void SignGeneratedPayload(const string& payload_path,
178 uint64_t* out_metadata_size) {
179 int signature_size = GetSignatureSize(kUnittestPrivateKeyPath);
180 chromeos::Blob hash;
181 ASSERT_TRUE(PayloadSigner::HashPayloadForSigning(
182 payload_path,
183 vector<int>(1, signature_size),
184 &hash));
185 chromeos::Blob signature;
186 ASSERT_TRUE(PayloadSigner::SignHash(hash,
187 kUnittestPrivateKeyPath,
188 &signature));
189 ASSERT_TRUE(PayloadSigner::AddSignatureToPayload(
190 payload_path,
191 vector<chromeos::Blob>(1, signature),
192 payload_path,
193 out_metadata_size));
194 EXPECT_TRUE(PayloadVerifier::VerifySignedPayload(
195 payload_path,
Alex Deymob552a682015-09-30 09:36:49 -0700[diff] [blame]196 kUnittestPublicKeyPath));
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]197}
198
199static void SignGeneratedShellPayload(SignatureTest signature_test,
200 const string& payload_path) {
201 string private_key_path = kUnittestPrivateKeyPath;
202 if (signature_test == kSignatureGeneratedShellBadKey) {
203 ASSERT_TRUE(utils::MakeTempFile("key.XXXXXX",
204 &private_key_path,
205 nullptr));
206 } else {
207 ASSERT_TRUE(signature_test == kSignatureGeneratedShell ||
208 signature_test == kSignatureGeneratedShellRotateCl1 ||
209 signature_test == kSignatureGeneratedShellRotateCl2);
210 }
211 ScopedPathUnlinker key_unlinker(private_key_path);
212 key_unlinker.set_should_remove(signature_test ==
213 kSignatureGeneratedShellBadKey);
214 // Generates a new private key that will not match the public key.
215 if (signature_test == kSignatureGeneratedShellBadKey) {
216 LOG(INFO) << "Generating a mismatched private key.";
217 ASSERT_EQ(0, System(base::StringPrintf(
218 "openssl genrsa -out %s 2048", private_key_path.c_str())));
219 }
220 int signature_size = GetSignatureSize(private_key_path);
221 string hash_file;
222 ASSERT_TRUE(utils::MakeTempFile("hash.XXXXXX", &hash_file, nullptr));
223 ScopedPathUnlinker hash_unlinker(hash_file);
224 string signature_size_string;
225 if (signature_test == kSignatureGeneratedShellRotateCl1 ||
226 signature_test == kSignatureGeneratedShellRotateCl2)
227 signature_size_string = base::StringPrintf("%d:%d",
228 signature_size, signature_size);
229 else
230 signature_size_string = base::StringPrintf("%d", signature_size);
231 ASSERT_EQ(0,
232 System(base::StringPrintf(
233 "./delta_generator -in_file=%s -signature_size=%s "
234 "-out_hash_file=%s",
235 payload_path.c_str(),
236 signature_size_string.c_str(),
237 hash_file.c_str())));
238
239 // Pad the hash
240 chromeos::Blob hash;
241 ASSERT_TRUE(utils::ReadFile(hash_file, &hash));
242 ASSERT_TRUE(PayloadVerifier::PadRSA2048SHA256Hash(&hash));
243 ASSERT_TRUE(test_utils::WriteFileVector(hash_file, hash));
244
245 string sig_file;
246 ASSERT_TRUE(utils::MakeTempFile("signature.XXXXXX", &sig_file, nullptr));
247 ScopedPathUnlinker sig_unlinker(sig_file);
248 ASSERT_EQ(0,
249 System(base::StringPrintf(
250 "openssl rsautl -raw -sign -inkey %s -in %s -out %s",
251 private_key_path.c_str(),
252 hash_file.c_str(),
253 sig_file.c_str())));
254 string sig_file2;
255 ASSERT_TRUE(utils::MakeTempFile("signature.XXXXXX", &sig_file2, nullptr));
256 ScopedPathUnlinker sig2_unlinker(sig_file2);
257 if (signature_test == kSignatureGeneratedShellRotateCl1 ||
258 signature_test == kSignatureGeneratedShellRotateCl2) {
259 ASSERT_EQ(0,
260 System(base::StringPrintf(
261 "openssl rsautl -raw -sign -inkey %s -in %s -out %s",
262 kUnittestPrivateKey2Path,
263 hash_file.c_str(),
264 sig_file2.c_str())));
265 // Append second sig file to first path
266 sig_file += ":" + sig_file2;
267 }
268
269 ASSERT_EQ(0,
270 System(base::StringPrintf(
271 "./delta_generator -in_file=%s -signature_file=%s "
272 "-out_file=%s",
273 payload_path.c_str(),
274 sig_file.c_str(),
275 payload_path.c_str())));
276 int verify_result =
277 System(base::StringPrintf(
278 "./delta_generator -in_file=%s -public_key=%s -public_key_version=%d",
279 payload_path.c_str(),
280 signature_test == kSignatureGeneratedShellRotateCl2 ?
281 kUnittestPublicKey2Path : kUnittestPublicKeyPath,
282 signature_test == kSignatureGeneratedShellRotateCl2 ? 2 : 1));
283 if (signature_test == kSignatureGeneratedShellBadKey) {
284 ASSERT_NE(0, verify_result);
285 } else {
286 ASSERT_EQ(0, verify_result);
287 }
288}
289
290static void GenerateDeltaFile(bool full_kernel,
291 bool full_rootfs,
292 bool noop,
293 ssize_t chunk_size,
294 SignatureTest signature_test,
295 DeltaState *state,
296 uint32_t minor_version) {
297 EXPECT_TRUE(utils::MakeTempFile("a_img.XXXXXX", &state->a_img, nullptr));
298 EXPECT_TRUE(utils::MakeTempFile("b_img.XXXXXX", &state->b_img, nullptr));
299
300 // result_img is used in minor version 2. Instead of applying the update
301 // in-place on A, we apply it to a new image, result_img.
302 EXPECT_TRUE(
303 utils::MakeTempFile("result_img.XXXXXX", &state->result_img, nullptr));
304 test_utils::CreateExtImageAtPath(state->a_img, nullptr);
305
306 state->image_size = utils::FileSize(state->a_img);
307
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]308 // Create ImageInfo A & B
309 ImageInfo old_image_info;
310 ImageInfo new_image_info;
311
312 if (!full_rootfs) {
313 old_image_info.set_channel("src-channel");
314 old_image_info.set_board("src-board");
315 old_image_info.set_version("src-version");
316 old_image_info.set_key("src-key");
317 old_image_info.set_build_channel("src-build-channel");
318 old_image_info.set_build_version("src-build-version");
319 }
320
321 new_image_info.set_channel("test-channel");
322 new_image_info.set_board("test-board");
323 new_image_info.set_version("test-version");
324 new_image_info.set_key("test-key");
325 new_image_info.set_build_channel("test-build-channel");
326 new_image_info.set_build_version("test-build-version");
327
328 // Make some changes to the A image.
329 {
330 string a_mnt;
331 ScopedLoopMounter b_mounter(state->a_img, &a_mnt, 0);
332
333 chromeos::Blob hardtocompress;
334 while (hardtocompress.size() < 3 * kBlockSize) {
335 hardtocompress.insert(hardtocompress.end(),
336 std::begin(kRandomString), std::end(kRandomString));
337 }
338 EXPECT_TRUE(utils::WriteFile(base::StringPrintf("%s/hardtocompress",
339 a_mnt.c_str()).c_str(),
340 hardtocompress.data(),
341 hardtocompress.size()));
342
343 chromeos::Blob zeros(16 * 1024, 0);
344 EXPECT_EQ(zeros.size(),
345 base::WriteFile(base::FilePath(base::StringPrintf(
346 "%s/move-to-sparse", a_mnt.c_str())),
347 reinterpret_cast<const char*>(zeros.data()),
348 zeros.size()));
349
350 EXPECT_TRUE(
351 WriteSparseFile(base::StringPrintf("%s/move-from-sparse",
352 a_mnt.c_str()), 16 * 1024));
353
354 EXPECT_EQ(0,
355 System(base::StringPrintf("dd if=/dev/zero of=%s/move-semi-sparse"
356 " bs=1 seek=4096 count=1 status=none",
357 a_mnt.c_str()).c_str()));
358
359 // Write 1 MiB of 0xff to try to catch the case where writing a bsdiff
360 // patch fails to zero out the final block.
361 chromeos::Blob ones(1024 * 1024, 0xff);
362 EXPECT_TRUE(utils::WriteFile(base::StringPrintf("%s/ones",
363 a_mnt.c_str()).c_str(),
364 ones.data(),
365 ones.size()));
366 }
367
368 if (noop) {
369 EXPECT_TRUE(base::CopyFile(base::FilePath(state->a_img),
370 base::FilePath(state->b_img)));
371 old_image_info = new_image_info;
372 } else {
373 if (minor_version == kSourceMinorPayloadVersion) {
Sen Jiangf2af4c62015-09-30 16:38:09 -0700[diff] [blame]374 // Create a result image with image_size bytes of garbage.
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]375 chromeos::Blob ones(state->image_size, 0xff);
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]376 EXPECT_TRUE(utils::WriteFile(state->result_img.c_str(),
377 ones.data(),
378 ones.size()));
379 EXPECT_EQ(utils::FileSize(state->a_img),
380 utils::FileSize(state->result_img));
381 }
382
383 test_utils::CreateExtImageAtPath(state->b_img, nullptr);
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]384
385 // Make some changes to the B image.
386 string b_mnt;
387 ScopedLoopMounter b_mounter(state->b_img, &b_mnt, 0);
388
389 EXPECT_EQ(0, System(base::StringPrintf("cp %s/hello %s/hello2",
390 b_mnt.c_str(),
391 b_mnt.c_str()).c_str()));
392 EXPECT_EQ(0, System(base::StringPrintf("rm %s/hello",
393 b_mnt.c_str()).c_str()));
394 EXPECT_EQ(0, System(base::StringPrintf("mv %s/hello2 %s/hello",
395 b_mnt.c_str(),
396 b_mnt.c_str()).c_str()));
397 EXPECT_EQ(0, System(base::StringPrintf("echo foo > %s/foo",
398 b_mnt.c_str()).c_str()));
399 EXPECT_EQ(0, System(base::StringPrintf("touch %s/emptyfile",
400 b_mnt.c_str()).c_str()));
401 EXPECT_TRUE(WriteSparseFile(base::StringPrintf("%s/fullsparse",
402 b_mnt.c_str()),
403 1024 * 1024));
404
405 EXPECT_TRUE(
406 WriteSparseFile(base::StringPrintf("%s/move-to-sparse", b_mnt.c_str()),
407 16 * 1024));
408
409 chromeos::Blob zeros(16 * 1024, 0);
410 EXPECT_EQ(zeros.size(),
411 base::WriteFile(base::FilePath(base::StringPrintf(
412 "%s/move-from-sparse", b_mnt.c_str())),
413 reinterpret_cast<const char*>(zeros.data()),
414 zeros.size()));
415
416 EXPECT_EQ(0, System(base::StringPrintf("dd if=/dev/zero "
417 "of=%s/move-semi-sparse "
418 "bs=1 seek=4096 count=1 status=none",
419 b_mnt.c_str()).c_str()));
420
421 EXPECT_EQ(0, System(base::StringPrintf("dd if=/dev/zero "
422 "of=%s/partsparse bs=1 "
423 "seek=4096 count=1 status=none",
424 b_mnt.c_str()).c_str()));
425 EXPECT_EQ(0, System(base::StringPrintf("cp %s/srchardlink0 %s/tmp && "
426 "mv %s/tmp %s/srchardlink1",
427 b_mnt.c_str(),
428 b_mnt.c_str(),
429 b_mnt.c_str(),
430 b_mnt.c_str()).c_str()));
431 EXPECT_EQ(0, System(
432 base::StringPrintf("rm %s/boguslink && echo foobar > %s/boguslink",
433 b_mnt.c_str(), b_mnt.c_str()).c_str()));
434
435 chromeos::Blob hardtocompress;
436 while (hardtocompress.size() < 3 * kBlockSize) {
437 hardtocompress.insert(hardtocompress.end(),
438 std::begin(kRandomString), std::end(kRandomString));
439 }
440 EXPECT_TRUE(utils::WriteFile(base::StringPrintf("%s/hardtocompress",
441 b_mnt.c_str()).c_str(),
442 hardtocompress.data(),
443 hardtocompress.size()));
444 }
445
446 string old_kernel;
447 EXPECT_TRUE(utils::MakeTempFile("old_kernel.XXXXXX",
448 &state->old_kernel,
449 nullptr));
450
451 string new_kernel;
452 EXPECT_TRUE(utils::MakeTempFile("new_kernel.XXXXXX",
453 &state->new_kernel,
454 nullptr));
455
456 string result_kernel;
457 EXPECT_TRUE(utils::MakeTempFile("result_kernel.XXXXXX",
458 &state->result_kernel,
459 nullptr));
460
461 state->kernel_size = kDefaultKernelSize;
462 state->old_kernel_data.resize(kDefaultKernelSize);
463 state->new_kernel_data.resize(state->old_kernel_data.size());
464 state->result_kernel_data.resize(state->old_kernel_data.size());
465 test_utils::FillWithData(&state->old_kernel_data);
466 test_utils::FillWithData(&state->new_kernel_data);
467 test_utils::FillWithData(&state->result_kernel_data);
468
469 // change the new kernel data
470 std::copy(std::begin(kNewData), std::end(kNewData),
471 state->new_kernel_data.begin());
472
473 if (noop) {
474 state->old_kernel_data = state->new_kernel_data;
475 }
476
477 // Write kernels to disk
478 EXPECT_TRUE(utils::WriteFile(state->old_kernel.c_str(),
479 state->old_kernel_data.data(),
480 state->old_kernel_data.size()));
481 EXPECT_TRUE(utils::WriteFile(state->new_kernel.c_str(),
482 state->new_kernel_data.data(),
483 state->new_kernel_data.size()));
484 EXPECT_TRUE(utils::WriteFile(state->result_kernel.c_str(),
485 state->result_kernel_data.data(),
486 state->result_kernel_data.size()));
487
488 EXPECT_TRUE(utils::MakeTempFile("delta.XXXXXX",
489 &state->delta_path,
490 nullptr));
491 LOG(INFO) << "delta path: " << state->delta_path;
492 {
493 const string private_key =
494 signature_test == kSignatureGenerator ? kUnittestPrivateKeyPath : "";
495
496 PayloadGenerationConfig payload_config;
497 payload_config.is_delta = !full_rootfs;
498 payload_config.hard_chunk_size = chunk_size;
499 payload_config.rootfs_partition_size = kRootFSPartitionSize;
500 payload_config.major_version = kChromeOSMajorPayloadVersion;
501 payload_config.minor_version = minor_version;
502 if (!full_rootfs) {
503 payload_config.source.rootfs.path = state->a_img;
504 if (!full_kernel)
505 payload_config.source.kernel.path = state->old_kernel;
506 payload_config.source.image_info = old_image_info;
507 EXPECT_TRUE(payload_config.source.LoadImageSize());
508 EXPECT_TRUE(payload_config.source.rootfs.OpenFilesystem());
509 EXPECT_TRUE(payload_config.source.kernel.OpenFilesystem());
510 } else {
511 if (payload_config.hard_chunk_size == -1)
512 // Use 1 MiB chunk size for the full unittests.
513 payload_config.hard_chunk_size = 1024 * 1024;
514 }
515 payload_config.target.rootfs.path = state->b_img;
516 payload_config.target.kernel.path = state->new_kernel;
517 payload_config.target.image_info = new_image_info;
518 EXPECT_TRUE(payload_config.target.LoadImageSize());
519 EXPECT_TRUE(payload_config.target.rootfs.OpenFilesystem());
520 EXPECT_TRUE(payload_config.target.kernel.OpenFilesystem());
521
522 EXPECT_TRUE(payload_config.Validate());
523 EXPECT_TRUE(
524 GenerateUpdatePayloadFile(
525 payload_config,
526 state->delta_path,
527 private_key,
528 &state->metadata_size));
529 }
Sen Jiangf2af4c62015-09-30 16:38:09 -0700[diff] [blame]530 // Extend the "partitions" holding the file system a bit.
531 EXPECT_EQ(0, HANDLE_EINTR(truncate(state->a_img.c_str(),
532 state->image_size + 1024 * 1024)));
533 EXPECT_EQ(state->image_size + 1024 * 1024, utils::FileSize(state->a_img));
534 EXPECT_EQ(0, HANDLE_EINTR(truncate(state->b_img.c_str(),
535 state->image_size + 1024 * 1024)));
536 EXPECT_EQ(state->image_size + 1024 * 1024, utils::FileSize(state->b_img));
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]537
538 if (signature_test == kSignatureGeneratedPlaceholder ||
539 signature_test == kSignatureGeneratedPlaceholderMismatch) {
540 int signature_size = GetSignatureSize(kUnittestPrivateKeyPath);
541 LOG(INFO) << "Inserting placeholder signature.";
542 ASSERT_TRUE(InsertSignaturePlaceholder(signature_size, state->delta_path,
543 &state->metadata_size));
544
545 if (signature_test == kSignatureGeneratedPlaceholderMismatch) {
546 signature_size -= 1;
547 LOG(INFO) << "Inserting mismatched placeholder signature.";
548 ASSERT_FALSE(InsertSignaturePlaceholder(signature_size, state->delta_path,
549 &state->metadata_size));
550 return;
551 }
552 }
553
554 if (signature_test == kSignatureGenerated ||
555 signature_test == kSignatureGeneratedPlaceholder ||
556 signature_test == kSignatureGeneratedPlaceholderMismatch) {
557 // Generate the signed payload and update the metadata size in state to
558 // reflect the new size after adding the signature operation to the
559 // manifest.
560 LOG(INFO) << "Signing payload.";
561 SignGeneratedPayload(state->delta_path, &state->metadata_size);
562 } else if (signature_test == kSignatureGeneratedShell ||
563 signature_test == kSignatureGeneratedShellBadKey ||
564 signature_test == kSignatureGeneratedShellRotateCl1 ||
565 signature_test == kSignatureGeneratedShellRotateCl2) {
566 SignGeneratedShellPayload(signature_test, state->delta_path);
567 }
568}
569
570static void ApplyDeltaFile(bool full_kernel, bool full_rootfs, bool noop,
571 SignatureTest signature_test, DeltaState* state,
572 bool hash_checks_mandatory,
573 OperationHashTest op_hash_test,
574 DeltaPerformer** performer,
575 uint32_t minor_version) {
576 // Check the metadata.
577 {
578 DeltaArchiveManifest manifest;
579 EXPECT_TRUE(PayloadVerifier::LoadPayload(state->delta_path,
580 &state->delta,
581 &manifest,
582 &state->metadata_size));
583 LOG(INFO) << "Metadata size: " << state->metadata_size;
584
585
586
587 if (signature_test == kSignatureNone) {
588 EXPECT_FALSE(manifest.has_signatures_offset());
589 EXPECT_FALSE(manifest.has_signatures_size());
590 } else {
591 EXPECT_TRUE(manifest.has_signatures_offset());
592 EXPECT_TRUE(manifest.has_signatures_size());
593 Signatures sigs_message;
594 EXPECT_TRUE(sigs_message.ParseFromArray(
595 &state->delta[state->metadata_size + manifest.signatures_offset()],
596 manifest.signatures_size()));
597 if (signature_test == kSignatureGeneratedShellRotateCl1 ||
598 signature_test == kSignatureGeneratedShellRotateCl2)
599 EXPECT_EQ(2, sigs_message.signatures_size());
600 else
601 EXPECT_EQ(1, sigs_message.signatures_size());
602 const Signatures_Signature& signature = sigs_message.signatures(0);
603 EXPECT_EQ(1, signature.version());
604
605 uint64_t expected_sig_data_length = 0;
606 vector<string> key_paths{kUnittestPrivateKeyPath};
607 if (signature_test == kSignatureGeneratedShellRotateCl1 ||
608 signature_test == kSignatureGeneratedShellRotateCl2) {
609 key_paths.push_back(kUnittestPrivateKey2Path);
610 }
611 EXPECT_TRUE(PayloadSigner::SignatureBlobLength(
612 key_paths,
613 &expected_sig_data_length));
614 EXPECT_EQ(expected_sig_data_length, manifest.signatures_size());
615 EXPECT_FALSE(signature.data().empty());
616 }
617
618 if (noop) {
619 EXPECT_EQ(0, manifest.install_operations_size());
620 EXPECT_EQ(1, manifest.kernel_install_operations_size());
621 }
622
623 if (full_kernel) {
624 EXPECT_FALSE(manifest.has_old_kernel_info());
625 } else {
626 EXPECT_EQ(state->old_kernel_data.size(),
627 manifest.old_kernel_info().size());
628 EXPECT_FALSE(manifest.old_kernel_info().hash().empty());
629 }
630
631 EXPECT_EQ(manifest.new_image_info().channel(), "test-channel");
632 EXPECT_EQ(manifest.new_image_info().board(), "test-board");
633 EXPECT_EQ(manifest.new_image_info().version(), "test-version");
634 EXPECT_EQ(manifest.new_image_info().key(), "test-key");
635 EXPECT_EQ(manifest.new_image_info().build_channel(), "test-build-channel");
636 EXPECT_EQ(manifest.new_image_info().build_version(), "test-build-version");
637
638 if (!full_rootfs) {
639 if (noop) {
640 EXPECT_EQ(manifest.old_image_info().channel(), "test-channel");
641 EXPECT_EQ(manifest.old_image_info().board(), "test-board");
642 EXPECT_EQ(manifest.old_image_info().version(), "test-version");
643 EXPECT_EQ(manifest.old_image_info().key(), "test-key");
644 EXPECT_EQ(manifest.old_image_info().build_channel(),
645 "test-build-channel");
646 EXPECT_EQ(manifest.old_image_info().build_version(),
647 "test-build-version");
648 } else {
649 EXPECT_EQ(manifest.old_image_info().channel(), "src-channel");
650 EXPECT_EQ(manifest.old_image_info().board(), "src-board");
651 EXPECT_EQ(manifest.old_image_info().version(), "src-version");
652 EXPECT_EQ(manifest.old_image_info().key(), "src-key");
653 EXPECT_EQ(manifest.old_image_info().build_channel(),
654 "src-build-channel");
655 EXPECT_EQ(manifest.old_image_info().build_version(),
656 "src-build-version");
657 }
658 }
659
660
661 if (full_rootfs) {
662 EXPECT_FALSE(manifest.has_old_rootfs_info());
663 EXPECT_FALSE(manifest.has_old_image_info());
664 EXPECT_TRUE(manifest.has_new_image_info());
665 } else {
666 EXPECT_EQ(state->image_size, manifest.old_rootfs_info().size());
667 EXPECT_FALSE(manifest.old_rootfs_info().hash().empty());
668 }
669
670 EXPECT_EQ(state->new_kernel_data.size(), manifest.new_kernel_info().size());
671 EXPECT_EQ(state->image_size, manifest.new_rootfs_info().size());
672
673 EXPECT_FALSE(manifest.new_kernel_info().hash().empty());
674 EXPECT_FALSE(manifest.new_rootfs_info().hash().empty());
675 }
676
677 MockPrefs prefs;
678 EXPECT_CALL(prefs, SetInt64(kPrefsManifestMetadataSize,
679 state->metadata_size)).WillOnce(Return(true));
680 EXPECT_CALL(prefs, SetInt64(kPrefsUpdateStateNextOperation, _))
681 .WillRepeatedly(Return(true));
682 EXPECT_CALL(prefs, GetInt64(kPrefsUpdateStateNextOperation, _))
683 .WillOnce(Return(false));
684 EXPECT_CALL(prefs, SetInt64(kPrefsUpdateStateNextDataOffset, _))
685 .WillRepeatedly(Return(true));
686 EXPECT_CALL(prefs, SetInt64(kPrefsUpdateStateNextDataLength, _))
687 .WillRepeatedly(Return(true));
688 EXPECT_CALL(prefs, SetString(kPrefsUpdateStateSHA256Context, _))
689 .WillRepeatedly(Return(true));
690 if (op_hash_test == kValidOperationData && signature_test != kSignatureNone) {
691 EXPECT_CALL(prefs, SetString(kPrefsUpdateStateSignedSHA256Context, _))
692 .WillOnce(Return(true));
693 EXPECT_CALL(prefs, SetString(kPrefsUpdateStateSignatureBlob, _))
694 .WillOnce(Return(true));
695 }
696
697 // Update the A image in place.
698 InstallPlan install_plan;
699 install_plan.hash_checks_mandatory = hash_checks_mandatory;
700 install_plan.metadata_size = state->metadata_size;
701 install_plan.is_full_update = full_kernel && full_rootfs;
702 install_plan.source_path = state->a_img.c_str();
703 install_plan.kernel_source_path = state->old_kernel.c_str();
704
705 LOG(INFO) << "Setting payload metadata size in Omaha = "
706 << state->metadata_size;
707 ASSERT_TRUE(PayloadSigner::GetMetadataSignature(
708 state->delta.data(),
709 state->metadata_size,
710 kUnittestPrivateKeyPath,
711 &install_plan.metadata_signature));
712 EXPECT_FALSE(install_plan.metadata_signature.empty());
713
714 *performer = new DeltaPerformer(&prefs,
715 &state->fake_system_state,
716 &install_plan);
717 EXPECT_TRUE(utils::FileExists(kUnittestPublicKeyPath));
718 (*performer)->set_public_key_path(kUnittestPublicKeyPath);
719 DeltaPerformerIntegrationTest::SetSupportedVersion(*performer, minor_version);
720
721 EXPECT_EQ(state->image_size,
722 OmahaHashCalculator::RawHashOfFile(
723 state->a_img,
724 state->image_size,
725 &install_plan.source_rootfs_hash));
726 EXPECT_TRUE(OmahaHashCalculator::RawHashOfData(
727 state->old_kernel_data,
728 &install_plan.source_kernel_hash));
729
730 // With minor version 2, we want the target to be the new image, result_img,
731 // but with version 1, we want to update A in place.
732 if (minor_version == kSourceMinorPayloadVersion) {
733 EXPECT_EQ(0, (*performer)->Open(state->result_img.c_str(), 0, 0));
734 EXPECT_TRUE((*performer)->OpenKernel(state->result_kernel.c_str()));
735 } else {
736 EXPECT_EQ(0, (*performer)->Open(state->a_img.c_str(), 0, 0));
737 EXPECT_TRUE((*performer)->OpenKernel(state->old_kernel.c_str()));
738 }
739
740
741 ErrorCode expected_error, actual_error;
742 bool continue_writing;
743 switch (op_hash_test) {
744 case kInvalidOperationData: {
745 // Muck with some random offset post the metadata size so that
746 // some operation hash will result in a mismatch.
747 int some_offset = state->metadata_size + 300;
748 LOG(INFO) << "Tampered value at offset: " << some_offset;
749 state->delta[some_offset]++;
750 expected_error = ErrorCode::kDownloadOperationHashMismatch;
751 continue_writing = false;
752 break;
753 }
754
755 case kValidOperationData:
756 default:
757 // no change.
758 expected_error = ErrorCode::kSuccess;
759 continue_writing = true;
760 break;
761 }
762
763 // Write at some number of bytes per operation. Arbitrarily chose 5.
764 const size_t kBytesPerWrite = 5;
765 for (size_t i = 0; i < state->delta.size(); i += kBytesPerWrite) {
766 size_t count = std::min(state->delta.size() - i, kBytesPerWrite);
767 bool write_succeeded = ((*performer)->Write(&state->delta[i],
768 count,
769 &actual_error));
770 // Normally write_succeeded should be true every time and
771 // actual_error should be ErrorCode::kSuccess. If so, continue the loop.
772 // But if we seeded an operation hash error above, then write_succeeded
773 // will be false. The failure may happen at any operation n. So, all
774 // Writes until n-1 should succeed and the nth operation will fail with
775 // actual_error. In this case, we should bail out of the loop because
776 // we cannot proceed applying the delta.
777 if (!write_succeeded) {
778 LOG(INFO) << "Write failed. Checking if it failed with expected error";
779 EXPECT_EQ(expected_error, actual_error);
780 if (!continue_writing) {
781 LOG(INFO) << "Cannot continue writing. Bailing out.";
782 break;
783 }
784 }
785
786 EXPECT_EQ(ErrorCode::kSuccess, actual_error);
787 }
788
789 // If we had continued all the way through, Close should succeed.
790 // Otherwise, it should fail. Check appropriately.
791 bool close_result = (*performer)->Close();
792 if (continue_writing)
793 EXPECT_EQ(0, close_result);
794 else
795 EXPECT_LE(0, close_result);
796}
797
798void VerifyPayloadResult(DeltaPerformer* performer,
799 DeltaState* state,
800 ErrorCode expected_result,
801 uint32_t minor_version) {
802 if (!performer) {
803 EXPECT_TRUE(!"Skipping payload verification since performer is null.");
804 return;
805 }
806
807 int expected_times = (expected_result == ErrorCode::kSuccess) ? 1 : 0;
808 EXPECT_CALL(*(state->fake_system_state.mock_payload_state()),
809 DownloadComplete()).Times(expected_times);
810
811 LOG(INFO) << "Verifying payload for expected result "
812 << expected_result;
813 EXPECT_EQ(expected_result, performer->VerifyPayload(
814 OmahaHashCalculator::OmahaHashOfData(state->delta),
815 state->delta.size()));
816 LOG(INFO) << "Verified payload.";
817
818 if (expected_result != ErrorCode::kSuccess) {
819 // no need to verify new partition if VerifyPayload failed.
820 return;
821 }
822
823 chromeos::Blob updated_kernel_partition;
824 if (minor_version == kSourceMinorPayloadVersion) {
825 CompareFilesByBlock(state->result_kernel, state->new_kernel,
826 state->kernel_size);
827 CompareFilesByBlock(state->result_img, state->b_img,
828 state->image_size);
829 EXPECT_TRUE(utils::ReadFile(state->result_kernel,
830 &updated_kernel_partition));
831 } else {
832 CompareFilesByBlock(state->old_kernel, state->new_kernel,
833 state->kernel_size);
834 CompareFilesByBlock(state->a_img, state->b_img,
835 state->image_size);
836 EXPECT_TRUE(utils::ReadFile(state->old_kernel, &updated_kernel_partition));
837 }
838
839 ASSERT_GE(updated_kernel_partition.size(), arraysize(kNewData));
840 EXPECT_TRUE(std::equal(std::begin(kNewData), std::end(kNewData),
841 updated_kernel_partition.begin()));
842
843 uint64_t new_kernel_size;
844 chromeos::Blob new_kernel_hash;
845 uint64_t new_rootfs_size;
846 chromeos::Blob new_rootfs_hash;
847 EXPECT_TRUE(performer->GetNewPartitionInfo(&new_kernel_size,
848 &new_kernel_hash,
849 &new_rootfs_size,
850 &new_rootfs_hash));
851 EXPECT_EQ(kDefaultKernelSize, new_kernel_size);
852 chromeos::Blob expected_new_kernel_hash;
853 EXPECT_TRUE(OmahaHashCalculator::RawHashOfData(state->new_kernel_data,
854 &expected_new_kernel_hash));
855 EXPECT_TRUE(expected_new_kernel_hash == new_kernel_hash);
856 EXPECT_EQ(state->image_size, new_rootfs_size);
857 chromeos::Blob expected_new_rootfs_hash;
858 EXPECT_EQ(state->image_size,
859 OmahaHashCalculator::RawHashOfFile(state->b_img,
860 state->image_size,
861 &expected_new_rootfs_hash));
862 EXPECT_TRUE(expected_new_rootfs_hash == new_rootfs_hash);
863}
864
865void VerifyPayload(DeltaPerformer* performer,
866 DeltaState* state,
867 SignatureTest signature_test,
868 uint32_t minor_version) {
869 ErrorCode expected_result = ErrorCode::kSuccess;
870 switch (signature_test) {
871 case kSignatureNone:
872 expected_result = ErrorCode::kSignedDeltaPayloadExpectedError;
873 break;
874 case kSignatureGeneratedShellBadKey:
875 expected_result = ErrorCode::kDownloadPayloadPubKeyVerificationError;
876 break;
877 default: break; // appease gcc
878 }
879
880 VerifyPayloadResult(performer, state, expected_result, minor_version);
881}
882
883void DoSmallImageTest(bool full_kernel, bool full_rootfs, bool noop,
884 ssize_t chunk_size,
885 SignatureTest signature_test,
886 bool hash_checks_mandatory, uint32_t minor_version) {
887 DeltaState state;
888 DeltaPerformer *performer = nullptr;
889 GenerateDeltaFile(full_kernel, full_rootfs, noop, chunk_size,
890 signature_test, &state, minor_version);
891
892 ScopedPathUnlinker a_img_unlinker(state.a_img);
893 ScopedPathUnlinker b_img_unlinker(state.b_img);
894 ScopedPathUnlinker new_img_unlinker(state.result_img);
895 ScopedPathUnlinker delta_unlinker(state.delta_path);
896 ScopedPathUnlinker old_kernel_unlinker(state.old_kernel);
897 ScopedPathUnlinker new_kernel_unlinker(state.new_kernel);
898 ScopedPathUnlinker result_kernel_unlinker(state.result_kernel);
899 ApplyDeltaFile(full_kernel, full_rootfs, noop, signature_test,
900 &state, hash_checks_mandatory, kValidOperationData,
901 &performer, minor_version);
902 VerifyPayload(performer, &state, signature_test, minor_version);
903 delete performer;
904}
905
906void DoOperationHashMismatchTest(OperationHashTest op_hash_test,
907 bool hash_checks_mandatory) {
908 DeltaState state;
Alex Deymocbf09892015-09-11 16:13:16 -0700[diff] [blame]909 uint64_t minor_version = kFullPayloadMinorVersion;
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]910 GenerateDeltaFile(true, true, false, -1, kSignatureGenerated, &state,
911 minor_version);
912 ScopedPathUnlinker a_img_unlinker(state.a_img);
913 ScopedPathUnlinker b_img_unlinker(state.b_img);
914 ScopedPathUnlinker delta_unlinker(state.delta_path);
915 ScopedPathUnlinker old_kernel_unlinker(state.old_kernel);
916 ScopedPathUnlinker new_kernel_unlinker(state.new_kernel);
917 DeltaPerformer *performer = nullptr;
918 ApplyDeltaFile(true, true, false, kSignatureGenerated, &state,
919 hash_checks_mandatory, op_hash_test, &performer,
920 minor_version);
921 delete performer;
922}
923
924
925TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageTest) {
926 DoSmallImageTest(false, false, false, -1, kSignatureGenerator,
927 false, kInPlaceMinorPayloadVersion);
928}
929
930TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignaturePlaceholderTest) {
931 DoSmallImageTest(false, false, false, -1, kSignatureGeneratedPlaceholder,
932 false, kInPlaceMinorPayloadVersion);
933}
934
935TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignaturePlaceholderMismatchTest) {
936 DeltaState state;
937 GenerateDeltaFile(false, false, false, -1,
938 kSignatureGeneratedPlaceholderMismatch, &state,
939 kInPlaceMinorPayloadVersion);
940}
941
942TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageChunksTest) {
943 DoSmallImageTest(false, false, false, kBlockSize, kSignatureGenerator,
944 false, kInPlaceMinorPayloadVersion);
945}
946
947TEST(DeltaPerformerIntegrationTest, RunAsRootFullKernelSmallImageTest) {
948 DoSmallImageTest(true, false, false, -1, kSignatureGenerator,
949 false, kInPlaceMinorPayloadVersion);
950}
951
952TEST(DeltaPerformerIntegrationTest, RunAsRootFullSmallImageTest) {
953 DoSmallImageTest(true, true, false, -1, kSignatureGenerator,
Alex Deymocbf09892015-09-11 16:13:16 -0700[diff] [blame]954 true, kFullPayloadMinorVersion);
Sen Jianga4365d62015-09-25 10:52:25 -0700[diff] [blame]955}
956
957TEST(DeltaPerformerIntegrationTest, RunAsRootNoopSmallImageTest) {
958 DoSmallImageTest(false, false, true, -1, kSignatureGenerator,
959 false, kInPlaceMinorPayloadVersion);
960}
961
962TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignNoneTest) {
963 DoSmallImageTest(false, false, false, -1, kSignatureNone,
964 false, kInPlaceMinorPayloadVersion);
965}
966
967TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignGeneratedTest) {
968 DoSmallImageTest(false, false, false, -1, kSignatureGenerated,
969 true, kInPlaceMinorPayloadVersion);
970}
971
972TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignGeneratedShellTest) {
973 DoSmallImageTest(false, false, false, -1, kSignatureGeneratedShell,
974 false, kInPlaceMinorPayloadVersion);
975}
976
977TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignGeneratedShellBadKeyTest) {
978 DoSmallImageTest(false, false, false, -1, kSignatureGeneratedShellBadKey,
979 false, kInPlaceMinorPayloadVersion);
980}
981
982TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignGeneratedShellRotateCl1Test) {
983 DoSmallImageTest(false, false, false, -1, kSignatureGeneratedShellRotateCl1,
984 false, kInPlaceMinorPayloadVersion);
985}
986
987TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSignGeneratedShellRotateCl2Test) {
988 DoSmallImageTest(false, false, false, -1, kSignatureGeneratedShellRotateCl2,
989 false, kInPlaceMinorPayloadVersion);
990}
991
992TEST(DeltaPerformerIntegrationTest, RunAsRootSmallImageSourceOpsTest) {
993 DoSmallImageTest(false, false, false, -1, kSignatureGenerator,
994 false, kSourceMinorPayloadVersion);
995}
996
997TEST(DeltaPerformerIntegrationTest, RunAsRootMandatoryOperationHashMismatchTest) {
998 DoOperationHashMismatchTest(kInvalidOperationData, true);
999}
1000
1001} // namespace chromeos_update_engine