| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191 |
- /*
- * Copyright 2019 Google
- *
- * Licensed under the Apache License, Version 2.0 (the "License");
- * you may not use this file except in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS,
- * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * See the License for the specific language governing permissions and
- * limitations under the License.
- */
- #import <XCTest/XCTest.h>
- #import "Firebase/InstanceID/FIRInstanceIDBackupExcludedPlist.h"
- #import "Firebase/InstanceID/FIRInstanceIDConstants.h"
- #import "Firebase/InstanceID/FIRInstanceIDKeyPair.h"
- #import "Firebase/InstanceID/FIRInstanceIDKeychain.h"
- #import <OCMock/OCMock.h>
- #import "Firebase/InstanceID/FIRInstanceIDKeyPair.h"
- #import "Firebase/InstanceID/FIRInstanceIDKeyPairStore.h"
- #import "Firebase/InstanceID/FIRInstanceIDKeyPairUtilities.h"
- #import "Firebase/InstanceID/FIRInstanceIDUtilities.h"
- @interface FIRInstanceIDKeyPairStore (ExposedForTest)
- @property(nonatomic, readwrite, strong) FIRInstanceIDBackupExcludedPlist *plist;
- @property(atomic, readwrite, strong) FIRInstanceIDKeyPair *keyPair;
- BOOL FIRInstanceIDHasMigratedKeyPair(NSString *legacyPublicKeyTag, NSString *newPublicKeyTag);
- NSString *FIRInstanceIDLegacyPublicTagWithSubtype(NSString *subtype);
- NSString *FIRInstanceIDLegacyPrivateTagWithSubtype(NSString *subtype);
- NSString *FIRInstanceIDPublicTagWithSubtype(NSString *subtype);
- NSString *FIRInstanceIDPrivateTagWithSubtype(NSString *subtype);
- + (FIRInstanceIDKeyPair *)keyPairForPrivateKeyTag:(NSString *)privateKeyTag
- publicKeyTag:(NSString *)publicKeyTag
- error:(NSError *__autoreleasing *)error;
- + (void)deleteKeyPairWithPrivateTag:(NSString *)privateTag
- publicTag:(NSString *)publicTag
- handler:(void (^)(NSError *))handler;
- - (void)migrateKeyPairCacheIfNeededWithHandler:(void (^)(NSError *error))handler;
- + (NSString *)keyStoreFileName;
- - (void)updateKeyRef:(SecKeyRef)keyRef
- withTag:(NSString *)tag
- handler:(void (^)(NSError *error))handler;
- @end
- // Need to separate the tests from FIRInstanceIDKeyPairStoreTest for separate keychain operations
- @interface FIRInstanceIDKeyPairMigrationTest : XCTestCase
- @property(nonatomic, readwrite, strong) FIRInstanceIDKeyPairStore *keyPairStore;
- @end
- @implementation FIRInstanceIDKeyPairMigrationTest
- - (void)setUp {
- [super setUp];
- id mockStoreClass = OCMClassMock([FIRInstanceIDKeyPairStore class]);
- [[[mockStoreClass stub] andReturn:@"com.google.iid-keypairmanager-test"] keyStoreFileName];
- _keyPairStore = [[FIRInstanceIDKeyPairStore alloc] init];
- }
- - (void)tearDown {
- [super tearDown];
- NSError *error = nil;
- [self.keyPairStore removeKeyPairCreationTimePlistWithError:&error];
- // TODO: Real FIRInstanceIDKeychain should not be used for the tests, it should be mocked instead.
- // Drain Keychain private queue before exiting.
- [[FIRInstanceIDKeychain sharedInstance] itemWithQuery:@{}];
- }
- - (void)testMigrationDataIfLegacyKeyPairsNotExist {
- NSString *legacyPublicKeyTag =
- FIRInstanceIDLegacyPublicTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- NSString *publicKeyTag = FIRInstanceIDPublicTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- XCTAssertFalse(FIRInstanceIDHasMigratedKeyPair(legacyPublicKeyTag, publicKeyTag));
- NSString *legacyPrivateKeyTag =
- FIRInstanceIDLegacyPrivateTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- NSError *error;
- FIRInstanceIDKeyPair *keyPair =
- [FIRInstanceIDKeyPairStore keyPairForPrivateKeyTag:legacyPrivateKeyTag
- publicKeyTag:legacyPublicKeyTag
- error:&error];
- XCTAssertFalse([keyPair isValid]);
- }
- - (void)testMigrationIfLegacyKeyPairsExist {
- XCTestExpectation *migrationCompleteExpectation =
- [self expectationWithDescription:@"migration should be done"];
- // create legacy key pairs
- NSString *legacyPublicKeyTag =
- FIRInstanceIDLegacyPublicTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- NSString *legacyPrivateKeyTag =
- FIRInstanceIDLegacyPrivateTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- FIRInstanceIDKeyPair *keyPair =
- [[FIRInstanceIDKeychain sharedInstance] generateKeyPairWithPrivateTag:legacyPrivateKeyTag
- publicTag:legacyPublicKeyTag];
- XCTAssertTrue([keyPair isValid]);
- NSError *error;
- NSString *publicKeyTag = FIRInstanceIDPublicTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- NSString *privateKeyTag = FIRInstanceIDPrivateTagWithSubtype(kFIRInstanceIDKeyPairSubType);
- XCTAssertFalse(FIRInstanceIDHasMigratedKeyPair(legacyPublicKeyTag, publicKeyTag));
- FIRInstanceIDKeyPair *keyPair1 =
- [FIRInstanceIDKeyPairStore keyPairForPrivateKeyTag:legacyPrivateKeyTag
- publicKeyTag:legacyPublicKeyTag
- error:&error];
- XCTAssertTrue([keyPair1 isValid]);
- [self.keyPairStore migrateKeyPairCacheIfNeededWithHandler:^(NSError *error) {
- XCTAssertNil(error);
- XCTAssertTrue(FIRInstanceIDHasMigratedKeyPair(legacyPublicKeyTag, publicKeyTag));
- FIRInstanceIDKeyPair *keyPair2 =
- [FIRInstanceIDKeyPairStore keyPairForPrivateKeyTag:privateKeyTag
- publicKeyTag:publicKeyTag
- error:&error];
- XCTAssertTrue([keyPair2 isValid]);
- XCTAssertEqualObjects(keyPair.publicKeyData, keyPair2.publicKeyData);
- XCTAssertEqualObjects(keyPair.privateKeyData, keyPair2.privateKeyData);
- // Clear the legacy data after tests
- [FIRInstanceIDKeyPairStore deleteKeyPairWithPrivateTag:legacyPrivateKeyTag
- publicTag:legacyPublicKeyTag
- handler:^(NSError *error) {
- XCTAssertNil(error);
- [migrationCompleteExpectation fulfill];
- }];
- }];
- [self waitForExpectationsWithTimeout:1 handler:nil];
- }
- - (void)testUpdateKeyRefWithTagRetainsAndReleasesKeyRef {
- __weak id weakKeyRef;
- // Use a local autorelease pool to make sure any autorelease objects allocated will be released.
- @autoreleasepool {
- SecKeyRef keyRef = [self generateKeyRef];
- weakKeyRef = (__bridge id)(keyRef);
- XCTestExpectation *completionExpectation =
- [self expectationWithDescription:@"completionExpectation"];
- [self.keyPairStore updateKeyRef:keyRef
- withTag:@"test"
- handler:^(NSError *error) {
- [completionExpectation fulfill];
- }];
- // Release locally allocated CoreFoundation object.
- CFRelease(keyRef);
- }
- // Should be still alive until execution finished
- XCTAssertNotNil(weakKeyRef);
- [self waitForExpectationsWithTimeout:0.5 handler:NULL];
- // Should be released once finished
- // The check below is flaky for build under DEBUG (petentially due to ARC specifics).
- // Comment it so far as not-so-important one.
- // XCTAssertNil(weakKeyRef);
- }
- - (SecKeyRef)generateKeyRef {
- NSDictionary *keyAttributes = @{(__bridge id)kSecAttrIsPermanent : @YES};
- NSDictionary *keyPairAttributes = @{
- (__bridge id)kSecAttrKeyType : (__bridge id)kSecAttrKeyTypeRSA,
- (__bridge id)kSecAttrLabel : @"[FIRInstanceIDKeyPairMigrationTest generateKeyRef]",
- (__bridge id)kSecAttrKeySizeInBits : @(2048),
- (__bridge id)kSecPrivateKeyAttrs : keyAttributes,
- (__bridge id)kSecPublicKeyAttrs : keyAttributes,
- };
- SecKeyRef publicKey = NULL;
- SecKeyGeneratePair((__bridge CFDictionaryRef)keyPairAttributes, &publicKey, NULL);
- return publicKey;
- }
- @end
|
