add special runtime permissions test cases

See the README.md for more info.

Run tests with

atest SpecialRuntimePermsTestCases

Author: inthewaves

tests/GrapheneOsTests/SpecialRuntimePerms/Android.bp

@@ -0,0 +1,42 @@
+android_test {
+    name: "SpecialRuntimePermsTestCases",
+    defaults: [
+        "cts_defaults",
+        "mts-target-sdk-version-current",
+    ],
+    libs: [
+        "android.test.runner.stubs.system",
+        "android.test.base.stubs.system",
+        "android.test.mock.stubs.system",
+    ],
+    static_libs: [
+        "androidx.test.uiautomator_uiautomator",
+        "androidx.test.rules",
+        "compatibility-device-util-axt",
+        "platform-test-annotations",
+        "cts-wm-util",
+        "cts-install-lib",
+        "android.content.pm.flags-aconfig-java",
+        "ShortcutManagerTestUtils",
+        "kotlin-test",
+        "kotlinx_coroutines_test",
+        "grapheneos-test-common",
+        "framework-protos",
+        // TODO: Figure out how to use IIntentSender in
+        // cts/tests/tests/content/src/android/content/pm/cts/PackageManagerShellCommandInstallTest.java
+    ],
+    resource_dirs: ["res"],
+    srcs: [
+        "src/**/*.java",
+        "src/**/*.aidl",
+        "src/**/*.kt",
+    ],
+    data: [
+        ":GosHelloWorldAppV1",
+        ":GosHelloWorldAppV2",
+        ":GosAppThatAccessesInternetOnCommand",
+    ],
+    per_testcase_directory: true,
+    platform_apis: true,
+    sdk_version: "test_current",
+}

tests/GrapheneOsTests/SpecialRuntimePerms/AndroidManifest.xml

@@ -0,0 +1,54 @@
+<?xml version="1.0" encoding="utf-8"?>
+<manifest xmlns:android="http://schemas.android.com/apk/res/android"
+          package="grapheneos.srtpermtests" >
+
+    <uses-permission android:name="android.permission.SYSTEM_ALERT_WINDOW" />
+    <uses-permission android:name="android.permission.REQUEST_DELETE_PACKAGES" />
+    <uses-permission android:name="android.permission.REQUEST_INSTALL_PACKAGES" />
+
+    <uses-permission android:name="android.permission.ACCESS_NETWORK_STATE" />
+    <uses-permission android:name="android.permission.INTERNET" />
+    <uses-permission android:name="android.permission.HIGH_SAMPLING_RATE_SENSORS" />
+
+    <queries>
+        <package android:name="com.example.helloworld" />
+        <package android:name="grapheneos.srtpermtests.internet.appthataccessesinternet" />
+    </queries>
+
+    <application
+        android:label="GrapheneOS special runtime permissions tests">
+        <uses-library android:name="android.test.runner" />
+
+        <activity android:name="grapheneos.srtpermtests.packageinstaller.BaseInstallerTest$Launcher"
+            android:enabled="true"
+            android:exported="true">
+            <intent-filter>
+                <action android:name="android.intent.action.MAIN"/>
+                <category android:name="android.intent.category.LAUNCHER"/>
+                <category android:name="android.intent.category.HOME"/>
+                <category android:name="android.intent.category.DEFAULT"/>
+            </intent-filter>
+        </activity>
+
+        <receiver android:name="grapheneos.srtpermtests.packageinstaller.BaseInstallerTest$UnarchiveBroadcastReceiver"
+            android:enabled="true"
+            android:exported="true">
+            <intent-filter>
+                <action android:name="android.intent.action.UNARCHIVE_PACKAGE"/>
+            </intent-filter>
+        </receiver>
+
+        <service android:name="grapheneos.test.common.notifications.GtsNotificationListenerService"
+            android:exported="true"
+            android:permission="android.permission.BIND_NOTIFICATION_LISTENER_SERVICE">
+            <intent-filter>
+                <action android:name="android.service.notification.NotificationListenerService"/>
+            </intent-filter>
+        </service>
+    </application>
+
+    <instrumentation android:name="androidx.test.runner.AndroidJUnitRunner"
+                     android:targetPackage="grapheneos.srtpermtests"
+                     android:label="SrtPerms Tests"/>
+
+</manifest>

tests/GrapheneOsTests/SpecialRuntimePerms/AndroidTest.xml

@@ -0,0 +1,58 @@
+<?xml version="1.0" encoding="utf-8"?>
+<configuration description="Config for GrapheneOS special runtime permissions test cases">
+    <target_preparer class="com.android.tradefed.targetprep.DeviceSetup">
+        <option name="force-skip-system-props" value="true" />
+        <option name="set-global-setting" key="verifier_engprod" value="1" />
+        <option name="set-global-setting" key="verifier_verify_adb_installs" value="0" />
+        <option name="restore-settings" value="true" />
+        <option name="set-global-setting" key="unused_static_shared_lib_min_cache_period" value="0" />
+        <option name="set-system-setting" key="notification_cooldown_enabled" value="0" />
+        <option name="enable-testing-secondary-user-on-secondary-display" value="true" />
+    </target_preparer>
+
+    <target_preparer class="com.android.tradefed.targetprep.suite.SuiteApkInstaller">
+        <option name="cleanup-apks" value="true" />
+        <option name="install-arg" value="-r" />
+        <option name="test-file-name" value="SpecialRuntimePermsTestCases.apk" />
+    </target_preparer>
+
+    <test class="com.android.tradefed.testtype.AndroidJUnitTest" >
+        <option name="package" value="grapheneos.srtpermtests" />
+        <option name="runtime-hint" value="1m" />
+    <!--  <option name="runner" value="androidx.test.runner.AndroidJUnitRunner" /> -->
+       <option name="hidden-api-checks" value="false" />
+    </test>
+    <!-- Create place to store apks -->
+    <target_preparer class="com.android.tradefed.targetprep.RunCommandTargetPreparer">
+        <option name="run-command" value="mkdir -p /data/local/tmp/cts/uninstall" />
+        <option name="teardown-command" value="rm -rf /data/local/tmp/cts"/>
+        <!-- Ensure the UI is ready and in an idle state before running tests -->
+        <option name="run-command" value="settings put global device_provisioned 1" />
+        <option name="run-command" value="settings put secure user_setup_complete 1" />
+        <option name="run-command" value="input keyevent KEYCODE_WAKEUP" />
+        <option name="run-command" value="wm dismiss-keyguard" />
+        <!-- Collapse notifications -->
+        <option name="run-command" value="cmd statusbar collapse" />
+        <!-- dismiss all system dialogs before launch test -->
+        <option name="run-command" value="am broadcast -a android.intent.action.CLOSE_SYSTEM_DIALOGS" />
+
+        <option name="run-command" value="pm uninstall com.android.cts.install.lib.testapp.A" />
+        <option name="run-command" value="pm uninstall com.android.cts.install.lib.testapp.B" />
+        <option name="run-command" value="pm uninstall com.android.cts.install.lib.testapp.C" />
+        <option name="teardown-command" value="pm uninstall com.android.cts.install.lib.testapp.A" />
+        <option name="teardown-command" value="pm uninstall com.android.cts.install.lib.testapp.B" />
+        <option name="teardown-command" value="pm uninstall com.android.cts.install.lib.testapp.C" />
+    </target_preparer>
+
+    <!-- Load additional APKs onto device -->
+    <target_preparer class="com.android.compatibility.common.tradefed.targetprep.FilePusher">
+        <option name="cleanup" value="true" />
+        <option name="push" value="GosHelloWorldAppV1.apk->/data/local/tmp/cts/uninstall/GosHelloWorldAppV1.apk" />
+        <option name="push" value="GosHelloWorldAppV2.apk->/data/local/tmp/cts/uninstall/GosHelloWorldAppV2.apk" />
+        <option name="push" value="GosAppThatAccessesInternetOnCommand.apk->/data/local/tmp/cts/uninstall/GosAppThatAccessesInternetOnCommand.apk" />
+    </target_preparer>
+
+    <target_preparer class="com.android.tradefed.targetprep.RootTargetPreparer">
+        <option name="force-root" value="false" />
+    </target_preparer>
+</configuration>

tests/GrapheneOsTests/SpecialRuntimePerms/README.md

@@ -0,0 +1,52 @@
+# SpecialRuntimePermsTestCases
+
+Test cases for GrapheneOS special runtime permissions. 
+
+The tests won't compile if the `OTHER_SENSORS` permission isn't implemeneted (compiles using the new
+manifest entry for `android.permission.OTHER_SENSORS` and the system message notification id for
+`com.android.server.ext.MissingSpecialRuntimePermissionNotification`).
+
+## Running tests
+
+Run an active device with internet access (might be best done with 
+`emulator -wipe-data -read-only` for a clean slate, and on a userdebug build) and then run
+
+```bash
+atest SpecialRuntimePermsTestCases
+```
+
+This command will handle building and pushing the APKs onto the device (see 
+[AndroidTest.xml](AndroidTest.xml) for details).
+
+Specific tests can be run by specifying the test class (and optionally the test function name) 
+after `:`, e.g.
+
+```bash
+atest SpecialRuntimePermsTestCases:InternetAndSensorsPermissionTest
+atest SpecialRuntimePermsTestCases:InternetAndSensorsPermissionTest#sensors_granted_get_success
+```
+
+## Overview of tests
+
+- Installing apps with auto grant sensor setting in various states
+- Updating apps and ensuring runtime permission states are preserved
+- Archiving and unarchiving apps and ensuring runtime permission states are preserved in various 
+cases (based on the tests from https://github.com/GrapheneOS/platform_frameworks_base/pull/163)
+- Ensuring the general functionality of special runtime permissions
+  - AOSP should consider the special runtime permissions to have a dangerous protection level
+  - Revoking internet permission should result in the app seeing as the network as unavailable
+    instead of throwing errors
+  - Revoking sensor permission should result in sensor events not being received, and a notification
+    should be posted if an app tries to access sensors when the permission is revoked
+
+Much of the test code and apps are based on existing AOSP CTS tests (`cts/` and
+`packages/modules/Permission/tests/cts`). Some CTS test failures were used to build test cases here.
+
+## Known issues
+
+- InternetAndSensorsPermissionTest is based on a CTS test that was marked as flaky 
+  (`packages/modules/Permission/tests/cts/permission/src/android/permission/cts/LocationAccessCheckTest.java`).
+  Sometimes the tests might fail from a `DeadObjectException` or other misc failures.
+- Currently doesn't cover usages of `TriggerEventListener` like for
+  `Sensor.TYPE_SIGNIFICANT_MOTION`. Seems more complicated to test (though 
+  [here's an existing CTS test for it](https://cs.android.com/android/platform/superproject/main/+/main:cts/apps/CtsVerifier/src/com/android/cts/verifier/sensors/SignificantMotionTestActivity.java))

tests/GrapheneOsTests/SpecialRuntimePerms/res/layout/overlay_activity.xml

@@ -0,0 +1,30 @@
+<!--
+  ~ Copyright (C) 2020 The Android Open Source Project
+  ~
+  ~ Licensed under the Apache License, Version 2.0 (the "License");
+  ~ you may not use this file except in compliance with the License.
+  ~ You may obtain a copy of the License at
+  ~
+  ~      http://www.apache.org/licenses/LICENSE-2.0
+  ~
+  ~ Unless required by applicable law or agreed to in writing, software
+  ~ distributed under the License is distributed on an "AS IS" BASIS,
+  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  ~ See the License for the specific language governing permissions and
+  ~ limitations under the License.
+  -->
+
+<LinearLayout xmlns:android="http://schemas.android.com/apk/res/android"
+              android:orientation="vertical"
+              android:layout_width="match_parent"
+              android:layout_height="match_parent"
+              android:padding="8dp"
+              android:gravity="center">
+
+    <TextView android:id="@+id/overlay_description"
+              android:layout_width="wrap_content"
+              android:layout_height="wrap_content"
+              android:textColor="@android:color/black"
+              android:background="@android:color/white"
+              android:text="This is an overlay" />
+</LinearLayout>

tests/GrapheneOsTests/SpecialRuntimePerms/src/grapheneos/srtpermtests/AppThatAccessesInternetRule.kt

@@ -0,0 +1,113 @@
+package grapheneos.srtpermtests
+
+import android.content.ComponentName
+import android.content.Context
+import android.content.Intent
+import android.content.ServiceConnection
+import android.os.IBinder
+import android.util.Log
+import com.android.compatibility.common.util.SystemUtil
+import grapheneos.srtpermtests.internet.appthataccessesinternet.IAccessInternetOnCommand
+import grapheneos.srtpermtests.packageinstaller.TestApks
+import kotlin.test.assertTrue
+import kotlinx.coroutines.suspendCancellableCoroutine
+import org.junit.rules.ExternalResource
+
+/**
+ * A rule meant to be used as a [org.junit.ClassRule] for managing the install, uninstall, and
+ * service bindings for IPC in the internet access test app.
+ */
+class AppThatAccessesInternetRule : ExternalResource() {
+    companion object {
+        private const val TAG = "AppThatAccessesInternetRule"
+        val TEST_APP_PKG = TestApks.appThatAccessesInternet.packageName
+        val TEST_APP_SERVICE = "$TEST_APP_PKG.AccessInternetOnCommand"
+    }
+
+    val context: Context = androidx.test.InstrumentationRegistry.getTargetContext();
+    private var serviceConn: ServiceConnection? = null
+    private var accessor: IAccessInternetOnCommand? = null
+
+    private fun installBackgroundAccessApp() {
+        val output = SystemUtil.runShellCommandOrThrow(
+            // -g means grant all runtime permissions
+            "pm install -r -g " + TestApks.appThatAccessesInternet.apkPath
+        )
+        assertTrue(output.contains("Success"))
+    }
+
+    private fun uninstallBackgroundAccessApp() {
+        val output = SystemUtil.runShellCommandOrThrow(
+            "pm uninstall $TEST_APP_PKG"
+        )
+        assertTrue(output.contains("Success"))
+    }
+
+    private fun setIdleAllowlist(enabled: Boolean) {
+        val prefix = if (enabled) "+" else "-"
+        val command = "cmd deviceidle whitelist $prefix$TEST_APP_PKG"
+        SystemUtil.runShellCommand(command)
+    }
+
+    suspend fun bindService(): IAccessInternetOnCommand {
+        if (serviceConn != null && accessor != null) {
+            return accessor!!
+        }
+
+        return suspendCancellableCoroutine { cont ->
+            serviceConn = object : ServiceConnection {
+                override fun onServiceConnected(name: ComponentName?, service: IBinder?) {
+                    val acc = IAccessInternetOnCommand.Stub.asInterface(service)
+                    accessor = acc
+                    cont.resume(acc) {
+                        unbindService()
+                    }
+                }
+
+                override fun onServiceDisconnected(name: ComponentName?) {
+                    serviceConn = null
+                    accessor = null
+                    cont.cancel()
+                }
+            }
+            val intent = Intent()
+            intent.component = ComponentName(TEST_APP_PKG, TEST_APP_SERVICE)
+            context.bindService(
+                intent,
+                serviceConn!!,
+                // adding Context.BIND_NOT_FOREGROUND will make test app service unable to
+                // get sensor readings
+                Context.BIND_AUTO_CREATE
+            )
+        }
+    }
+
+    fun unbindService() {
+        serviceConn?.let {
+            context.unbindService(it)
+            serviceConn = null
+        }
+        accessor = null
+    }
+
+    fun wakeUpAndDismissKeyguard() {
+        SystemUtil.runShellCommand("input keyevent KEYCODE_WAKEUP")
+        SystemUtil.runShellCommand("wm dismiss-keyguard")
+    }
+
+    override fun before() {
+        Log.d(TAG, "before()")
+        installBackgroundAccessApp()
+        // Might be needed to allow test app to do internet calls in Service.
+        // Note: Commenting this out alone seems to result in all tests still passing.
+        // Removing this and adding Context.BIND_NOT_FOREGROUND to the service binding,
+        // will cause some of the internet granted tests to fail.
+        setIdleAllowlist(true)
+    }
+
+    override fun after() {
+        setIdleAllowlist(false)
+        uninstallBackgroundAccessApp()
+        unbindService()
+    }
+}