| Index: net/ssl/channel_id_service_unittest.cc
|
| diff --git a/net/ssl/channel_id_service_unittest.cc b/net/ssl/channel_id_service_unittest.cc
|
| index b5fc006f1b3904bd3ac2305797316384db316647..9cee80f20e2fc90580d32498fc2a5500470d1809 100644
|
| --- a/net/ssl/channel_id_service_unittest.cc
|
| +++ b/net/ssl/channel_id_service_unittest.cc
|
| @@ -11,6 +11,7 @@
|
| #include "base/memory/scoped_ptr.h"
|
| #include "base/message_loop/message_loop.h"
|
| #include "base/message_loop/message_loop_proxy.h"
|
| +#include "base/strings/string_number_conversions.h"
|
| #include "base/task_runner.h"
|
| #include "crypto/ec_private_key.h"
|
| #include "net/base/net_errors.h"
|
| @@ -18,6 +19,7 @@
|
| #include "net/cert/asn1_util.h"
|
| #include "net/cert/x509_certificate.h"
|
| #include "net/ssl/default_channel_id_store.h"
|
| +#include "net/test/channel_id_test_util.h"
|
| #include "testing/gtest/include/gtest/gtest.h"
|
|
|
| namespace net {
|
| @@ -57,25 +59,16 @@ class MockChannelIDStoreWithAsyncGet
|
| : DefaultChannelIDStore(NULL), channel_id_count_(0) {}
|
|
|
| int GetChannelID(const std::string& server_identifier,
|
| - base::Time* expiration_time,
|
| - std::string* private_key_result,
|
| - std::string* cert_result,
|
| + scoped_ptr<crypto::ECPrivateKey>* key_result,
|
| const GetChannelIDCallback& callback) override;
|
|
|
| - void SetChannelID(const std::string& server_identifier,
|
| - base::Time creation_time,
|
| - base::Time expiration_time,
|
| - const std::string& private_key,
|
| - const std::string& cert) override {
|
| + void SetChannelID(scoped_ptr<ChannelID> channel_id) override {
|
| channel_id_count_ = 1;
|
| }
|
|
|
| int GetChannelIDCount() override { return channel_id_count_; }
|
|
|
| - void CallGetChannelIDCallbackWithResult(int err,
|
| - base::Time expiration_time,
|
| - const std::string& private_key,
|
| - const std::string& cert);
|
| + void CallGetChannelIDCallbackWithResult(int err, crypto::ECPrivateKey* key);
|
|
|
| private:
|
| GetChannelIDCallback callback_;
|
| @@ -85,9 +78,7 @@ class MockChannelIDStoreWithAsyncGet
|
|
|
| int MockChannelIDStoreWithAsyncGet::GetChannelID(
|
| const std::string& server_identifier,
|
| - base::Time* expiration_time,
|
| - std::string* private_key_result,
|
| - std::string* cert_result,
|
| + scoped_ptr<crypto::ECPrivateKey>* key_result,
|
| const GetChannelIDCallback& callback) {
|
| server_identifier_ = server_identifier;
|
| callback_ = callback;
|
| @@ -99,21 +90,15 @@ int MockChannelIDStoreWithAsyncGet::GetChannelID(
|
| return ERR_IO_PENDING;
|
| }
|
|
|
| -void
|
| -MockChannelIDStoreWithAsyncGet::CallGetChannelIDCallbackWithResult(
|
| +void MockChannelIDStoreWithAsyncGet::CallGetChannelIDCallbackWithResult(
|
| int err,
|
| - base::Time expiration_time,
|
| - const std::string& private_key,
|
| - const std::string& cert) {
|
| + crypto::ECPrivateKey* key) {
|
| if (err == OK)
|
| channel_id_count_ = 1;
|
| - base::MessageLoop::current()->PostTask(FROM_HERE,
|
| - base::Bind(callback_,
|
| - err,
|
| - server_identifier_,
|
| - expiration_time,
|
| - private_key,
|
| - cert));
|
| + base::MessageLoop::current()->PostTask(
|
| + FROM_HERE,
|
| + base::Bind(callback_, err, server_identifier_,
|
| + base::Passed(make_scoped_ptr(key ? key->Copy() : nullptr))));
|
| }
|
|
|
| class ChannelIDServiceTest : public testing::Test {
|
| @@ -155,14 +140,14 @@ TEST_F(ChannelIDServiceTest, GetCacheMiss) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| // Synchronous completion, because the store is initialized.
|
| - std::string private_key, der_cert;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetChannelID(
|
| - host, &private_key, &der_cert, callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error =
|
| + service_->GetChannelID(host, &key, callback.callback(), &request_handle);
|
| EXPECT_EQ(ERR_FILE_NOT_FOUND, error);
|
| EXPECT_FALSE(request_handle.is_active());
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - EXPECT_TRUE(der_cert.empty());
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + EXPECT_FALSE(key);
|
| }
|
|
|
| TEST_F(ChannelIDServiceTest, CacheHit) {
|
| @@ -173,44 +158,38 @@ TEST_F(ChannelIDServiceTest, CacheHit) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| // Asynchronous completion.
|
| - std::string private_key_info1, der_cert1;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info1, &der_cert1,
|
| - callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key1;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error = service_->GetOrCreateChannelID(host, &key1, callback.callback(),
|
| + &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| - EXPECT_FALSE(private_key_info1.empty());
|
| - EXPECT_FALSE(der_cert1.empty());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| + EXPECT_TRUE(key1);
|
| EXPECT_FALSE(request_handle.is_active());
|
|
|
| // Synchronous completion.
|
| - std::string private_key_info2, der_cert2;
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info2, &der_cert2,
|
| - callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key2;
|
| + error = service_->GetOrCreateChannelID(host, &key2, callback.callback(),
|
| + &request_handle);
|
| EXPECT_FALSE(request_handle.is_active());
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| - EXPECT_EQ(private_key_info1, private_key_info2);
|
| - EXPECT_EQ(der_cert1, der_cert2);
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysEqual(key1.get(), key2.get()));
|
|
|
| // Synchronous get.
|
| - std::string private_key_info3, der_cert3;
|
| - error = service_->GetChannelID(
|
| - host, &private_key_info3, &der_cert3, callback.callback(),
|
| - &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key3;
|
| + error =
|
| + service_->GetChannelID(host, &key3, callback.callback(), &request_handle);
|
| EXPECT_FALSE(request_handle.is_active());
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| - EXPECT_EQ(der_cert1, der_cert3);
|
| - EXPECT_EQ(private_key_info1, private_key_info3);
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysEqual(key1.get(), key3.get()));
|
|
|
| EXPECT_EQ(3u, service_->requests());
|
| - EXPECT_EQ(2u, service_->cert_store_hits());
|
| + EXPECT_EQ(2u, service_->key_store_hits());
|
| EXPECT_EQ(0u, service_->inflight_joins());
|
| }
|
|
|
| @@ -220,45 +199,39 @@ TEST_F(ChannelIDServiceTest, StoreChannelIDs) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| std::string host1("encrypted.google.com");
|
| - std::string private_key_info1, der_cert1;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetOrCreateChannelID(
|
| - host1, &private_key_info1, &der_cert1,
|
| - callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key1;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error = service_->GetOrCreateChannelID(host1, &key1, callback.callback(),
|
| + &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
|
|
| std::string host2("www.verisign.com");
|
| - std::string private_key_info2, der_cert2;
|
| - error = service_->GetOrCreateChannelID(
|
| - host2, &private_key_info2, &der_cert2,
|
| - callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key2;
|
| + error = service_->GetOrCreateChannelID(host2, &key2, callback.callback(),
|
| + &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(2, service_->cert_count());
|
| + EXPECT_EQ(2, service_->channel_id_count());
|
|
|
| std::string host3("www.twitter.com");
|
| - std::string private_key_info3, der_cert3;
|
| - error = service_->GetOrCreateChannelID(
|
| - host3, &private_key_info3, &der_cert3,
|
| - callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key3;
|
| + error = service_->GetOrCreateChannelID(host3, &key3, callback.callback(),
|
| + &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(3, service_->cert_count());
|
| -
|
| - EXPECT_NE(private_key_info1, private_key_info2);
|
| - EXPECT_NE(der_cert1, der_cert2);
|
| - EXPECT_NE(private_key_info1, private_key_info3);
|
| - EXPECT_NE(der_cert1, der_cert3);
|
| - EXPECT_NE(private_key_info2, private_key_info3);
|
| - EXPECT_NE(der_cert2, der_cert3);
|
| + EXPECT_EQ(3, service_->channel_id_count());
|
| +
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysNotEqual(key1.get(), key2.get()));
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysNotEqual(key1.get(), key3.get()));
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysNotEqual(key2.get(), key3.get()));
|
| }
|
|
|
| // Tests an inflight join.
|
| @@ -266,23 +239,21 @@ TEST_F(ChannelIDServiceTest, InflightJoin) {
|
| std::string host("encrypted.google.com");
|
| int error;
|
|
|
| - std::string private_key_info1, der_cert1;
|
| + scoped_ptr<crypto::ECPrivateKey> key1;
|
| TestCompletionCallback callback1;
|
| ChannelIDService::RequestHandle request_handle1;
|
|
|
| - std::string private_key_info2, der_cert2;
|
| + scoped_ptr<crypto::ECPrivateKey> key2;
|
| TestCompletionCallback callback2;
|
| ChannelIDService::RequestHandle request_handle2;
|
|
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info1, &der_cert1,
|
| - callback1.callback(), &request_handle1);
|
| + error = service_->GetOrCreateChannelID(host, &key1, callback1.callback(),
|
| + &request_handle1);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle1.is_active());
|
| // Should join with the original request.
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info2, &der_cert2,
|
| - callback2.callback(), &request_handle2);
|
| + error = service_->GetOrCreateChannelID(host, &key2, callback2.callback(),
|
| + &request_handle2);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle2.is_active());
|
|
|
| @@ -292,7 +263,7 @@ TEST_F(ChannelIDServiceTest, InflightJoin) {
|
| EXPECT_EQ(OK, error);
|
|
|
| EXPECT_EQ(2u, service_->requests());
|
| - EXPECT_EQ(0u, service_->cert_store_hits());
|
| + EXPECT_EQ(0u, service_->key_store_hits());
|
| EXPECT_EQ(1u, service_->inflight_joins());
|
| EXPECT_EQ(1u, service_->workers_created());
|
| }
|
| @@ -302,24 +273,21 @@ TEST_F(ChannelIDServiceTest, InflightJoinGetOrCreateAndGet) {
|
| std::string host("encrypted.google.com");
|
| int error;
|
|
|
| - std::string private_key_info1, der_cert1;
|
| + scoped_ptr<crypto::ECPrivateKey> key1;
|
| TestCompletionCallback callback1;
|
| ChannelIDService::RequestHandle request_handle1;
|
|
|
| - std::string private_key_info2;
|
| - std::string der_cert2;
|
| + scoped_ptr<crypto::ECPrivateKey> key2;
|
| TestCompletionCallback callback2;
|
| ChannelIDService::RequestHandle request_handle2;
|
|
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info1, &der_cert1,
|
| - callback1.callback(), &request_handle1);
|
| + error = service_->GetOrCreateChannelID(host, &key1, callback1.callback(),
|
| + &request_handle1);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle1.is_active());
|
| // Should join with the original request.
|
| - error = service_->GetChannelID(
|
| - host, &private_key_info2, &der_cert2, callback2.callback(),
|
| - &request_handle2);
|
| + error = service_->GetChannelID(host, &key2, callback2.callback(),
|
| + &request_handle2);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle2.is_active());
|
|
|
| @@ -327,59 +295,22 @@ TEST_F(ChannelIDServiceTest, InflightJoinGetOrCreateAndGet) {
|
| EXPECT_EQ(OK, error);
|
| error = callback2.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(der_cert1, der_cert2);
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysEqual(key1.get(), key2.get()));
|
|
|
| EXPECT_EQ(2u, service_->requests());
|
| - EXPECT_EQ(0u, service_->cert_store_hits());
|
| + EXPECT_EQ(0u, service_->key_store_hits());
|
| EXPECT_EQ(1u, service_->inflight_joins());
|
| EXPECT_EQ(1u, service_->workers_created());
|
| }
|
|
|
| -TEST_F(ChannelIDServiceTest, ExtractValuesFromBytesEC) {
|
| - std::string host("encrypted.google.com");
|
| - std::string private_key_info, der_cert;
|
| - int error;
|
| - TestCompletionCallback callback;
|
| - ChannelIDService::RequestHandle request_handle;
|
| -
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info, &der_cert, callback.callback(),
|
| - &request_handle);
|
| - EXPECT_EQ(ERR_IO_PENDING, error);
|
| - EXPECT_TRUE(request_handle.is_active());
|
| - error = callback.WaitForResult();
|
| - EXPECT_EQ(OK, error);
|
| -
|
| - base::StringPiece spki_piece;
|
| - ASSERT_TRUE(asn1::ExtractSPKIFromDERCert(der_cert, &spki_piece));
|
| - std::vector<uint8> spki(
|
| - spki_piece.data(),
|
| - spki_piece.data() + spki_piece.size());
|
| -
|
| - // Check that we can retrieve the key from the bytes.
|
| - std::vector<uint8> key_vec(private_key_info.begin(), private_key_info.end());
|
| - scoped_ptr<crypto::ECPrivateKey> private_key(
|
| - crypto::ECPrivateKey::CreateFromEncryptedPrivateKeyInfo(
|
| - ChannelIDService::kEPKIPassword, key_vec, spki));
|
| - EXPECT_TRUE(private_key != NULL);
|
| -
|
| - // Check that we can retrieve the cert from the bytes.
|
| - scoped_refptr<X509Certificate> x509cert(
|
| - X509Certificate::CreateFromBytes(der_cert.data(), der_cert.size()));
|
| - EXPECT_TRUE(x509cert.get() != NULL);
|
| -}
|
| -
|
| // Tests that the callback of a canceled request is never made.
|
| TEST_F(ChannelIDServiceTest, CancelRequest) {
|
| std::string host("encrypted.google.com");
|
| - std::string private_key_info, der_cert;
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| int error;
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| - error = service_->GetOrCreateChannelID(host,
|
| - &private_key_info,
|
| - &der_cert,
|
| - base::Bind(&FailTest),
|
| + error = service_->GetOrCreateChannelID(host, &key, base::Bind(&FailTest),
|
| &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| @@ -392,21 +323,18 @@ TEST_F(ChannelIDServiceTest, CancelRequest) {
|
|
|
| // Even though the original request was cancelled, the service will still
|
| // store the result, it just doesn't call the callback.
|
| - EXPECT_EQ(1, service_->cert_count());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| }
|
|
|
| // Tests that destructing the RequestHandle cancels the request.
|
| TEST_F(ChannelIDServiceTest, CancelRequestByHandleDestruction) {
|
| std::string host("encrypted.google.com");
|
| - std::string private_key_info, der_cert;
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| int error;
|
| {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| - error = service_->GetOrCreateChannelID(host,
|
| - &private_key_info,
|
| - &der_cert,
|
| - base::Bind(&FailTest),
|
| + error = service_->GetOrCreateChannelID(host, &key, base::Bind(&FailTest),
|
| &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| @@ -418,19 +346,16 @@ TEST_F(ChannelIDServiceTest, CancelRequestByHandleDestruction) {
|
|
|
| // Even though the original request was cancelled, the service will still
|
| // store the result, it just doesn't call the callback.
|
| - EXPECT_EQ(1, service_->cert_count());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| }
|
|
|
| TEST_F(ChannelIDServiceTest, DestructionWithPendingRequest) {
|
| std::string host("encrypted.google.com");
|
| - std::string private_key_info, der_cert;
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| int error;
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| - error = service_->GetOrCreateChannelID(host,
|
| - &private_key_info,
|
| - &der_cert,
|
| - base::Bind(&FailTest),
|
| + error = service_->GetOrCreateChannelID(host, &key, base::Bind(&FailTest),
|
| &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
| @@ -457,14 +382,11 @@ TEST_F(ChannelIDServiceTest, RequestAfterPoolShutdown) {
|
|
|
| // Make a request that will force synchronous completion.
|
| std::string host("encrypted.google.com");
|
| - std::string private_key_info, der_cert;
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| int error;
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| - error = service_->GetOrCreateChannelID(host,
|
| - &private_key_info,
|
| - &der_cert,
|
| - base::Bind(&FailTest),
|
| + error = service_->GetOrCreateChannelID(host, &key, base::Bind(&FailTest),
|
| &request_handle);
|
| // If we got here without crashing or a valgrind error, it worked.
|
| ASSERT_EQ(ERR_INSUFFICIENT_RESOURCES, error);
|
| @@ -476,111 +398,52 @@ TEST_F(ChannelIDServiceTest, SimultaneousCreation) {
|
| int error;
|
|
|
| std::string host1("encrypted.google.com");
|
| - std::string private_key_info1, der_cert1;
|
| + scoped_ptr<crypto::ECPrivateKey> key1;
|
| TestCompletionCallback callback1;
|
| ChannelIDService::RequestHandle request_handle1;
|
|
|
| std::string host2("foo.com");
|
| - std::string private_key_info2, der_cert2;
|
| + scoped_ptr<crypto::ECPrivateKey> key2;
|
| TestCompletionCallback callback2;
|
| ChannelIDService::RequestHandle request_handle2;
|
|
|
| std::string host3("bar.com");
|
| - std::string private_key_info3, der_cert3;
|
| + scoped_ptr<crypto::ECPrivateKey> key3;
|
| TestCompletionCallback callback3;
|
| ChannelIDService::RequestHandle request_handle3;
|
|
|
| - error = service_->GetOrCreateChannelID(host1,
|
| - &private_key_info1,
|
| - &der_cert1,
|
| - callback1.callback(),
|
| + error = service_->GetOrCreateChannelID(host1, &key1, callback1.callback(),
|
| &request_handle1);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle1.is_active());
|
|
|
| - error = service_->GetOrCreateChannelID(host2,
|
| - &private_key_info2,
|
| - &der_cert2,
|
| - callback2.callback(),
|
| + error = service_->GetOrCreateChannelID(host2, &key2, callback2.callback(),
|
| &request_handle2);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle2.is_active());
|
|
|
| - error = service_->GetOrCreateChannelID(host3,
|
| - &private_key_info3,
|
| - &der_cert3,
|
| - callback3.callback(),
|
| + error = service_->GetOrCreateChannelID(host3, &key3, callback3.callback(),
|
| &request_handle3);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle3.is_active());
|
|
|
| error = callback1.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_FALSE(private_key_info1.empty());
|
| - EXPECT_FALSE(der_cert1.empty());
|
| + EXPECT_TRUE(key1);
|
|
|
| error = callback2.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_FALSE(private_key_info2.empty());
|
| - EXPECT_FALSE(der_cert2.empty());
|
| + EXPECT_TRUE(key2);
|
|
|
| error = callback3.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_FALSE(private_key_info3.empty());
|
| - EXPECT_FALSE(der_cert3.empty());
|
| -
|
| - EXPECT_NE(private_key_info1, private_key_info2);
|
| - EXPECT_NE(der_cert1, der_cert2);
|
| -
|
| - EXPECT_NE(private_key_info1, private_key_info3);
|
| - EXPECT_NE(der_cert1, der_cert3);
|
| -
|
| - EXPECT_NE(private_key_info2, private_key_info3);
|
| - EXPECT_NE(der_cert2, der_cert3);
|
| + EXPECT_TRUE(key3);
|
|
|
| - EXPECT_EQ(3, service_->cert_count());
|
| -}
|
| -
|
| -TEST_F(ChannelIDServiceTest, Expiration) {
|
| - ChannelIDStore* store = service_->GetChannelIDStore();
|
| - base::Time now = base::Time::Now();
|
| - store->SetChannelID("good",
|
| - now,
|
| - now + base::TimeDelta::FromDays(1),
|
| - "a",
|
| - "b");
|
| - store->SetChannelID("expired",
|
| - now - base::TimeDelta::FromDays(2),
|
| - now - base::TimeDelta::FromDays(1),
|
| - "c",
|
| - "d");
|
| - EXPECT_EQ(2, service_->cert_count());
|
| -
|
| - int error;
|
| - TestCompletionCallback callback;
|
| - ChannelIDService::RequestHandle request_handle;
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysNotEqual(key1.get(), key2.get()));
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysNotEqual(key1.get(), key3.get()));
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysNotEqual(key2.get(), key3.get()));
|
|
|
| - // Cert is valid - synchronous completion.
|
| - std::string private_key_info1, der_cert1;
|
| - error = service_->GetOrCreateChannelID(
|
| - "good", &private_key_info1, &der_cert1,
|
| - callback.callback(), &request_handle);
|
| - EXPECT_EQ(OK, error);
|
| - EXPECT_FALSE(request_handle.is_active());
|
| - EXPECT_EQ(2, service_->cert_count());
|
| - EXPECT_STREQ("a", private_key_info1.c_str());
|
| - EXPECT_STREQ("b", der_cert1.c_str());
|
| -
|
| - // Expired cert is valid as well - synchronous completion.
|
| - std::string private_key_info2, der_cert2;
|
| - error = service_->GetOrCreateChannelID(
|
| - "expired", &private_key_info2, &der_cert2,
|
| - callback.callback(), &request_handle);
|
| - EXPECT_EQ(OK, error);
|
| - EXPECT_FALSE(request_handle.is_active());
|
| - EXPECT_EQ(2, service_->cert_count());
|
| - EXPECT_STREQ("c", private_key_info2.c_str());
|
| - EXPECT_STREQ("d", der_cert2.c_str());
|
| + EXPECT_EQ(3, service_->channel_id_count());
|
| }
|
|
|
| TEST_F(ChannelIDServiceTest, AsyncStoreGetOrCreateNoChannelIDsInStore) {
|
| @@ -596,21 +459,19 @@ TEST_F(ChannelIDServiceTest, AsyncStoreGetOrCreateNoChannelIDsInStore) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| // Asynchronous completion with no certs in the store.
|
| - std::string private_key_info, der_cert;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info, &der_cert, callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error = service_->GetOrCreateChannelID(host, &key, callback.callback(),
|
| + &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
|
|
| - mock_store->CallGetChannelIDCallbackWithResult(
|
| - ERR_FILE_NOT_FOUND, base::Time(), std::string(), std::string());
|
| + mock_store->CallGetChannelIDCallbackWithResult(ERR_FILE_NOT_FOUND, nullptr);
|
|
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| - EXPECT_FALSE(private_key_info.empty());
|
| - EXPECT_FALSE(der_cert.empty());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| + EXPECT_TRUE(key);
|
| EXPECT_FALSE(request_handle.is_active());
|
| }
|
|
|
| @@ -627,21 +488,20 @@ TEST_F(ChannelIDServiceTest, AsyncStoreGetNoChannelIDsInStore) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| // Asynchronous completion with no certs in the store.
|
| - std::string private_key, der_cert;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetChannelID(
|
| - host, &private_key, &der_cert, callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error =
|
| + service_->GetChannelID(host, &key, callback.callback(), &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
|
|
| - mock_store->CallGetChannelIDCallbackWithResult(
|
| - ERR_FILE_NOT_FOUND, base::Time(), std::string(), std::string());
|
| + mock_store->CallGetChannelIDCallbackWithResult(ERR_FILE_NOT_FOUND, nullptr);
|
|
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(ERR_FILE_NOT_FOUND, error);
|
| - EXPECT_EQ(0, service_->cert_count());
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| EXPECT_EQ(0u, service_->workers_created());
|
| - EXPECT_TRUE(der_cert.empty());
|
| + EXPECT_FALSE(key);
|
| EXPECT_FALSE(request_handle.is_active());
|
| }
|
|
|
| @@ -658,26 +518,26 @@ TEST_F(ChannelIDServiceTest, AsyncStoreGetOrCreateOneCertInStore) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| // Asynchronous completion with a cert in the store.
|
| - std::string private_key_info, der_cert;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key_info, &der_cert, callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error = service_->GetOrCreateChannelID(host, &key, callback.callback(),
|
| + &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
|
|
| - mock_store->CallGetChannelIDCallbackWithResult(
|
| - OK, base::Time(), "ab", "cd");
|
| + scoped_ptr<crypto::ECPrivateKey> expected_key(crypto::ECPrivateKey::Create());
|
| + mock_store->CallGetChannelIDCallbackWithResult(OK, expected_key.get());
|
|
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| EXPECT_EQ(1u, service_->requests());
|
| - EXPECT_EQ(1u, service_->cert_store_hits());
|
| + EXPECT_EQ(1u, service_->key_store_hits());
|
| // Because the cert was found in the store, no new workers should have been
|
| // created.
|
| EXPECT_EQ(0u, service_->workers_created());
|
| - EXPECT_STREQ("ab", private_key_info.c_str());
|
| - EXPECT_STREQ("cd", der_cert.c_str());
|
| + EXPECT_TRUE(key);
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysEqual(expected_key.get(), key.get()));
|
| EXPECT_FALSE(request_handle.is_active());
|
| }
|
|
|
| @@ -694,25 +554,26 @@ TEST_F(ChannelIDServiceTest, AsyncStoreGetOneCertInStore) {
|
| ChannelIDService::RequestHandle request_handle;
|
|
|
| // Asynchronous completion with a cert in the store.
|
| - std::string private_key, der_cert;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetChannelID(
|
| - host, &private_key, &der_cert, callback.callback(), &request_handle);
|
| + scoped_ptr<crypto::ECPrivateKey> key;
|
| + std::string private_key, spki;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error =
|
| + service_->GetChannelID(host, &key, callback.callback(), &request_handle);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle.is_active());
|
|
|
| - mock_store->CallGetChannelIDCallbackWithResult(
|
| - OK, base::Time(), "ab", "cd");
|
| + scoped_ptr<crypto::ECPrivateKey> expected_key(crypto::ECPrivateKey::Create());
|
| + mock_store->CallGetChannelIDCallbackWithResult(OK, expected_key.get());
|
|
|
| error = callback.WaitForResult();
|
| EXPECT_EQ(OK, error);
|
| - EXPECT_EQ(1, service_->cert_count());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| EXPECT_EQ(1u, service_->requests());
|
| - EXPECT_EQ(1u, service_->cert_store_hits());
|
| + EXPECT_EQ(1u, service_->key_store_hits());
|
| // Because the cert was found in the store, no new workers should have been
|
| // created.
|
| EXPECT_EQ(0u, service_->workers_created());
|
| - EXPECT_STREQ("cd", der_cert.c_str());
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysEqual(expected_key.get(), key.get()));
|
| EXPECT_FALSE(request_handle.is_active());
|
| }
|
|
|
| @@ -729,25 +590,24 @@ TEST_F(ChannelIDServiceTest, AsyncStoreGetThenCreateNoCertsInStore) {
|
| // Asynchronous get with no certs in the store.
|
| TestCompletionCallback callback1;
|
| ChannelIDService::RequestHandle request_handle1;
|
| - std::string private_key1, der_cert1;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetChannelID(
|
| - host, &private_key1, &der_cert1, callback1.callback(), &request_handle1);
|
| + scoped_ptr<crypto::ECPrivateKey> key1;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error = service_->GetChannelID(host, &key1, callback1.callback(),
|
| + &request_handle1);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle1.is_active());
|
|
|
| // Asynchronous get/create with no certs in the store.
|
| TestCompletionCallback callback2;
|
| ChannelIDService::RequestHandle request_handle2;
|
| - std::string private_key2, der_cert2;
|
| - EXPECT_EQ(0, service_->cert_count());
|
| - error = service_->GetOrCreateChannelID(
|
| - host, &private_key2, &der_cert2, callback2.callback(), &request_handle2);
|
| + scoped_ptr<crypto::ECPrivateKey> key2;
|
| + EXPECT_EQ(0, service_->channel_id_count());
|
| + error = service_->GetOrCreateChannelID(host, &key2, callback2.callback(),
|
| + &request_handle2);
|
| EXPECT_EQ(ERR_IO_PENDING, error);
|
| EXPECT_TRUE(request_handle2.is_active());
|
|
|
| - mock_store->CallGetChannelIDCallbackWithResult(
|
| - ERR_FILE_NOT_FOUND, base::Time(), std::string(), std::string());
|
| + mock_store->CallGetChannelIDCallbackWithResult(ERR_FILE_NOT_FOUND, nullptr);
|
|
|
| // Even though the first request didn't ask to create a cert, it gets joined
|
| // by the second, which does, so both succeed.
|
| @@ -758,13 +618,11 @@ TEST_F(ChannelIDServiceTest, AsyncStoreGetThenCreateNoCertsInStore) {
|
|
|
| // One cert is created, one request is joined.
|
| EXPECT_EQ(2U, service_->requests());
|
| - EXPECT_EQ(1, service_->cert_count());
|
| + EXPECT_EQ(1, service_->channel_id_count());
|
| EXPECT_EQ(1u, service_->workers_created());
|
| EXPECT_EQ(1u, service_->inflight_joins());
|
| - EXPECT_FALSE(der_cert1.empty());
|
| - EXPECT_EQ(der_cert1, der_cert2);
|
| - EXPECT_FALSE(private_key1.empty());
|
| - EXPECT_EQ(private_key1, private_key2);
|
| + EXPECT_TRUE(key1);
|
| + ASSERT_NO_FATAL_FAILURE(ExpectKeysEqual(key1.get(), key2.get()));
|
| EXPECT_FALSE(request_handle1.is_active());
|
| EXPECT_FALSE(request_handle2.is_active());
|
| }
|
|
|
Chromium Code Reviews
Issue 1076063002:
Remove certificates from Channel ID (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master