| Index: chrome/browser/net/certificate_error_reporter_unittest.cc
|
| diff --git a/chrome/browser/net/certificate_error_reporter_unittest.cc b/chrome/browser/net/certificate_error_reporter_unittest.cc
|
| index f9054cd5cd054e625f6f477657b97bf6660bb88d..8de9091a85028ad6678aac90ecb30dc5bde4a287 100644
|
| --- a/chrome/browser/net/certificate_error_reporter_unittest.cc
|
| +++ b/chrome/browser/net/certificate_error_reporter_unittest.cc
|
| @@ -9,24 +9,19 @@
|
|
|
| #include "base/bind.h"
|
| #include "base/bind_helpers.h"
|
| -#include "base/files/file_path.h"
|
| -#include "base/files/file_util.h"
|
| #include "base/macros.h"
|
| #include "base/message_loop/message_loop.h"
|
| -#include "base/path_service.h"
|
| #include "base/run_loop.h"
|
| #include "base/thread_task_runner_handle.h"
|
| -#include "chrome/browser/net/cert_logger.pb.h"
|
| +#include "chrome/browser/net/encrypted_cert_logger.pb.h"
|
| #include "chrome/common/chrome_paths.h"
|
| #include "content/public/browser/browser_thread.h"
|
| #include "crypto/curve25519.h"
|
| #include "net/base/load_flags.h"
|
| #include "net/base/network_delegate_impl.h"
|
| -#include "net/base/test_data_directory.h"
|
| #include "net/base/upload_bytes_element_reader.h"
|
| #include "net/base/upload_data_stream.h"
|
| #include "net/base/upload_element_reader.h"
|
| -#include "net/test/cert_test_util.h"
|
| #include "net/test/url_request/url_request_failed_job.h"
|
| #include "net/test/url_request/url_request_mock_data_job.h"
|
| #include "net/test/url_request/url_request_mock_http_job.h"
|
| @@ -37,36 +32,16 @@
|
| using chrome_browser_net::CertificateErrorReporter;
|
| using content::BrowserThread;
|
| using net::CompletionCallback;
|
| -using net::SSLInfo;
|
| using net::NetworkDelegateImpl;
|
| using net::TestURLRequestContext;
|
| using net::URLRequest;
|
|
|
| namespace {
|
|
|
| -const char kHostname[] = "test.mail.google.com";
|
| -const char kSecondRequestHostname[] = "test2.mail.google.com";
|
| -const char kDummyFailureLog[] = "dummy failure log";
|
| -const char kTestCertFilename[] = "test_mail_google_com.pem";
|
| +const char kDummyReport[] = "test.mail.google.com";
|
| +const char kSecondDummyReport[] = "test2.mail.google.com";
|
| const uint32 kServerPublicKeyVersion = 1;
|
|
|
| -SSLInfo GetTestSSLInfo() {
|
| - SSLInfo info;
|
| - info.cert =
|
| - net::ImportCertFromFile(net::GetTestCertsDirectory(), kTestCertFilename);
|
| - info.is_issued_by_known_root = true;
|
| - info.pinning_failure_log = kDummyFailureLog;
|
| - return info;
|
| -}
|
| -
|
| -std::string GetPEMEncodedChain() {
|
| - base::FilePath cert_path =
|
| - net::GetTestCertsDirectory().AppendASCII(kTestCertFilename);
|
| - std::string cert_data;
|
| - EXPECT_TRUE(base::ReadFileToString(cert_path, &cert_data));
|
| - return cert_data;
|
| -}
|
| -
|
| void EnableUrlRequestMocks(bool enable) {
|
| net::URLRequestFilter::GetInstance()->ClearHandlers();
|
| if (!enable)
|
| @@ -80,12 +55,10 @@ void EnableUrlRequestMocks(bool enable) {
|
| net::URLRequestMockDataJob::AddUrlHandler();
|
| }
|
|
|
| -// Check that data uploaded in the request matches the test data (an SSL
|
| -// report for one of the given hostnames, with the info returned by
|
| -// |GetTestSSLInfo()|). The hostname sent in the report will be erased
|
| -// from |expect_hostnames|.
|
| +// Check that data uploaded in the request matches the test report
|
| +// data. The sent reports will be erased from |expect_reports|.
|
| void CheckUploadData(URLRequest* request,
|
| - std::set<std::string>* expect_hostnames,
|
| + std::set<std::string>* expect_reports,
|
| bool encrypted,
|
| const uint8* server_private_key) {
|
| const net::UploadDataStream* upload = request->get_upload();
|
| @@ -98,7 +71,7 @@ void CheckUploadData(URLRequest* request,
|
| ASSERT_TRUE(reader);
|
| std::string upload_data(reader->bytes(), reader->length());
|
|
|
| - chrome_browser_net::CertLoggerRequest uploaded_request;
|
| + std::string uploaded_report;
|
| #if defined(USE_OPENSSL)
|
| if (encrypted) {
|
| chrome_browser_net::EncryptedCertLoggerRequest encrypted_request;
|
| @@ -108,30 +81,23 @@ void CheckUploadData(URLRequest* request,
|
| EXPECT_EQ(chrome_browser_net::EncryptedCertLoggerRequest::
|
| AEAD_ECDH_AES_128_CTR_HMAC_SHA256,
|
| encrypted_request.algorithm());
|
| - ASSERT_TRUE(
|
| - chrome_browser_net::CertificateErrorReporter::
|
| - DecryptCertificateErrorReport(server_private_key, encrypted_request,
|
| - &uploaded_request));
|
| + ASSERT_TRUE(CertificateErrorReporter::DecryptCertificateErrorReport(
|
| + server_private_key, encrypted_request, &uploaded_report));
|
| } else {
|
| - ASSERT_TRUE(uploaded_request.ParseFromString(upload_data));
|
| + uploaded_report = upload_data;
|
| }
|
| #else
|
| - ASSERT_TRUE(uploaded_request.ParseFromString(upload_data));
|
| + uploaded_report = upload_data;
|
| #endif
|
|
|
| - EXPECT_EQ(1u, expect_hostnames->count(uploaded_request.hostname()));
|
| - expect_hostnames->erase(uploaded_request.hostname());
|
| -
|
| - EXPECT_EQ(GetPEMEncodedChain(), uploaded_request.cert_chain());
|
| - EXPECT_EQ(1, uploaded_request.pin().size());
|
| - EXPECT_EQ(kDummyFailureLog, uploaded_request.pin().Get(0));
|
| + EXPECT_EQ(1u, expect_reports->count(uploaded_report));
|
| + expect_reports->erase(uploaded_report);
|
| }
|
|
|
| // A network delegate that lets tests check that a certificate error
|
| // report was sent. It counts the number of requests and lets tests
|
| // register a callback to run when the request is destroyed. It also
|
| -// checks that the uploaded data is as expected (a report for
|
| -// |kHostname| and |GetTestSSLInfo()|).
|
| +// checks that the uploaded data is as expected.
|
| class TestCertificateErrorReporterNetworkDelegate : public NetworkDelegateImpl {
|
| public:
|
| TestCertificateErrorReporterNetworkDelegate()
|
| @@ -146,8 +112,8 @@ class TestCertificateErrorReporterNetworkDelegate : public NetworkDelegateImpl {
|
|
|
| ~TestCertificateErrorReporterNetworkDelegate() override {}
|
|
|
| - void ExpectHostname(const std::string& hostname) {
|
| - expect_hostnames_.insert(hostname);
|
| + void ExpectReport(const std::string& report) {
|
| + expect_reports_.insert(report);
|
| }
|
|
|
| void set_all_url_requests_destroyed_callback(
|
| @@ -191,16 +157,14 @@ class TestCertificateErrorReporterNetworkDelegate : public NetworkDelegateImpl {
|
| EXPECT_TRUE(request->load_flags() & net::LOAD_DO_NOT_SAVE_COOKIES);
|
| }
|
|
|
| - std::string uploaded_request_hostname;
|
| - CheckUploadData(request, &expect_hostnames_, expect_request_encrypted_,
|
| + CheckUploadData(request, &expect_reports_, expect_request_encrypted_,
|
| server_private_key_);
|
| - expect_hostnames_.erase(uploaded_request_hostname);
|
| return net::OK;
|
| }
|
|
|
| void OnURLRequestDestroyed(URLRequest* request) override {
|
| url_request_destroyed_callback_.Run();
|
| - if (expect_hostnames_.empty())
|
| + if (expect_reports_.empty())
|
| all_url_requests_destroyed_callback_.Run();
|
| }
|
|
|
| @@ -211,7 +175,7 @@ class TestCertificateErrorReporterNetworkDelegate : public NetworkDelegateImpl {
|
| base::Closure all_url_requests_destroyed_callback_;
|
| int num_requests_;
|
| GURL expect_url_;
|
| - std::set<std::string> expect_hostnames_;
|
| + std::set<std::string> expect_reports_;
|
| bool expect_cookies_;
|
| bool expect_request_encrypted_;
|
|
|
| @@ -245,7 +209,7 @@ class CertificateErrorReporterTest : public ::testing::Test {
|
|
|
| void SendReport(CertificateErrorReporter* reporter,
|
| TestCertificateErrorReporterNetworkDelegate* network_delegate,
|
| - const std::string& report_hostname,
|
| + const std::string& report,
|
| const GURL& url,
|
| int request_sequence_number,
|
| CertificateErrorReporter::ReportType type) {
|
| @@ -253,11 +217,11 @@ void SendReport(CertificateErrorReporter* reporter,
|
| network_delegate->set_url_request_destroyed_callback(run_loop.QuitClosure());
|
|
|
| network_delegate->set_expect_url(url);
|
| - network_delegate->ExpectHostname(report_hostname);
|
| + network_delegate->ExpectReport(report);
|
|
|
| EXPECT_EQ(request_sequence_number, network_delegate->num_requests());
|
|
|
| - reporter->SendReport(type, report_hostname, GetTestSSLInfo());
|
| + reporter->SendReport(type, report);
|
| run_loop.Run();
|
|
|
| EXPECT_EQ(request_sequence_number + 1, network_delegate->num_requests());
|
| @@ -269,7 +233,7 @@ TEST_F(CertificateErrorReporterTest, PinningViolationSendReportSendsRequest) {
|
| GURL url = net::URLRequestMockDataJob::GetMockHttpsUrl("dummy data", 1);
|
| CertificateErrorReporter reporter(
|
| context(), url, CertificateErrorReporter::DO_NOT_SEND_COOKIES);
|
| - SendReport(&reporter, network_delegate(), kHostname, url, 0,
|
| + SendReport(&reporter, network_delegate(), kDummyReport, url, 0,
|
| CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION);
|
| }
|
|
|
| @@ -279,7 +243,7 @@ TEST_F(CertificateErrorReporterTest, ExtendedReportingSendReportSendsRequest) {
|
| CertificateErrorReporter https_reporter(
|
| context(), https_url, CertificateErrorReporter::DO_NOT_SEND_COOKIES);
|
| network_delegate()->set_expect_request_encrypted(false);
|
| - SendReport(&https_reporter, network_delegate(), kHostname, https_url, 0,
|
| + SendReport(&https_reporter, network_delegate(), kDummyReport, https_url, 0,
|
| CertificateErrorReporter::REPORT_TYPE_EXTENDED_REPORTING);
|
|
|
| // Data should be encrypted when sent to an HTTP URL.
|
| @@ -289,7 +253,7 @@ TEST_F(CertificateErrorReporterTest, ExtendedReportingSendReportSendsRequest) {
|
| context(), http_url, CertificateErrorReporter::DO_NOT_SEND_COOKIES,
|
| network_delegate()->server_public_key(), kServerPublicKeyVersion);
|
| network_delegate()->set_expect_request_encrypted(true);
|
| - SendReport(&http_reporter, network_delegate(), kHostname, http_url, 1,
|
| + SendReport(&http_reporter, network_delegate(), kDummyReport, http_url, 1,
|
| CertificateErrorReporter::REPORT_TYPE_EXTENDED_REPORTING);
|
| }
|
| }
|
| @@ -298,9 +262,9 @@ TEST_F(CertificateErrorReporterTest, SendMultipleReportsSequentially) {
|
| GURL url = net::URLRequestMockDataJob::GetMockHttpsUrl("dummy data", 1);
|
| CertificateErrorReporter reporter(
|
| context(), url, CertificateErrorReporter::DO_NOT_SEND_COOKIES);
|
| - SendReport(&reporter, network_delegate(), kHostname, url, 0,
|
| + SendReport(&reporter, network_delegate(), kDummyReport, url, 0,
|
| CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION);
|
| - SendReport(&reporter, network_delegate(), kSecondRequestHostname, url, 1,
|
| + SendReport(&reporter, network_delegate(), kDummyReport, url, 1,
|
| CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION);
|
| }
|
|
|
| @@ -311,8 +275,8 @@ TEST_F(CertificateErrorReporterTest, SendMultipleReportsSimultaneously) {
|
|
|
| GURL url = net::URLRequestMockDataJob::GetMockHttpsUrl("dummy data", 1);
|
| network_delegate()->set_expect_url(url);
|
| - network_delegate()->ExpectHostname(kHostname);
|
| - network_delegate()->ExpectHostname(kSecondRequestHostname);
|
| + network_delegate()->ExpectReport(kDummyReport);
|
| + network_delegate()->ExpectReport(kSecondDummyReport);
|
|
|
| CertificateErrorReporter reporter(
|
| context(), url, CertificateErrorReporter::DO_NOT_SEND_COOKIES);
|
| @@ -320,9 +284,9 @@ TEST_F(CertificateErrorReporterTest, SendMultipleReportsSimultaneously) {
|
| EXPECT_EQ(0, network_delegate()->num_requests());
|
|
|
| reporter.SendReport(CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION,
|
| - kHostname, GetTestSSLInfo());
|
| + kDummyReport);
|
| reporter.SendReport(CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION,
|
| - kSecondRequestHostname, GetTestSSLInfo());
|
| + kSecondDummyReport);
|
|
|
| run_loop.Run();
|
|
|
| @@ -340,14 +304,14 @@ TEST_F(CertificateErrorReporterTest, PendingRequestGetsDeleted) {
|
| base::FilePath(FILE_PATH_LITERAL("empty.html")),
|
| net::URLRequestMockHTTPJob::START, net::ERR_IO_PENDING);
|
| network_delegate()->set_expect_url(url);
|
| - network_delegate()->ExpectHostname(kHostname);
|
| + network_delegate()->ExpectReport(kDummyReport);
|
|
|
| EXPECT_EQ(0, network_delegate()->num_requests());
|
|
|
| scoped_ptr<CertificateErrorReporter> reporter(new CertificateErrorReporter(
|
| context(), url, CertificateErrorReporter::DO_NOT_SEND_COOKIES));
|
| reporter->SendReport(CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION,
|
| - kHostname, GetTestSSLInfo());
|
| + kDummyReport);
|
| reporter.reset();
|
|
|
| run_loop.Run();
|
| @@ -360,7 +324,7 @@ TEST_F(CertificateErrorReporterTest, ErroredRequestGetsDeleted) {
|
| GURL url = net::URLRequestFailedJob::GetMockHttpsUrl(net::ERR_FAILED);
|
| CertificateErrorReporter reporter(
|
| context(), url, CertificateErrorReporter::DO_NOT_SEND_COOKIES);
|
| - SendReport(&reporter, network_delegate(), kHostname, url, 0,
|
| + SendReport(&reporter, network_delegate(), kDummyReport, url, 0,
|
| CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION);
|
| }
|
|
|
| @@ -373,7 +337,7 @@ TEST_F(CertificateErrorReporterTest, SendCookiesPreference) {
|
| CertificateErrorReporter::SEND_COOKIES);
|
|
|
| network_delegate()->set_expect_cookies(true);
|
| - SendReport(&reporter, network_delegate(), kHostname, url, 0,
|
| + SendReport(&reporter, network_delegate(), kDummyReport, url, 0,
|
| CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION);
|
| }
|
|
|
| @@ -383,7 +347,7 @@ TEST_F(CertificateErrorReporterTest, DoNotSendCookiesPreference) {
|
| context(), url, CertificateErrorReporter::DO_NOT_SEND_COOKIES);
|
|
|
| network_delegate()->set_expect_cookies(false);
|
| - SendReport(&reporter, network_delegate(), kHostname, url, 0,
|
| + SendReport(&reporter, network_delegate(), kDummyReport, url, 0,
|
| CertificateErrorReporter::REPORT_TYPE_PINNING_VIOLATION);
|
| }
|
|
|
|
|
Chromium Code Reviews
Issue 1117173004:
Split cert reporter class into report building/serializing and sending (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master