| OLD | NEW |
|---|
| 1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "ios/web/net/cert_verifier_block_adapter.h" | 5 #include "ios/web/net/cert_verifier_block_adapter.h" |
| 6 | 6 |
| 7 #include "base/test/ios/wait_util.h" | 7 #include "base/test/ios/wait_util.h" |
| 8 #include "net/base/net_errors.h" | 8 #include "net/base/net_errors.h" |
| 9 #include "net/cert/cert_verify_result.h" | 9 #include "net/cert/cert_verify_result.h" |
| 10 #include "net/cert/crl_set.h" | 10 #include "net/cert/crl_set.h" |
| (...skipping 39 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 50 | 50 |
| 51 } // namespace | 51 } // namespace |
| 52 | 52 |
| 53 // Test fixture to test CertVerifierBlockAdapter class. | 53 // Test fixture to test CertVerifierBlockAdapter class. |
| 54 class CertVerifierBlockAdapterTest : public PlatformTest { | 54 class CertVerifierBlockAdapterTest : public PlatformTest { |
| 55 protected: | 55 protected: |
| 56 void SetUp() override { | 56 void SetUp() override { |
| 57 PlatformTest::SetUp(); | 57 PlatformTest::SetUp(); |
| 58 | 58 |
| 59 cert_ = new X509Certificate("test", "test", base::Time(), base::Time()); | 59 cert_ = new X509Certificate("test", "test", base::Time(), base::Time()); |
| 60 scoped_ptr<CertVerifierMock> cert_verifier_mock(new CertVerifierMock()); | 60 test_adapter_.reset(new CertVerifierBlockAdapter(&cert_verifier_mock_)); |
| 61 cert_verifier_mock_ = cert_verifier_mock.get(); | |
| 62 test_adapter_.reset( | |
| 63 new CertVerifierBlockAdapter(cert_verifier_mock.Pass())); | |
| 64 } | 61 } |
| 65 | 62 |
| 66 // Performs synchronous verification. | 63 // Performs synchronous verification. |
| 67 void Verify(CertVerifierBlockAdapter::Params params, | 64 void Verify(CertVerifierBlockAdapter::Params params, |
| 68 scoped_ptr<net::CertVerifyResult>* result, | 65 net::CertVerifyResult* result, |
| 69 int* status) { | 66 int* status) { |
| 70 __block bool verification_completed = false; | 67 __block bool verification_completed = false; |
| 71 test_adapter_->Verify(params, | 68 test_adapter_->Verify( |
| 72 ^(scoped_ptr<net::CertVerifyResult> callback_result, | 69 params, ^(net::CertVerifyResult callback_result, int callback_status) { |
| 73 int callback_status) { | 70 *result = callback_result; |
| 74 *result = callback_result.Pass(); | 71 *status = callback_status; |
| 75 *status = callback_status; | 72 verification_completed = true; |
| 76 verification_completed = true; | 73 }); |
| 77 }); | |
| 78 base::test::ios::WaitUntilCondition(^{ | 74 base::test::ios::WaitUntilCondition(^{ |
| 79 return verification_completed; | 75 return verification_completed; |
| 80 }); | 76 }); |
| 81 } | 77 } |
| 82 | 78 |
| 83 // Fake certificate created for testing. | 79 // Fake certificate created for testing. |
| 84 scoped_refptr<X509Certificate> cert_; | 80 scoped_refptr<X509Certificate> cert_; |
| 85 // Testable |CertVerifierBlockAdapter| object. | 81 // Testable |CertVerifierBlockAdapter| object. |
| 86 scoped_ptr<CertVerifierBlockAdapter> test_adapter_; | 82 scoped_ptr<CertVerifierBlockAdapter> test_adapter_; |
| 87 // CertVerifier mock owned by |test_adapter_|. | 83 // CertVerifier mock. |
| 88 CertVerifierMock* cert_verifier_mock_; | 84 CertVerifierMock cert_verifier_mock_; |
| 89 }; | 85 }; |
| 90 | 86 |
| 91 // Tests |Verify| with default params and synchronous verification. | 87 // Tests |Verify| with default params and synchronous verification. |
| 92 TEST_F(CertVerifierBlockAdapterTest, DefaultParamsAndSync) { | 88 TEST_F(CertVerifierBlockAdapterTest, DefaultParamsAndSync) { |
| 93 // Set up expectation. | 89 // Set up expectation. |
| 94 net::CertVerifyResult expectedResult; | 90 net::CertVerifyResult expectedResult; |
| 95 expectedResult.cert_status = net::CERT_STATUS_AUTHORITY_INVALID; | 91 expectedResult.cert_status = net::CERT_STATUS_AUTHORITY_INVALID; |
| 96 const int kExpectedStatus = 0; | 92 const int kExpectedStatus = 0; |
| 97 EXPECT_CALL(*cert_verifier_mock_, | 93 EXPECT_CALL(cert_verifier_mock_, |
| 98 Verify(cert_.get(), kHostName, "", 0, nullptr, _, _, _, _)) | 94 Verify(cert_.get(), kHostName, "", 0, nullptr, _, _, _, _)) |
| 99 .Times(1) | 95 .Times(1) |
| 100 .WillOnce(testing::DoAll(SetVerifyResult(expectedResult), | 96 .WillOnce(testing::DoAll(SetVerifyResult(expectedResult), |
| 101 testing::Return(kExpectedStatus))); | 97 testing::Return(kExpectedStatus))); |
| 102 | 98 |
| 103 // Call |Verify|. | 99 // Call |Verify|. |
| 104 scoped_ptr<CertVerifyResult> actualResult; | 100 CertVerifyResult actualResult; |
| 105 int actualStatus = -1; | 101 int actualStatus = -1; |
| 106 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); | 102 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); |
| 107 Verify(params, &actualResult, &actualStatus); | 103 Verify(params, &actualResult, &actualStatus); |
| 108 | 104 |
| 109 // Ensure that Verification results are correct. | 105 // Ensure that Verification results are correct. |
| 110 EXPECT_EQ(kExpectedStatus, actualStatus); | 106 EXPECT_EQ(kExpectedStatus, actualStatus); |
| 111 EXPECT_EQ(expectedResult.cert_status, actualResult->cert_status); | 107 EXPECT_EQ(expectedResult.cert_status, actualResult.cert_status); |
| 112 } | 108 } |
| 113 | 109 |
| 114 // Tests |Verify| with default params and asynchronous verification. | 110 // Tests |Verify| with default params and asynchronous verification. |
| 115 TEST_F(CertVerifierBlockAdapterTest, DefaultParamsAndAsync) { | 111 TEST_F(CertVerifierBlockAdapterTest, DefaultParamsAndAsync) { |
| 116 // Set up expectation. | 112 // Set up expectation. |
| 117 net::CertVerifyResult expectedResult; | 113 net::CertVerifyResult expectedResult; |
| 118 expectedResult.is_issued_by_known_root = true; | 114 expectedResult.is_issued_by_known_root = true; |
| 119 const int kExpectedStatus = 0; | 115 const int kExpectedStatus = 0; |
| 120 EXPECT_CALL(*cert_verifier_mock_, | 116 EXPECT_CALL(cert_verifier_mock_, |
| 121 Verify(cert_.get(), kHostName, "", 0, nullptr, _, _, _, _)) | 117 Verify(cert_.get(), kHostName, "", 0, nullptr, _, _, _, _)) |
| 122 .Times(1) | 118 .Times(1) |
| 123 .WillOnce(testing::DoAll(SetVerifyResult(expectedResult), RunCallback(), | 119 .WillOnce(testing::DoAll(SetVerifyResult(expectedResult), RunCallback(), |
| 124 testing::Return(ERR_IO_PENDING))); | 120 testing::Return(ERR_IO_PENDING))); |
| 125 | 121 |
| 126 // Call |Verify|. | 122 // Call |Verify|. |
| 127 scoped_ptr<CertVerifyResult> actualResult; | 123 CertVerifyResult actualResult; |
| 128 int actualStatus = -1; | 124 int actualStatus = -1; |
| 129 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); | 125 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); |
| 130 Verify(params, &actualResult, &actualStatus); | 126 Verify(params, &actualResult, &actualStatus); |
| 131 | 127 |
| 132 // Ensure that Verification results are correct. | 128 // Ensure that Verification results are correct. |
| 133 EXPECT_EQ(kExpectedStatus, actualStatus); | 129 EXPECT_EQ(kExpectedStatus, actualStatus); |
| 134 EXPECT_EQ(expectedResult.is_issued_by_known_root, | 130 EXPECT_EQ(expectedResult.is_issued_by_known_root, |
| 135 actualResult->is_issued_by_known_root); | 131 actualResult.is_issued_by_known_root); |
| 136 } | 132 } |
| 137 | 133 |
| 138 // Tests |Verify| with invalid arguments. | 134 // Tests |Verify| with invalid cert argument. |
| 139 TEST_F(CertVerifierBlockAdapterTest, InvalidParamsAndError) { | 135 TEST_F(CertVerifierBlockAdapterTest, InvalidCert) { |
| 140 // Set up expectation. | |
| 141 const int kExpectedStatus = ERR_INVALID_ARGUMENT; | |
| 142 EXPECT_CALL(*cert_verifier_mock_, | |
| 143 Verify(nullptr, "", "", 0, nullptr, _, _, _, _)) | |
| 144 .Times(1) | |
| 145 .WillOnce(testing::Return(kExpectedStatus)); | |
| 146 | |
| 147 // Call |Verify|. | 136 // Call |Verify|. |
| 148 scoped_ptr<CertVerifyResult> actualResult; | 137 CertVerifyResult actualResult; |
| 149 int actualStatus = -1; | 138 int actualStatus = -1; |
| 150 CertVerifierBlockAdapter::Params params(nullptr, ""); | 139 CertVerifierBlockAdapter::Params params(nullptr, kHostName); |
| 151 Verify(params, &actualResult, &actualStatus); | 140 Verify(params, &actualResult, &actualStatus); |
| 152 | 141 |
| 153 // Ensure that Verification results are correct. | 142 // Ensure that Verification results are correct. |
| 154 EXPECT_EQ(kExpectedStatus, actualStatus); | 143 EXPECT_EQ(ERR_INVALID_ARGUMENT, actualStatus); |
| 155 EXPECT_FALSE(actualResult); | 144 } |
| 145 |
| 146 // Tests |Verify| with invalid hostname argument. |
| 147 TEST_F(CertVerifierBlockAdapterTest, InvalidHostname) { |
| 148 // Call |Verify|. |
| 149 CertVerifyResult actualResult; |
| 150 int actualStatus = -1; |
| 151 CertVerifierBlockAdapter::Params params(cert_.get(), ""); |
| 152 Verify(params, &actualResult, &actualStatus); |
| 153 |
| 154 // Ensure that Verification results are correct. |
| 155 EXPECT_EQ(ERR_INVALID_ARGUMENT, actualStatus); |
| 156 } | 156 } |
| 157 | 157 |
| 158 // Tests |Verify| with error. | 158 // Tests |Verify| with error. |
| 159 TEST_F(CertVerifierBlockAdapterTest, DefaultParamsAndError) { | 159 TEST_F(CertVerifierBlockAdapterTest, DefaultParamsAndError) { |
| 160 // Set up expectation. | 160 // Set up expectation. |
| 161 const int kExpectedStatus = ERR_INSUFFICIENT_RESOURCES; | 161 const int kExpectedStatus = ERR_INSUFFICIENT_RESOURCES; |
| 162 EXPECT_CALL(*cert_verifier_mock_, | 162 EXPECT_CALL(cert_verifier_mock_, |
| 163 Verify(cert_.get(), kHostName, "", 0, nullptr, _, _, _, _)) | 163 Verify(cert_.get(), kHostName, "", 0, nullptr, _, _, _, _)) |
| 164 .Times(1) | 164 .Times(1) |
| 165 .WillOnce(testing::Return(kExpectedStatus)); | 165 .WillOnce(testing::Return(kExpectedStatus)); |
| 166 | 166 |
| 167 // Call |Verify|. | 167 // Call |Verify|. |
| 168 scoped_ptr<CertVerifyResult> actualResult; | 168 CertVerifyResult actualResult; |
| 169 int actualStatus = -1; | 169 int actualStatus = -1; |
| 170 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); | 170 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); |
| 171 Verify(params, &actualResult, &actualStatus); | 171 Verify(params, &actualResult, &actualStatus); |
| 172 | 172 |
| 173 // Ensure that Verification results are correct. | 173 // Ensure that Verification results are correct. |
| 174 EXPECT_EQ(kExpectedStatus, actualStatus); | 174 EXPECT_EQ(kExpectedStatus, actualStatus); |
| 175 EXPECT_FALSE(actualResult); | |
| 176 } | 175 } |
| 177 | 176 |
| 178 // Tests |Verify| with all params and synchronous verification. | 177 // Tests |Verify| with all params and synchronous verification. |
| 179 TEST_F(CertVerifierBlockAdapterTest, AllParamsAndSync) { | 178 TEST_F(CertVerifierBlockAdapterTest, AllParamsAndSync) { |
| 180 // Set up expectation. | 179 // Set up expectation. |
| 181 net::CertVerifyResult expectedResult; | 180 net::CertVerifyResult expectedResult; |
| 182 expectedResult.verified_cert = cert_; | 181 expectedResult.verified_cert = cert_; |
| 183 const int kExpectedStatus = 0; | 182 const int kExpectedStatus = 0; |
| 184 scoped_refptr<CRLSet> crl_set(CRLSet::EmptyCRLSetForTesting()); | 183 scoped_refptr<CRLSet> crl_set(CRLSet::EmptyCRLSetForTesting()); |
| 185 EXPECT_CALL(*cert_verifier_mock_, | 184 EXPECT_CALL(cert_verifier_mock_, |
| 186 Verify(cert_.get(), kHostName, kOcspResponse, | 185 Verify(cert_.get(), kHostName, kOcspResponse, |
| 187 CertVerifier::VERIFY_EV_CERT, crl_set.get(), _, _, _, _)) | 186 CertVerifier::VERIFY_EV_CERT, crl_set.get(), _, _, _, _)) |
| 188 .Times(1) | 187 .Times(1) |
| 189 .WillOnce(testing::DoAll(SetVerifyResult(expectedResult), | 188 .WillOnce(testing::DoAll(SetVerifyResult(expectedResult), |
| 190 testing::Return(kExpectedStatus))); | 189 testing::Return(kExpectedStatus))); |
| 191 | 190 |
| 192 // Call |Verify|. | 191 // Call |Verify|. |
| 193 scoped_ptr<CertVerifyResult> actualResult; | 192 CertVerifyResult actualResult; |
| 194 int actualStatus = -1; | 193 int actualStatus = -1; |
| 195 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); | 194 CertVerifierBlockAdapter::Params params(cert_.get(), kHostName); |
| 196 params.ocsp_response = kOcspResponse; | 195 params.ocsp_response = kOcspResponse; |
| 197 params.flags = CertVerifier::VERIFY_EV_CERT; | 196 params.flags = CertVerifier::VERIFY_EV_CERT; |
| 198 params.crl_set = crl_set; | 197 params.crl_set = crl_set; |
| 199 Verify(params, &actualResult, &actualStatus); | 198 Verify(params, &actualResult, &actualStatus); |
| 200 | 199 |
| 201 // Ensure that Verification results are correct. | 200 // Ensure that Verification results are correct. |
| 202 EXPECT_EQ(kExpectedStatus, actualStatus); | 201 EXPECT_EQ(kExpectedStatus, actualStatus); |
| 203 EXPECT_EQ(expectedResult.verified_cert, actualResult->verified_cert); | 202 EXPECT_EQ(expectedResult.verified_cert, actualResult.verified_cert); |
| 204 } | 203 } |
| 205 | 204 |
| 206 } // namespace | 205 } // namespace |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1230033005:
WKWebView: Added cert verification API to web controller. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master