| OLD | NEW |
|---|
| 1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "content/common/ssl_status_serialization.h" | 5 #include "content/common/ssl_status_serialization.h" |
| 6 | 6 |
| 7 #include "net/ssl/ssl_connection_status_flags.h" | 7 #include "net/ssl/ssl_connection_status_flags.h" |
| 8 #include "testing/gtest/include/gtest/gtest.h" | 8 #include "testing/gtest/include/gtest/gtest.h" |
| 9 | 9 |
| 10 namespace content { | 10 namespace content { |
| 11 | 11 |
| 12 // Test that a valid serialized SSLStatus returns true on | 12 // Test that a valid serialized SSLStatus returns true on |
| 13 // deserialization and deserializes correctly. | 13 // deserialization and deserializes correctly. |
| 14 TEST(SSLStatusSerializationTest, DeserializeSerializedStatus) { | 14 TEST(SSLStatusSerializationTest, DeserializeSerializedStatus) { |
| 15 // Serialize dummy data and test that it deserializes properly. | 15 // Serialize dummy data and test that it deserializes properly. |
| 16 int cert_id = 1; | 16 SSLStatus status; |
| 17 net::CertStatus cert_status = net::CERT_STATUS_DATE_INVALID; | 17 status.security_style = SECURITY_STYLE_AUTHENTICATED; |
| 18 int security_bits = 80; | 18 status.cert_id = 1; |
| 19 int connection_status = net::SSL_CONNECTION_VERSION_TLS1_2; | 19 status.cert_status = net::CERT_STATUS_DATE_INVALID; |
| 20 SignedCertificateTimestampIDStatusList sct_list; | 20 status.security_bits = 80; |
| 21 status.connection_status = net::SSL_CONNECTION_VERSION_TLS1_2; |
| 21 SignedCertificateTimestampIDAndStatus sct(1, net::ct::SCT_STATUS_OK); | 22 SignedCertificateTimestampIDAndStatus sct(1, net::ct::SCT_STATUS_OK); |
| 22 sct_list.push_back(sct); | 23 status.signed_certificate_timestamp_ids.push_back(sct); |
| 23 | 24 |
| 24 std::string serialized = SerializeSecurityInfo( | 25 std::string serialized = SerializeSecurityInfo(status); |
| 25 cert_id, cert_status, security_bits, connection_status, sct_list); | |
| 26 | 26 |
| 27 SSLStatus deserialized; | 27 SSLStatus deserialized; |
| 28 ASSERT_TRUE(DeserializeSecurityInfo(serialized, &deserialized)); | 28 ASSERT_TRUE(DeserializeSecurityInfo(serialized, &deserialized)); |
| 29 EXPECT_EQ(cert_id, deserialized.cert_id); | 29 EXPECT_EQ(status.security_style, deserialized.security_style); |
| 30 EXPECT_EQ(cert_status, deserialized.cert_status); | 30 EXPECT_EQ(status.cert_id, deserialized.cert_id); |
| 31 EXPECT_EQ(security_bits, deserialized.security_bits); | 31 EXPECT_EQ(status.cert_status, deserialized.cert_status); |
| 32 EXPECT_EQ(connection_status, deserialized.connection_status); | 32 EXPECT_EQ(status.security_bits, deserialized.security_bits); |
| 33 EXPECT_EQ(sct_list.size(), | 33 EXPECT_EQ(status.connection_status, deserialized.connection_status); |
| 34 EXPECT_EQ(status.signed_certificate_timestamp_ids.size(), |
| 34 deserialized.signed_certificate_timestamp_ids.size()); | 35 deserialized.signed_certificate_timestamp_ids.size()); |
| 35 EXPECT_EQ(sct, deserialized.signed_certificate_timestamp_ids[0]); | 36 EXPECT_EQ(sct, deserialized.signed_certificate_timestamp_ids[0]); |
| 36 // Test that the other fields have default (initialized) values. | 37 // Test that |content_status| has the default (initialized) value. |
| 37 EXPECT_EQ(SECURITY_STYLE_UNKNOWN, deserialized.security_style); | |
| 38 EXPECT_EQ(SSLStatus::NORMAL_CONTENT, deserialized.content_status); | 38 EXPECT_EQ(SSLStatus::NORMAL_CONTENT, deserialized.content_status); |
| 39 } | 39 } |
| 40 | 40 |
| 41 // Test that an invalid serialized SSLStatus returns false on | 41 // Test that an invalid serialized SSLStatus returns false on |
| 42 // deserialization. | 42 // deserialization. |
| 43 TEST(SSLStatusSerializationTest, DeserializeBogusStatus) { | 43 TEST(SSLStatusSerializationTest, DeserializeBogusStatus) { |
| 44 // Test that a failure to deserialize returns false and returns | 44 // Test that a failure to deserialize returns false and returns |
| 45 // initialized, default data. | 45 // initialized, default data. |
| 46 SSLStatus invalid_deserialized; | 46 SSLStatus invalid_deserialized; |
| 47 ASSERT_FALSE( | 47 ASSERT_FALSE( |
| 48 DeserializeSecurityInfo("not an SSLStatus", &invalid_deserialized)); | 48 DeserializeSecurityInfo("not an SSLStatus", &invalid_deserialized)); |
| 49 | 49 |
| 50 SSLStatus default_ssl_status; | 50 SSLStatus default_ssl_status; |
| 51 EXPECT_EQ(default_ssl_status.security_style, | 51 EXPECT_EQ(default_ssl_status.security_style, |
| 52 invalid_deserialized.security_style); | 52 invalid_deserialized.security_style); |
| 53 EXPECT_EQ(default_ssl_status.cert_id, invalid_deserialized.cert_id); | 53 EXPECT_EQ(default_ssl_status.cert_id, invalid_deserialized.cert_id); |
| 54 EXPECT_EQ(default_ssl_status.cert_status, invalid_deserialized.cert_status); | 54 EXPECT_EQ(default_ssl_status.cert_status, invalid_deserialized.cert_status); |
| 55 EXPECT_EQ(default_ssl_status.security_bits, | 55 EXPECT_EQ(default_ssl_status.security_bits, |
| 56 invalid_deserialized.security_bits); | 56 invalid_deserialized.security_bits); |
| 57 EXPECT_EQ(default_ssl_status.connection_status, | 57 EXPECT_EQ(default_ssl_status.connection_status, |
| 58 invalid_deserialized.connection_status); | 58 invalid_deserialized.connection_status); |
| 59 EXPECT_EQ(default_ssl_status.content_status, | 59 EXPECT_EQ(default_ssl_status.content_status, |
| 60 invalid_deserialized.content_status); | 60 invalid_deserialized.content_status); |
| 61 EXPECT_EQ(0u, invalid_deserialized.signed_certificate_timestamp_ids.size()); | 61 EXPECT_EQ(0u, invalid_deserialized.signed_certificate_timestamp_ids.size()); |
| 62 | 62 |
| 63 // Serialize a status with a bad |security_bits| value and test that | 63 // Serialize a status with a bad |security_bits| value and test that |
| 64 // deserializing it fails. | 64 // deserializing it fails. |
| 65 int cert_id = 1; | 65 SSLStatus status; |
| 66 net::CertStatus cert_status = net::CERT_STATUS_DATE_INVALID; | 66 status.security_style = SECURITY_STYLE_AUTHENTICATED; |
| 67 status.cert_id = 1; |
| 68 status.cert_status = net::CERT_STATUS_DATE_INVALID; |
| 67 // |security_bits| must be <-1. (-1 means the strength is unknown, and | 69 // |security_bits| must be <-1. (-1 means the strength is unknown, and |
| 68 // |0 means the connection is not encrypted). | 70 // |0 means the connection is not encrypted). |
| 69 int security_bits = -5; | 71 status.security_bits = -5; |
| 70 int connection_status = net::SSL_CONNECTION_VERSION_TLS1_2; | 72 status.connection_status = net::SSL_CONNECTION_VERSION_TLS1_2; |
| 71 SignedCertificateTimestampIDStatusList sct_list; | |
| 72 SignedCertificateTimestampIDAndStatus sct(1, net::ct::SCT_STATUS_OK); | 73 SignedCertificateTimestampIDAndStatus sct(1, net::ct::SCT_STATUS_OK); |
| 73 sct_list.push_back(sct); | 74 status.signed_certificate_timestamp_ids.push_back(sct); |
| 74 | 75 |
| 75 std::string serialized = SerializeSecurityInfo( | 76 std::string serialized = SerializeSecurityInfo(status); |
| 76 cert_id, cert_status, security_bits, connection_status, sct_list); | |
| 77 ASSERT_FALSE(DeserializeSecurityInfo(serialized, &invalid_deserialized)); | 77 ASSERT_FALSE(DeserializeSecurityInfo(serialized, &invalid_deserialized)); |
| 78 | 78 |
| 79 EXPECT_EQ(default_ssl_status.security_style, | 79 EXPECT_EQ(default_ssl_status.security_style, |
| 80 invalid_deserialized.security_style); |
| 81 EXPECT_EQ(default_ssl_status.cert_id, invalid_deserialized.cert_id); |
| 82 EXPECT_EQ(default_ssl_status.cert_status, invalid_deserialized.cert_status); |
| 83 EXPECT_EQ(default_ssl_status.security_bits, |
| 84 invalid_deserialized.security_bits); |
| 85 EXPECT_EQ(default_ssl_status.connection_status, |
| 86 invalid_deserialized.connection_status); |
| 87 EXPECT_EQ(default_ssl_status.content_status, |
| 88 invalid_deserialized.content_status); |
| 89 EXPECT_EQ(0u, invalid_deserialized.signed_certificate_timestamp_ids.size()); |
| 90 |
| 91 // Now serialize a status with a bad |security_style| value and test |
| 92 // that deserializing fails. |
| 93 status.security_bits = 128; |
| 94 status.security_style = static_cast<SecurityStyle>(100); |
| 95 serialized = SerializeSecurityInfo(status); |
| 96 ASSERT_FALSE(DeserializeSecurityInfo(serialized, &invalid_deserialized)); |
| 97 |
| 98 EXPECT_EQ(default_ssl_status.security_style, |
| 80 invalid_deserialized.security_style); | 99 invalid_deserialized.security_style); |
| 81 EXPECT_EQ(default_ssl_status.cert_id, invalid_deserialized.cert_id); | 100 EXPECT_EQ(default_ssl_status.cert_id, invalid_deserialized.cert_id); |
| 82 EXPECT_EQ(default_ssl_status.cert_status, invalid_deserialized.cert_status); | 101 EXPECT_EQ(default_ssl_status.cert_status, invalid_deserialized.cert_status); |
| 83 EXPECT_EQ(default_ssl_status.security_bits, | 102 EXPECT_EQ(default_ssl_status.security_bits, |
| 84 invalid_deserialized.security_bits); | 103 invalid_deserialized.security_bits); |
| 85 EXPECT_EQ(default_ssl_status.connection_status, | 104 EXPECT_EQ(default_ssl_status.connection_status, |
| 86 invalid_deserialized.connection_status); | 105 invalid_deserialized.connection_status); |
| 87 EXPECT_EQ(default_ssl_status.content_status, | 106 EXPECT_EQ(default_ssl_status.content_status, |
| 88 invalid_deserialized.content_status); | 107 invalid_deserialized.content_status); |
| 89 EXPECT_EQ(0u, invalid_deserialized.signed_certificate_timestamp_ids.size()); | 108 EXPECT_EQ(0u, invalid_deserialized.signed_certificate_timestamp_ids.size()); |
| 90 } | 109 } |
| 91 | 110 |
| 92 } // namespace | 111 } // namespace |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1244863003:
Attach a SecurityStyle to each request in ResourceLoader (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master