| Index: net/cert/ct_serialization_unittest.cc
|
| diff --git a/net/cert/ct_serialization_unittest.cc b/net/cert/ct_serialization_unittest.cc
|
| index 38f5193ad96a48329cfdf08bfe9f8c1f6ce9f2d5..f4360fc476655d5ad2c6ff2de8d0e0d6b311b2ac 100644
|
| --- a/net/cert/ct_serialization_unittest.cc
|
| +++ b/net/cert/ct_serialization_unittest.cc
|
| @@ -10,14 +10,18 @@
|
| #include "base/files/file_util.h"
|
| #include "net/base/test_completion_callback.h"
|
| #include "net/base/test_data_directory.h"
|
| +#include "net/cert/merkle_tree_leaf.h"
|
| #include "net/cert/signed_certificate_timestamp.h"
|
| #include "net/cert/signed_tree_head.h"
|
| #include "net/cert/x509_certificate.h"
|
| #include "net/log/net_log.h"
|
| #include "net/test/cert_test_util.h"
|
| #include "net/test/ct_test_util.h"
|
| +#include "testing/gmock/include/gmock/gmock.h"
|
| #include "testing/gtest/include/gtest/gtest.h"
|
|
|
| +using ::testing::ElementsAreArray;
|
| +
|
| namespace net {
|
|
|
| class CtSerializationTest : public ::testing::Test {
|
| @@ -79,7 +83,7 @@ TEST_F(CtSerializationTest, EncodesDigitallySigned) {
|
|
|
| TEST_F(CtSerializationTest, EncodesLogEntryForX509Cert) {
|
| ct::LogEntry entry;
|
| - GetX509CertLogEntry(&entry);
|
| + ct::GetX509CertLogEntry(&entry);
|
|
|
| std::string encoded;
|
| ASSERT_TRUE(ct::EncodeLogEntry(entry, &encoded));
|
| @@ -92,6 +96,24 @@ TEST_F(CtSerializationTest, EncodesLogEntryForX509Cert) {
|
| EXPECT_EQ(expected_prefix, encoded.substr(0, 5));
|
| }
|
|
|
| +TEST_F(CtSerializationTest, EncodesLogEntryForPrecert) {
|
| + ct::LogEntry entry;
|
| + ct::GetPrecertLogEntry(&entry);
|
| +
|
| + std::string encoded;
|
| + ASSERT_TRUE(ct::EncodeLogEntry(entry, &encoded));
|
| + EXPECT_EQ(604u, encoded.size());
|
| + // First two bytes are the log entry type.
|
| + EXPECT_EQ(std::string("\x00\x01", 2), encoded.substr(0, 2));
|
| + // Next comes the 32-byte issuer key hash
|
| + EXPECT_THAT(encoded.substr(2, 32),
|
| + ElementsAreArray(entry.issuer_key_hash.data));
|
| + // Then the length of the TBS cert (604 bytes = 0x237)
|
| + EXPECT_EQ(std::string("\x00\x02\x37", 3), encoded.substr(34, 3));
|
| + // Then the TBS cert itself
|
| + EXPECT_EQ(entry.tbs_certificate, encoded.substr(37));
|
| +}
|
| +
|
| TEST_F(CtSerializationTest, EncodesV1SCTSignedData) {
|
| base::Time timestamp = base::Time::UnixEpoch() +
|
| base::TimeDelta::FromMilliseconds(1348589665525);
|
| @@ -164,6 +186,61 @@ TEST_F(CtSerializationTest, FailsDecodingInvalidSignedCertificateTimestamp) {
|
| ct::DecodeSignedCertificateTimestamp(&invalid_length_sct, &sct));
|
| }
|
|
|
| +TEST_F(CtSerializationTest, EncodesMerkleTreeLeafForX509Cert) {
|
| + ct::MerkleTreeLeaf tree_leaf;
|
| + ct::GetX509CertTreeLeaf(&tree_leaf);
|
| +
|
| + std::string encoded;
|
| + ASSERT_TRUE(ct::EncodeTreeLeaf(tree_leaf, &encoded));
|
| + EXPECT_EQ(741u, encoded.size()) << "Merkle tree leaf encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00", 1), encoded.substr(0, 1)) <<
|
| + "Version encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00", 1), encoded.substr(1, 1)) <<
|
| + "Merkle tree leaf type encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x00\x01\x45\x3c\x5f\xb8\x35", 8),
|
| + encoded.substr(2, 8)) <<
|
| + "Timestamp encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x00", 2), encoded.substr(10, 2)) <<
|
| + "Log entry type encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x02\xce", 3), encoded.substr(12, 3)) <<
|
| + "Certificate length encoded incorrectly";
|
| + EXPECT_EQ(tree_leaf.log_entry.leaf_certificate, encoded.substr(15, 718)) <<
|
| + "Certificate encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x06", 2), encoded.substr(733, 2)) <<
|
| + "CT extensions length encoded incorrectly";
|
| + EXPECT_EQ(tree_leaf.extensions, encoded.substr(735, 6)) <<
|
| + "CT extensions encoded incorrectly";
|
| +}
|
| +
|
| +TEST_F(CtSerializationTest, EncodesMerkleTreeLeafForPrecert) {
|
| + ct::MerkleTreeLeaf tree_leaf;
|
| + ct::GetPrecertTreeLeaf(&tree_leaf);
|
| +
|
| + std::string encoded;
|
| + ASSERT_TRUE(ct::EncodeTreeLeaf(tree_leaf, &encoded));
|
| + EXPECT_EQ(622u, encoded.size()) << "Merkle tree leaf encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00", 1), encoded.substr(0, 1)) <<
|
| + "Version encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00", 1), encoded.substr(1, 1)) <<
|
| + "Merkle tree leaf type encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x00\x01\x45\x3c\x5f\xb8\x35", 8),
|
| + encoded.substr(2, 8)) <<
|
| + "Timestamp encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x01", 2), encoded.substr(10, 2)) <<
|
| + "Log entry type encoded incorrectly";
|
| + EXPECT_THAT(encoded.substr(12, 32),
|
| + ElementsAreArray(tree_leaf.log_entry.issuer_key_hash.data)) <<
|
| + "Issuer key hash encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x02\x37", 3), encoded.substr(44, 3)) <<
|
| + "TBS certificate length encoded incorrectly";
|
| + EXPECT_EQ(tree_leaf.log_entry.tbs_certificate, encoded.substr(47, 567)) <<
|
| + "TBS certificate encoded incorrectly";
|
| + EXPECT_EQ(std::string("\x00\x06", 2), encoded.substr(614, 2)) <<
|
| + "CT extensions length encoded incorrectly";
|
| + EXPECT_EQ(tree_leaf.extensions, encoded.substr(616, 6)) <<
|
| + "CT extensions encoded incorrectly";
|
| +}
|
| +
|
| TEST_F(CtSerializationTest, EncodesValidSignedTreeHead) {
|
| ct::SignedTreeHead signed_tree_head;
|
| ASSERT_TRUE(GetSampleSignedTreeHead(&signed_tree_head));
|
|
|
Chromium Code Reviews
Issue 1943313003:
Adds a function for encoding a Merkle tree leaf in TLS wire format. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master