| Index: net/cert/cert_verify_proc_ios_unittest.cc
|
| diff --git a/net/cert/cert_verify_proc_ios_unittest.cc b/net/cert/cert_verify_proc_ios_unittest.cc
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..b2191ce64ae7c6be79e7d81854eb46fc003ac8fd
|
| --- /dev/null
|
| +++ b/net/cert/cert_verify_proc_ios_unittest.cc
|
| @@ -0,0 +1,72 @@
|
| +// Copyright 2016 The Chromium Authors. All rights reserved.
|
| +// Use of this source code is governed by a BSD-style license that can be
|
| +// found in the LICENSE file.
|
| +
|
| +#include "net/cert/cert_verify_proc_ios.h"
|
| +
|
| +#include <CoreFoundation/CoreFoundation.h>
|
| +#include <Security/Security.h>
|
| +
|
| +#include "base/mac/scoped_cftyperef.h"
|
| +#include "base/memory/ref_counted.h"
|
| +#include "net/cert/x509_certificate.h"
|
| +#include "net/test/cert_test_util.h"
|
| +#include "net/test/test_data_directory.h"
|
| +#include "testing/gtest/include/gtest/gtest.h"
|
| +
|
| +namespace {
|
| +
|
| +// Creates new SecTrustRef object backed up by cert from |cert_file|.
|
| +base::ScopedCFTypeRef<SecTrustRef> CreateSecTrust(
|
| + const std::string& cert_file) {
|
| + base::ScopedCFTypeRef<SecTrustRef> scoped_result;
|
| +
|
| + scoped_refptr<net::X509Certificate> cert =
|
| + net::ImportCertFromFile(net::GetTestCertsDirectory(), cert_file);
|
| + base::ScopedCFTypeRef<CFMutableArrayRef> certs(
|
| + CFArrayCreateMutable(kCFAllocatorDefault, 1, &kCFTypeArrayCallBacks));
|
| + CFArrayAppendValue(certs, cert->os_cert_handle());
|
| +
|
| + base::ScopedCFTypeRef<SecPolicyRef> policy(
|
| + SecPolicyCreateSSL(TRUE, CFSTR("chromium.org")));
|
| + SecTrustRef result = nullptr;
|
| + if (SecTrustCreateWithCertificates(certs, policy, &result) == errSecSuccess) {
|
| + scoped_result.reset(result);
|
| + }
|
| + return scoped_result;
|
| +}
|
| +
|
| +} // namespace
|
| +
|
| +namespace net {
|
| +
|
| +// Tests |GetCertFailureStatusFromTrust| with null trust object.
|
| +TEST(CertVerifyProcIOSTest, StatusForNullTrust) {
|
| + EXPECT_EQ(CERT_STATUS_INVALID,
|
| + CertVerifyProcIOS::GetCertFailureStatusFromTrust(nullptr));
|
| +}
|
| +
|
| +// Tests |GetCertFailureStatusFromTrust| with trust object that has not been
|
| +// evaluated backed by ok_cert.pem cert.
|
| +TEST(CertVerifyProcIOSTest, StatusForNotEvaluatedTrust) {
|
| + CertStatus status = CertVerifyProcIOS::GetCertFailureStatusFromTrust(
|
| + CreateSecTrust("ok_cert.pem"));
|
| + EXPECT_TRUE(status & CERT_STATUS_COMMON_NAME_INVALID);
|
| + EXPECT_TRUE(status & CERT_STATUS_AUTHORITY_INVALID);
|
| + EXPECT_FALSE(status & CERT_STATUS_DATE_INVALID);
|
| +}
|
| +
|
| +// Tests |GetCertFailureStatusFromTrust| with evaluated trust object backed by
|
| +// expired_cert.pem cert.
|
| +TEST(CertVerifyProcIOSTest, StatusForEvaluatedTrust) {
|
| + base::ScopedCFTypeRef<SecTrustRef> trust(CreateSecTrust("expired_cert.pem"));
|
| + ASSERT_TRUE(trust);
|
| + SecTrustEvaluate(trust, nullptr);
|
| +
|
| + CertStatus status = CertVerifyProcIOS::GetCertFailureStatusFromTrust(trust);
|
| + EXPECT_TRUE(status & CERT_STATUS_COMMON_NAME_INVALID);
|
| + EXPECT_TRUE(status & CERT_STATUS_AUTHORITY_INVALID);
|
| + EXPECT_TRUE(status & CERT_STATUS_DATE_INVALID);
|
| +}
|
| +
|
| +} // namespace net
|
|
|
Chromium Code Reviews
Issue 2225483002:
[ios] Removed CertVerifierBlockAdapter. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master