Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(7926)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/ssl/chrome_security_state_model_client_unittest.cc

Issue 2286553002: DevTools security panel: explain subresources with cert errors separately (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: try to make comment more clear Created 4 years, 4 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/ssl/chrome_security_state_model_client_browser_tests.cc ('k') | chrome/chrome_tests_unit.gypi » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/ssl/chrome_security_state_model_client_unittest.cc
diff --git a/chrome/browser/ssl/chrome_security_state_model_client_unittest.cc b/chrome/browser/ssl/chrome_security_state_model_client_unittest.cc
new file mode 100644
index 0000000000000000000000000000000000000000..df7bd4b6f850440ed30c3bab89b9a63ab7c426c4
--- /dev/null
+++ b/chrome/browser/ssl/chrome_security_state_model_client_unittest.cc
@@ -0,0 +1,133 @@
+// Copyright 2016 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "chrome/browser/ssl/chrome_security_state_model_client.h"
+
+#include "components/security_state/security_state_model.h"
+#include "content/public/browser/security_style_explanations.h"
+#include "net/cert/cert_status_flags.h"
+#include "testing/gtest/include/gtest/gtest.h"
+
+namespace {
+
+// Tests that SecurityInfo flags for subresources with certificate
+// errors are reflected in the SecurityStyleExplanations produced by
+// ChromeSecurityStateModelClient.
+TEST(ChromeSecurityStateModelClientTest,
+ GetSecurityStyleForContentWithCertErrors) {
+ content::SecurityStyleExplanations explanations;
+ security_state::SecurityStateModel::SecurityInfo security_info;
+ security_info.cert_status = 0;
+ security_info.scheme_is_cryptographic = true;
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_DISPLAYED_AND_RAN;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_TRUE(explanations.ran_content_with_cert_errors);
+ EXPECT_TRUE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_RAN;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_TRUE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_DISPLAYED;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_TRUE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_NONE;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+}
+
+// Tests that SecurityStyleExplanations for subresources with cert
+// errors are *not* set when the main resource has major certificate
+// errors. If the main resource has certificate errors, it would be
+// duplicative/confusing to also report subresources with cert errors.
+TEST(ChromeSecurityStateModelClientTest,
+ SubresourcesAndMainResourceWithMajorCertErrors) {
+ content::SecurityStyleExplanations explanations;
+ security_state::SecurityStateModel::SecurityInfo security_info;
+ security_info.cert_status = net::CERT_STATUS_DATE_INVALID;
+ security_info.scheme_is_cryptographic = true;
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_DISPLAYED_AND_RAN;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_RAN;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_DISPLAYED;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_NONE;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+}
+
+// Tests that SecurityStyleExplanations for subresources with cert
+// errors are set when the main resource has only minor certificate
+// errors. Minor errors on the main resource should not hide major
+// errors on subresources.
+TEST(ChromeSecurityStateModelClientTest,
+ SubresourcesAndMainResourceWithMinorCertErrors) {
+ content::SecurityStyleExplanations explanations;
+ security_state::SecurityStateModel::SecurityInfo security_info;
+ security_info.cert_status = net::CERT_STATUS_UNABLE_TO_CHECK_REVOCATION;
+ security_info.scheme_is_cryptographic = true;
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_DISPLAYED_AND_RAN;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_TRUE(explanations.ran_content_with_cert_errors);
+ EXPECT_TRUE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_RAN;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_TRUE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_DISPLAYED;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_TRUE(explanations.displayed_content_with_cert_errors);
+
+ security_info.content_with_cert_errors_status =
+ security_state::SecurityStateModel::CONTENT_STATUS_NONE;
+ ChromeSecurityStateModelClient::GetSecurityStyle(security_info,
+ &explanations);
+ EXPECT_FALSE(explanations.ran_content_with_cert_errors);
+ EXPECT_FALSE(explanations.displayed_content_with_cert_errors);
+}
+
+} // namespace
« no previous file with comments | « chrome/browser/ssl/chrome_security_state_model_client_browser_tests.cc ('k') | chrome/chrome_tests_unit.gypi » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698