| Index: net/quic/core/quic_crypto_client_stream_test.cc
|
| diff --git a/net/quic/core/quic_crypto_client_stream_test.cc b/net/quic/core/quic_crypto_client_stream_test.cc
|
| index 1a3d27a71763936442b912b672726da42d7367d4..e877cd5e6f0701c2ec669db186ae18f6b5f0e801 100644
|
| --- a/net/quic/core/quic_crypto_client_stream_test.cc
|
| +++ b/net/quic/core/quic_crypto_client_stream_test.cc
|
| @@ -40,7 +40,7 @@ class QuicCryptoClientStreamTest : public ::testing::Test {
|
| }
|
|
|
| void CreateConnection() {
|
| - connection_ = new PacketSavingConnection(&helper_, &alarm_factory_,
|
| + connection_ = new PacketSavingConnection(&client_helper_, &alarm_factory_,
|
| Perspective::IS_CLIENT);
|
| // Advance the time, because timers do not like uninitialized times.
|
| connection_->AdvanceTime(QuicTime::Delta::FromSeconds(1));
|
| @@ -52,9 +52,9 @@ class QuicCryptoClientStreamTest : public ::testing::Test {
|
| void CompleteCryptoHandshake() {
|
| stream()->CryptoConnect();
|
| QuicConfig config;
|
| - CryptoTestUtils::HandshakeWithFakeServer(&config, &helper_, &alarm_factory_,
|
| - connection_, stream(),
|
| - server_options_);
|
| + CryptoTestUtils::HandshakeWithFakeServer(&config, &server_helper_,
|
| + &alarm_factory_, connection_,
|
| + stream(), server_options_);
|
| }
|
|
|
| void ConstructHandshakeMessage() {
|
| @@ -64,7 +64,8 @@ class QuicCryptoClientStreamTest : public ::testing::Test {
|
|
|
| QuicCryptoClientStream* stream() { return session_->GetCryptoStream(); }
|
|
|
| - MockQuicConnectionHelper helper_;
|
| + MockQuicConnectionHelper server_helper_;
|
| + MockQuicConnectionHelper client_helper_;
|
| MockAlarmFactory alarm_factory_;
|
| PacketSavingConnection* connection_;
|
| std::unique_ptr<TestQuicSpdyClientSession> session_;
|
| @@ -144,6 +145,21 @@ TEST_F(QuicCryptoClientStreamTest, ExpiredServerConfig) {
|
| EXPECT_EQ(ENCRYPTION_NONE, connection_->encryption_level());
|
| }
|
|
|
| +TEST_F(QuicCryptoClientStreamTest, ClockSkew) {
|
| + FLAGS_quic_send_scfg_ttl = true;
|
| + // Test that if the client's clock is skewed with respect to the server,
|
| + // the handshake succeeds. In the past, the client would get the server
|
| + // config, notice that it had already expired and then close the connection.
|
| +
|
| + // Advance time 5 years to ensure that we pass the expiry time in the server
|
| + // config, but the TTL is used instead.
|
| + connection_->AdvanceTime(
|
| + QuicTime::Delta::FromSeconds(60 * 60 * 24 * 365 * 5));
|
| +
|
| + // The handshakes completes!
|
| + CompleteCryptoHandshake();
|
| +}
|
| +
|
| TEST_F(QuicCryptoClientStreamTest, InvalidCachedServerConfig) {
|
| // Seed the config with a cached server config.
|
| CompleteCryptoHandshake();
|
| @@ -198,6 +214,8 @@ TEST_F(QuicCryptoClientStreamTest, ServerConfigUpdate) {
|
| server_config_update.set_tag(kSCUP);
|
| server_config_update.SetValue(kSourceAddressTokenTag, stk);
|
| server_config_update.SetValue(kSCFG, scfg);
|
| + const uint64_t expiry_seconds = 60 * 60 * 24 * 2;
|
| + server_config_update.SetValue(kSTTL, expiry_seconds);
|
|
|
| std::unique_ptr<QuicData> data(
|
| CryptoFramer::ConstructHandshakeMessage(server_config_update));
|
|
|
Chromium Code Reviews
Issue 2305513003:
Allow QUIC servers send a TTL for the server config, as opposed to explicit expiration, to mitigate… (Closed)
