| OLD | NEW |
|---|
| 1 // Copyright 2016 The Chromium Authors. All rights reserved. | 1 // Copyright 2016 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #include "net/cert/internal/path_builder.h" | 5 #include "net/cert/internal/path_builder.h" |
| 6 | 6 |
| 7 #include "net/cert/internal/cert_issuer_source_static.h" | 7 #include "net/cert/internal/cert_issuer_source_static.h" |
| 8 #include "net/cert/internal/signature_policy.h" | 8 #include "net/cert/internal/signature_policy.h" |
| 9 #include "net/cert/internal/trust_store_in_memory.h" | 9 #include "net/cert/internal/trust_store_in_memory.h" |
| 10 #include "net/cert/internal/verify_certificate_chain_typed_unittest.h" | 10 #include "net/cert/internal/verify_certificate_chain_typed_unittest.h" |
| 11 | 11 |
| 12 namespace net { | 12 namespace net { |
| 13 | 13 |
| 14 namespace { | 14 namespace { |
| 15 | 15 |
| 16 class PathBuilderDelegate { | 16 class PathBuilderDelegate { |
| 17 public: | 17 public: |
| 18 static void Verify(const VerifyCertChainTest& test, | 18 static void Verify(const VerifyCertChainTest& test, |
| 19 const std::string& test_file_path) { | 19 const std::string& test_file_path) { |
| 20 SimpleSignaturePolicy signature_policy(1024); | 20 SimpleSignaturePolicy signature_policy(1024); |
| 21 ASSERT_FALSE(test.chain.empty()); | 21 ASSERT_FALSE(test.chain.empty()); |
| 22 | 22 |
| 23 TrustStoreInMemory trust_store; | 23 TrustStoreInMemory trust_store; |
| 24 trust_store.AddTrustAnchor(test.trust_anchor); | 24 |
| 25 switch (test.last_cert_trust.type) { |
| 26 case CertificateTrustType::TRUSTED_ANCHOR: |
| 27 trust_store.AddTrustAnchor(test.chain.back()); |
| 28 break; |
| 29 case CertificateTrustType::TRUSTED_ANCHOR_WITH_CONSTRAINTS: |
| 30 trust_store.AddTrustAnchorWithConstraints(test.chain.back()); |
| 31 break; |
| 32 case CertificateTrustType::UNSPECIFIED: |
| 33 LOG(ERROR) << "Unexpected CertificateTrustType"; |
| 34 break; |
| 35 case CertificateTrustType::DISTRUSTED: |
| 36 trust_store.AddDistrustedCertificateForTest(test.chain.back()); |
| 37 break; |
| 38 } |
| 25 | 39 |
| 26 CertIssuerSourceStatic intermediate_cert_issuer_source; | 40 CertIssuerSourceStatic intermediate_cert_issuer_source; |
| 27 for (size_t i = 1; i < test.chain.size(); ++i) | 41 for (size_t i = 1; i < test.chain.size(); ++i) |
| 28 intermediate_cert_issuer_source.AddCert(test.chain[i]); | 42 intermediate_cert_issuer_source.AddCert(test.chain[i]); |
| 29 | 43 |
| 30 CertPathBuilder::Result result; | 44 CertPathBuilder::Result result; |
| 31 // First cert in the |chain| is the target. | 45 // First cert in the |chain| is the target. |
| 32 CertPathBuilder path_builder(test.chain.front(), &trust_store, | 46 CertPathBuilder path_builder(test.chain.front(), &trust_store, |
| 33 &signature_policy, test.time, test.key_purpose, | 47 &signature_policy, test.time, test.key_purpose, |
| 34 &result); | 48 &result); |
| 35 path_builder.AddCertIssuerSource(&intermediate_cert_issuer_source); | 49 path_builder.AddCertIssuerSource(&intermediate_cert_issuer_source); |
| 36 | 50 |
| 37 path_builder.Run(); | 51 path_builder.Run(); |
| 38 EXPECT_EQ(test.expected_result, result.HasValidPath()); | 52 EXPECT_EQ(test.expected_result, result.HasValidPath()); |
| 39 } | 53 } |
| 40 }; | 54 }; |
| 41 | 55 |
| 42 } // namespace | 56 } // namespace |
| 43 | 57 |
| 44 INSTANTIATE_TYPED_TEST_CASE_P(PathBuilder, | 58 INSTANTIATE_TYPED_TEST_CASE_P(PathBuilder, |
| 45 VerifyCertificateChainSingleRootTest, | 59 VerifyCertificateChainSingleRootTest, |
| 46 PathBuilderDelegate); | 60 PathBuilderDelegate); |
| 47 | 61 |
| 48 } // namespace net | 62 } // namespace net |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 2832703002:
Allow the TrustStore interface to return matching intermediates, and identify distrusted certs. (Closed)
