chrome/browser/safe_browsing/download_protection_service_unittest.cc - Issue 2934373002: Record Code Signature of Downloaded DMG files

Unified Diff: chrome/browser/safe_browsing/download_protection_service_unittest.cc

Issue 2934373002: Record Code Signature of Downloaded DMG files (Closed)

Patch Set: rebase for trybots Created 3 years, 6 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « chrome/browser/safe_browsing/download_protection_service.cc ('k') | chrome/browser/safe_browsing/sandboxed_dmg_analyzer_mac_unittest.cc » ('j') | chrome/test/data/safe_browsing/mach_o/Makefile » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: chrome/browser/safe_browsing/download_protection_service_unittest.cc

diff --git a/chrome/browser/safe_browsing/download_protection_service_unittest.cc b/chrome/browser/safe_browsing/download_protection_service_unittest.cc

index 021fac4fd5aea65214fefa99a8958a37b2bde11f..d3c5408ad3505daf0f40058bd797a1ab551b3912 100644

--- a/chrome/browser/safe_browsing/download_protection_service_unittest.cc

+++ b/chrome/browser/safe_browsing/download_protection_service_unittest.cc

@@ -1447,6 +1447,88 @@ TEST_F(DownloadProtectionServiceTest,

CheckClientDownloadReportCorruptArchive(DMG);

}

+// Tests that signatures get recorded and uploaded for signed DMGs.

+TEST_F(DownloadProtectionServiceTest,

+ CheckClientDownloadReportDmgWithSignature) {

+ net::FakeURLFetcherFactory factory(NULL);

+ PrepareResponse(&factory, ClientDownloadResponse::SAFE, net::HTTP_OK,

+ net::URLRequestStatus::SUCCESS);

+ base::FilePath signed_dmg;

+ EXPECT_TRUE(PathService::Get(chrome::DIR_TEST_DATA, &signed_dmg));

+ signed_dmg = signed_dmg.AppendASCII("safe_browsing")

+ .AppendASCII("mach_o")

+ .AppendASCII("signed-archive.dmg");

+ NiceMockDownloadItem item;

+ PrepareBasicDownloadItemWithFullPaths(

+ &item, {"http://www.evil.com/a.dmg"}, // url_chain

+ "http://www.google.com/", // referrer

+ signed_dmg, // tmp_path

+ temp_dir_.GetPath().Append(FILE_PATH_LITERAL("a.dmg"))); // final_path

+ RunLoop run_loop;

+ download_service_->CheckClientDownload(

+ &item, base::Bind(&DownloadProtectionServiceTest::CheckDoneCallback,

+ base::Unretained(this), run_loop.QuitClosure()));

+ run_loop.Run();

+ ASSERT_TRUE(HasClientDownloadRequest());

+ EXPECT_TRUE(GetClientDownloadRequest()->has_udif_code_signature());

+ EXPECT_EQ(2215u, GetClientDownloadRequest()->udif_code_signature().length());

+ base::FilePath signed_dmg_signature;

+ EXPECT_TRUE(PathService::Get(chrome::DIR_TEST_DATA, &signed_dmg_signature));

+ signed_dmg_signature = signed_dmg_signature.AppendASCII("safe_browsing")

+ .AppendASCII("mach_o")

+ .AppendASCII("signed-archive-signature.data");

+ std::string signature;

+ base::ReadFileToString(signed_dmg_signature, &signature);

+ EXPECT_EQ(2215u, signature.length());

+ EXPECT_EQ(signature, GetClientDownloadRequest()->udif_code_signature());

+ ClearClientDownloadRequest();

+ Mock::VerifyAndClearExpectations(sb_service_.get());

+ Mock::VerifyAndClearExpectations(binary_feature_extractor_.get());

+// Tests that no signature gets recorded and uploaded for unsigned DMGs.

+TEST_F(DownloadProtectionServiceTest,

+ CheckClientDownloadReportDmgWithoutSignature) {

+ net::FakeURLFetcherFactory factory(NULL);

+ PrepareResponse(&factory, ClientDownloadResponse::SAFE, net::HTTP_OK,

+ net::URLRequestStatus::SUCCESS);

+ base::FilePath unsigned_dmg;

+ EXPECT_TRUE(PathService::Get(chrome::DIR_GEN_TEST_DATA, &unsigned_dmg));

+ unsigned_dmg = unsigned_dmg.AppendASCII("chrome")

+ .AppendASCII("safe_browsing_dmg")

+ .AppendASCII("mach_o_in_dmg.dmg");