chrome/browser/safe_browsing/download_protection_service_unittest.cc - Issue 2934373002: Record Code Signature of Downloaded DMG files

Unified Diff: chrome/browser/safe_browsing/download_protection_service_unittest.cc

Issue 2934373002: Record Code Signature of Downloaded DMG files (Closed)

Patch Set: correcting rebase mixup Created 3 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« no previous file with comments | « chrome/browser/safe_browsing/download_protection_service.cc ('k') | chrome/browser/safe_browsing/sandboxed_dmg_analyzer_mac_unittest.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: chrome/browser/safe_browsing/download_protection_service_unittest.cc

diff --git a/chrome/browser/safe_browsing/download_protection_service_unittest.cc b/chrome/browser/safe_browsing/download_protection_service_unittest.cc

index 0976d6e7ff674a88c0862670a9ee815218cf8c2f..3cfa40ee79b8e7d7d1403db2a270605d26fc294b 100644

--- a/chrome/browser/safe_browsing/download_protection_service_unittest.cc

+++ b/chrome/browser/safe_browsing/download_protection_service_unittest.cc

@@ -1448,6 +1448,88 @@ TEST_F(DownloadProtectionServiceTest,

CheckClientDownloadReportCorruptArchive(DMG);

}

+// Tests that signatures get recorded and uploaded for signed DMGs.

+TEST_F(DownloadProtectionServiceTest,

+ CheckClientDownloadReportDmgWithSignature) {

+ net::FakeURLFetcherFactory factory(NULL);

+ PrepareResponse(&factory, ClientDownloadResponse::SAFE, net::HTTP_OK,

+ net::URLRequestStatus::SUCCESS);

+ base::FilePath signed_dmg;

+ EXPECT_TRUE(PathService::Get(chrome::DIR_TEST_DATA, &signed_dmg));

+ signed_dmg = signed_dmg.AppendASCII("safe_browsing")

+ .AppendASCII("mach_o")

+ .AppendASCII("signed-archive.dmg");

+ NiceMockDownloadItem item;

+ PrepareBasicDownloadItemWithFullPaths(

+ &item, {"http://www.evil.com/a.dmg"}, // url_chain

+ "http://www.google.com/", // referrer

+ signed_dmg, // tmp_path

+ temp_dir_.GetPath().Append(FILE_PATH_LITERAL("a.dmg"))); // final_path

+ RunLoop run_loop;

+ download_service_->CheckClientDownload(

+ &item, base::Bind(&DownloadProtectionServiceTest::CheckDoneCallback,

+ base::Unretained(this), run_loop.QuitClosure()));

+ run_loop.Run();

+ ASSERT_TRUE(HasClientDownloadRequest());

+ EXPECT_TRUE(GetClientDownloadRequest()->has_udif_code_signature());

+ EXPECT_EQ(2215u, GetClientDownloadRequest()->udif_code_signature().length());

+ base::FilePath signed_dmg_signature;

+ EXPECT_TRUE(PathService::Get(chrome::DIR_TEST_DATA, &signed_dmg_signature));

+ signed_dmg_signature = signed_dmg_signature.AppendASCII("safe_browsing")

+ .AppendASCII("mach_o")

+ .AppendASCII("signed-archive-signature.data");

+ std::string signature;

+ base::ReadFileToString(signed_dmg_signature, &signature);

+ EXPECT_EQ(2215u, signature.length());

+ EXPECT_EQ(signature, GetClientDownloadRequest()->udif_code_signature());

+ ClearClientDownloadRequest();

+ Mock::VerifyAndClearExpectations(sb_service_.get());

+ Mock::VerifyAndClearExpectations(binary_feature_extractor_.get());

+// Tests that no signature gets recorded and uploaded for unsigned DMGs.

+TEST_F(DownloadProtectionServiceTest,

+ CheckClientDownloadReportDmgWithoutSignature) {

+ net::FakeURLFetcherFactory factory(NULL);

+ PrepareResponse(&factory, ClientDownloadResponse::SAFE, net::HTTP_OK,

+ net::URLRequestStatus::SUCCESS);

+ base::FilePath unsigned_dmg;

+ EXPECT_TRUE(PathService::Get(chrome::DIR_GEN_TEST_DATA, &unsigned_dmg));

+ unsigned_dmg = unsigned_dmg.AppendASCII("chrome")

+ .AppendASCII("safe_browsing_dmg")

+ .AppendASCII("mach_o_in_dmg.dmg");