OLD | NEW |
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #include "net/quic/quic_stream_factory.h" | 5 #include "net/quic/quic_stream_factory.h" |
6 | 6 |
7 #include "base/run_loop.h" | 7 #include "base/run_loop.h" |
8 #include "base/strings/string_util.h" | 8 #include "base/strings/string_util.h" |
9 #include "net/base/test_data_directory.h" | 9 #include "net/base/test_data_directory.h" |
10 #include "net/cert/cert_verifier.h" | 10 #include "net/cert/cert_verifier.h" |
11 #include "net/dns/mock_host_resolver.h" | 11 #include "net/dns/mock_host_resolver.h" |
12 #include "net/http/http_response_headers.h" | 12 #include "net/http/http_response_headers.h" |
13 #include "net/http/http_response_info.h" | 13 #include "net/http/http_response_info.h" |
14 #include "net/http/http_util.h" | 14 #include "net/http/http_util.h" |
15 #include "net/http/transport_security_state.h" | 15 #include "net/http/transport_security_state.h" |
16 #include "net/quic/crypto/crypto_handshake.h" | 16 #include "net/quic/crypto/crypto_handshake.h" |
17 #include "net/quic/crypto/proof_verifier_chromium.h" | 17 #include "net/quic/crypto/proof_verifier_chromium.h" |
18 #include "net/quic/crypto/quic_decrypter.h" | 18 #include "net/quic/crypto/quic_decrypter.h" |
19 #include "net/quic/crypto/quic_encrypter.h" | 19 #include "net/quic/crypto/quic_encrypter.h" |
20 #include "net/quic/quic_http_stream.h" | 20 #include "net/quic/quic_http_stream.h" |
21 #include "net/quic/quic_server_id.h" | 21 #include "net/quic/quic_server_id.h" |
22 #include "net/quic/test_tools/mock_clock.h" | 22 #include "net/quic/test_tools/mock_clock.h" |
23 #include "net/quic/test_tools/mock_crypto_client_stream_factory.h" | 23 #include "net/quic/test_tools/mock_crypto_client_stream_factory.h" |
24 #include "net/quic/test_tools/mock_random.h" | 24 #include "net/quic/test_tools/mock_random.h" |
25 #include "net/quic/test_tools/quic_test_packet_maker.h" | 25 #include "net/quic/test_tools/quic_test_packet_maker.h" |
26 #include "net/quic/test_tools/quic_test_utils.h" | 26 #include "net/quic/test_tools/quic_test_utils.h" |
27 #include "net/socket/socket_test_util.h" | 27 #include "net/socket/socket_test_util.h" |
28 #include "net/spdy/spdy_test_utils.h" | |
29 #include "net/ssl/channel_id_service.h" | 28 #include "net/ssl/channel_id_service.h" |
30 #include "net/ssl/default_channel_id_store.h" | 29 #include "net/ssl/default_channel_id_store.h" |
31 #include "net/test/cert_test_util.h" | 30 #include "net/test/cert_test_util.h" |
32 #include "testing/gtest/include/gtest/gtest.h" | 31 #include "testing/gtest/include/gtest/gtest.h" |
33 | 32 |
34 using base::StringPiece; | 33 using base::StringPiece; |
35 using std::string; | 34 using std::string; |
36 using std::vector; | 35 using std::vector; |
37 | 36 |
38 namespace net { | 37 namespace net { |
(...skipping 314 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
353 &factory_, host_port_pair_, is_https_), | 352 &factory_, host_port_pair_, is_https_), |
354 QuicStreamFactoryPeer::GetActiveSession( | 353 QuicStreamFactoryPeer::GetActiveSession( |
355 &factory_, host_port_pair_, !is_https_)); | 354 &factory_, host_port_pair_, !is_https_)); |
356 | 355 |
357 EXPECT_TRUE(socket_data1.at_read_eof()); | 356 EXPECT_TRUE(socket_data1.at_read_eof()); |
358 EXPECT_TRUE(socket_data1.at_write_eof()); | 357 EXPECT_TRUE(socket_data1.at_write_eof()); |
359 EXPECT_TRUE(socket_data2.at_read_eof()); | 358 EXPECT_TRUE(socket_data2.at_read_eof()); |
360 EXPECT_TRUE(socket_data2.at_write_eof()); | 359 EXPECT_TRUE(socket_data2.at_write_eof()); |
361 } | 360 } |
362 | 361 |
363 TEST_P(QuicStreamFactoryTest, Pooling) { | 362 // TODO(rch): re-enable this. |
| 363 TEST_P(QuicStreamFactoryTest, DISABLED_Pooling) { |
364 MockRead reads[] = { | 364 MockRead reads[] = { |
365 MockRead(ASYNC, OK, 0) // EOF | 365 MockRead(ASYNC, OK, 0) // EOF |
366 }; | 366 }; |
367 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); | 367 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); |
368 socket_factory_.AddSocketDataProvider(&socket_data); | 368 socket_factory_.AddSocketDataProvider(&socket_data); |
369 socket_data.StopAfter(1); | 369 socket_data.StopAfter(1); |
370 | 370 |
371 HostPortPair server2("mail.google.com", kDefaultServerPort); | 371 HostPortPair server2("mail.google.com", kDefaultServerPort); |
372 host_resolver_.set_synchronous_mode(true); | 372 host_resolver_.set_synchronous_mode(true); |
373 host_resolver_.rules()->AddIPLiteralRule( | 373 host_resolver_.rules()->AddIPLiteralRule( |
(...skipping 95 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
469 | 469 |
470 EXPECT_TRUE(QuicStreamFactoryPeer::HasActiveSession( | 470 EXPECT_TRUE(QuicStreamFactoryPeer::HasActiveSession( |
471 &factory_, server2, is_https_)); | 471 &factory_, server2, is_https_)); |
472 | 472 |
473 EXPECT_TRUE(socket_data1.at_read_eof()); | 473 EXPECT_TRUE(socket_data1.at_read_eof()); |
474 EXPECT_TRUE(socket_data1.at_write_eof()); | 474 EXPECT_TRUE(socket_data1.at_write_eof()); |
475 EXPECT_TRUE(socket_data2.at_read_eof()); | 475 EXPECT_TRUE(socket_data2.at_read_eof()); |
476 EXPECT_TRUE(socket_data2.at_write_eof()); | 476 EXPECT_TRUE(socket_data2.at_write_eof()); |
477 } | 477 } |
478 | 478 |
479 TEST_P(QuicStreamFactoryTest, HttpsPooling) { | 479 // TODO(rch): re-enable this. |
| 480 TEST_P(QuicStreamFactoryTest, DISABLED_HttpsPooling) { |
480 MockRead reads[] = { | 481 MockRead reads[] = { |
481 MockRead(ASYNC, OK, 0) // EOF | 482 MockRead(ASYNC, OK, 0) // EOF |
482 }; | 483 }; |
483 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); | 484 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); |
484 socket_factory_.AddSocketDataProvider(&socket_data); | 485 socket_factory_.AddSocketDataProvider(&socket_data); |
485 socket_data.StopAfter(1); | 486 socket_data.StopAfter(1); |
486 | 487 |
487 HostPortPair server1("www.example.org", 443); | 488 HostPortPair server1("www.example.org", 443); |
488 HostPortPair server2("mail.example.org", 443); | 489 HostPortPair server2("mail.example.org", 443); |
489 | 490 |
490 // Load a cert that is valid for: | 491 // Load a cert that is valid for: |
491 // www.example.org (server1) | 492 // www.example.org (server1) |
492 // mail.example.org (server2) | 493 // mail.example.org (server2) |
493 // www.example.com | 494 // www.example.com |
494 base::FilePath certs_dir = GetTestCertsDirectory(); | 495 base::FilePath certs_dir = GetTestCertsDirectory(); |
495 scoped_refptr<X509Certificate> test_cert( | 496 scoped_refptr<X509Certificate> test_cert( |
496 ImportCertFromFile(certs_dir, "spdy_pooling.pem")); | 497 ImportCertFromFile(certs_dir, "spdy_pooling.pem")); |
497 ASSERT_NE(static_cast<X509Certificate*>(NULL), test_cert); | 498 ASSERT_NE(static_cast<X509Certificate*>(NULL), test_cert); |
498 ProofVerifyDetailsChromium verify_details; | 499 ProofVerifyDetailsChromium verify_details; |
499 verify_details.cert_verify_result.verified_cert = test_cert; | 500 verify_details.cert_verify_result.verified_cert = test_cert; |
500 verify_details.cert_verify_result.is_issued_by_known_root = true; | |
501 crypto_client_stream_factory_.set_proof_verify_details(&verify_details); | 501 crypto_client_stream_factory_.set_proof_verify_details(&verify_details); |
502 | 502 |
503 host_resolver_.set_synchronous_mode(true); | 503 host_resolver_.set_synchronous_mode(true); |
504 host_resolver_.rules()->AddIPLiteralRule(server1.host(), "192.168.0.1", ""); | 504 host_resolver_.rules()->AddIPLiteralRule(server1.host(), "192.168.0.1", ""); |
505 host_resolver_.rules()->AddIPLiteralRule(server2.host(), "192.168.0.1", ""); | 505 host_resolver_.rules()->AddIPLiteralRule(server2.host(), "192.168.0.1", ""); |
506 | 506 |
507 QuicStreamRequest request(&factory_); | 507 QuicStreamRequest request(&factory_); |
508 is_https_ = true; | 508 is_https_ = true; |
509 EXPECT_EQ(OK, | 509 EXPECT_EQ(OK, |
510 request.Request(server1, | 510 request.Request(server1, |
(...skipping 86 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
597 &factory_, server1, is_https_), | 597 &factory_, server1, is_https_), |
598 QuicStreamFactoryPeer::GetActiveSession( | 598 QuicStreamFactoryPeer::GetActiveSession( |
599 &factory_, server2, is_https_)); | 599 &factory_, server2, is_https_)); |
600 | 600 |
601 EXPECT_TRUE(socket_data1.at_read_eof()); | 601 EXPECT_TRUE(socket_data1.at_read_eof()); |
602 EXPECT_TRUE(socket_data1.at_write_eof()); | 602 EXPECT_TRUE(socket_data1.at_write_eof()); |
603 EXPECT_TRUE(socket_data2.at_read_eof()); | 603 EXPECT_TRUE(socket_data2.at_read_eof()); |
604 EXPECT_TRUE(socket_data2.at_write_eof()); | 604 EXPECT_TRUE(socket_data2.at_write_eof()); |
605 } | 605 } |
606 | 606 |
607 TEST_P(QuicStreamFactoryTest, HttpsPoolingWithMatchingPins) { | |
608 MockRead reads[] = { | |
609 MockRead(ASYNC, OK, 0) // EOF | |
610 }; | |
611 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); | |
612 socket_factory_.AddSocketDataProvider(&socket_data); | |
613 socket_data.StopAfter(1); | |
614 | |
615 HostPortPair server1("www.example.org", 443); | |
616 HostPortPair server2("mail.example.org", 443); | |
617 uint8 primary_pin = 1; | |
618 uint8 backup_pin = 2; | |
619 test::AddPin(&transport_security_state_, "mail.example.org", primary_pin, | |
620 backup_pin); | |
621 | |
622 // Load a cert that is valid for: | |
623 // www.example.org (server1) | |
624 // mail.example.org (server2) | |
625 base::FilePath certs_dir = GetTestCertsDirectory(); | |
626 scoped_refptr<X509Certificate> test_cert( | |
627 ImportCertFromFile(certs_dir, "spdy_pooling.pem")); | |
628 ASSERT_NE(static_cast<X509Certificate*>(NULL), test_cert); | |
629 ProofVerifyDetailsChromium verify_details; | |
630 verify_details.cert_verify_result.verified_cert = test_cert; | |
631 verify_details.cert_verify_result.is_issued_by_known_root = true; | |
632 verify_details.cert_verify_result.public_key_hashes.push_back( | |
633 test::GetTestHashValue(primary_pin)); | |
634 crypto_client_stream_factory_.set_proof_verify_details(&verify_details); | |
635 | |
636 | |
637 host_resolver_.set_synchronous_mode(true); | |
638 host_resolver_.rules()->AddIPLiteralRule(server1.host(), "192.168.0.1", ""); | |
639 host_resolver_.rules()->AddIPLiteralRule(server2.host(), "192.168.0.1", ""); | |
640 | |
641 QuicStreamRequest request(&factory_); | |
642 is_https_ = true; | |
643 EXPECT_EQ(OK, | |
644 request.Request(server1, | |
645 is_https_, | |
646 privacy_mode_, | |
647 "GET", | |
648 net_log_, | |
649 callback_.callback())); | |
650 scoped_ptr<QuicHttpStream> stream = request.ReleaseStream(); | |
651 EXPECT_TRUE(stream.get()); | |
652 | |
653 TestCompletionCallback callback; | |
654 QuicStreamRequest request2(&factory_); | |
655 EXPECT_EQ(OK, | |
656 request2.Request(server2, | |
657 is_https_, | |
658 privacy_mode_, | |
659 "GET", | |
660 net_log_, | |
661 callback_.callback())); | |
662 scoped_ptr<QuicHttpStream> stream2 = request2.ReleaseStream(); | |
663 EXPECT_TRUE(stream2.get()); | |
664 | |
665 EXPECT_EQ(QuicStreamFactoryPeer::GetActiveSession( | |
666 &factory_, server1, is_https_), | |
667 QuicStreamFactoryPeer::GetActiveSession( | |
668 &factory_, server2, is_https_)); | |
669 | |
670 EXPECT_TRUE(socket_data.at_read_eof()); | |
671 EXPECT_TRUE(socket_data.at_write_eof()); | |
672 } | |
673 | |
674 TEST_P(QuicStreamFactoryTest, NoHttpsPoolingWithDifferentPins) { | |
675 MockRead reads[] = { | |
676 MockRead(ASYNC, OK, 0) // EOF | |
677 }; | |
678 DeterministicSocketData socket_data1(reads, arraysize(reads), NULL, 0); | |
679 DeterministicSocketData socket_data2(reads, arraysize(reads), NULL, 0); | |
680 socket_factory_.AddSocketDataProvider(&socket_data1); | |
681 socket_factory_.AddSocketDataProvider(&socket_data2); | |
682 socket_data1.StopAfter(1); | |
683 socket_data2.StopAfter(1); | |
684 | |
685 HostPortPair server1("www.example.org", 443); | |
686 HostPortPair server2("mail.example.org", 443); | |
687 uint8 primary_pin = 1; | |
688 uint8 backup_pin = 2; | |
689 uint8 bad_pin = 3; | |
690 test::AddPin(&transport_security_state_, "mail.example.org", primary_pin, | |
691 backup_pin); | |
692 | |
693 // Load a cert that is valid for: | |
694 // www.example.org (server1) | |
695 // mail.example.org (server2) | |
696 base::FilePath certs_dir = GetTestCertsDirectory(); | |
697 scoped_refptr<X509Certificate> test_cert( | |
698 ImportCertFromFile(certs_dir, "spdy_pooling.pem")); | |
699 ASSERT_NE(static_cast<X509Certificate*>(NULL), test_cert); | |
700 ProofVerifyDetailsChromium verify_details; | |
701 verify_details.cert_verify_result.verified_cert = test_cert; | |
702 verify_details.cert_verify_result.is_issued_by_known_root = true; | |
703 verify_details.cert_verify_result.public_key_hashes.push_back( | |
704 test::GetTestHashValue(bad_pin)); | |
705 crypto_client_stream_factory_.set_proof_verify_details(&verify_details); | |
706 | |
707 | |
708 host_resolver_.set_synchronous_mode(true); | |
709 host_resolver_.rules()->AddIPLiteralRule(server1.host(), "192.168.0.1", ""); | |
710 host_resolver_.rules()->AddIPLiteralRule(server2.host(), "192.168.0.1", ""); | |
711 | |
712 QuicStreamRequest request(&factory_); | |
713 is_https_ = true; | |
714 EXPECT_EQ(OK, | |
715 request.Request(server1, | |
716 is_https_, | |
717 privacy_mode_, | |
718 "GET", | |
719 net_log_, | |
720 callback_.callback())); | |
721 scoped_ptr<QuicHttpStream> stream = request.ReleaseStream(); | |
722 EXPECT_TRUE(stream.get()); | |
723 | |
724 TestCompletionCallback callback; | |
725 QuicStreamRequest request2(&factory_); | |
726 EXPECT_EQ(OK, | |
727 request2.Request(server2, | |
728 is_https_, | |
729 privacy_mode_, | |
730 "GET", | |
731 net_log_, | |
732 callback_.callback())); | |
733 scoped_ptr<QuicHttpStream> stream2 = request2.ReleaseStream(); | |
734 EXPECT_TRUE(stream2.get()); | |
735 | |
736 EXPECT_NE(QuicStreamFactoryPeer::GetActiveSession( | |
737 &factory_, server1, is_https_), | |
738 QuicStreamFactoryPeer::GetActiveSession( | |
739 &factory_, server2, is_https_)); | |
740 | |
741 EXPECT_TRUE(socket_data1.at_read_eof()); | |
742 EXPECT_TRUE(socket_data1.at_write_eof()); | |
743 EXPECT_TRUE(socket_data2.at_read_eof()); | |
744 EXPECT_TRUE(socket_data2.at_write_eof()); | |
745 } | |
746 | |
747 TEST_P(QuicStreamFactoryTest, Goaway) { | 607 TEST_P(QuicStreamFactoryTest, Goaway) { |
748 MockRead reads[] = { | 608 MockRead reads[] = { |
749 MockRead(ASYNC, OK, 0) // EOF | 609 MockRead(ASYNC, OK, 0) // EOF |
750 }; | 610 }; |
751 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); | 611 DeterministicSocketData socket_data(reads, arraysize(reads), NULL, 0); |
752 socket_data.StopAfter(1); | 612 socket_data.StopAfter(1); |
753 socket_factory_.AddSocketDataProvider(&socket_data); | 613 socket_factory_.AddSocketDataProvider(&socket_data); |
754 DeterministicSocketData socket_data2(reads, arraysize(reads), NULL, 0); | 614 DeterministicSocketData socket_data2(reads, arraysize(reads), NULL, 0); |
755 socket_data2.StopAfter(1); | 615 socket_data2.StopAfter(1); |
756 socket_factory_.AddSocketDataProvider(&socket_data2); | 616 socket_factory_.AddSocketDataProvider(&socket_data2); |
(...skipping 533 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
1290 QuicCryptoClientConfig::CachedState* cached2 = | 1150 QuicCryptoClientConfig::CachedState* cached2 = |
1291 crypto_config->LookupOrCreate(server_id2); | 1151 crypto_config->LookupOrCreate(server_id2); |
1292 EXPECT_NE(cached1->source_address_token(), cached2->source_address_token()); | 1152 EXPECT_NE(cached1->source_address_token(), cached2->source_address_token()); |
1293 EXPECT_TRUE(cached2->source_address_token().empty()); | 1153 EXPECT_TRUE(cached2->source_address_token().empty()); |
1294 EXPECT_FALSE(cached2->proof_valid()); | 1154 EXPECT_FALSE(cached2->proof_valid()); |
1295 } | 1155 } |
1296 } | 1156 } |
1297 | 1157 |
1298 } // namespace test | 1158 } // namespace test |
1299 } // namespace net | 1159 } // namespace net |
OLD | NEW |