net/http/http_security_headers_unittest.cc - Issue 847043004: Require HPKP pins to be quoted.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/http/http_security_headers_unittest.cc

Issue 847043004: Require HPKP pins to be quoted. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 5 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/http/http_security_headers_unittest.cc

diff --git a/net/http/http_security_headers_unittest.cc b/net/http/http_security_headers_unittest.cc

index d09f6fd308d49ab6dc5c207f6b8d91b72aad52ad..66b58a66f72e58088a1c4639ca62e532f231264e 100644

--- a/net/http/http_security_headers_unittest.cc

+++ b/net/http/http_security_headers_unittest.cc

@@ -26,21 +26,38 @@ HashValue GetTestHashValue(uint8 label, HashValueTag tag) {

return hash_value;

}

-std::string GetTestPin(uint8 label, HashValueTag tag) {

+std::string GetTestPinImpl(uint8 label, HashValueTag tag, bool quoted) {

HashValue hash_value = GetTestHashValue(label, tag);

std::string base64;

base::Base64Encode(base::StringPiece(

reinterpret_cast<char*>(hash_value.data()), hash_value.size()), &base64);

+ std::string ret;

switch (hash_value.tag) {

case HASH_VALUE_SHA1:

- return std::string("pin-sha1=\"") + base64 + "\"";

+ ret = "pin-sha1=";

+ break;

case HASH_VALUE_SHA256:

- return std::string("pin-sha256=\"") + base64 + "\"";

+ ret = "pin-sha256=";

+ break;

default:

NOTREACHED() << "Unknown HashValueTag " << hash_value.tag;

return std::string("ERROR");

}

+ if (quoted)

+ ret += '\"';

+ ret += base64;

+ if (quoted)

+ ret += '\"';

+ return ret;

+std::string GetTestPin(uint8 label, HashValueTag tag) {

+ return GetTestPinImpl(label, tag, true);

+std::string GetTestPinUnquoted(uint8 label, HashValueTag tag) {

+ return GetTestPinImpl(label, tag, false);

}

};

@@ -142,6 +159,7 @@ static void TestBogusPinsHeaders(HashValueTag tag) {

// The good pin must be in the chain, the backup pin must not be

std::string good_pin = GetTestPin(2, tag);

+ std::string good_pin_unquoted = GetTestPinUnquoted(2, tag);

std::string backup_pin = GetTestPin(4, tag);

EXPECT_FALSE(ParseHPKPHeader(std::string(), chain_hashes, &max_age,

@@ -213,6 +231,9 @@ static void TestBogusPinsHeaders(HashValueTag tag) {

&hashes));

EXPECT_FALSE(ParseHPKPHeader("max-age=34889.23", chain_hashes, &max_age,

&include_subdomains, &hashes));

+ EXPECT_FALSE(

+ ParseHPKPHeader("max-age=243; " + good_pin_unquoted + ";" + backup_pin,

+ chain_hashes, &max_age, &include_subdomains, &hashes));

// Check the out args were not updated by checking the default

// values for its predictable fields.

« no previous file with comments | « net/http/http_security_headers.cc ('k') | no next file » | no next file with comments »