// Copyright 2017 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "base/files/file_path.h" #include "base/files/file_util.h" #include "base/functional/bind.h" #include "base/functional/callback_helpers.h" #include "base/memory/raw_ptr.h" #include "base/path_service.h" #include "base/test/bind.h" #include "base/values.h" #include "base/version.h" #include "content/public/browser/browser_task_traits.h" #include "content/public/browser/browser_thread.h" #include "content/public/test/browser_task_environment.h" #include "content/public/test/test_browser_context.h" #include "content/public/test/url_loader_interceptor.h" #include "extensions/browser/content_verifier/content_verifier.h" #include "extensions/browser/content_verifier/test_utils.h" #include "extensions/browser/extensions_test.h" #include "extensions/common/constants.h" #include "extensions/common/extension_paths.h" #include "extensions/common/file_util.h" #include "extensions/test/test_extension_dir.h" #include "mojo/public/cpp/bindings/remote.h" #include "testing/gtest/include/gtest/gtest.h" #include "third_party/zlib/google/zip.h" namespace extensions { namespace { // Specifies how test ContentVerifyJob's asynchronous steps to read hash and // read contents are ordered. // Note that: // OnHashesReady: is called when hash reading is complete. // BytesRead + DoneReading: are called when content reading is complete. enum ContentVerifyJobAsyncRunMode { … }; std::string GetVerifiedContents(const Extension& extension) { … } void WriteManifest(TestExtensionDir* dir) { … } void WriteComputedHashes( const base::FilePath& extension_root, const std::map<base::FilePath, std::string>& contents) { … } } // namespace class ContentVerifyJobUnittest : public ExtensionsTest { … }; // Tests that deleted legitimate files trigger content verification failure. // Also tests that non-existent file request does not trigger content // verification failure. TEST_F(ContentVerifyJobUnittest, DeletedAndMissingFiles) { … } // Tests that multiple read errors are handled correctly. TEST_F(ContentVerifyJobUnittest, MultipleReadErrors) { … } namespace { void WriteIncorrectComputedHashes(const base::FilePath& extension_path, const base::FilePath& resource_path) { … } void WriteEmptyComputedHashes(const base::FilePath& extension_path) { … } } // namespace // Tests that deletion of an extension resource and invalid hash for it in // computed_hashes.json won't result in bypassing corruption check. TEST_F(ContentVerifyJobUnittest, DeletedResourceAndCorruptedComputedHashes) { … } // Tests that deletion of an extension resource and removing its entry from // computed_hashes.json won't result in bypassing corruption check. TEST_F(ContentVerifyJobUnittest, DeletedResourceAndCleanedComputedHashes) { … } // Tests that extension resources that are originally 0 byte behave correctly // with content verification. TEST_F(ContentVerifyJobUnittest, LegitimateZeroByteFile) { … } // Tests that extension resources of different interesting sizes work properly. // Regression test for https://crbug.com/720597, where content verification // always failed for sizes multiple of content hash's block size (4096 bytes). TEST_F(ContentVerifyJobUnittest, DifferentSizedFiles) { … } // Tests that if both file contents and hash are modified, corruption will still // be detected. TEST_F(ContentVerifyJobUnittest, ModifiedComputedHashes) { … } ContentVerifyJobWithoutSignedHashesUnittest; // Mark tests with extensions which intentionally don't contain // verified_contents.json. Typically these are self-hosted extension, since // there is no possibility for them to use private Chrome Web Store key to sign // hashes. // Tests that without verified_contents.json file computes_hashes.json file is // loaded correctly and appropriate error is reported when load fails. TEST_F(ContentVerifyJobWithoutSignedHashesUnittest, ComputedHashesLoad) { … } // Tests that extension without verified_contents.json is checked properly. TEST_F(ContentVerifyJobWithoutSignedHashesUnittest, UnverifiedExtension) { … } // Tests that extension without any hashes (both verified_contents.json and // computed_hashes.json are missing) is checked properly. TEST_F(ContentVerifyJobWithoutSignedHashesUnittest, ExtensionWithoutHashes) { … } class ContentMismatchUnittest : public ContentVerifyJobUnittest, public testing::WithParamInterface<ContentVerifyJobAsyncRunMode> { … }; INSTANTIATE_TEST_SUITE_P(…); // Tests that content modification causes content verification failure. TEST_P(ContentMismatchUnittest, ContentMismatch) { … } // Similar to ContentMismatch, but uses a file size > 4k. // Regression test for https://crbug.com/804630. TEST_P(ContentMismatchUnittest, ContentMismatchWithLargeFile) { … } // ContentVerifyJobUnittest with hash fetch interception support. class ContentVerifyJobWithHashFetchUnittest : public ContentVerifyJobUnittest { … }; // Regression test for https://crbug.com/995436. TEST_F(ContentVerifyJobWithHashFetchUnittest, ReadErrorBeforeHashReady) { … } // Now create a resource foo.js which exists on disk but is not in the // extension's verified_contents.json. Test the flow of the file being read // before hashes are ready. Verification should result in NO_HASHES_FOR_FILE // since the extension is trying to load a file the extension should not have. TEST_F(ContentVerifyJobWithHashFetchUnittest, ReadFileWithoutHashesBeforeHashReady) { … } } // namespace extensions
Codebase Browser
chromium