// Copyright 2019 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "base/containers/span.h" #include "base/files/file_path.h" #include "base/files/file_util.h" #include "base/path_service.h" #include "base/strings/string_number_conversions.h" #include "base/threading/scoped_blocking_call.h" #include "build/build_config.h" #include "chrome/browser/interstitials/security_interstitial_page_test_utils.h" #include "chrome/browser/ssl/cert_verifier_platform_browser_test.h" #include "chrome/browser/ssl/ssl_browsertest_util.h" #include "chrome/common/chrome_paths.h" #include "chrome/test/base/chrome_test_utils.h" #include "chrome/test/base/platform_browser_test.h" #include "components/security_interstitials/core/controller_client.h" #include "content/public/browser/navigation_controller.h" #include "content/public/browser/navigation_entry.h" #include "content/public/browser/network_service_instance.h" #include "content/public/browser/ssl_status.h" #include "content/public/browser/web_contents.h" #include "content/public/test/browser_test.h" #include "content/public/test/browser_test_utils.h" #include "net/base/net_errors.h" #include "net/cert/cert_status_flags.h" #include "net/cert/cert_verify_result.h" #include "net/cert/mock_cert_verifier.h" #include "net/cert/x509_certificate.h" #include "net/dns/mock_host_resolver.h" #include "net/test/embedded_test_server/embedded_test_server.h" #include "net/test/test_data_directory.h" #include "services/cert_verifier/public/mojom/cert_verifier_service_factory.mojom.h" AuthState; CertError; namespace { class CRLSetBrowserTest : public PlatformBrowserTest { … }; const char kHstsTestHostName[] = …; } // namespace IN_PROC_BROWSER_TEST_F(CRLSetBrowserTest, TestCRLSetRevoked) { … } // Test that CRLSets configured to block MITM certificates cause the // known interception interstitial. IN_PROC_BROWSER_TEST_F(CRLSetBrowserTest, TestCRLSetBlockedInterception) { … } // Test that CRLSets configured to identify known MITM certificates do not // cause an interstitial unless the MITM certificate is blocked. IN_PROC_BROWSER_TEST_F(CRLSetBrowserTest, TestCRLSetKnownInterception) { … } // While TestCRLSetBlockedInterception and TestCRLSetKnownInterception use // a real CertVerifier in order to test that a real CRLSet is delivered and // processed, testing HSTS requires with a MockCertVerifier so that the // cert will match the intended hostname, and thus only fail because it's a // blocked MITM certificate. This requires using a CertVerifierBrowserTest, // which is not suitable for the previous tests because it does not test // CRLSets. class CRLSetInterceptionBrowserTest : public CertVerifierPlatformBrowserTest { … }; IN_PROC_BROWSER_TEST_F(CRLSetInterceptionBrowserTest, KnownInterceptionWorksOnHSTS) { … }
Codebase Browser
chromium