首頁 探索 說明
註冊 登入
drachfly
/
android10
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
分支: master
分支列表 標籤列表
android10
/
system
/
update_engine
/
certificate_checker_unittest.cc

certificate_checker_unittest.cc 4.9 KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 
  1. //
    2. 

  2. // Copyright (C) 2012 The Android Open Source Project
    3. 

  3. //
    4. 

  4. // Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. // you may not use this file except in compliance with the License.
    6. 

  6. // You may obtain a copy of the License at
    7. 

  7. //
    8. 

  8. //      http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. //
    10. 

  10. // Unless required by applicable law or agreed to in writing, software
    11. 

  11. // distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. // See the License for the specific language governing permissions and
    14. 

  14. // limitations under the License.
    15. 

  15. //
    16. 

  16. 

  17. #include "update_engine/certificate_checker.h"
    18. 

  18. 

  19. #include <string>
    20. 

  20. 

  21. #include <base/strings/string_util.h>
    22. 

  22. #include <base/strings/stringprintf.h>
    23. 

  23. #include <gmock/gmock.h>
    24. 

  24. #include <gtest/gtest.h>
    25. 

  25. 

  26. #include "update_engine/common/constants.h"
    27. 

  27. #include "update_engine/common/mock_prefs.h"
    28. 

  28. #include "update_engine/mock_certificate_checker.h"
    29. 

  29. 

  30. using std::string;
    31. 

  31. using ::testing::_;
    32. 

  32. using ::testing::DoAll;
    33. 

  33. using ::testing::Return;
    34. 

  34. using ::testing::SetArgPointee;
    35. 

  35. using ::testing::SetArrayArgument;
    36. 

  36. 

  37. namespace chromeos_update_engine {
    38. 

  38. 

  39. class MockCertificateCheckObserver : public CertificateChecker::Observer {
    40. 

  40.  public:
    41. 

  41.   MOCK_METHOD2(CertificateChecked,
    42. 

  42.                void(ServerToCheck server_to_check,
    43. 

  43.                     CertificateCheckResult result));
    44. 

  44. };
    45. 

  45. 

  46. class CertificateCheckerTest : public testing::Test {
    47. 

  47.  protected:
    48. 

  48.   void SetUp() override {
    49. 

  49.     cert_key_ = base::StringPrintf("%s-%d-%d",
    50. 

  50.                                    cert_key_prefix_.c_str(),
    51. 

  51.                                    static_cast<int>(server_to_check_),
    52. 

  52.                                    depth_);
    53. 

  53.     cert_checker.Init();
    54. 

  54.     cert_checker.SetObserver(&observer_);
    55. 

  55.   }
    56. 

  56. 

  57.   void TearDown() override { cert_checker.SetObserver(nullptr); }
    58. 

  58. 

  59.   MockPrefs prefs_;
    60. 

  60.   MockOpenSSLWrapper openssl_wrapper_;
    61. 

  61.   // Parameters of our mock certificate digest.
    62. 

  62.   int depth_{0};
    63. 

  63.   unsigned int length_{4};
    64. 

  64.   uint8_t digest_[4]{0x17, 0x7D, 0x07, 0x5F};
    65. 

  65.   string digest_hex_{"177D075F"};
    66. 

  66.   string diff_digest_hex_{"1234ABCD"};
    67. 

  67.   string cert_key_prefix_{kPrefsUpdateServerCertificate};
    68. 

  68.   ServerToCheck server_to_check_{ServerToCheck::kUpdate};
    69. 

  69.   string cert_key_;
    70. 

  70. 

  71.   testing::StrictMock<MockCertificateCheckObserver> observer_;
    72. 

  72.   CertificateChecker cert_checker{&prefs_, &openssl_wrapper_};
    73. 

  73. };
    74. 

  74. 

  75. // check certificate change, new
    76. 

  76. TEST_F(CertificateCheckerTest, NewCertificate) {
    77. 

  77.   EXPECT_CALL(openssl_wrapper_, GetCertificateDigest(nullptr, _, _, _))
    78. 

  78.       .WillOnce(DoAll(SetArgPointee<1>(depth_),
    79. 

  79.                       SetArgPointee<2>(length_),
    80. 

  80.                       SetArrayArgument<3>(digest_, digest_ + 4),
    81. 

  81.                       Return(true)));
    82. 

  82.   EXPECT_CALL(prefs_, GetString(cert_key_, _)).WillOnce(Return(false));
    83. 

  83.   EXPECT_CALL(prefs_, SetString(cert_key_, digest_hex_)).WillOnce(Return(true));
    84. 

  84.   EXPECT_CALL(
    85. 

  85.       observer_,
    86. 

  86.       CertificateChecked(server_to_check_, CertificateCheckResult::kValid));
    87. 

  87.   ASSERT_TRUE(
    88. 

  88.       cert_checker.CheckCertificateChange(1, nullptr, server_to_check_));
    89. 

  89. }
    90. 

  90. 

  91. // check certificate change, unchanged
    92. 

  92. TEST_F(CertificateCheckerTest, SameCertificate) {
    93. 

  93.   EXPECT_CALL(openssl_wrapper_, GetCertificateDigest(nullptr, _, _, _))
    94. 

  94.       .WillOnce(DoAll(SetArgPointee<1>(depth_),
    95. 

  95.                       SetArgPointee<2>(length_),
    96. 

  96.                       SetArrayArgument<3>(digest_, digest_ + 4),
    97. 

  97.                       Return(true)));
    98. 

  98.   EXPECT_CALL(prefs_, GetString(cert_key_, _))
    99. 

  99.       .WillOnce(DoAll(SetArgPointee<1>(digest_hex_), Return(true)));
    100. 

  100.   EXPECT_CALL(prefs_, SetString(_, _)).Times(0);
    101. 

  101.   EXPECT_CALL(
    102. 

  102.       observer_,
    103. 

  103.       CertificateChecked(server_to_check_, CertificateCheckResult::kValid));
    104. 

  104.   ASSERT_TRUE(
    105. 

  105.       cert_checker.CheckCertificateChange(1, nullptr, server_to_check_));
    106. 

  106. }
    107. 

  107. 

  108. // check certificate change, changed
    109. 

  109. TEST_F(CertificateCheckerTest, ChangedCertificate) {
    110. 

  110.   EXPECT_CALL(openssl_wrapper_, GetCertificateDigest(nullptr, _, _, _))
    111. 

  111.       .WillOnce(DoAll(SetArgPointee<1>(depth_),
    112. 

  112.                       SetArgPointee<2>(length_),
    113. 

  113.                       SetArrayArgument<3>(digest_, digest_ + 4),
    114. 

  114.                       Return(true)));
    115. 

  115.   EXPECT_CALL(prefs_, GetString(cert_key_, _))
    116. 

  116.       .WillOnce(DoAll(SetArgPointee<1>(diff_digest_hex_), Return(true)));
    117. 

  117.   EXPECT_CALL(observer_,
    118. 

  118.               CertificateChecked(server_to_check_,
    119. 

  119.                                  CertificateCheckResult::kValidChanged));
    120. 

  120.   EXPECT_CALL(prefs_, SetString(cert_key_, digest_hex_)).WillOnce(Return(true));
    121. 

  121.   ASSERT_TRUE(
    122. 

  122.       cert_checker.CheckCertificateChange(1, nullptr, server_to_check_));
    123. 

  123. }
    124. 

  124. 

  125. // check certificate change, failed
    126. 

  126. TEST_F(CertificateCheckerTest, FailedCertificate) {
    127. 

  127.   EXPECT_CALL(
    128. 

  128.       observer_,
    129. 

  129.       CertificateChecked(server_to_check_, CertificateCheckResult::kFailed));
    130. 

  130.   EXPECT_CALL(prefs_, GetString(_, _)).Times(0);
    131. 

  131.   EXPECT_CALL(openssl_wrapper_, GetCertificateDigest(_, _, _, _)).Times(0);
    132. 

  132.   ASSERT_FALSE(
    133. 

  133.       cert_checker.CheckCertificateChange(0, nullptr, server_to_check_));
    134. 

  134. }
    135. 

  135. 

  136. }  // namespace chromeos_update_engine
    137.