src/net/base/x509_util_openssl_unittest.cc - cobalt - Git at Google

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "base/memory/scoped_ptr.h"
 #include "crypto/ec_private_key.h"
 #include "net/base/x509_util.h"
 #include "net/base/x509_util_openssl.h"
 #include "testing/gtest/include/gtest/gtest.h"

 namespace net {

 TEST(X509UtilOpenSSLTest, IsSupportedValidityRange) {
   base::Time now = base::Time::Now();
   EXPECT_TRUE(x509_util::IsSupportedValidityRange(now, now));
   EXPECT_FALSE(x509_util::IsSupportedValidityRange(
       now, now - base::TimeDelta::FromSeconds(1)));

   // See x509_util_openssl.cc to see how these were computed.
   const int64 kDaysFromYear0001ToUnixEpoch = 719162;
   const int64 kDaysFromUnixEpochToYear10000 = 2932896 + 1;

   // When computing too_old / too_late, add one day to account for
   // possible leap seconds.
   base::Time too_old = base::Time::UnixEpoch() -
       base::TimeDelta::FromDays(kDaysFromYear0001ToUnixEpoch + 1);

   base::Time too_late = base::Time::UnixEpoch() +
       base::TimeDelta::FromDays(kDaysFromUnixEpochToYear10000 + 1);

   EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_old, too_old));
   EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_old, now));

   EXPECT_FALSE(x509_util::IsSupportedValidityRange(now, too_late));
   EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_late, too_late));
 }

 // For OpenSSL, x509_util::CreateDomainBoundCertEC() is not yet implemented
 // and should return false.  This unit test ensures that a stub implementation
 // is present.
 TEST(X509UtilOpenSSLTest, CreateDomainBoundCertNotImplemented) {
   std::string domain = "weborigin.com";
   base::Time now = base::Time::Now();
   scoped_ptr<crypto::ECPrivateKey> private_key(
       crypto::ECPrivateKey::Create());
   std::string der_cert;
   EXPECT_FALSE(x509_util::CreateDomainBoundCertEC(
       private_key.get(),
       domain, 1,
       now,
       now + base::TimeDelta::FromDays(1),
       &der_cert));
   EXPECT_TRUE(der_cert.empty());

 }

 }  // namespace net
	// Copyright (c) 2012 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "base/memory/scoped_ptr.h"
	#include "crypto/ec_private_key.h"
	#include "net/base/x509_util.h"
	#include "net/base/x509_util_openssl.h"
	#include "testing/gtest/include/gtest/gtest.h"

	namespace net {

	TEST(X509UtilOpenSSLTest, IsSupportedValidityRange) {
	base::Time now = base::Time::Now();
	EXPECT_TRUE(x509_util::IsSupportedValidityRange(now, now));
	EXPECT_FALSE(x509_util::IsSupportedValidityRange(
	now, now - base::TimeDelta::FromSeconds(1)));

	// See x509_util_openssl.cc to see how these were computed.
	const int64 kDaysFromYear0001ToUnixEpoch = 719162;
	const int64 kDaysFromUnixEpochToYear10000 = 2932896 + 1;

	// When computing too_old / too_late, add one day to account for
	// possible leap seconds.
	base::Time too_old = base::Time::UnixEpoch() -
	base::TimeDelta::FromDays(kDaysFromYear0001ToUnixEpoch + 1);

	base::Time too_late = base::Time::UnixEpoch() +
	base::TimeDelta::FromDays(kDaysFromUnixEpochToYear10000 + 1);

	EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_old, too_old));
	EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_old, now));

	EXPECT_FALSE(x509_util::IsSupportedValidityRange(now, too_late));
	EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_late, too_late));
	}

	// For OpenSSL, x509_util::CreateDomainBoundCertEC() is not yet implemented
	// and should return false. This unit test ensures that a stub implementation
	// is present.
	TEST(X509UtilOpenSSLTest, CreateDomainBoundCertNotImplemented) {
	std::string domain = "weborigin.com";
	base::Time now = base::Time::Now();
	scoped_ptr<crypto::ECPrivateKey> private_key(
	crypto::ECPrivateKey::Create());
	std::string der_cert;
	EXPECT_FALSE(x509_util::CreateDomainBoundCertEC(
	private_key.get(),
	domain, 1,
	now,
	now + base::TimeDelta::FromDays(1),
	&der_cert));
	EXPECT_TRUE(der_cert.empty());

	}

	} // namespace net