diff options
| author | cbentzel@chromium.org <cbentzel@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-09-12 13:12:04 +0000 |
|---|---|---|
| committer | cbentzel@chromium.org <cbentzel@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-09-12 13:12:04 +0000 |
| commit | 79cb5c1739afa979cb0d5aa3701f128c6a50dde5 (patch) | |
| tree | 8e46e6ee56d1b0a8b339a358a2418a83f354a436 | |
| parent | 89b1769644f8a140ef663db69156a651422f50db (diff) | |
| download | chromium_src-79cb5c1739afa979cb0d5aa3701f128c6a50dde5.zip chromium_src-79cb5c1739afa979cb0d5aa3701f128c6a50dde5.tar.gz chromium_src-79cb5c1739afa979cb0d5aa3701f128c6a50dde5.tar.bz2 | |
Change AuthChallengeInfo to better represent underlying encodings.
* Use a HostPortPair to indicate the challenger info. This may be a punycode-encoded host.
* scheme is always ASCII encoded and a string
* realm is converted to UTF-16 rather than a wstring. Over the wire this is usually ASCII, can be ISO-8859-1 encoded as it's a quoted string, and could potentially be other encodings as specified by RFC 2047.
BUG=95692
TEST=http://greenbytes.de/tech/tc/httpauth/simplebasicrealmiso88591.asis should display an a with an umlaut.
Review URL: http://codereview.chromium.org/7569015
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@100676 0039d316-1c4b-4281-b951-d872f2087c98
| -rw-r--r-- | chrome/browser/extensions/extension_webrequest_api.cc | 5 | ||||
| -rw-r--r-- | chrome/browser/ui/login/login_prompt.cc | 26 | ||||
| -rw-r--r-- | chrome/browser/ui/login/login_prompt_browsertest.cc | 15 | ||||
| -rw-r--r-- | chrome/browser/ui/login/login_prompt_unittest.cc | 7 | ||||
| -rw-r--r-- | net/base/auth.cc | 6 | ||||
| -rw-r--r-- | net/base/auth.h | 24 | ||||
| -rw-r--r-- | net/http/http_auth_controller.cc | 10 | ||||
| -rw-r--r-- | net/http/http_auth_handler.h | 4 | ||||
| -rw-r--r-- | net/http/http_auth_handler_basic.cc | 48 | ||||
| -rw-r--r-- | net/http/http_auth_handler_basic_unittest.cc | 8 | ||||
| -rw-r--r-- | net/http/http_auth_handler_digest.cc | 20 | ||||
| -rw-r--r-- | net/http/http_auth_handler_digest.h | 5 | ||||
| -rw-r--r-- | net/http/http_auth_handler_digest_unittest.cc | 16 | ||||
| -rw-r--r-- | net/http/http_network_transaction_unittest.cc | 310 | ||||
| -rw-r--r-- | net/socket_stream/socket_stream.cc | 9 | ||||
| -rw-r--r-- | net/spdy/spdy_network_transaction_unittest.cc | 9 | ||||
| -rw-r--r-- | net/url_request/url_request_ftp_job.cc | 8 |
17 files changed, 252 insertions, 278 deletions
diff --git a/chrome/browser/extensions/extension_webrequest_api.cc b/chrome/browser/extensions/extension_webrequest_api.cc index e156c23..83d0fe2 100644 --- a/chrome/browser/extensions/extension_webrequest_api.cc +++ b/chrome/browser/extensions/extension_webrequest_api.cc @@ -611,9 +611,10 @@ void ExtensionWebRequestEventRouter::OnAuthRequired( base::Uint64ToString(request->identifier())); dict->SetString(keys::kUrlKey, request->url().spec()); dict->SetBoolean(keys::kIsProxyKey, auth_info.is_proxy); - dict->SetString(keys::kSchemeKey, WideToUTF8(auth_info.scheme)); + if (!auth_info.scheme.empty()) + dict->SetString(keys::kSchemeKey, auth_info.scheme); if (!auth_info.realm.empty()) - dict->SetString(keys::kRealmKey, WideToUTF8(auth_info.realm)); + dict->SetString(keys::kRealmKey, auth_info.realm); dict->SetDouble(keys::kTimeStampKey, time.ToDoubleT() * 1000); if (extra_info_spec & ExtraInfoSpec::REQUEST_HEADERS) { dict->Set(keys::kResponseHeadersKey, diff --git a/chrome/browser/ui/login/login_prompt.cc b/chrome/browser/ui/login/login_prompt.cc index c4c39f2..a05f03a 100644 --- a/chrome/browser/ui/login/login_prompt.cc +++ b/chrome/browser/ui/login/login_prompt.cc @@ -58,14 +58,14 @@ std::string GetSignonRealm(const GURL& url, const net::AuthChallengeInfo& auth_info) { std::string signon_realm; if (auth_info.is_proxy) { - signon_realm = WideToASCII(auth_info.host_and_port); + signon_realm = auth_info.challenger.ToString(); signon_realm.append("/"); } else { // Take scheme, host, and port from the url. signon_realm = url.GetOrigin().spec(); // This ends with a "/". } - signon_realm.append(WideToUTF8(auth_info.realm)); + signon_realm.append(auth_info.realm); return signon_realm; } @@ -234,7 +234,7 @@ void LoginHandler::Observe(int type, DCHECK(login_details->handler() != this); // Only handle notification for the identical auth info. - if (*login_details->handler()->auth_info() != *auth_info()) + if (!login_details->handler()->auth_info()->Equals(*auth_info())) return; // Set or cancel the auth in this handler. @@ -417,19 +417,18 @@ class LoginDialogTask : public Task { password_manager->OnPasswordFormsFound(v); handler_->SetPasswordManager(password_manager); - string16 host_and_port_hack16 = WideToUTF16Hack(auth_info_->host_and_port); - // The realm is controlled by the remote server, so there is no reason // to believe it is of a reasonable length. - string16 realm_hack16; - ui::ElideString(WideToUTF16Hack(auth_info_->realm), 120, &realm_hack16); + string16 elided_realm; + ui::ElideString(UTF8ToUTF16(auth_info_->realm), 120, &elided_realm); - string16 explanation = realm_hack16.empty() ? + string16 host_and_port = ASCIIToUTF16(auth_info_->challenger.ToString()); + string16 explanation = elided_realm.empty() ? l10n_util::GetStringFUTF16(IDS_LOGIN_DIALOG_DESCRIPTION_NO_REALM, - host_and_port_hack16) : + host_and_port) : l10n_util::GetStringFUTF16(IDS_LOGIN_DIALOG_DESCRIPTION, - host_and_port_hack16, - realm_hack16); + host_and_port, + elided_realm); handler_->BuildViewForPasswordManager(password_manager, explanation); } @@ -446,14 +445,15 @@ class LoginDialogTask : public Task { } else { dialog_form.scheme = PasswordForm::SCHEME_OTHER; } - std::string host_and_port(WideToASCII(auth_info_->host_and_port)); + std::string host_and_port(auth_info_->challenger.ToString()); if (auth_info_->is_proxy) { std::string origin = host_and_port; // We don't expect this to already start with http:// or https://. DCHECK(origin.find("http://") != 0 && origin.find("https://") != 0); origin = std::string("http://") + origin; dialog_form.origin = GURL(origin); - } else if (net::GetHostAndPort(request_url_) != host_and_port) { + } else if (!auth_info_->challenger.Equals( + net::HostPortPair::FromURL(request_url_))) { dialog_form.origin = GURL(); NOTREACHED(); // crbug.com/32718 } else { diff --git a/chrome/browser/ui/login/login_prompt_browsertest.cc b/chrome/browser/ui/login/login_prompt_browsertest.cc index 01baecb..b991475 100644 --- a/chrome/browser/ui/login/login_prompt_browsertest.cc +++ b/chrome/browser/ui/login/login_prompt_browsertest.cc @@ -28,13 +28,11 @@ class LoginPromptBrowserTest : public InProcessBrowserTest { : bad_password_(L"incorrect"), bad_username_(L"nouser") { set_show_window(true); - auth_map_[L"foo"] = AuthInfo(L"testuser", L"foopassword"); - auth_map_[L"bar"] = AuthInfo(L"testuser", L"barpassword"); + auth_map_["foo"] = AuthInfo(L"testuser", L"foopassword"); + auth_map_["bar"] = AuthInfo(L"testuser", L"barpassword"); } protected: - void SetAuthFor(LoginHandler* handler); - struct AuthInfo { std::wstring username_; std::wstring password_; @@ -46,7 +44,11 @@ class LoginPromptBrowserTest : public InProcessBrowserTest { : username_(username), password_(password) {} }; - std::map<std::wstring, AuthInfo> auth_map_; + typedef std::map<std::string, AuthInfo> AuthMap; + + void SetAuthFor(LoginHandler* handler); + + AuthMap auth_map_; std::wstring bad_password_; std::wstring bad_username_; }; @@ -55,8 +57,7 @@ void LoginPromptBrowserTest::SetAuthFor(LoginHandler* handler) { const net::AuthChallengeInfo* challenge = handler->auth_info(); ASSERT_TRUE(challenge); - std::map<std::wstring, AuthInfo>::iterator i = - auth_map_.find(challenge->realm); + AuthMap::iterator i = auth_map_.find(challenge->realm); EXPECT_TRUE(auth_map_.end() != i); if (i != auth_map_.end()) { const AuthInfo& info = i->second; diff --git a/chrome/browser/ui/login/login_prompt_unittest.cc b/chrome/browser/ui/login/login_prompt_unittest.cc index 9454e13..b3aae1a 100644 --- a/chrome/browser/ui/login/login_prompt_unittest.cc +++ b/chrome/browser/ui/login/login_prompt_unittest.cc @@ -1,4 +1,4 @@ -// Copyright (c) 2006-2008 The Chromium Authors. All rights reserved. +// Copyright (c) 2011 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. @@ -7,13 +7,12 @@ #include "net/base/auth.h" #include "testing/gtest/include/gtest/gtest.h" - TEST(LoginPromptTest, GetSignonRealm) { scoped_refptr<net::AuthChallengeInfo> auth_info = new net::AuthChallengeInfo; auth_info->is_proxy = false; // server auth // auth_info->host is intentionally left empty. - auth_info->scheme = L"Basic"; - auth_info->realm = L"WallyWorld"; + auth_info->scheme = "Basic"; + auth_info->realm = "WallyWorld"; std::string url[] = { "https://www.nowhere.org/dir/index.html", diff --git a/net/base/auth.cc b/net/base/auth.cc index 08b869c..f60c8ed 100644 --- a/net/base/auth.cc +++ b/net/base/auth.cc @@ -1,4 +1,4 @@ -// Copyright (c) 2010 The Chromium Authors. All rights reserved. +// Copyright (c) 2011 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. @@ -9,9 +9,9 @@ namespace net { AuthChallengeInfo::AuthChallengeInfo() : is_proxy(false) { } -bool AuthChallengeInfo::operator==(const AuthChallengeInfo& that) const { +bool AuthChallengeInfo::Equals(const AuthChallengeInfo& that) const { return (this->is_proxy == that.is_proxy && - this->host_and_port == that.host_and_port && + this->challenger.Equals(that.challenger) && this->scheme == that.scheme && this->realm == that.realm); } diff --git a/net/base/auth.h b/net/base/auth.h index 834d9b5..51f8db9 100644 --- a/net/base/auth.h +++ b/net/base/auth.h @@ -10,6 +10,7 @@ #include "base/memory/ref_counted.h" #include "base/string16.h" +#include "net/base/host_port_pair.h" #include "net/base/net_export.h" namespace net { @@ -21,17 +22,21 @@ class NET_EXPORT AuthChallengeInfo : public: AuthChallengeInfo(); - bool operator==(const AuthChallengeInfo& that) const; + // Determines whether two AuthChallengeInfo's are equivalent. + bool Equals(const AuthChallengeInfo& other) const; - bool operator!=(const AuthChallengeInfo& that) const { - return !(*this == that); - } + // Whether this came from a server or a proxy. + bool is_proxy; - bool is_proxy; // true for Proxy-Authenticate, false for WWW-Authenticate. - std::wstring host_and_port; // <host>:<port> of the server asking for auth - // (could be the proxy). - std::wstring scheme; // "Basic", "Digest", or whatever other method is used. - std::wstring realm; // the realm provided by the server, if there is one. + // The service issuing the challenge. + HostPortPair challenger; + + // The authentication scheme used, such as "basic" or "digest". If the + // |source| is FTP_SERVER, this is an empty string. The encoding is ASCII. + std::string scheme; + + // The realm of the challenge. May be empty. The encoding is UTF-8. + std::string realm; private: friend class base::RefCountedThreadSafe<AuthChallengeInfo>; @@ -49,7 +54,6 @@ enum AuthState { class AuthData : public base::RefCountedThreadSafe<AuthData> { public: AuthState state; // whether we need, have, or gave up on authentication. - std::wstring scheme; // the authentication scheme. string16 username; // the username supplied to us for auth. string16 password; // the password supplied to us for auth. diff --git a/net/http/http_auth_controller.cc b/net/http/http_auth_controller.cc index 477478a..4899a0c 100644 --- a/net/http/http_auth_controller.cc +++ b/net/http/http_auth_controller.cc @@ -511,12 +511,10 @@ void HttpAuthController::PopulateAuthChallenge() { // This info is consumed by URLRequestHttpJob::GetAuthChallengeInfo(). auth_info_ = new AuthChallengeInfo; - auth_info_->is_proxy = target_ == HttpAuth::AUTH_PROXY; - auth_info_->host_and_port = ASCIIToWide(GetHostAndPort(auth_origin_)); - auth_info_->scheme = ASCIIToWide( - HttpAuth::SchemeToString(handler_->auth_scheme())); - // TODO(eroman): decode realm according to RFC 2047. - auth_info_->realm = ASCIIToWide(handler_->realm()); + auth_info_->is_proxy = (target_ == HttpAuth::AUTH_PROXY); + auth_info_->challenger = HostPortPair::FromURL(auth_origin_); + auth_info_->scheme = HttpAuth::SchemeToString(handler_->auth_scheme()); + auth_info_->realm = handler_->realm(); } bool HttpAuthController::DisableOnAuthHandlerResult(int result) { diff --git a/net/http/http_auth_handler.h b/net/http/http_auth_handler.h index 8f237e8..00f45f2 100644 --- a/net/http/http_auth_handler.h +++ b/net/http/http_auth_handler.h @@ -81,7 +81,7 @@ class NET_EXPORT_PRIVATE HttpAuthHandler { return auth_scheme_; } - // The realm value that was parsed during Init(). + // The realm, encoded as UTF-8. This may be empty. const std::string& realm() const { return realm_; } @@ -166,7 +166,7 @@ class NET_EXPORT_PRIVATE HttpAuthHandler { // The auth-scheme as an enumerated value. HttpAuth::Scheme auth_scheme_; - // The realm. Used by "basic" and "digest". + // The realm, encoded as UTF-8. Used by "basic" and "digest". std::string realm_; // The auth challenge. diff --git a/net/http/http_auth_handler_basic.cc b/net/http/http_auth_handler_basic.cc index a51b8ba..a618651 100644 --- a/net/http/http_auth_handler_basic.cc +++ b/net/http/http_auth_handler_basic.cc @@ -1,4 +1,4 @@ -// Copyright (c) 2010 The Chromium Authors. All rights reserved. +// Copyright (c) 2011 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. @@ -7,6 +7,7 @@ #include <string> #include "base/base64.h" +#include "base/i18n/icu_string_conversions.h" #include "base/string_util.h" #include "base/utf_string_conversions.h" #include "net/base/net_errors.h" @@ -14,6 +15,11 @@ namespace net { +namespace { + +// Parses a realm from an auth challenge, and converts to UTF8-encoding. +// Returns whether the realm is invalid or the parameters are invalid. +// // Note that if a realm was not specified, we will default it to ""; // so specifying 'Basic realm=""' is equivalent to 'Basic'. // @@ -22,6 +28,29 @@ namespace net { // // We allow it to be compatibility with certain embedded webservers that don't // include a realm (see http://crbug.com/20984.) +// +// The over-the-wire realm is encoded as ISO-8859-1 (aka Latin-1). +// +// TODO(cbentzel): Realm may need to be decoded using RFC 2047 rules as +// well, see http://crbug.com/25790. +bool ParseRealm(const HttpAuth::ChallengeTokenizer& tokenizer, + std::string* realm) { + CHECK(realm); + realm->clear(); + HttpUtil::NameValuePairsIterator parameters = tokenizer.param_pairs(); + while (parameters.GetNext()) { + if (!LowerCaseEqualsASCII(parameters.name(), "realm")) + continue; + + if (!base::ConvertToUtf8AndNormalize( + parameters.value(), base::kCodepageLatin1, realm)) + return false; + } + return parameters.valid(); +} + +} // namespace + bool HttpAuthHandlerBasic::Init(HttpAuth::ChallengeTokenizer* challenge) { auth_scheme_ = HttpAuth::AUTH_SCHEME_BASIC; score_ = 1; @@ -35,16 +64,8 @@ bool HttpAuthHandlerBasic::ParseChallenge( if (!LowerCaseEqualsASCII(challenge->scheme(), "basic")) return false; - HttpUtil::NameValuePairsIterator parameters = challenge->param_pairs(); - - // Extract the realm (may be missing). std::string realm; - while (parameters.GetNext()) { - if (LowerCaseEqualsASCII(parameters.name(), "realm")) - realm = parameters.value(); - } - - if (!parameters.valid()) + if (!ParseRealm(*challenge, &realm)) return false; realm_ = realm; @@ -56,12 +77,9 @@ HttpAuth::AuthorizationResult HttpAuthHandlerBasic::HandleAnotherChallenge( // Basic authentication is always a single round, so any responses // should be treated as a rejection. However, if the new challenge // is for a different realm, then indicate the realm change. - HttpUtil::NameValuePairsIterator parameters = challenge->param_pairs(); std::string realm; - while (parameters.GetNext()) { - if (LowerCaseEqualsASCII(parameters.name(), "realm")) - realm = parameters.value(); - } + if (!ParseRealm(*challenge, &realm)) + return HttpAuth::AUTHORIZATION_RESULT_INVALID; return (realm_ != realm)? HttpAuth::AUTHORIZATION_RESULT_DIFFERENT_REALM: HttpAuth::AUTHORIZATION_RESULT_REJECT; diff --git a/net/http/http_auth_handler_basic_unittest.cc b/net/http/http_auth_handler_basic_unittest.cc index b75e2c9..74d8800 100644 --- a/net/http/http_auth_handler_basic_unittest.cc +++ b/net/http/http_auth_handler_basic_unittest.cc @@ -171,6 +171,14 @@ TEST(HttpAuthHandlerBasicTest, InitFromChallenge) { OK, "bar", }, + + // Handle ISO-8859-1 character as part of the realm. The realm is converted + // to UTF-8. + { + "Basic realm=\"foo-\xE5\"", + OK, + "foo-\xC3\xA5", + }, }; HttpAuthHandlerBasic::Factory factory; GURL origin("http://www.example.com"); diff --git a/net/http/http_auth_handler_digest.cc b/net/http/http_auth_handler_digest.cc index da7a601..fe93479 100644 --- a/net/http/http_auth_handler_digest.cc +++ b/net/http/http_auth_handler_digest.cc @@ -6,6 +6,7 @@ #include <string> +#include "base/i18n/icu_string_conversions.h" #include "base/logging.h" #include "base/md5.h" #include "base/rand_util.h" @@ -114,19 +115,19 @@ HttpAuth::AuthorizationResult HttpAuthHandlerDigest::HandleAnotherChallenge( return HttpAuth::AUTHORIZATION_RESULT_INVALID; HttpUtil::NameValuePairsIterator parameters = challenge->param_pairs(); - std::string realm; // Try to find the "stale" value, and also keep track of the realm // for the new challenge. + std::string original_realm; while (parameters.GetNext()) { if (LowerCaseEqualsASCII(parameters.name(), "stale")) { if (LowerCaseEqualsASCII(parameters.value(), "true")) return HttpAuth::AUTHORIZATION_RESULT_STALE; } else if (LowerCaseEqualsASCII(parameters.name(), "realm")) { - realm = parameters.value(); + original_realm = parameters.value(); } } - return (realm_ != realm) ? + return (original_realm_ != original_realm) ? HttpAuth::AUTHORIZATION_RESULT_DIFFERENT_REALM : HttpAuth::AUTHORIZATION_RESULT_REJECT; } @@ -198,7 +199,7 @@ bool HttpAuthHandlerDigest::ParseChallenge( stale_ = false; algorithm_ = ALGORITHM_UNSPECIFIED; qop_ = QOP_UNSPECIFIED; - realm_ = nonce_ = domain_ = opaque_ = std::string(); + realm_ = original_realm_ = nonce_ = domain_ = opaque_ = std::string(); // FAIL -- Couldn't match auth-scheme. if (!LowerCaseEqualsASCII(challenge->scheme(), "digest")) @@ -228,7 +229,11 @@ bool HttpAuthHandlerDigest::ParseChallenge( bool HttpAuthHandlerDigest::ParseChallengeProperty(const std::string& name, const std::string& value) { if (LowerCaseEqualsASCII(name, "realm")) { - realm_ = value; + std::string realm; + if (!base::ConvertToUtf8AndNormalize(value, base::kCodepageLatin1, &realm)) + return false; + realm_ = realm; + original_realm_ = value; } else if (LowerCaseEqualsASCII(name, "nonce")) { nonce_ = value; } else if (LowerCaseEqualsASCII(name, "domain")) { @@ -321,7 +326,8 @@ std::string HttpAuthHandlerDigest::AssembleResponseDigest( const std::string& nc) const { // ha1 = MD5(A1) // TODO(eroman): is this the right encoding? - std::string ha1 = base::MD5String(UTF16ToUTF8(username) + ":" + realm_ + ":" + + std::string ha1 = base::MD5String(UTF16ToUTF8(username) + ":" + + original_realm_ + ":" + UTF16ToUTF8(password)); if (algorithm_ == HttpAuthHandlerDigest::ALGORITHM_MD5_SESS) ha1 = base::MD5String(ha1 + ":" + nonce_ + ":" + cnonce); @@ -351,7 +357,7 @@ std::string HttpAuthHandlerDigest::AssembleCredentials( // TODO(eroman): is this the right encoding? std::string authorization = (std::string("Digest username=") + HttpUtil::Quote(UTF16ToUTF8(username))); - authorization += ", realm=" + HttpUtil::Quote(realm_); + authorization += ", realm=" + HttpUtil::Quote(original_realm_); authorization += ", nonce=" + HttpUtil::Quote(nonce_); authorization += ", uri=" + HttpUtil::Quote(path); diff --git a/net/http/http_auth_handler_digest.h b/net/http/http_auth_handler_digest.h index 809e346..c1c5a21 100644 --- a/net/http/http_auth_handler_digest.h +++ b/net/http/http_auth_handler_digest.h @@ -169,6 +169,11 @@ class NET_EXPORT_PRIVATE HttpAuthHandlerDigest : public HttpAuthHandler { DigestAlgorithm algorithm_; QualityOfProtection qop_; + // The realm as initially encoded over-the-wire. This is used in the + // challenge text, rather than |realm_| which has been converted to + // UTF-8. + std::string original_realm_; + int nonce_count_; const NonceGenerator* nonce_generator_; }; diff --git a/net/http/http_auth_handler_digest_unittest.cc b/net/http/http_auth_handler_digest_unittest.cc index 8464a53..302eaa1 100644 --- a/net/http/http_auth_handler_digest_unittest.cc +++ b/net/http/http_auth_handler_digest_unittest.cc @@ -1,4 +1,4 @@ -// Copyright (c) 2010 The Chromium Authors. All rights reserved. +// Copyright (c) 2011 The Chromium Authors. All rights reserved. // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. @@ -146,6 +146,20 @@ TEST(HttpAuthHandlerDigestTest, ParseChallenge) { HttpAuthHandlerDigest::QOP_UNSPECIFIED }, + // Handle ISO-8859-1 character as part of the realm. The realm is converted + // to UTF-8. However, the credentials will still use the original encoding. + { + "Digest nonce=\"xyz\", realm=\"foo-\xE5\"", + true, + "foo-\xC3\xA5", + "xyz", + "", + "", + false, + HttpAuthHandlerDigest::ALGORITHM_UNSPECIFIED, + HttpAuthHandlerDigest::QOP_UNSPECIFIED, + }, + { // At a minimum, a nonce must be provided. "Digest realm=\"Thunder Bluff\"", false, diff --git a/net/http/http_network_transaction_unittest.cc b/net/http/http_network_transaction_unittest.cc index 44b6759..ba6fee9 100644 --- a/net/http/http_network_transaction_unittest.cc +++ b/net/http/http_network_transaction_unittest.cc @@ -334,6 +334,48 @@ static const char kExpectedNPNString[] = "\x08http/1.1\x06spdy/2"; static const char kAlternateProtocolHttpHeader[] = "Alternate-Protocol: 443:npn-spdy/2\r\n\r\n"; +// Helper functions for validating that AuthChallengeInfo's are correctly +// configured for common cases. +bool CheckBasicServerAuth(const AuthChallengeInfo* auth_challenge) { + if (!auth_challenge) + return false; + EXPECT_FALSE(auth_challenge->is_proxy); + EXPECT_EQ("www.google.com:80", auth_challenge->challenger.ToString()); + EXPECT_EQ("MyRealm1", auth_challenge->realm); + EXPECT_EQ("basic", auth_challenge->scheme); + return true; +} + +bool CheckBasicProxyAuth(const AuthChallengeInfo* auth_challenge) { + if (!auth_challenge) + return false; + EXPECT_TRUE(auth_challenge->is_proxy); + EXPECT_EQ("myproxy:70", auth_challenge->challenger.ToString()); + EXPECT_EQ("MyRealm1", auth_challenge->realm); + EXPECT_EQ("basic", auth_challenge->scheme); + return true; +} + +bool CheckDigestServerAuth(const AuthChallengeInfo* auth_challenge) { + if (!auth_challenge) + return false; + EXPECT_FALSE(auth_challenge->is_proxy); + EXPECT_EQ("www.google.com:80", auth_challenge->challenger.ToString()); + EXPECT_EQ("digestive", auth_challenge->realm); + EXPECT_EQ("digest", auth_challenge->scheme); + return true; +} + +bool CheckNTLMServerAuth(const AuthChallengeInfo* auth_challenge) { + if (!auth_challenge) + return false; + EXPECT_FALSE(auth_challenge->is_proxy); + EXPECT_EQ("172.22.68.17:80", auth_challenge->challenger.ToString()); + EXPECT_EQ(std::string(), auth_challenge->realm); + EXPECT_EQ("ntlm", auth_challenge->scheme); + return true; +} + TEST_F(HttpNetworkTransactionTest, Basic) { SessionDependencies session_deps; scoped_ptr<HttpTransaction> trans( @@ -1091,14 +1133,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuth) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1216,14 +1252,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthKeepAlive) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1297,14 +1327,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthKeepAliveNoBody) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1386,14 +1410,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthKeepAliveLargeBody) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1477,14 +1495,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthKeepAliveImpatientServer) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1576,16 +1588,10 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthProxyNoKeepAlive) { const HttpResponseInfo* response = trans->GetResponseInfo(); ASSERT_FALSE(response == NULL); - + ASSERT_FALSE(response->headers == NULL); EXPECT_EQ(407, response->headers->response_code()); EXPECT_TRUE(HttpVersion(1, 1) == response->headers->GetHttpVersion()); - - // The password prompt info should have been set in response->auth_challenge. - ASSERT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"myproxy:70", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + EXPECT_TRUE(CheckBasicProxyAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1681,19 +1687,13 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthProxyKeepAlive) { NetLog::PHASE_NONE); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - + ASSERT_FALSE(response == NULL); + ASSERT_FALSE(response->headers == NULL); EXPECT_TRUE(response->headers->IsKeepAlive()); EXPECT_EQ(407, response->headers->response_code()); EXPECT_EQ(10, response->headers->GetContentLength()); EXPECT_TRUE(HttpVersion(1, 1) == response->headers->GetHttpVersion()); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"myproxy:70", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + EXPECT_TRUE(CheckBasicProxyAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -1705,19 +1705,13 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthProxyKeepAlive) { EXPECT_EQ(OK, rv); response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - + ASSERT_FALSE(response == NULL); + ASSERT_FALSE(response->headers == NULL); EXPECT_TRUE(response->headers->IsKeepAlive()); EXPECT_EQ(407, response->headers->response_code()); EXPECT_EQ(10, response->headers->GetContentLength()); EXPECT_TRUE(HttpVersion(1, 1) == response->headers->GetHttpVersion()); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"myproxy:70", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + EXPECT_TRUE(CheckBasicProxyAuth(response->auth_challenge.get())); // Flush the idle socket before the NetLog and HttpNetworkTransaction go // out of scope. @@ -2005,9 +1999,9 @@ TEST_F(HttpNetworkTransactionTest, HttpsProxySpdyGetWithProxyAuth) { request.url = GURL("http://www.google.com/"); request.load_flags = 0; - // Configure against https proxy server "proxy:70". + // Configure against https proxy server "myproxy:70". SessionDependencies session_deps( - ProxyService::CreateFixed("https://proxy:70")); + ProxyService::CreateFixed("https://myproxy:70")); CapturingBoundNetLog log(CapturingNetLog::kUnbounded); session_deps.net_log = log.bound().net_log(); scoped_refptr<HttpNetworkSession> session(CreateSession(&session_deps)); @@ -2080,13 +2074,7 @@ TEST_F(HttpNetworkTransactionTest, HttpsProxySpdyGetWithProxyAuth) { ASSERT_TRUE(response->headers != NULL); EXPECT_EQ(407, response->headers->response_code()); EXPECT_TRUE(response->was_fetched_via_spdy); - - // The password prompt info should have been set in response->auth_challenge. - ASSERT_TRUE(response->auth_challenge.get() != NULL); - EXPECT_TRUE(response->auth_challenge->is_proxy); - EXPECT_EQ(L"proxy:70", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + EXPECT_TRUE(CheckBasicProxyAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -2326,8 +2314,9 @@ TEST_F(HttpNetworkTransactionTest, HttpsProxyAuthRetry) { // when the no authentication data flag is set. request.load_flags = net::LOAD_DO_NOT_SEND_AUTH_DATA; - // Configure against https proxy server "proxy:70". - SessionDependencies session_deps(ProxyService::CreateFixed("https://proxy:70")); + // Configure against https proxy server "myproxy:70". + SessionDependencies session_deps( + ProxyService::CreateFixed("https://myproxy:70")); CapturingBoundNetLog log(CapturingNetLog::kUnbounded); session_deps.net_log = log.bound().net_log(); scoped_refptr<HttpNetworkSession> session(CreateSession(&session_deps)); @@ -2379,16 +2368,10 @@ TEST_F(HttpNetworkTransactionTest, HttpsProxyAuthRetry) { const HttpResponseInfo* response = trans->GetResponseInfo(); ASSERT_FALSE(response == NULL); - + ASSERT_FALSE(response->headers == NULL); EXPECT_EQ(407, response->headers->response_code()); EXPECT_TRUE(HttpVersion(1, 1) == response->headers->GetHttpVersion()); - - // The password prompt info should have been set in response->auth_challenge. - ASSERT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"proxy:70", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + EXPECT_TRUE(CheckBasicProxyAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -2713,14 +2696,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthProxyThenServer) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"myproxy:70", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicProxyAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -2731,12 +2708,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthProxyThenServer) { EXPECT_EQ(OK, rv); response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback3; @@ -2856,15 +2829,8 @@ TEST_F(HttpNetworkTransactionTest, NTLMAuth1) { EXPECT_FALSE(trans->IsReadyToRestartForAuth()); const HttpResponseInfo* response = trans->GetResponseInfo(); - ASSERT_TRUE(response != NULL); - - // The password prompt info should have been set in - // response->auth_challenge. - ASSERT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"172.22.68.17:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"", response->auth_challenge->realm); - EXPECT_EQ(L"ntlm", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckNTLMServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -2878,7 +2844,6 @@ TEST_F(HttpNetworkTransactionTest, NTLMAuth1) { response = trans->GetResponseInfo(); ASSERT_TRUE(response != NULL); - EXPECT_TRUE(response->auth_challenge.get() == NULL); TestCompletionCallback callback3; @@ -3043,14 +3008,8 @@ TEST_F(HttpNetworkTransactionTest, NTLMAuth2) { EXPECT_FALSE(trans->IsReadyToRestartForAuth()); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"172.22.68.17:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"", response->auth_challenge->realm); - EXPECT_EQ(L"ntlm", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckNTLMServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -3070,14 +3029,8 @@ TEST_F(HttpNetworkTransactionTest, NTLMAuth2) { EXPECT_FALSE(trans->IsReadyToRestartForAuth()); response = trans->GetResponseInfo(); - ASSERT_TRUE(response != NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"172.22.68.17:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"", response->auth_challenge->realm); - EXPECT_EQ(L"ntlm", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckNTLMServerAuth(response->auth_challenge.get())); TestCompletionCallback callback4; @@ -3725,13 +3678,8 @@ TEST_F(HttpNetworkTransactionTest, WrongAuthIdentityInURL) { EXPECT_FALSE(trans->IsReadyToRestartForAuth()); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback3; rv = trans->RestartWithAuth(kFoo, kBar, &callback3); @@ -3810,15 +3758,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthCacheAndPreauth) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in - // response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -3895,15 +3836,13 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthCacheAndPreauth) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in - // response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm2", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + ASSERT_TRUE(response->auth_challenge.get()); + EXPECT_FALSE(response->auth_challenge->is_proxy); + EXPECT_EQ("www.google.com:80", + response->auth_challenge->challenger.ToString()); + EXPECT_EQ("MyRealm2", response->auth_challenge->realm); + EXPECT_EQ("basic", response->auth_challenge->scheme); TestCompletionCallback callback2; @@ -4119,15 +4058,8 @@ TEST_F(HttpNetworkTransactionTest, BasicAuthCacheAndPreauth) { EXPECT_FALSE(trans->IsReadyToRestartForAuth()); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in - // response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback3; @@ -4212,14 +4144,7 @@ TEST_F(HttpNetworkTransactionTest, DigestPreAuthNonceCount) { const HttpResponseInfo* response = trans->GetResponseInfo(); ASSERT_FALSE(response == NULL); - - // The password prompt info should have been set in - // response->auth_challenge. - ASSERT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"digestive", response->auth_challenge->realm); - EXPECT_EQ(L"digest", response->auth_challenge->scheme); + EXPECT_TRUE(CheckDigestServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -5990,14 +5915,8 @@ TEST_F(HttpNetworkTransactionTest, DrainResetOK) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_FALSE(response == NULL); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_FALSE(response->auth_challenge.get() == NULL); - - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + ASSERT_FALSE(response == NULL); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); TestCompletionCallback callback2; @@ -6254,15 +6173,10 @@ TEST_F(HttpNetworkTransactionTest, UnreadableUploadFileAfterAuthRestart) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); - EXPECT_TRUE(response != NULL); - EXPECT_TRUE(response->headers != NULL); + ASSERT_TRUE(response != NULL); + ASSERT_TRUE(response->headers != NULL); EXPECT_EQ("HTTP/1.1 401 Unauthorized", response->headers->GetStatusLine()); - - // The password prompt info should have been set in response->auth_challenge. - EXPECT_TRUE(response->auth_challenge.get() != NULL); - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"MyRealm1", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + EXPECT_TRUE(CheckBasicServerAuth(response->auth_challenge.get())); // Now make the file unreadable and try again. ASSERT_TRUE(file_util::MakeFileUnreadable(temp_file)); @@ -6381,10 +6295,12 @@ TEST_F(HttpNetworkTransactionTest, ChangeAuthRealms) { EXPECT_EQ(OK, rv); const HttpResponseInfo* response = trans->GetResponseInfo(); ASSERT_FALSE(response == NULL); - ASSERT_FALSE(response->auth_challenge.get() == NULL); - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"first_realm", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + const AuthChallengeInfo* challenge = response->auth_challenge.get(); + ASSERT_FALSE(challenge == NULL); + EXPECT_FALSE(challenge->is_proxy); + EXPECT_EQ("www.google.com:80", challenge->challenger.ToString()); + EXPECT_EQ("first_realm", challenge->realm); + EXPECT_EQ("basic", challenge->scheme); // Issue the second request with an incorrect password. There should be a // password prompt for second_realm waiting to be filled in after the @@ -6396,10 +6312,12 @@ TEST_F(HttpNetworkTransactionTest, ChangeAuthRealms) { EXPECT_EQ(OK, rv); response = trans->GetResponseInfo(); ASSERT_FALSE(response == NULL); - ASSERT_FALSE(response->auth_challenge.get() == NULL); - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"second_realm", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + challenge = response->auth_challenge.get(); + ASSERT_FALSE(challenge == NULL); + EXPECT_FALSE(challenge->is_proxy); + EXPECT_EQ("www.google.com:80", challenge->challenger.ToString()); + EXPECT_EQ("second_realm", challenge->realm); + EXPECT_EQ("basic", challenge->scheme); // Issue the third request with another incorrect password. There should be // a password prompt for first_realm waiting to be filled in. If the password @@ -6412,10 +6330,12 @@ TEST_F(HttpNetworkTransactionTest, ChangeAuthRealms) { EXPECT_EQ(OK, rv); response = trans->GetResponseInfo(); ASSERT_FALSE(response == NULL); - ASSERT_FALSE(response->auth_challenge.get() == NULL); - EXPECT_EQ(L"www.google.com:80", response->auth_challenge->host_and_port); - EXPECT_EQ(L"first_realm", response->auth_challenge->realm); - EXPECT_EQ(L"basic", response->auth_challenge->scheme); + challenge = response->auth_challenge.get(); + ASSERT_FALSE(challenge == NULL); + EXPECT_FALSE(challenge->is_proxy); + EXPECT_EQ("www.google.com:80", challenge->challenger.ToString()); + EXPECT_EQ("first_realm", challenge->realm); + EXPECT_EQ("basic", challenge->scheme); // Issue the fourth request with the correct password and username. TestCompletionCallback callback4; diff --git a/net/socket_stream/socket_stream.cc b/net/socket_stream/socket_stream.cc index bed9f2c..159779a 100644 --- a/net/socket_stream/socket_stream.cc +++ b/net/socket_stream/socket_stream.cc @@ -851,11 +851,10 @@ int SocketStream::DoReadTunnelHeadersComplete(int result) { DCHECK(!proxy_info_.is_empty()); auth_info_ = new AuthChallengeInfo; auth_info_->is_proxy = true; - auth_info_->host_and_port = - ASCIIToWide(proxy_info_.proxy_server().host_port_pair().ToString()); - auth_info_->scheme = ASCIIToWide( - HttpAuth::SchemeToString(auth_handler_->auth_scheme())); - auth_info_->realm = ASCIIToWide(auth_handler_->realm()); + auth_info_->challenger = proxy_info_.proxy_server().host_port_pair(); + auth_info_->scheme = HttpAuth::SchemeToString( + auth_handler_->auth_scheme()); + auth_info_->realm = auth_handler_->realm(); // Wait until RestartWithAuth or Close is called. MessageLoop::current()->PostTask( FROM_HERE, diff --git a/net/spdy/spdy_network_transaction_unittest.cc b/net/spdy/spdy_network_transaction_unittest.cc index a41a415..5acd830 100644 --- a/net/spdy/spdy_network_transaction_unittest.cc +++ b/net/spdy/spdy_network_transaction_unittest.cc @@ -4927,10 +4927,11 @@ TEST_P(SpdyNetworkTransactionTest, SpdyBasicAuth) { ASSERT_TRUE(response_start->headers != NULL); EXPECT_EQ(401, response_start->headers->response_code()); EXPECT_TRUE(response_start->was_fetched_via_spdy); - ASSERT_TRUE(response_start->auth_challenge.get() != NULL); - EXPECT_FALSE(response_start->auth_challenge->is_proxy); - EXPECT_EQ(L"basic", response_start->auth_challenge->scheme); - EXPECT_EQ(L"MyRealm", response_start->auth_challenge->realm); + AuthChallengeInfo* auth_challenge = response_start->auth_challenge.get(); + ASSERT_TRUE(auth_challenge != NULL); + EXPECT_FALSE(auth_challenge->is_proxy); + EXPECT_EQ("basic", auth_challenge->scheme); + EXPECT_EQ("MyRealm", auth_challenge->realm); // Restart with a username/password. const string16 kFoo(ASCIIToUTF16("foo")); diff --git a/net/url_request/url_request_ftp_job.cc b/net/url_request/url_request_ftp_job.cc index 559108d..1f04548 100644 --- a/net/url_request/url_request_ftp_job.cc +++ b/net/url_request/url_request_ftp_job.cc @@ -194,10 +194,10 @@ void URLRequestFtpJob::GetAuthChallengeInfo( (server_auth_->state == AUTH_STATE_NEED_AUTH)); scoped_refptr<AuthChallengeInfo> auth_info(new AuthChallengeInfo); auth_info->is_proxy = false; - auth_info->host_and_port = ASCIIToWide( - GetHostAndPort(request_->url())); - auth_info->scheme = L""; - auth_info->realm = L""; + auth_info->challenger = HostPortPair::FromURL(request_->url()); + // scheme and realm are kept empty. + DCHECK(auth_info->scheme.empty()); + DCHECK(auth_info->realm.empty()); result->swap(auth_info); } |