diff options
| author | abarth@chromium.org <abarth@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-04-30 01:44:29 +0000 |
|---|---|---|
| committer | abarth@chromium.org <abarth@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2011-04-30 01:44:29 +0000 |
| commit | 8155f1a70fb66b287df28784bab5235eb07ceb44 (patch) | |
| tree | 80cec32822c451dd81b2b2af72fdd0722a4e0a7d /net/base | |
| parent | f402503e9d2461d38f864560edac4c62b245a427 (diff) | |
| download | chromium_src-8155f1a70fb66b287df28784bab5235eb07ceb44.zip chromium_src-8155f1a70fb66b287df28784bab5235eb07ceb44.tar.gz chromium_src-8155f1a70fb66b287df28784bab5235eb07ceb44.tar.bz2 | |
MAC Cookies (patch 1 of N)
This is the first patch towards implementing
https://github.com/hueniverse/draft-hammer-http-mac/raw/master/draft-hammer-oauth-v2-mac-token.txt
Parse MAC-Key and MAC-Algorithm from Set-Cookie and store the values in
memory. Future patches will use these values to sign requests.
Review URL: http://codereview.chromium.org/6883253
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@83649 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'net/base')
| -rw-r--r-- | net/base/cookie_monster.cc | 60 | ||||
| -rw-r--r-- | net/base/cookie_monster.h | 17 | ||||
| -rw-r--r-- | net/base/cookie_monster_store_test.cc | 8 | ||||
| -rw-r--r-- | net/base/cookie_monster_unittest.cc | 29 |
4 files changed, 92 insertions, 22 deletions
diff --git a/net/base/cookie_monster.cc b/net/base/cookie_monster.cc index eeb129e..6fe9bef 100644 --- a/net/base/cookie_monster.cc +++ b/net/base/cookie_monster.cc @@ -549,9 +549,14 @@ bool CookieMonster::SetCookieWithDetails( Time creation_time = CurrentTime(); last_time_seen_ = creation_time; + // TODO(abarth): Take these values as parameters. + std::string mac_key; + std::string mac_algorithm; + scoped_ptr<CanonicalCookie> cc; cc.reset(CanonicalCookie::Create( url, name, value, domain, path, + mac_key, mac_algorithm, creation_time, expiration_time, secure, http_only)); @@ -1212,11 +1217,16 @@ bool CookieMonster::SetCookieWithCreationTimeAndOptions( std::string cookie_path = CanonPath(url, pc); + // TODO(abarth): Take these values as parameters. + std::string mac_key; + std::string mac_algorithm; + scoped_ptr<CanonicalCookie> cc; Time cookie_expires = CanonExpiration(pc, creation_time, options); cc.reset(new CanonicalCookie(url, pc.Name(), pc.Value(), cookie_domain, - cookie_path, creation_time, cookie_expires, + cookie_path, mac_key, mac_algorithm, + creation_time, cookie_expires, creation_time, pc.IsSecure(), pc.IsHttpOnly(), !cookie_expires.is_null())); @@ -1634,6 +1644,8 @@ CookieMonster::ParsedCookie::ParsedCookie(const std::string& cookie_line) : is_valid_(false), path_index_(0), domain_index_(0), + mac_key_index_(0), + mac_algorithm_index_(0), expires_index_(0), maxage_index_(0), secure_index_(0), @@ -1881,12 +1893,14 @@ void CookieMonster::ParsedCookie::ParseTokenValuePairs( } void CookieMonster::ParsedCookie::SetupAttributes() { - static const char kPathTokenName[] = "path"; - static const char kDomainTokenName[] = "domain"; - static const char kExpiresTokenName[] = "expires"; - static const char kMaxAgeTokenName[] = "max-age"; - static const char kSecureTokenName[] = "secure"; - static const char kHttpOnlyTokenName[] = "httponly"; + static const char kPathTokenName[] = "path"; + static const char kDomainTokenName[] = "domain"; + static const char kMACKeyTokenName[] = "mac-key"; + static const char kMACAlgorithmTokenName[] = "mac-algorithm"; + static const char kExpiresTokenName[] = "expires"; + static const char kMaxAgeTokenName[] = "max-age"; + static const char kSecureTokenName[] = "secure"; + static const char kHttpOnlyTokenName[] = "httponly"; // We skip over the first token/value, the user supplied one. for (size_t i = 1; i < pairs_.size(); ++i) { @@ -1894,6 +1908,10 @@ void CookieMonster::ParsedCookie::SetupAttributes() { path_index_ = i; } else if (pairs_[i].first == kDomainTokenName) { domain_index_ = i; + } else if (pairs_[i].first == kMACKeyTokenName) { + mac_key_index_ = i; + } else if (pairs_[i].first == kMACAlgorithmTokenName) { + mac_algorithm_index_ = i; } else if (pairs_[i].first == kExpiresTokenName) { expires_index_ = i; } else if (pairs_[i].first == kMaxAgeTokenName) { @@ -1914,22 +1932,19 @@ CookieMonster::CanonicalCookie::CanonicalCookie() has_expires_(false) { } -CookieMonster::CanonicalCookie::CanonicalCookie(const GURL& url, - const std::string& name, - const std::string& value, - const std::string& domain, - const std::string& path, - const base::Time& creation, - const base::Time& expiration, - const base::Time& last_access, - bool secure, - bool httponly, - bool has_expires) +CookieMonster::CanonicalCookie::CanonicalCookie( + const GURL& url, const std::string& name, const std::string& value, + const std::string& domain, const std::string& path, + const std::string& mac_key, const std::string& mac_algorithm, + const base::Time& creation, const base::Time& expiration, + const base::Time& last_access, bool secure, bool httponly, bool has_expires) : source_(GetCookieSourceFromURL(url)), name_(name), value_(value), domain_(domain), path_(path), + mac_key_(mac_key), + mac_algorithm_(mac_algorithm), creation_date_(creation), expiry_date_(expiration), last_access_date_(last_access), @@ -1944,6 +1959,8 @@ CookieMonster::CanonicalCookie::CanonicalCookie(const GURL& url, name_(pc.Name()), value_(pc.Value()), path_(CanonPath(url, pc)), + mac_key_(pc.MACKey()), + mac_algorithm_(pc.MACAlgorithm()), creation_date_(Time::Now()), last_access_date_(Time()), secure_(pc.IsSecure()), @@ -1988,6 +2005,8 @@ CookieMonster::CanonicalCookie* CookieMonster::CanonicalCookie::Create( const std::string& value, const std::string& domain, const std::string& path, + const std::string& mac_key, + const std::string& mac_algorithm, const base::Time& creation, const base::Time& expiration, bool secure, @@ -2026,8 +2045,9 @@ CookieMonster::CanonicalCookie* CookieMonster::CanonicalCookie::Create( canon_path_component.len); return new CanonicalCookie(url, parsed_name, parsed_value, cookie_domain, - cookie_path, creation, expiration, creation, - secure, http_only, !expiration.is_null()); + cookie_path, mac_key, mac_algorithm, creation, + expiration, creation, secure, http_only, + !expiration.is_null()); } bool CookieMonster::CanonicalCookie::IsOnPath( diff --git a/net/base/cookie_monster.h b/net/base/cookie_monster.h index e150e25..00e53e4 100644 --- a/net/base/cookie_monster.h +++ b/net/base/cookie_monster.h @@ -539,6 +539,8 @@ class CookieMonster::CanonicalCookie { const std::string& value, const std::string& domain, const std::string& path, + const std::string& mac_key, + const std::string& mac_algorithm, const base::Time& creation, const base::Time& expiration, const base::Time& last_access, @@ -563,6 +565,8 @@ class CookieMonster::CanonicalCookie { const std::string& value, const std::string& domain, const std::string& path, + const std::string& mac_key, + const std::string& mac_algorithm, const base::Time& creation, const base::Time& expiration, bool secure, @@ -573,6 +577,8 @@ class CookieMonster::CanonicalCookie { const std::string& Value() const { return value_; } const std::string& Domain() const { return domain_; } const std::string& Path() const { return path_; } + const std::string& MACKey() const { return mac_key_; } + const std::string& MACAlgorithm() const { return mac_algorithm_; } const base::Time& CreationDate() const { return creation_date_; } const base::Time& LastAccessDate() const { return last_access_date_; } bool DoesExpire() const { return has_expires_; } @@ -624,11 +630,14 @@ class CookieMonster::CanonicalCookie { // this field will be null. CanonicalCookie consumers should not rely on // this field unless they guarantee that the creator of those // CanonicalCookies properly initialized the field. + // TODO(abarth): We might need to make this field persistent for MAC cookies. std::string source_; std::string name_; std::string value_; std::string domain_; std::string path_; + std::string mac_key_; // TODO(abarth): Persist to disk. + std::string mac_algorithm_; // TODO(abarth): Persist to disk. base::Time creation_date_; base::Time expiry_date_; base::Time last_access_date_; @@ -699,6 +708,12 @@ class CookieMonster::ParsedCookie { const std::string& Path() const { return pairs_[path_index_].second; } bool HasDomain() const { return domain_index_ != 0; } const std::string& Domain() const { return pairs_[domain_index_].second; } + bool HasMACKey() const { return mac_key_index_ != 0; } + const std::string& MACKey() const { return pairs_[mac_key_index_].second; } + bool HasMACAlgorithm() const { return mac_algorithm_index_ != 0; } + const std::string& MACAlgorithm() const { + return pairs_[mac_algorithm_index_].second; + } bool HasExpires() const { return expires_index_ != 0; } const std::string& Expires() const { return pairs_[expires_index_].second; } bool HasMaxAge() const { return maxage_index_ != 0; } @@ -759,6 +774,8 @@ class CookieMonster::ParsedCookie { // could fit these into 3 bits each if we're worried about size... size_t path_index_; size_t domain_index_; + size_t mac_key_index_; + size_t mac_algorithm_index_; size_t expires_index_; size_t maxage_index_; size_t secure_index_; diff --git a/net/base/cookie_monster_store_test.cc b/net/base/cookie_monster_store_test.cc index 3fcaa29..b3a6c13 100644 --- a/net/base/cookie_monster_store_test.cc +++ b/net/base/cookie_monster_store_test.cc @@ -95,6 +95,7 @@ void AddCookieToList( scoped_ptr<CookieMonster::CanonicalCookie> cookie( new CookieMonster::CanonicalCookie( GURL(), pc.Name(), pc.Value(), key, cookie_path, + pc.MACKey(), pc.MACAlgorithm(), creation_time, creation_time, cookie_expires, pc.IsSecure(), pc.IsHttpOnly(), !cookie_expires.is_null())); @@ -163,10 +164,13 @@ CookieMonster* CreateMonsterFromStoreForGC( (i < num_old_cookies) ? current - base::TimeDelta::FromDays(days_old) : current; + std::string mac_key; + std::string mac_algorithm; + CookieMonster::CanonicalCookie cc( GURL(), "a", "1", base::StringPrintf("h%05d.izzle", i), "/path", - creation_time, expiration_time, last_access_time, - false, false, true); + mac_key, mac_algorithm, creation_time, expiration_time, + last_access_time, false, false, true); store->AddCookie(cc); } diff --git a/net/base/cookie_monster_unittest.cc b/net/base/cookie_monster_unittest.cc index abaf84c..8233c7e 100644 --- a/net/base/cookie_monster_unittest.cc +++ b/net/base/cookie_monster_unittest.cc @@ -253,6 +253,35 @@ TEST(ParsedCookieTest, MultipleEquals) { EXPECT_EQ(4U, pc.NumberOfAttributes()); } +TEST(ParsedCookieTest, MACKey) { + CookieMonster::ParsedCookie pc("foo=bar; MAC-Key=3900ac9anw9incvw9f"); + EXPECT_TRUE(pc.IsValid()); + EXPECT_EQ("foo", pc.Name()); + EXPECT_EQ("bar", pc.Value()); + EXPECT_EQ("3900ac9anw9incvw9f", pc.MACKey()); + EXPECT_EQ(1U, pc.NumberOfAttributes()); +} + +TEST(ParsedCookieTest, MACAlgorithm) { + CookieMonster::ParsedCookie pc("foo=bar; MAC-Algorithm=hmac-sha-1"); + EXPECT_TRUE(pc.IsValid()); + EXPECT_EQ("foo", pc.Name()); + EXPECT_EQ("bar", pc.Value()); + EXPECT_EQ("hmac-sha-1", pc.MACAlgorithm()); + EXPECT_EQ(1U, pc.NumberOfAttributes()); +} + +TEST(ParsedCookieTest, MACKeyAndMACAlgorithm) { + CookieMonster::ParsedCookie pc( + "foo=bar; MAC-Key=voiae-09fj0302nfqf; MAC-Algorithm=hmac-sha-256"); + EXPECT_TRUE(pc.IsValid()); + EXPECT_EQ("foo", pc.Name()); + EXPECT_EQ("bar", pc.Value()); + EXPECT_EQ("voiae-09fj0302nfqf", pc.MACKey()); + EXPECT_EQ("hmac-sha-256", pc.MACAlgorithm()); + EXPECT_EQ(2U, pc.NumberOfAttributes()); +} + TEST(ParsedCookieTest, QuotedTrailingWhitespace) { CookieMonster::ParsedCookie pc("ANCUUID=\"zohNumRKgI0oxyhSsV3Z7D\" ; " "expires=Sun, 18-Apr-2027 21:06:29 GMT ; " |