test_hashcompleter_v4.js

mozilla-central/toolkit/components/url-classifier/tests/unit/test_hashcompleter_v4.js (file symbol)

Enable keyboard shortcuts

Source code

File a bug in Toolkit :: Safe Browsing

Revision control

Copy as Markdown

Other Tools

Test Info: Warnings

This test gets skipped with pattern: os == 'android'
Manifest: toolkit/components/url-classifier/tests/unit/xpcshell.toml

const { XPCOMUtils } = ChromeUtils.importESModule(

  "resource://gre/modules/XPCOMUtils.sys.mjs"

);

// These tables have a different update URL (for v4).

const TEST_TABLE_DATA_V4 = {

  tableName: "test-phish-proto",

  providerName: "google4",

  updateUrl: "http://localhost:5555/safebrowsing/update?",

  gethashUrl: "http://localhost:5555/safebrowsing/gethash-v4?",

};

const PREF_NEXTUPDATETIME_V4 =

  "browser.safebrowsing.provider.google4.nextupdatetime";

const GETHASH_PATH = "/safebrowsing/gethash-v4";

// The protobuf binary represention of gethash response:

// minimumWaitDuration : 12 secs 10 nanosecs

// negativeCacheDuration : 120 secs 9 nanosecs

//

// { CompleteHash, ThreatType, CacheDuration { secs, nanos } };

// { nsCString("01234567890123456789012345678901"), SOCIAL_ENGINEERING_PUBLIC, { 8, 500 } },

// { nsCString("12345678901234567890123456789012"), SOCIAL_ENGINEERING_PUBLIC, { 7, 100} },

// { nsCString("23456789012345678901234567890123"), SOCIAL_ENGINEERING_PUBLIC, { 1, 20 } },

const GETHASH_RESPONSE_CONTENT =

  "\x0A\x2D\x08\x02\x1A\x22\x0A\x20\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x2A\x05\x08\x08\x10\xF4\x03\x0A\x2C\x08\x02\x1A\x22\x0A\x20\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x2A\x04\x08\x07\x10\x64\x0A\x2C\x08\x02\x1A\x22\x0A\x20\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x34\x35\x36\x37\x38\x39\x30\x31\x32\x33\x2A\x04\x08\x01\x10\x14\x12\x04\x08\x0C\x10\x0A\x1A\x04\x08\x78\x10\x09";

// The protobuf binary represention of update response:

//

// [

//   {

//     'threat_type': 2, // SOCIAL_ENGINEERING_PUBLIC

//     'response_type': 2, // FULL_UPDATE

//     'new_client_state': 'sta\x00te', // NEW_CLIENT_STATE

//     'checksum': { "sha256": CHECKSUM }, // CHECKSUM

//     'additions': { 'compression_type': RAW,

//                    'prefix_size': 4,

//                    'raw_hashes': "00000001000000020000000300000004"}

//   }

// ]

//

const UPDATE_RESPONSE_CONTENT =

  "\x0A\x4A\x08\x02\x20\x02\x2A\x18\x08\x01\x12\x14\x08\x04\x12\x10\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x02\x00\x00\x00\x03\x3A\x06\x73\x74\x61\x00\x74\x65\x42\x22\x0A\x20\x30\x67\xC7\x2C\x5E\x50\x1C\x31\xE3\xFE\xCA\x73\xF0\x47\xDC\x34\x1A\x95\x63\x99\xEC\x70\x5E\x0A\xEE\x9E\xFB\x17\xA1\x55\x35\x78\x12\x08\x08\x08\x10\x80\x94\xEB\xDC\x03";

const UPDATE_PATH = "/safebrowsing/update";

let gListManager = Cc["@mozilla.org/url-classifier/listmanager;1"].getService(

  Ci.nsIUrlListManager

);

let gCompleter = Cc["@mozilla.org/url-classifier/hashcompleter;1"].getService(

  Ci.nsIUrlClassifierHashCompleter

);

XPCOMUtils.defineLazyServiceGetter(

  this,

  "gUrlUtil",

  "@mozilla.org/url-classifier/utils;1",

  "nsIUrlClassifierUtils"

);

// Handles request for TEST_TABLE_DATA_V4.

let gHttpServV4 = null;

const NEW_CLIENT_STATE = "sta\0te";

const CHECKSUM =

  "\x30\x67\xc7\x2c\x5e\x50\x1c\x31\xe3\xfe\xca\x73\xf0\x47\xdc\x34\x1a\x95\x63\x99\xec\x70\x5e\x0a\xee\x9e\xfb\x17\xa1\x55\x35\x78";

Services.prefs.setBoolPref("browser.safebrowsing.debug", true);

// The "\xFF\xFF" is to generate a base64 string with "/".

Services.prefs.setCharPref("browser.safebrowsing.id", "Firefox\xFF\xFF");

// Register tables.

gListManager.registerTable(

  TEST_TABLE_DATA_V4.tableName,

  TEST_TABLE_DATA_V4.providerName,

  TEST_TABLE_DATA_V4.updateUrl,

  TEST_TABLE_DATA_V4.gethashUrl

);

// This is unfortunately needed since v4 gethash request

// requires the threat type (table name) as well as the

// state it's associated with. We have to run the update once

// to have the state written.

add_test(function test_update_v4() {

  gListManager.disableUpdate(TEST_TABLE_DATA_V4.tableName);

  gListManager.enableUpdate(TEST_TABLE_DATA_V4.tableName);

  // Force table update.

  Services.prefs.setCharPref(PREF_NEXTUPDATETIME_V4, "1");

  gListManager.maybeToggleUpdateChecking();

});

add_test(function test_getHashRequestV4() {

  let request = gUrlUtil.makeFindFullHashRequestV4(

    [TEST_TABLE_DATA_V4.tableName],

    [btoa(NEW_CLIENT_STATE)],

    [btoa("0123"), btoa("1234567"), btoa("1111")].sort()

);

  registerHandlerGethashV4("&$req=" + request);

  let completeFinishedCnt = 0;

  gCompleter.complete(

    "0123",

    TEST_TABLE_DATA_V4.gethashUrl,

    TEST_TABLE_DATA_V4.tableName,

      completionV4(hash, table, duration, fullhashes) {

        equal(hash, "0123");

        equal(table, TEST_TABLE_DATA_V4.tableName);

        equal(duration, 120);

        equal(fullhashes.length, 1);

        let match = fullhashes

          .QueryInterface(Ci.nsIArray)

          .queryElementAt(0, Ci.nsIFullHashMatch);

        equal(match.fullHash, "01234567890123456789012345678901");

        equal(match.cacheDuration, 8);

        info("completion: " + match.fullHash + ", " + table);

},

      completionFinished(status) {

        equal(status, Cr.NS_OK);

        completeFinishedCnt++;

        if (3 === completeFinishedCnt) {

          run_next_test();

},

);

  gCompleter.complete(

    "1234567",

    TEST_TABLE_DATA_V4.gethashUrl,

    TEST_TABLE_DATA_V4.tableName,

      completionV4(hash, table, duration, fullhashes) {

        equal(hash, "1234567");

        equal(table, TEST_TABLE_DATA_V4.tableName);

        equal(duration, 120);

        equal(fullhashes.length, 1);

        let match = fullhashes

          .QueryInterface(Ci.nsIArray)

          .queryElementAt(0, Ci.nsIFullHashMatch);

        equal(match.fullHash, "12345678901234567890123456789012");

        equal(match.cacheDuration, 7);

        info("completion: " + match.fullHash + ", " + table);

},

      completionFinished(status) {

        equal(status, Cr.NS_OK);

        completeFinishedCnt++;

        if (3 === completeFinishedCnt) {

          run_next_test();

},

);

  gCompleter.complete(

    "1111",

    TEST_TABLE_DATA_V4.gethashUrl,

    TEST_TABLE_DATA_V4.tableName,

      completionV4(hash, table, duration, fullhashes) {

        equal(hash, "1111");

        equal(table, TEST_TABLE_DATA_V4.tableName);

        equal(duration, 120);

        equal(fullhashes.length, 0);

},

      completionFinished(status) {

        equal(status, Cr.NS_OK);

        completeFinishedCnt++;

        if (3 === completeFinishedCnt) {

          run_next_test();

},

);

});

add_test(function test_minWaitDuration() {

  let failedComplete = function () {

    gCompleter.complete(

      "0123",

      TEST_TABLE_DATA_V4.gethashUrl,

      TEST_TABLE_DATA_V4.tableName,

        completionFinished(status) {

          equal(status, Cr.NS_ERROR_ABORT);

},

);

};

  let successComplete = function () {

    gCompleter.complete(

      "1234567",

      TEST_TABLE_DATA_V4.gethashUrl,

      TEST_TABLE_DATA_V4.tableName,

        completionV4(hash, table, duration, fullhashes) {

          equal(hash, "1234567");

          equal(table, TEST_TABLE_DATA_V4.tableName);

          equal(fullhashes.length, 1);

          let match = fullhashes

            .QueryInterface(Ci.nsIArray)

            .queryElementAt(0, Ci.nsIFullHashMatch);

          equal(match.fullHash, "12345678901234567890123456789012");

          equal(match.cacheDuration, 7);

          info("completion: " + match.fullHash + ", " + table);

},

        completionFinished(status) {

          equal(status, Cr.NS_OK);

          run_next_test();

},

);

};

  let request = gUrlUtil.makeFindFullHashRequestV4(

    [TEST_TABLE_DATA_V4.tableName],

    [btoa(NEW_CLIENT_STATE)],

    [btoa("1234567")]

);

  registerHandlerGethashV4("&$req=" + request);

  // The last gethash response contained a min wait duration 12 secs 10 nano

  // So subsequent requests can happen only after the min wait duration

  do_timeout(1000, failedComplete);

  do_timeout(2000, failedComplete);

  do_timeout(4000, failedComplete);

  do_timeout(13000, successComplete);

});

function registerHandlerGethashV4(aExpectedQuery) {

  gHttpServV4.registerPathHandler(GETHASH_PATH, null);

  // V4 gethash handler.

  gHttpServV4.registerPathHandler(GETHASH_PATH, function (request, response) {

    equal(request.queryString, aExpectedQuery);

    response.setStatusLine(request.httpVersion, 200, "OK");

    response.bodyOutputStream.write(

      GETHASH_RESPONSE_CONTENT,

      GETHASH_RESPONSE_CONTENT.length

);

});

function registerHandlerUpdateV4() {

  // Update handler. Will respond a valid state to be verified in the

  // gethash handler.

  gHttpServV4.registerPathHandler(UPDATE_PATH, function (request, response) {

    response.setHeader(

      "Content-Type",

      "application/vnd.google.safebrowsing-update",

      false

);

    response.setStatusLine(request.httpVersion, 200, "OK");

    response.bodyOutputStream.write(

      UPDATE_RESPONSE_CONTENT,

      UPDATE_RESPONSE_CONTENT.length

);

    waitUntilMetaDataSaved(NEW_CLIENT_STATE, CHECKSUM, () => {

      run_next_test();

});

});

function run_test() {

  throwOnUpdateErrors();

  gHttpServV4 = new HttpServer();

  gHttpServV4.registerDirectory("/", do_get_cwd());

  registerHandlerUpdateV4();

  gHttpServV4.start(5555);

  run_next_test();

registerCleanupFunction(function () {

  stopThrowingOnUpdateErrors();

});