| // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "base/memory/scoped_ptr.h" |
| #include "crypto/ec_private_key.h" |
| #include "crypto/openssl_util.h" |
| #include "crypto/scoped_openssl_types.h" |
| #include "net/cert/x509_util.h" |
| #include "net/cert/x509_util_openssl.h" |
| #include "net/ssl/scoped_openssl_types.h" |
| #include "testing/gtest/include/gtest/gtest.h" |
| |
| namespace net { |
| |
| TEST(X509UtilOpenSSLTest, IsSupportedValidityRange) { |
| base::Time now = base::Time::Now(); |
| EXPECT_TRUE(x509_util::IsSupportedValidityRange(now, now)); |
| EXPECT_FALSE(x509_util::IsSupportedValidityRange( |
| now, now - base::TimeDelta::FromSeconds(1))); |
| |
| // See x509_util_openssl.cc to see how these were computed. |
| const int64_t kDaysFromYear0001ToUnixEpoch = 719162; |
| const int64_t kDaysFromUnixEpochToYear10000 = 2932896 + 1; |
| |
| // When computing too_old / too_late, add one day to account for |
| // possible leap seconds. |
| base::Time too_old = base::Time::UnixEpoch() - |
| base::TimeDelta::FromDays(kDaysFromYear0001ToUnixEpoch + 1); |
| |
| base::Time too_late = base::Time::UnixEpoch() + |
| base::TimeDelta::FromDays(kDaysFromUnixEpochToYear10000 + 1); |
| |
| EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_old, too_old)); |
| EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_old, now)); |
| |
| EXPECT_FALSE(x509_util::IsSupportedValidityRange(now, too_late)); |
| EXPECT_FALSE(x509_util::IsSupportedValidityRange(too_late, too_late)); |
| } |
| |
| } // namespace net |
