| // Copyright 2012 The Chromium Authors |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "net/extras/sqlite/sqlite_persistent_cookie_store.h" |
| |
| #include <stdint.h> |
| |
| #include <map> |
| #include <memory> |
| #include <set> |
| #include <utility> |
| |
| #include "base/containers/span.h" |
| #include "base/files/file.h" |
| #include "base/files/file_util.h" |
| #include "base/files/scoped_temp_dir.h" |
| #include "base/functional/bind.h" |
| #include "base/functional/callback.h" |
| #include "base/location.h" |
| #include "base/memory/ref_counted.h" |
| #include "base/run_loop.h" |
| #include "base/sequence_checker.h" |
| #include "base/strings/stringprintf.h" |
| #include "base/synchronization/waitable_event.h" |
| #include "base/task/sequenced_task_runner.h" |
| #include "base/task/single_thread_task_runner.h" |
| #include "base/task/thread_pool.h" |
| #include "base/test/bind.h" |
| #include "base/test/metrics/histogram_tester.h" |
| #include "base/test/scoped_feature_list.h" |
| #include "base/threading/thread_restrictions.h" |
| #include "base/time/time.h" |
| #include "crypto/encryptor.h" |
| #include "crypto/symmetric_key.h" |
| #include "net/base/features.h" |
| #include "net/base/test_completion_callback.h" |
| #include "net/cookies/canonical_cookie.h" |
| #include "net/cookies/cookie_constants.h" |
| #include "net/cookies/cookie_inclusion_status.h" |
| #include "net/cookies/cookie_store_test_callbacks.h" |
| #include "net/extras/sqlite/cookie_crypto_delegate.h" |
| #include "net/log/net_log_capture_mode.h" |
| #include "net/log/test_net_log.h" |
| #include "net/log/test_net_log_util.h" |
| #include "net/test/test_with_task_environment.h" |
| #include "sql/database.h" |
| #include "sql/meta_table.h" |
| #include "sql/statement.h" |
| #include "sql/transaction.h" |
| #include "testing/gmock/include/gmock/gmock-matchers.h" |
| #include "testing/gmock/include/gmock/gmock.h" |
| #include "testing/gtest/include/gtest/gtest.h" |
| #include "third_party/abseil-cpp/absl/types/optional.h" |
| #include "url/gurl.h" |
| #include "url/third_party/mozilla/url_parse.h" |
| |
| namespace net { |
| |
| namespace { |
| |
| const base::FilePath::CharType kCookieFilename[] = FILE_PATH_LITERAL("Cookies"); |
| |
| class CookieCryptor : public CookieCryptoDelegate { |
| public: |
| CookieCryptor(); |
| void Init(base::OnceClosure callback) override; |
| bool EncryptString(const std::string& plaintext, |
| std::string* ciphertext) override; |
| bool DecryptString(const std::string& ciphertext, |
| std::string* plaintext) override; |
| |
| private: |
| void InitComplete(); |
| bool init_ GUARDED_BY_CONTEXT(sequence_checker_) = false; |
| bool initing_ GUARDED_BY_CONTEXT(sequence_checker_) = false; |
| base::OnceClosureList callbacks_ GUARDED_BY_CONTEXT(sequence_checker_); |
| std::unique_ptr<crypto::SymmetricKey> key_; |
| crypto::Encryptor encryptor_; |
| SEQUENCE_CHECKER(sequence_checker_); |
| }; |
| |
| CookieCryptor::CookieCryptor() |
| : key_(crypto::SymmetricKey::DeriveKeyFromPasswordUsingPbkdf2( |
| crypto::SymmetricKey::AES, |
| "password", |
| "saltiest", |
| 1000, |
| 256)) { |
| std::string iv("the iv: 16 bytes"); |
| encryptor_.Init(key_.get(), crypto::Encryptor::CBC, iv); |
| DETACH_FROM_SEQUENCE(sequence_checker_); |
| } |
| |
| void CookieCryptor::Init(base::OnceClosure callback) { |
| DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_); |
| if (init_) { |
| std::move(callback).Run(); |
| return; |
| } |
| |
| // Callbacks here are owned by test fixtures that outlive the CookieCryptor. |
| callbacks_.AddUnsafe(std::move(callback)); |
| |
| if (initing_) { |
| return; |
| } |
| |
| initing_ = true; |
| base::SingleThreadTaskRunner::GetCurrentDefault()->PostDelayedTask( |
| FROM_HERE, |
| base::BindOnce(&CookieCryptor::InitComplete, base::Unretained(this)), |
| base::Milliseconds(100)); |
| } |
| |
| bool CookieCryptor::EncryptString(const std::string& plaintext, |
| std::string* ciphertext) { |
| return encryptor_.Encrypt(plaintext, ciphertext); |
| } |
| |
| bool CookieCryptor::DecryptString(const std::string& ciphertext, |
| std::string* plaintext) { |
| return encryptor_.Decrypt(ciphertext, plaintext); |
| } |
| |
| void CookieCryptor::InitComplete() { |
| DCHECK_CALLED_ON_VALID_SEQUENCE(sequence_checker_); |
| init_ = true; |
| callbacks_.Notify(); |
| } |
| |
| // Matches the CanonicalCookie's strictly_unique_key and last_access_date |
| // against a unique_ptr<CanonicalCookie>. |
| MATCHER_P2(MatchesCookieKeyAndLastAccessDate, |
| StrictlyUniqueKey, |
| last_access_date, |
| "") { |
| if (!arg) { |
| return false; |
| } |
| const CanonicalCookie& list_cookie = *arg; |
| |
| return testing::ExplainMatchResult(StrictlyUniqueKey, |
| list_cookie.StrictlyUniqueKey(), |
| result_listener) && |
| testing::ExplainMatchResult( |
| last_access_date, list_cookie.LastAccessDate(), result_listener); |
| } |
| |
| // Matches every field of a CanonicalCookie against a |
| // unique_ptr<CanonicalCookie>. |
| MATCHER_P(MatchesEveryCookieField, cookie, "") { |
| if (!arg) { |
| return false; |
| } |
| const CanonicalCookie& list_cookie = *arg; |
| return cookie.HasEquivalentDataMembers(list_cookie); |
| } |
| |
| } // namespace |
| |
| typedef std::vector<std::unique_ptr<CanonicalCookie>> CanonicalCookieVector; |
| |
| class SQLitePersistentCookieStoreTest : public TestWithTaskEnvironment { |
| public: |
| SQLitePersistentCookieStoreTest() |
| : loaded_event_(base::WaitableEvent::ResetPolicy::AUTOMATIC, |
| base::WaitableEvent::InitialState::NOT_SIGNALED), |
| db_thread_event_(base::WaitableEvent::ResetPolicy::AUTOMATIC, |
| base::WaitableEvent::InitialState::NOT_SIGNALED) {} |
| |
| void SignalLoadedEvent() { loaded_event_.Signal(); } |
| |
| void OnLoaded(base::OnceClosure closure, CanonicalCookieVector cookies) { |
| cookies_.swap(cookies); |
| std::move(closure).Run(); |
| } |
| |
| void Load(CanonicalCookieVector* cookies) { |
| base::RunLoop run_loop; |
| store_->Load( |
| base::BindLambdaForTesting([&](CanonicalCookieVector obtained_cookies) { |
| cookies->swap(obtained_cookies); |
| run_loop.Quit(); |
| }), |
| NetLogWithSource::Make(NetLogSourceType::NONE)); |
| run_loop.Run(); |
| } |
| |
| void LoadAsyncAndSignalEvent() { |
| store_->Load( |
| base::BindOnce( |
| &SQLitePersistentCookieStoreTest::OnLoaded, base::Unretained(this), |
| base::BindOnce(&SQLitePersistentCookieStoreTest::SignalLoadedEvent, |
| base::Unretained(this))), |
| NetLogWithSource::Make(NetLogSourceType::NONE)); |
| } |
| |
| void Flush() { |
| base::RunLoop run_loop; |
| store_->Flush(run_loop.QuitClosure()); |
| run_loop.Run(); |
| } |
| |
| void DestroyStore() { |
| store_ = nullptr; |
| // Make sure we wait until the destructor has run by running all |
| // TaskEnvironment tasks. |
| RunUntilIdle(); |
| } |
| |
| void Create(bool crypt_cookies, |
| bool restore_old_session_cookies, |
| bool use_current_thread, |
| bool enable_exclusive_access) { |
| if (crypt_cookies) |
| cookie_crypto_delegate_ = std::make_unique<CookieCryptor>(); |
| |
| store_ = base::MakeRefCounted<SQLitePersistentCookieStore>( |
| temp_dir_.GetPath().Append(kCookieFilename), |
| use_current_thread ? base::SingleThreadTaskRunner::GetCurrentDefault() |
| : client_task_runner_, |
| background_task_runner_, restore_old_session_cookies, |
| cookie_crypto_delegate_.get(), enable_exclusive_access); |
| } |
| |
| void CreateAndLoad(bool crypt_cookies, |
| bool restore_old_session_cookies, |
| CanonicalCookieVector* cookies) { |
| Create(crypt_cookies, restore_old_session_cookies, |
| false /* use_current_thread */, /*enable_exclusive_access=*/false); |
| Load(cookies); |
| } |
| |
| void InitializeStore(bool crypt, bool restore_old_session_cookies) { |
| CanonicalCookieVector cookies; |
| CreateAndLoad(crypt, restore_old_session_cookies, &cookies); |
| EXPECT_EQ(0U, cookies.size()); |
| } |
| |
| void WaitOnDBEvent() { |
| base::ScopedAllowBaseSyncPrimitivesForTesting allow_base_sync_primitives; |
| db_thread_event_.Wait(); |
| } |
| |
| // Adds a persistent cookie to store_. |
| void AddCookie(const std::string& name, |
| const std::string& value, |
| const std::string& domain, |
| const std::string& path, |
| const base::Time& creation) { |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| name, value, domain, path, creation, creation, base::Time(), |
| base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_DEFAULT)); |
| } |
| |
| void AddCookieWithExpiration(const std::string& name, |
| const std::string& value, |
| const std::string& domain, |
| const std::string& path, |
| const base::Time& creation, |
| const base::Time& expiration) { |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| name, value, domain, path, creation, expiration, base::Time(), |
| base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_DEFAULT)); |
| } |
| |
| std::string ReadRawDBContents() { |
| std::string contents; |
| if (!base::ReadFileToString(temp_dir_.GetPath().Append(kCookieFilename), |
| &contents)) |
| return std::string(); |
| return contents; |
| } |
| |
| void SetUp() override { ASSERT_TRUE(temp_dir_.CreateUniqueTempDir()); } |
| |
| void TearDown() override { |
| if (!expect_init_errors_) { |
| EXPECT_THAT(histograms_.GetAllSamples("Cookie.ErrorInitializeDB"), |
| ::testing::IsEmpty()); |
| } |
| DestroyStore(); |
| } |
| |
| protected: |
| const scoped_refptr<base::SequencedTaskRunner> background_task_runner_ = |
| base::ThreadPool::CreateSequencedTaskRunner({base::MayBlock()}); |
| const scoped_refptr<base::SequencedTaskRunner> client_task_runner_ = |
| base::ThreadPool::CreateSequencedTaskRunner({base::MayBlock()}); |
| base::WaitableEvent loaded_event_; |
| base::WaitableEvent db_thread_event_; |
| CanonicalCookieVector cookies_; |
| base::ScopedTempDir temp_dir_; |
| scoped_refptr<SQLitePersistentCookieStore> store_; |
| std::unique_ptr<CookieCryptor> cookie_crypto_delegate_; |
| base::HistogramTester histograms_; |
| bool expect_init_errors_ = false; |
| }; |
| |
| TEST_F(SQLitePersistentCookieStoreTest, TestInvalidVersionRecovery) { |
| InitializeStore(false, false); |
| AddCookie("A", "B", "foo.bar", "/", base::Time::Now()); |
| DestroyStore(); |
| |
| // Load up the store and verify that it has good data in it. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| ASSERT_STREQ("foo.bar", cookies[0]->Domain().c_str()); |
| ASSERT_STREQ("A", cookies[0]->Name().c_str()); |
| ASSERT_STREQ("B", cookies[0]->Value().c_str()); |
| DestroyStore(); |
| cookies.clear(); |
| |
| // Now make the version too old to initialize from. |
| { |
| sql::Database db; |
| ASSERT_TRUE(db.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| sql::MetaTable meta_table; |
| ASSERT_TRUE(meta_table.Init(&db, 1, 1)); |
| // Keep in sync with latest unsupported version from: |
| // net/extras/sqlite/sqlite_persistent_cookie_store.cc |
| ASSERT_TRUE(meta_table.SetVersionNumber(14)); |
| db.Close(); |
| } |
| |
| // Upon loading, the database should be reset to a good, blank state. |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(0U, cookies.size()); |
| |
| // Verify that, after, recovery, the database persists properly. |
| AddCookie("X", "Y", "foo.bar", "/", base::Time::Now()); |
| DestroyStore(); |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| ASSERT_STREQ("foo.bar", cookies[0]->Domain().c_str()); |
| ASSERT_STREQ("X", cookies[0]->Name().c_str()); |
| ASSERT_STREQ("Y", cookies[0]->Value().c_str()); |
| cookies.clear(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, TestInvalidMetaTableRecovery) { |
| InitializeStore(false, false); |
| AddCookie("A", "B", "foo.bar", "/", base::Time::Now()); |
| DestroyStore(); |
| |
| // Load up the store and verify that it has good data in it. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| ASSERT_STREQ("foo.bar", cookies[0]->Domain().c_str()); |
| ASSERT_STREQ("A", cookies[0]->Name().c_str()); |
| ASSERT_STREQ("B", cookies[0]->Value().c_str()); |
| DestroyStore(); |
| cookies.clear(); |
| |
| // Now corrupt the meta table. |
| { |
| sql::Database db; |
| ASSERT_TRUE(db.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| sql::MetaTable meta_table; |
| ASSERT_TRUE(meta_table.Init(&db, 1, 1)); |
| ASSERT_TRUE(db.Execute("DELETE FROM meta")); |
| db.Close(); |
| } |
| |
| // Upon loading, the database should be reset to a good, blank state. |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(0U, cookies.size()); |
| |
| // Verify that, after, recovery, the database persists properly. |
| AddCookie("X", "Y", "foo.bar", "/", base::Time::Now()); |
| DestroyStore(); |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| ASSERT_STREQ("foo.bar", cookies[0]->Domain().c_str()); |
| ASSERT_STREQ("X", cookies[0]->Name().c_str()); |
| ASSERT_STREQ("Y", cookies[0]->Value().c_str()); |
| cookies.clear(); |
| } |
| |
| // Test if data is stored as expected in the SQLite database. |
| TEST_F(SQLitePersistentCookieStoreTest, TestPersistance) { |
| InitializeStore(false, false); |
| AddCookie("A", "B", "foo.bar", "/", base::Time::Now()); |
| // Replace the store effectively destroying the current one and forcing it |
| // to write its data to disk. Then we can see if after loading it again it |
| // is still there. |
| DestroyStore(); |
| // Reload and test for persistence |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| ASSERT_STREQ("foo.bar", cookies[0]->Domain().c_str()); |
| ASSERT_STREQ("A", cookies[0]->Name().c_str()); |
| ASSERT_STREQ("B", cookies[0]->Value().c_str()); |
| |
| // Now delete the cookie and check persistence again. |
| store_->DeleteCookie(*cookies[0]); |
| DestroyStore(); |
| cookies.clear(); |
| |
| // Reload and check if the cookie has been removed. |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(0U, cookies.size()); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, TestSessionCookiesDeletedOnStartup) { |
| // Initialize the cookie store with 3 persistent cookies, 5 transient |
| // cookies. |
| InitializeStore(false, false); |
| |
| // Add persistent cookies. |
| base::Time t = base::Time::Now(); |
| AddCookie("A", "B", "a1.com", "/", t); |
| t += base::Microseconds(10); |
| AddCookie("A", "B", "a2.com", "/", t); |
| t += base::Microseconds(10); |
| AddCookie("A", "B", "a3.com", "/", t); |
| |
| // Add transient cookies. |
| t += base::Microseconds(10); |
| AddCookieWithExpiration("A", "B", "b1.com", "/", t, base::Time()); |
| t += base::Microseconds(10); |
| AddCookieWithExpiration("A", "B", "b2.com", "/", t, base::Time()); |
| t += base::Microseconds(10); |
| AddCookieWithExpiration("A", "B", "b3.com", "/", t, base::Time()); |
| t += base::Microseconds(10); |
| AddCookieWithExpiration("A", "B", "b4.com", "/", t, base::Time()); |
| t += base::Microseconds(10); |
| AddCookieWithExpiration("A", "B", "b5.com", "/", t, base::Time()); |
| DestroyStore(); |
| |
| // Load the store a second time. Before the store finishes loading, add a |
| // transient cookie and flush it to disk. |
| store_ = base::MakeRefCounted<SQLitePersistentCookieStore>( |
| temp_dir_.GetPath().Append(kCookieFilename), client_task_runner_, |
| background_task_runner_, false, nullptr, false); |
| |
| // Posting a blocking task to db_thread_ makes sure that the DB thread waits |
| // until both Load and Flush have been posted to its task queue. |
| background_task_runner_->PostTask( |
| FROM_HERE, base::BindOnce(&SQLitePersistentCookieStoreTest::WaitOnDBEvent, |
| base::Unretained(this))); |
| LoadAsyncAndSignalEvent(); |
| t += base::Microseconds(10); |
| AddCookieWithExpiration("A", "B", "c.com", "/", t, base::Time()); |
| base::WaitableEvent event(base::WaitableEvent::ResetPolicy::AUTOMATIC, |
| base::WaitableEvent::InitialState::NOT_SIGNALED); |
| store_->Flush( |
| base::BindOnce(&base::WaitableEvent::Signal, base::Unretained(&event))); |
| |
| // Now the DB-thread queue contains: |
| // (active:) |
| // 1. Wait (on db_event) |
| // (pending:) |
| // 2. "Init And Chain-Load First Domain" |
| // 3. Add Cookie (c.com) |
| // 4. Flush Cookie (c.com) |
| db_thread_event_.Signal(); |
| event.Wait(); |
| loaded_event_.Wait(); |
| cookies_.clear(); |
| DestroyStore(); |
| |
| // Load the store a third time, this time restoring session cookies. The |
| // store should contain exactly 4 cookies: the 3 persistent, and "c.com", |
| // which was added during the second cookie store load. |
| store_ = base::MakeRefCounted<SQLitePersistentCookieStore>( |
| temp_dir_.GetPath().Append(kCookieFilename), client_task_runner_, |
| background_task_runner_, true, nullptr, false); |
| LoadAsyncAndSignalEvent(); |
| loaded_event_.Wait(); |
| ASSERT_EQ(4u, cookies_.size()); |
| cookies_.clear(); |
| } |
| |
| // Test that priority load of cookies for a specific domain key could be |
| // completed before the entire store is loaded. |
| TEST_F(SQLitePersistentCookieStoreTest, TestLoadCookiesForKey) { |
| InitializeStore(/*crypt=*/true, /*restore_old_session_cookies=*/false); |
| base::Time t = base::Time::Now(); |
| AddCookie("A", "B", "foo.bar", "/", t); |
| t += base::Microseconds(10); |
| AddCookie("A", "B", "www.aaa.com", "/", t); |
| t += base::Microseconds(10); |
| AddCookie("A", "B", "travel.aaa.com", "/", t); |
| t += base::Microseconds(10); |
| AddCookie("A", "B", "www.bbb.com", "/", t); |
| DestroyStore(); |
| |
| // base::test::TaskEnvironment runs |background_task_runner_| and |
| // |client_task_runner_| on the same thread. Therefore, when a |
| // |background_task_runner_| task is blocked, |client_task_runner_| tasks |
| // can't run. To allow precise control of |background_task_runner_| without |
| // preventing client tasks to run, use |
| // base::SingleThreadTaskRunner::GetCurrentDefault() instead of |
| // |client_task_runner_| for this test. |
| auto cookie_crypto_delegate = std::make_unique<CookieCryptor>(); |
| store_ = base::MakeRefCounted<SQLitePersistentCookieStore>( |
| temp_dir_.GetPath().Append(kCookieFilename), |
| base::SingleThreadTaskRunner::GetCurrentDefault(), |
| background_task_runner_, |
| /*restore_old_session_cookies=*/false, cookie_crypto_delegate.get(), |
| /*enable_exclusive_access=*/false); |
| |
| // Posting a blocking task to db_thread_ makes sure that the DB thread waits |
| // until both Load and LoadCookiesForKey have been posted to its task queue. |
| background_task_runner_->PostTask( |
| FROM_HERE, base::BindOnce(&SQLitePersistentCookieStoreTest::WaitOnDBEvent, |
| base::Unretained(this))); |
| RecordingNetLogObserver net_log_observer; |
| LoadAsyncAndSignalEvent(); |
| base::RunLoop run_loop; |
| net_log_observer.SetObserverCaptureMode(NetLogCaptureMode::kDefault); |
| store_->LoadCookiesForKey( |
| "aaa.com", |
| base::BindOnce(&SQLitePersistentCookieStoreTest::OnLoaded, |
| base::Unretained(this), run_loop.QuitClosure())); |
| |
| // Complete the initialization of the cookie crypto delegate. This ensures |
| // that any background tasks from the Load or the LoadCookiesForKey are posted |
| // to the background_task_runner_. |
| base::RunLoop cookie_crypto_loop; |
| cookie_crypto_delegate->Init(cookie_crypto_loop.QuitClosure()); |
| cookie_crypto_loop.Run(); |
| |
| // Post a final blocking task to the background_task_runner_ to ensure no |
| // other cookie loads take place during the test. |
| background_task_runner_->PostTask( |
| FROM_HERE, base::BindOnce(&SQLitePersistentCookieStoreTest::WaitOnDBEvent, |
| base::Unretained(this))); |
| |
| // Now the DB-thread queue contains: |
| // (active:) |
| // 1. Wait (on db_event) |
| // (pending:) |
| // 2. "Init And Chain-Load First Domain" |
| // 3. Priority Load (aaa.com) |
| // 4. Wait (on db_event) |
| db_thread_event_.Signal(); |
| |
| // Wait until the OnKeyLoaded callback has run. |
| run_loop.Run(); |
| EXPECT_FALSE(loaded_event_.IsSignaled()); |
| |
| std::set<std::string> cookies_loaded; |
| for (CanonicalCookieVector::const_iterator it = cookies_.begin(); |
| it != cookies_.end(); ++it) { |
| cookies_loaded.insert((*it)->Domain().c_str()); |
| } |
| cookies_.clear(); |
| ASSERT_GT(4U, cookies_loaded.size()); |
| ASSERT_EQ(true, cookies_loaded.find("www.aaa.com") != cookies_loaded.end()); |
| ASSERT_EQ(true, |
| cookies_loaded.find("travel.aaa.com") != cookies_loaded.end()); |
| |
| db_thread_event_.Signal(); |
| |
| RunUntilIdle(); |
| EXPECT_TRUE(loaded_event_.IsSignaled()); |
| |
| for (CanonicalCookieVector::const_iterator it = cookies_.begin(); |
| it != cookies_.end(); ++it) { |
| cookies_loaded.insert((*it)->Domain().c_str()); |
| } |
| ASSERT_EQ(4U, cookies_loaded.size()); |
| ASSERT_EQ(cookies_loaded.find("foo.bar") != cookies_loaded.end(), true); |
| ASSERT_EQ(cookies_loaded.find("www.bbb.com") != cookies_loaded.end(), true); |
| cookies_.clear(); |
| |
| store_ = nullptr; |
| auto entries = net_log_observer.GetEntries(); |
| size_t pos = ExpectLogContainsSomewhere( |
| entries, 0, NetLogEventType::COOKIE_PERSISTENT_STORE_LOAD, |
| NetLogEventPhase::BEGIN); |
| pos = ExpectLogContainsSomewhere( |
| entries, pos, NetLogEventType::COOKIE_PERSISTENT_STORE_LOAD, |
| NetLogEventPhase::END); |
| pos = ExpectLogContainsSomewhere( |
| entries, 0, NetLogEventType::COOKIE_PERSISTENT_STORE_LOAD, |
| NetLogEventPhase::BEGIN); |
| pos = ExpectLogContainsSomewhere( |
| entries, pos, NetLogEventType::COOKIE_PERSISTENT_STORE_KEY_LOAD_STARTED, |
| NetLogEventPhase::NONE); |
| EXPECT_FALSE(GetOptionalStringValueFromParams(entries[pos], "key")); |
| pos = ExpectLogContainsSomewhere( |
| entries, pos, NetLogEventType::COOKIE_PERSISTENT_STORE_KEY_LOAD_COMPLETED, |
| NetLogEventPhase::NONE); |
| pos = ExpectLogContainsSomewhere( |
| entries, pos, NetLogEventType::COOKIE_PERSISTENT_STORE_LOAD, |
| NetLogEventPhase::END); |
| ExpectLogContainsSomewhere(entries, pos, |
| NetLogEventType::COOKIE_PERSISTENT_STORE_CLOSED, |
| NetLogEventPhase::NONE); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, TestBeforeCommitCallback) { |
| InitializeStore(false, false); |
| |
| struct Counter { |
| int count = 0; |
| void increment() { count++; } |
| }; |
| |
| Counter counter; |
| store_->SetBeforeCommitCallback( |
| base::BindRepeating(&Counter::increment, base::Unretained(&counter))); |
| |
| // The implementation of SQLitePersistentCookieStore::Backend flushes changes |
| // after 30s or 512 pending operations. Add 512 cookies to the store to test |
| // that the callback gets called when SQLitePersistentCookieStore internally |
| // flushes its store. |
| for (int i = 0; i < 512; i++) { |
| // Each cookie needs a unique timestamp for creation_utc (see DB schema). |
| base::Time t = base::Time::Now() + base::Microseconds(i); |
| AddCookie(base::StringPrintf("%d", i), "foo", "example.com", "/", t); |
| } |
| |
| RunUntilIdle(); |
| EXPECT_GT(counter.count, 0); |
| |
| DestroyStore(); |
| } |
| |
| // Test that we can force the database to be written by calling Flush(). |
| TEST_F(SQLitePersistentCookieStoreTest, TestFlush) { |
| InitializeStore(false, false); |
| // File timestamps don't work well on all platforms, so we'll determine |
| // whether the DB file has been modified by checking its size. |
| base::FilePath path = temp_dir_.GetPath().Append(kCookieFilename); |
| base::File::Info info; |
| ASSERT_TRUE(base::GetFileInfo(path, &info)); |
| int64_t base_size = info.size; |
| |
| // Write some large cookies, so the DB will have to expand by several KB. |
| for (char c = 'a'; c < 'z'; ++c) { |
| // Each cookie needs a unique timestamp for creation_utc (see DB schema). |
| base::Time t = base::Time::Now() + base::Microseconds(c); |
| std::string name(1, c); |
| std::string value(1000, c); |
| AddCookie(name, value, "foo.bar", "/", t); |
| } |
| |
| Flush(); |
| |
| // We forced a write, so now the file will be bigger. |
| ASSERT_TRUE(base::GetFileInfo(path, &info)); |
| ASSERT_GT(info.size, base_size); |
| } |
| |
| // Test loading old session cookies from the disk. |
| TEST_F(SQLitePersistentCookieStoreTest, TestLoadOldSessionCookies) { |
| InitializeStore(false, true); |
| |
| // Add a session cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "C", "D", "sessioncookie.com", "/", base::Time::Now(), base::Time(), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Create a store that loads session cookies and test that the session cookie |
| // was loaded. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, true, &cookies); |
| |
| ASSERT_EQ(1U, cookies.size()); |
| ASSERT_STREQ("sessioncookie.com", cookies[0]->Domain().c_str()); |
| ASSERT_STREQ("C", cookies[0]->Name().c_str()); |
| ASSERT_STREQ("D", cookies[0]->Value().c_str()); |
| ASSERT_EQ(COOKIE_PRIORITY_DEFAULT, cookies[0]->Priority()); |
| |
| cookies.clear(); |
| } |
| |
| // Test refusing to load old session cookies from the disk. |
| TEST_F(SQLitePersistentCookieStoreTest, TestDontLoadOldSessionCookies) { |
| InitializeStore(false, true); |
| |
| // Add a session cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "C", "D", "sessioncookie.com", "/", base::Time::Now(), base::Time(), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Create a store that doesn't load old session cookies and test that the |
| // session cookie was not loaded. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(0U, cookies.size()); |
| |
| // The store should also delete the session cookie. Wait until that has been |
| // done. |
| DestroyStore(); |
| |
| // Create a store that loads old session cookies and test that the session |
| // cookie is gone. |
| CreateAndLoad(false, true, &cookies); |
| ASSERT_EQ(0U, cookies.size()); |
| } |
| |
| // Confirm bad cookies on disk don't get looaded, and that we also remove them |
| // from the database. |
| TEST_F(SQLitePersistentCookieStoreTest, FilterBadCookiesAndFixupDb) { |
| // Create an on-disk store. |
| InitializeStore(false, true); |
| DestroyStore(); |
| |
| // Add some cookies in by hand. |
| base::FilePath store_name(temp_dir_.GetPath().Append(kCookieFilename)); |
| std::unique_ptr<sql::Database> db(std::make_unique<sql::Database>()); |
| ASSERT_TRUE(db->Open(store_name)); |
| sql::Statement stmt(db->GetUniqueStatement( |
| "INSERT INTO cookies (creation_utc, host_key, top_frame_site_key, name, " |
| "value, encrypted_value, path, expires_utc, is_secure, is_httponly, " |
| "samesite, last_access_utc, has_expires, is_persistent, priority, " |
| "source_scheme, source_port, last_update_utc) " |
| "VALUES (?,?,?,?,?,'',?,0,0,0,0,0,1,1,0,?,?,?)")); |
| ASSERT_TRUE(stmt.is_valid()); |
| |
| struct CookieInfo { |
| const char* domain; |
| const char* name; |
| const char* value; |
| const char* path; |
| } cookies_info[] = {// A couple non-canonical cookies. |
| {"google.izzle", "A=", "B", "/path"}, |
| {"google.izzle", "C ", "D", "/path"}, |
| |
| // A canonical cookie for same eTLD+1. This one will get |
| // dropped out of precaution to avoid confusing the site, |
| // even though there is nothing wrong with it. |
| {"sub.google.izzle", "E", "F", "/path"}, |
| |
| // A canonical cookie for another eTLD+1 |
| {"chromium.org", "G", "H", "/dir"}}; |
| |
| int64_t creation_time = 1; |
| base::Time last_update(base::Time::Now()); |
| for (auto& cookie_info : cookies_info) { |
| stmt.Reset(true); |
| |
| stmt.BindInt64(0, creation_time++); |
| stmt.BindString(1, cookie_info.domain); |
| // TODO(crbug.com/1225444) Test some non-empty values when CanonicalCookie |
| // supports partition key. |
| stmt.BindString(2, net::kEmptyCookiePartitionKey); |
| stmt.BindString(3, cookie_info.name); |
| stmt.BindString(4, cookie_info.value); |
| stmt.BindString(5, cookie_info.path); |
| stmt.BindInt(6, static_cast<int>(CookieSourceScheme::kUnset)); |
| stmt.BindInt(7, SQLitePersistentCookieStore::kDefaultUnknownPort); |
| stmt.BindTime(8, last_update); |
| ASSERT_TRUE(stmt.Run()); |
| } |
| stmt.Clear(); |
| db.reset(); |
| |
| // Reopen the store and confirm that the only cookie loaded is the |
| // canonical one on an unrelated domain. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, false, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| EXPECT_STREQ("chromium.org", cookies[0]->Domain().c_str()); |
| EXPECT_STREQ("G", cookies[0]->Name().c_str()); |
| EXPECT_STREQ("H", cookies[0]->Value().c_str()); |
| EXPECT_STREQ("/dir", cookies[0]->Path().c_str()); |
| EXPECT_EQ(last_update, cookies[0]->LastUpdateDate()); |
| DestroyStore(); |
| |
| // Make sure that we only have one row left. |
| db = std::make_unique<sql::Database>(); |
| ASSERT_TRUE(db->Open(store_name)); |
| sql::Statement verify_stmt(db->GetUniqueStatement("SELECT * FROM COOKIES")); |
| ASSERT_TRUE(verify_stmt.is_valid()); |
| int found = 0; |
| while (verify_stmt.Step()) { |
| ++found; |
| } |
| EXPECT_TRUE(verify_stmt.Succeeded()); |
| EXPECT_EQ(1, found); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, PersistIsPersistent) { |
| InitializeStore(false, true); |
| static const char kSessionName[] = "session"; |
| static const char kPersistentName[] = "persistent"; |
| |
| // Add a session cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kSessionName, "val", "sessioncookie.com", "/", base::Time::Now(), |
| base::Time(), base::Time(), base::Time(), false, false, |
| CookieSameSite::NO_RESTRICTION, COOKIE_PRIORITY_DEFAULT)); |
| // Add a persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kPersistentName, "val", "sessioncookie.com", "/", |
| base::Time::Now() - base::Days(1), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Create a store that loads session cookie and test that the IsPersistent |
| // attribute is restored. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, true, &cookies); |
| ASSERT_EQ(2U, cookies.size()); |
| |
| std::map<std::string, CanonicalCookie*> cookie_map; |
| for (const auto& cookie : cookies) |
| cookie_map[cookie->Name()] = cookie.get(); |
| |
| auto it = cookie_map.find(kSessionName); |
| ASSERT_TRUE(it != cookie_map.end()); |
| EXPECT_FALSE(cookie_map[kSessionName]->IsPersistent()); |
| |
| it = cookie_map.find(kPersistentName); |
| ASSERT_TRUE(it != cookie_map.end()); |
| EXPECT_TRUE(cookie_map[kPersistentName]->IsPersistent()); |
| |
| cookies.clear(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, PriorityIsPersistent) { |
| static const char kDomain[] = "sessioncookie.com"; |
| static const char kLowName[] = "low"; |
| static const char kMediumName[] = "medium"; |
| static const char kHighName[] = "high"; |
| static const char kCookieValue[] = "value"; |
| static const char kCookiePath[] = "/"; |
| |
| InitializeStore(false, true); |
| |
| // Add a low-priority persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kLowName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(1), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_LOW)); |
| |
| // Add a medium-priority persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kMediumName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(2), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_MEDIUM)); |
| |
| // Add a high-priority persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kHighName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(3), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_HIGH)); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Create a store that loads session cookie and test that the priority |
| // attribute values are restored. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, true, &cookies); |
| ASSERT_EQ(3U, cookies.size()); |
| |
| // Put the cookies into a map, by name, so we can easily find them. |
| std::map<std::string, CanonicalCookie*> cookie_map; |
| for (const auto& cookie : cookies) |
| cookie_map[cookie->Name()] = cookie.get(); |
| |
| // Validate that each cookie has the correct priority. |
| auto it = cookie_map.find(kLowName); |
| ASSERT_TRUE(it != cookie_map.end()); |
| EXPECT_EQ(COOKIE_PRIORITY_LOW, cookie_map[kLowName]->Priority()); |
| |
| it = cookie_map.find(kMediumName); |
| ASSERT_TRUE(it != cookie_map.end()); |
| EXPECT_EQ(COOKIE_PRIORITY_MEDIUM, cookie_map[kMediumName]->Priority()); |
| |
| it = cookie_map.find(kHighName); |
| ASSERT_TRUE(it != cookie_map.end()); |
| EXPECT_EQ(COOKIE_PRIORITY_HIGH, cookie_map[kHighName]->Priority()); |
| |
| cookies.clear(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, SameSiteIsPersistent) { |
| const char kDomain[] = "sessioncookie.com"; |
| const char kNoneName[] = "none"; |
| const char kLaxName[] = "lax"; |
| const char kStrictName[] = "strict"; |
| const char kCookieValue[] = "value"; |
| const char kCookiePath[] = "/"; |
| |
| InitializeStore(false, true); |
| |
| // Add a non-samesite persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kNoneName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(1), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::NO_RESTRICTION, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Add a lax-samesite persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kLaxName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(2), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::LAX_MODE, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Add a strict-samesite persistent cookie. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kStrictName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(3), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::STRICT_MODE, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Create a store that loads session cookie and test that the SameSite |
| // attribute values are restored. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, true, &cookies); |
| ASSERT_EQ(3U, cookies.size()); |
| |
| // Put the cookies into a map, by name, for comparison below. |
| std::map<std::string, CanonicalCookie*> cookie_map; |
| for (const auto& cookie : cookies) |
| cookie_map[cookie->Name()] = cookie.get(); |
| |
| // Validate that each cookie has the correct SameSite. |
| ASSERT_EQ(1u, cookie_map.count(kNoneName)); |
| EXPECT_EQ(CookieSameSite::NO_RESTRICTION, cookie_map[kNoneName]->SameSite()); |
| |
| ASSERT_EQ(1u, cookie_map.count(kLaxName)); |
| EXPECT_EQ(CookieSameSite::LAX_MODE, cookie_map[kLaxName]->SameSite()); |
| |
| ASSERT_EQ(1u, cookie_map.count(kStrictName)); |
| EXPECT_EQ(CookieSameSite::STRICT_MODE, cookie_map[kStrictName]->SameSite()); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, SameSiteExtendedTreatedAsUnspecified) { |
| constexpr char kDomain[] = "sessioncookie.com"; |
| constexpr char kExtendedName[] = "extended"; |
| constexpr char kCookieValue[] = "value"; |
| constexpr char kCookiePath[] = "/"; |
| |
| InitializeStore(false, true); |
| |
| // Add an extended-samesite persistent cookie by first adding a strict-same |
| // site cookie, then turning that into the legacy extended-samesite state with |
| // direct SQL DB access. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| kExtendedName, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(1), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), false, false, CookieSameSite::STRICT_MODE, |
| COOKIE_PRIORITY_DEFAULT)); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| std::string update_stmt( |
| "UPDATE cookies SET samesite=3" // 3 is Extended. |
| " WHERE samesite=2" // 2 is Strict. |
| ); |
| ASSERT_TRUE(connection.Execute(update_stmt.c_str())); |
| connection.Close(); |
| |
| // Create a store that loads session cookie and test that the |
| // SameSite=Extended attribute values is ignored. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, true, &cookies); |
| ASSERT_EQ(1U, cookies.size()); |
| |
| // Validate that the cookie has the correct SameSite. |
| EXPECT_EQ(kExtendedName, cookies[0]->Name()); |
| EXPECT_EQ(CookieSameSite::UNSPECIFIED, cookies[0]->SameSite()); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, SourcePortIsPersistent) { |
| const char kDomain[] = "sessioncookie.com"; |
| const char kCookieValue[] = "value"; |
| const char kCookiePath[] = "/"; |
| |
| struct CookieTestValues { |
| std::string name; |
| int port; |
| }; |
| |
| const std::vector<CookieTestValues> kTestCookies = { |
| {"1", 80}, |
| {"2", 443}, |
| {"3", 1234}, |
| {"4", url::PORT_UNSPECIFIED}, |
| {"5", url::PORT_INVALID}}; |
| |
| InitializeStore(false, true); |
| |
| for (const auto& input : kTestCookies) { |
| // Add some persistent cookies. |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| input.name, kCookieValue, kDomain, kCookiePath, |
| base::Time::Now() - base::Minutes(1), base::Time::Now() + base::Days(1), |
| base::Time(), base::Time(), |
| /*secure=*/true, false, CookieSameSite::LAX_MODE, |
| COOKIE_PRIORITY_DEFAULT, |
| /*partition_key=*/absl::nullopt, |
| CookieSourceScheme::kUnset /* Doesn't matter for this test. */, |
| input.port)); |
| } |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| // Create a store that loads session cookie and test that the source_port |
| // attribute values are restored. |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, true, &cookies); |
| ASSERT_EQ(kTestCookies.size(), cookies.size()); |
| |
| // Put the cookies into a map, by name, for comparison below. |
| std::map<std::string, CanonicalCookie*> cookie_map; |
| for (const auto& cookie : cookies) |
| cookie_map[cookie->Name()] = cookie.get(); |
| |
| for (const auto& expected : kTestCookies) { |
| ASSERT_EQ(1u, cookie_map.count(expected.name)); |
| ASSERT_EQ(expected.port, cookie_map[expected.name]->SourcePort()); |
| } |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpdateToEncryption) { |
| CanonicalCookieVector cookies; |
| |
| // Create unencrypted cookie store and write something to it. |
| InitializeStore(false, false); |
| AddCookie("name", "value123XYZ", "foo.bar", "/", base::Time::Now()); |
| DestroyStore(); |
| |
| // Verify that "value" is visible in the file. This is necessary in order to |
| // have confidence in a later test that "encrypted_value" is not visible. |
| std::string contents = ReadRawDBContents(); |
| EXPECT_NE(0U, contents.length()); |
| EXPECT_NE(contents.find("value123XYZ"), std::string::npos); |
| |
| // Create encrypted cookie store and ensure old cookie still reads. |
| cookies.clear(); |
| EXPECT_EQ(0U, cookies.size()); |
| CreateAndLoad(true, false, &cookies); |
| EXPECT_EQ(1U, cookies.size()); |
| EXPECT_EQ("name", cookies[0]->Name()); |
| EXPECT_EQ("value123XYZ", cookies[0]->Value()); |
| |
| // Make sure we can update existing cookie and add new cookie as encrypted. |
| store_->DeleteCookie(*(cookies[0])); |
| AddCookie("name", "encrypted_value123XYZ", "foo.bar", "/", base::Time::Now()); |
| AddCookie("other", "something456ABC", "foo.bar", "/", |
| base::Time::Now() + base::Microseconds(10)); |
| DestroyStore(); |
| cookies.clear(); |
| CreateAndLoad(true, false, &cookies); |
| EXPECT_EQ(2U, cookies.size()); |
| CanonicalCookie* cookie_name = nullptr; |
| CanonicalCookie* cookie_other = nullptr; |
| if (cookies[0]->Name() == "name") { |
| cookie_name = cookies[0].get(); |
| cookie_other = cookies[1].get(); |
| } else { |
| cookie_name = cookies[1].get(); |
| cookie_other = cookies[0].get(); |
| } |
| EXPECT_EQ("encrypted_value123XYZ", cookie_name->Value()); |
| EXPECT_EQ("something456ABC", cookie_other->Value()); |
| DestroyStore(); |
| cookies.clear(); |
| |
| // Examine the real record to make sure plaintext version doesn't exist. |
| sql::Database db; |
| sql::Statement smt; |
| int resultcount = 0; |
| ASSERT_TRUE(db.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| smt.Assign(db.GetCachedStatement(SQL_FROM_HERE, |
| "SELECT * " |
| "FROM cookies " |
| "WHERE host_key = 'foo.bar'")); |
| while (smt.Step()) { |
| resultcount++; |
| for (int i = 0; i < smt.ColumnCount(); i++) { |
| EXPECT_EQ(smt.ColumnString(i).find("value"), std::string::npos); |
| EXPECT_EQ(smt.ColumnString(i).find("something"), std::string::npos); |
| } |
| } |
| EXPECT_EQ(2, resultcount); |
| |
| // Verify that "encrypted_value" is NOT visible in the file. |
| contents = ReadRawDBContents(); |
| EXPECT_NE(0U, contents.length()); |
| EXPECT_EQ(contents.find("encrypted_value123XYZ"), std::string::npos); |
| EXPECT_EQ(contents.find("something456ABC"), std::string::npos); |
| } |
| |
| bool CompareCookies(const std::unique_ptr<CanonicalCookie>& a, |
| const std::unique_ptr<CanonicalCookie>& b) { |
| return a->PartialCompare(*b); |
| } |
| |
| // Confirm the store can handle having cookies with identical creation |
| // times stored in it. |
| TEST_F(SQLitePersistentCookieStoreTest, IdenticalCreationTimes) { |
| InitializeStore(false, false); |
| base::Time cookie_time(base::Time::Now()); |
| base::Time cookie_expiry(cookie_time + base::Days(1)); |
| AddCookieWithExpiration("A", "B", "example.com", "/", cookie_time, |
| cookie_expiry); |
| AddCookieWithExpiration("C", "B", "example.com", "/", cookie_time, |
| cookie_expiry); |
| AddCookieWithExpiration("A", "B", "example2.com", "/", cookie_time, |
| cookie_expiry); |
| AddCookieWithExpiration("C", "B", "example2.com", "/", cookie_time, |
| cookie_expiry); |
| AddCookieWithExpiration("A", "B", "example.com", "/path", cookie_time, |
| cookie_expiry); |
| AddCookieWithExpiration("C", "B", "example.com", "/path", cookie_time, |
| cookie_expiry); |
| Flush(); |
| DestroyStore(); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(false, false, &read_in_cookies); |
| ASSERT_EQ(6u, read_in_cookies.size()); |
| |
| std::sort(read_in_cookies.begin(), read_in_cookies.end(), &CompareCookies); |
| int i = 0; |
| EXPECT_EQ("A", read_in_cookies[i]->Name()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| |
| i++; |
| EXPECT_EQ("A", read_in_cookies[i]->Name()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/path", read_in_cookies[i]->Path()); |
| |
| i++; |
| EXPECT_EQ("A", read_in_cookies[i]->Name()); |
| EXPECT_EQ("example2.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| |
| i++; |
| EXPECT_EQ("C", read_in_cookies[i]->Name()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| |
| i++; |
| EXPECT_EQ("C", read_in_cookies[i]->Name()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/path", read_in_cookies[i]->Path()); |
| |
| i++; |
| EXPECT_EQ("C", read_in_cookies[i]->Name()); |
| EXPECT_EQ("example2.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, KeyInconsistency) { |
| // Regression testcase for previous disagreement between CookieMonster |
| // and SQLitePersistentCookieStoreTest as to what keys to LoadCookiesForKey |
| // mean. The particular example doesn't, of course, represent an actual in-use |
| // scenario, but while the inconstancy could happen with chrome-extension |
| // URLs in real life, it was irrelevant for them in practice since their |
| // rows would get key = "" which would get sorted before actual domains, |
| // and therefore get loaded first by CookieMonster::FetchAllCookiesIfNecessary |
| // with the task runners involved ensuring that would finish before the |
| // incorrect LoadCookiesForKey got the chance to run. |
| // |
| // This test uses a URL that used to be treated differently by the two |
| // layers that also sorts after other rows to avoid this scenario. |
| |
| // SQLitePersistentCookieStore will run its callbacks on what's passed to it |
| // as |client_task_runner|, and CookieMonster expects to get callbacks from |
| // its PersistentCookieStore on the same thread as its methods are invoked on; |
| // so to avoid needing to post every CookieMonster API call, this uses the |
| // current thread for SQLitePersistentCookieStore's |client_task_runner|. |
| // Note: Cookie encryption is explicitly enabled here to verify threading |
| // model with async initialization functions correctly. |
| Create(/*crypt_cookies=*/true, false, true /* use_current_thread */, false); |
| |
| // Create a cookie on a scheme that doesn't handle cookies by default, |
| // and save it. |
| std::unique_ptr<CookieMonster> cookie_monster = |
| std::make_unique<CookieMonster>(store_.get(), /*net_log=*/nullptr); |
| ResultSavingCookieCallback<bool> cookie_scheme_callback1; |
| cookie_monster->SetCookieableSchemes({"ftp", "http"}, |
| cookie_scheme_callback1.MakeCallback()); |
| cookie_scheme_callback1.WaitUntilDone(); |
| EXPECT_TRUE(cookie_scheme_callback1.result()); |
| ResultSavingCookieCallback<CookieAccessResult> set_cookie_callback; |
| GURL ftp_url("ftp://subdomain.ftperiffic.com/page/"); |
| auto cookie = |
| CanonicalCookie::Create(ftp_url, "A=B; max-age=3600", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| cookie_monster->SetCanonicalCookieAsync(std::move(cookie), ftp_url, |
| CookieOptions::MakeAllInclusive(), |
| set_cookie_callback.MakeCallback()); |
| set_cookie_callback.WaitUntilDone(); |
| EXPECT_TRUE(set_cookie_callback.result().status.IsInclude()); |
| |
| // Also insert a whole bunch of cookies to slow down the background loading of |
| // all the cookies. |
| for (int i = 0; i < 50; ++i) { |
| ResultSavingCookieCallback<CookieAccessResult> set_cookie_callback2; |
| GURL url(base::StringPrintf("http://example%d.com/", i)); |
| auto canonical_cookie = |
| CanonicalCookie::Create(url, "A=B; max-age=3600", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| cookie_monster->SetCanonicalCookieAsync( |
| std::move(canonical_cookie), url, CookieOptions::MakeAllInclusive(), |
| set_cookie_callback2.MakeCallback()); |
| set_cookie_callback2.WaitUntilDone(); |
| EXPECT_TRUE(set_cookie_callback2.result().status.IsInclude()); |
| } |
| |
| net::TestClosure flush_closure; |
| cookie_monster->FlushStore(flush_closure.closure()); |
| flush_closure.WaitForResult(); |
| cookie_monster = nullptr; |
| |
| // Re-create the PersistentCookieStore & CookieMonster. Note that the |
| // destroyed store's ops will happen on same runners as the previous |
| // instances, so they should complete before the new PersistentCookieStore |
| // starts looking at the state on disk. |
| Create(false, false, true /* want current thread to invoke cookie monster */, |
| false); |
| cookie_monster = |
| std::make_unique<CookieMonster>(store_.get(), /*net_log=*/nullptr); |
| ResultSavingCookieCallback<bool> cookie_scheme_callback2; |
| cookie_monster->SetCookieableSchemes({"ftp", "http"}, |
| cookie_scheme_callback2.MakeCallback()); |
| cookie_scheme_callback2.WaitUntilDone(); |
| EXPECT_TRUE(cookie_scheme_callback2.result()); |
| |
| // Now try to get the cookie back. |
| GetCookieListCallback get_callback; |
| cookie_monster->GetCookieListWithOptionsAsync( |
| GURL("ftp://subdomain.ftperiffic.com/page"), |
| CookieOptions::MakeAllInclusive(), CookiePartitionKeyCollection(), |
| base::BindOnce(&GetCookieListCallback::Run, |
| base::Unretained(&get_callback))); |
| get_callback.WaitUntilDone(); |
| ASSERT_EQ(1u, get_callback.cookies().size()); |
| EXPECT_EQ("A", get_callback.cookies()[0].Name()); |
| EXPECT_EQ("B", get_callback.cookies()[0].Value()); |
| EXPECT_EQ("subdomain.ftperiffic.com", get_callback.cookies()[0].Domain()); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, OpsIfInitFailed) { |
| // Test to make sure we don't leak pending operations when initialization |
| // fails really hard. To inject the failure, we put a directory where the |
| // database file ought to be. This test relies on an external leak checker |
| // (e.g. lsan) to actual catch thing. |
| ASSERT_TRUE( |
| base::CreateDirectory(temp_dir_.GetPath().Append(kCookieFilename))); |
| Create(false, false, true /* want current thread to invoke cookie monster */, |
| false); |
| std::unique_ptr<CookieMonster> cookie_monster = |
| std::make_unique<CookieMonster>(store_.get(), /*net_log=*/nullptr); |
| |
| ResultSavingCookieCallback<CookieAccessResult> set_cookie_callback; |
| GURL url("http://www.example.com/"); |
| auto cookie = |
| CanonicalCookie::Create(url, "A=B; max-age=3600", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| cookie_monster->SetCanonicalCookieAsync(std::move(cookie), url, |
| CookieOptions::MakeAllInclusive(), |
| set_cookie_callback.MakeCallback()); |
| set_cookie_callback.WaitUntilDone(); |
| EXPECT_TRUE(set_cookie_callback.result().status.IsInclude()); |
| |
| // Things should commit once going out of scope. |
| expect_init_errors_ = true; |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, Coalescing) { |
| enum class Op { kAdd, kDelete, kUpdate }; |
| |
| struct TestCase { |
| std::vector<Op> operations; |
| size_t expected_queue_length; |
| }; |
| |
| std::vector<TestCase> testcases = { |
| {{Op::kAdd, Op::kDelete}, 1u}, |
| {{Op::kUpdate, Op::kDelete}, 1u}, |
| {{Op::kAdd, Op::kUpdate, Op::kDelete}, 1u}, |
| {{Op::kUpdate, Op::kUpdate}, 1u}, |
| {{Op::kAdd, Op::kUpdate, Op::kUpdate}, 2u}, |
| {{Op::kDelete, Op::kAdd}, 2u}, |
| {{Op::kDelete, Op::kAdd, Op::kUpdate}, 3u}, |
| {{Op::kDelete, Op::kAdd, Op::kUpdate, Op::kUpdate}, 3u}, |
| {{Op::kDelete, Op::kDelete}, 1u}, |
| {{Op::kDelete, Op::kAdd, Op::kDelete}, 1u}, |
| {{Op::kDelete, Op::kAdd, Op::kUpdate, Op::kDelete}, 1u}}; |
| |
| std::unique_ptr<CanonicalCookie> cookie = CanonicalCookie::Create( |
| GURL("http://www.example.com/path"), "Tasty=Yes", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| |
| for (const TestCase& testcase : testcases) { |
| Create(false, false, true /* want current thread to invoke the store. */, |
| false); |
| |
| base::RunLoop run_loop; |
| store_->Load(base::BindLambdaForTesting( |
| [&](CanonicalCookieVector cookies) { run_loop.Quit(); }), |
| NetLogWithSource()); |
| run_loop.Run(); |
| |
| // Wedge the background thread to make sure that it doesn't start consuming |
| // the queue. |
| background_task_runner_->PostTask( |
| FROM_HERE, |
| base::BindOnce(&SQLitePersistentCookieStoreTest::WaitOnDBEvent, |
| base::Unretained(this))); |
| |
| // Now run the ops, and check how much gets queued. |
| for (const Op op : testcase.operations) { |
| switch (op) { |
| case Op::kAdd: |
| store_->AddCookie(*cookie); |
| break; |
| |
| case Op::kDelete: |
| store_->DeleteCookie(*cookie); |
| break; |
| |
| case Op::kUpdate: |
| store_->UpdateCookieAccessTime(*cookie); |
| break; |
| } |
| } |
| |
| EXPECT_EQ(testcase.expected_queue_length, |
| store_->GetQueueLengthForTesting()); |
| |
| db_thread_event_.Signal(); |
| DestroyStore(); |
| } |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, NoCoalesceUnrelated) { |
| Create(false, false, true /* want current thread to invoke the store. */, |
| false); |
| |
| base::RunLoop run_loop; |
| store_->Load(base::BindLambdaForTesting( |
| [&](CanonicalCookieVector cookies) { run_loop.Quit(); }), |
| NetLogWithSource()); |
| run_loop.Run(); |
| |
| std::unique_ptr<CanonicalCookie> cookie1 = CanonicalCookie::Create( |
| GURL("http://www.example.com/path"), "Tasty=Yes", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| |
| std::unique_ptr<CanonicalCookie> cookie2 = CanonicalCookie::Create( |
| GURL("http://not.example.com/path"), "Tasty=No", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| |
| // Wedge the background thread to make sure that it doesn't start consuming |
| // the queue. |
| background_task_runner_->PostTask( |
| FROM_HERE, base::BindOnce(&SQLitePersistentCookieStoreTest::WaitOnDBEvent, |
| base::Unretained(this))); |
| |
| store_->AddCookie(*cookie1); |
| store_->DeleteCookie(*cookie2); |
| // delete on cookie2 shouldn't cancel op on unrelated cookie1. |
| EXPECT_EQ(2u, store_->GetQueueLengthForTesting()); |
| |
| db_thread_event_.Signal(); |
| } |
| |
| // Locking is only supported on Windows. |
| #if BUILDFLAG(IS_WIN) |
| |
| class SQLitePersistentCookieStoreExclusiveAccessTest |
| : public SQLitePersistentCookieStoreTest, |
| public ::testing::WithParamInterface<bool> { |
| protected: |
| const bool& ShouldBeExclusive() { return GetParam(); } |
| }; |
| |
| TEST_P(SQLitePersistentCookieStoreExclusiveAccessTest, LockedStore) { |
| Create(false, false, true /* want current thread to invoke the store. */, |
| /* exclusive access */ ShouldBeExclusive()); |
| |
| base::RunLoop run_loop; |
| store_->Load(base::BindLambdaForTesting( |
| [&](CanonicalCookieVector cookies) { run_loop.Quit(); }), |
| NetLogWithSource()); |
| run_loop.Run(); |
| |
| std::unique_ptr<CanonicalCookie> cookie = CanonicalCookie::Create( |
| GURL("http://www.example.com/path"), "Tasty=Yes", base::Time::Now(), |
| absl::nullopt /* server_time */, |
| absl::nullopt /* cookie_partition_key */); |
| |
| // Wedge the background thread to make sure that it doesn't start consuming |
| // the queue. |
| background_task_runner_->PostTask( |
| FROM_HERE, base::BindOnce(&SQLitePersistentCookieStoreTest::WaitOnDBEvent, |
| base::Unretained(this))); |
| |
| store_->AddCookie(*cookie); |
| |
| { |
| base::File file( |
| temp_dir_.GetPath().Append(kCookieFilename), |
| base::File::Flags::FLAG_OPEN_ALWAYS | base::File::Flags::FLAG_READ); |
| // If locked, should not be able to open file even for read. |
| EXPECT_EQ(ShouldBeExclusive(), !file.IsValid()); |
| } |
| |
| db_thread_event_.Signal(); |
| } |
| |
| TEST_P(SQLitePersistentCookieStoreExclusiveAccessTest, LockedStoreAlreadyOpen) { |
| base::HistogramTester histograms; |
| base::File file( |
| temp_dir_.GetPath().Append(kCookieFilename), |
| base::File::Flags::FLAG_CREATE | base::File::Flags::FLAG_READ); |
| ASSERT_TRUE(file.IsValid()); |
| |
| Create(false, false, true /* want current thread to invoke the store. */, |
| /* exclusive access */ ShouldBeExclusive()); |
| |
| base::RunLoop run_loop; |
| store_->Load(base::BindLambdaForTesting( |
| [&](CanonicalCookieVector cookies) { run_loop.Quit(); }), |
| NetLogWithSource()); |
| run_loop.Run(); |
| |
| // Note: The non-exclusive path is verified in the TearDown for the fixture. |
| if (ShouldBeExclusive()) { |
| expect_init_errors_ = true; |
| histograms.ExpectUniqueSample("Cookie.ErrorInitializeDB", |
| sql::SqliteLoggedResultCode::kCantOpen, 1); |
| histograms.ExpectUniqueSample("Cookie.WinGetLastErrorInitializeDB", |
| ERROR_SHARING_VIOLATION, 1); |
| } |
| } |
| |
| INSTANTIATE_TEST_SUITE_P(All, |
| SQLitePersistentCookieStoreExclusiveAccessTest, |
| ::testing::Bool(), |
| [](const auto& info) { |
| return info.param ? "Exclusive" : "NotExclusive"; |
| }); |
| |
| #endif // BUILDFLAG(IS_WIN) |
| |
| TEST_F(SQLitePersistentCookieStoreTest, CorruptStore) { |
| base::HistogramTester histograms; |
| base::WriteFile(temp_dir_.GetPath().Append(kCookieFilename), |
| "SQLite format 3 foobarfoobarfoobar"); |
| |
| Create(false, false, true /* want current thread to invoke the store. */, |
| false); |
| |
| base::RunLoop run_loop; |
| store_->Load(base::BindLambdaForTesting( |
| [&](CanonicalCookieVector cookies) { run_loop.Quit(); }), |
| NetLogWithSource()); |
| run_loop.Run(); |
| |
| expect_init_errors_ = true; |
| histograms.ExpectUniqueSample("Cookie.ErrorInitializeDB", |
| sql::SqliteLoggedResultCode::kNotADatabase, 1); |
| } |
| |
| bool CreateV15Schema(sql::Database* db) { |
| sql::MetaTable meta_table; |
| if (!meta_table.Init(db, /* version = */ 15, |
| /* earliest compatible version = */ 15)) { |
| return false; |
| } |
| |
| // Version 15 schema |
| static constexpr char kCreateSql[] = |
| "CREATE TABLE cookies(" |
| "creation_utc INTEGER NOT NULL," |
| "top_frame_site_key TEXT NOT NULL," |
| "host_key TEXT NOT NULL," |
| "name TEXT NOT NULL," |
| "value TEXT NOT NULL," |
| "path TEXT NOT NULL," |
| "expires_utc INTEGER NOT NULL," |
| "is_secure INTEGER NOT NULL," |
| "is_httponly INTEGER NOT NULL," |
| "last_access_utc INTEGER NOT NULL," |
| "has_expires INTEGER NOT NULL DEFAULT 1," |
| "is_persistent INTEGER NOT NULL DEFAULT 1," |
| "priority INTEGER NOT NULL DEFAULT 1," // COOKIE_PRIORITY_DEFAULT |
| "encrypted_value BLOB DEFAULT ''," |
| "samesite INTEGER NOT NULL DEFAULT -1," // UNSPECIFIED |
| "source_scheme INTEGER NOT NULL DEFAULT 0," // CookieSourceScheme::kUnset |
| "source_port INTEGER NOT NULL DEFAULT -1," // UNKNOWN |
| "is_same_party INTEGER NOT NULL DEFAULT 0," |
| "UNIQUE (top_frame_site_key, host_key, name, path))"; |
| if (!db->Execute(kCreateSql)) |
| return false; |
| |
| return true; |
| } |
| |
| // crbug.com/1290841 |
| bool CreateFaultyV16Schema(sql::Database* db) { |
| sql::MetaTable meta_table; |
| if (!meta_table.Init(db, /* version = */ 16, |
| /* earliest compatible version = */ 16)) { |
| return false; |
| } |
| |
| // Version 15 schema |
| static constexpr char kCreateSql[] = |
| "CREATE TABLE cookies(" |
| "creation_utc INTEGER NOT NULL," |
| "top_frame_site_key TEXT NOT NULL," |
| "host_key TEXT NOT NULL," |
| "name TEXT NOT NULL," |
| "value TEXT NOT NULL," |
| "path TEXT NOT NULL," |
| "expires_utc INTEGER NOT NULL," |
| "is_secure INTEGER NOT NULL," |
| "is_httponly INTEGER NOT NULL," |
| "last_access_utc INTEGER NOT NULL," |
| "has_expires INTEGER NOT NULL DEFAULT 1," |
| "is_persistent INTEGER NOT NULL DEFAULT 1," |
| "priority INTEGER NOT NULL DEFAULT 1," // COOKIE_PRIORITY_DEFAULT |
| "encrypted_value BLOB DEFAULT ''," |
| "samesite INTEGER NOT NULL DEFAULT -1," // UNSPECIFIED |
| "source_scheme INTEGER NOT NULL DEFAULT 0," // CookieSourceScheme::kUnset |
| "source_port INTEGER NOT NULL DEFAULT -1," // UNKNOWN |
| "is_same_party INTEGER NOT NULL DEFAULT 0," |
| "UNIQUE (top_frame_site_key, host_key, name, path))"; |
| if (!db->Execute(kCreateSql)) |
| return false; |
| |
| return true; |
| } |
| |
| bool CreateV16Schema(sql::Database* db, int version_override = 16) { |
| sql::MetaTable meta_table; |
| if (!meta_table.Init(db, /* version = */ version_override, |
| /* earliest compatible version = */ version_override)) { |
| return false; |
| } |
| |
| // Version 16 schema |
| static constexpr char kCreateSql[] = |
| "CREATE TABLE cookies(" |
| "creation_utc INTEGER NOT NULL," |
| "host_key TEXT NOT NULL," |
| "top_frame_site_key TEXT NOT NULL," |
| "name TEXT NOT NULL," |
| "value TEXT NOT NULL," |
| "encrypted_value BLOB NOT NULL," |
| "path TEXT NOT NULL," |
| "expires_utc INTEGER NOT NULL," |
| "is_secure INTEGER NOT NULL," |
| "is_httponly INTEGER NOT NULL," |
| "last_access_utc INTEGER NOT NULL," |
| "has_expires INTEGER NOT NULL," |
| "is_persistent INTEGER NOT NULL," |
| "priority INTEGER NOT NULL," |
| "samesite INTEGER NOT NULL," |
| "source_scheme INTEGER NOT NULL," |
| "source_port INTEGER NOT NULL," |
| "is_same_party INTEGER NOT NULL," |
| "UNIQUE (host_key, top_frame_site_key, name, path))"; |
| |
| static constexpr char kCreateIndexSql[] = |
| "CREATE UNIQUE INDEX cookies_unique_index " |
| "ON cookies(host_key, top_frame_site_key, name, path)"; |
| |
| if (!db->Execute(kCreateSql)) |
| return false; |
| |
| if (!db->Execute(kCreateIndexSql)) |
| return false; |
| |
| return true; |
| } |
| |
| bool CreateV17Schema(sql::Database* db) { |
| // v17 fixes a bad migration to v16, so it's the same schema. |
| return CreateV16Schema(db, /*version_override=*/17); |
| } |
| |
| bool CreateV18Schema(sql::Database* db) { |
| sql::MetaTable meta_table; |
| if (!meta_table.Init(db, 18, 18)) { |
| return false; |
| } |
| |
| // Version 18 schema |
| static constexpr char kCreateSql[] = |
| "CREATE TABLE cookies(" |
| "creation_utc INTEGER NOT NULL," |
| "host_key TEXT NOT NULL," |
| "top_frame_site_key TEXT NOT NULL," |
| "name TEXT NOT NULL," |
| "value TEXT NOT NULL," |
| "encrypted_value BLOB NOT NULL," |
| "path TEXT NOT NULL," |
| "expires_utc INTEGER NOT NULL," |
| "is_secure INTEGER NOT NULL," |
| "is_httponly INTEGER NOT NULL," |
| "last_access_utc INTEGER NOT NULL," |
| "has_expires INTEGER NOT NULL," |
| "is_persistent INTEGER NOT NULL," |
| "priority INTEGER NOT NULL," |
| "samesite INTEGER NOT NULL," |
| "source_scheme INTEGER NOT NULL," |
| "source_port INTEGER NOT NULL," |
| "is_same_party INTEGER NOT NULL," |
| "last_update_utc INTEGER NOT NULL," |
| "UNIQUE (host_key, top_frame_site_key, name, path))"; |
| |
| static constexpr char kCreateIndexSql[] = |
| "CREATE UNIQUE INDEX cookies_unique_index " |
| "ON cookies(host_key, top_frame_site_key, name, path)"; |
| |
| if (!db->Execute(kCreateSql)) { |
| return false; |
| } |
| |
| if (!db->Execute(kCreateIndexSql)) { |
| return false; |
| } |
| |
| return true; |
| } |
| |
| bool CreateV20Schema(sql::Database* db) { |
| sql::MetaTable meta_table; |
| if (!meta_table.Init(db, 20, 20)) { |
| return false; |
| } |
| |
| // Version 20 schema |
| static constexpr char kCreateSql[] = |
| "CREATE TABLE cookies(" |
| "creation_utc INTEGER NOT NULL," |
| "host_key TEXT NOT NULL," |
| "top_frame_site_key TEXT NOT NULL," |
| "name TEXT NOT NULL," |
| "value TEXT NOT NULL," |
| "encrypted_value BLOB NOT NULL," |
| "path TEXT NOT NULL," |
| "expires_utc INTEGER NOT NULL," |
| "is_secure INTEGER NOT NULL," |
| "is_httponly INTEGER NOT NULL," |
| "last_access_utc INTEGER NOT NULL," |
| "has_expires INTEGER NOT NULL," |
| "is_persistent INTEGER NOT NULL," |
| "priority INTEGER NOT NULL," |
| "samesite INTEGER NOT NULL," |
| "source_scheme INTEGER NOT NULL," |
| "source_port INTEGER NOT NULL," |
| "is_same_party INTEGER NOT NULL," |
| "last_update_utc INTEGER NOT NULL," |
| "UNIQUE (host_key, top_frame_site_key, name, path, source_scheme, " |
| "source_port))"; |
| |
| static constexpr char kCreateIndexSql[] = |
| "CREATE UNIQUE INDEX cookies_unique_index " |
| "ON cookies(host_key, top_frame_site_key, name, path, source_scheme, " |
| "source_port)"; |
| |
| if (!db->Execute(kCreateSql)) { |
| return false; |
| } |
| |
| if (!db->Execute(kCreateIndexSql)) { |
| return false; |
| } |
| |
| return true; |
| } |
| |
| int GetDBCurrentVersionNumber(sql::Database* db) { |
| static constexpr char kGetDBCurrentVersionQuery[] = |
| "SELECT value FROM meta WHERE key='version'"; |
| sql::Statement statement(db->GetUniqueStatement(kGetDBCurrentVersionQuery)); |
| statement.Step(); |
| return statement.ColumnInt(0); |
| } |
| |
| std::vector<CanonicalCookie> CookiesForMigrationTest() { |
| static base::Time now = base::Time::Now(); |
| |
| std::vector<CanonicalCookie> cookies; |
| cookies.push_back(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "A", "B", "example.com", "/", now, now, now, now, true /* secure */, |
| false /* httponly */, CookieSameSite::UNSPECIFIED, |
| COOKIE_PRIORITY_DEFAULT)); |
| cookies.push_back(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "C", "B", "example.com", "/", now, now, now, now, true /* secure */, |
| false /* httponly */, CookieSameSite::UNSPECIFIED, |
| COOKIE_PRIORITY_DEFAULT)); |
| cookies.push_back(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "A", "B", "example2.com", "/", now, now, now, now, true /* secure */, |
| false /* httponly */, CookieSameSite::UNSPECIFIED, |
| COOKIE_PRIORITY_DEFAULT)); |
| cookies.push_back(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "C", "B", "example2.com", "/", now, now + base::Days(399), now, now, |
| false /* secure */, false /* httponly */, CookieSameSite::UNSPECIFIED, |
| COOKIE_PRIORITY_DEFAULT)); |
| cookies.push_back(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "A", "B", "example.com", "/path", now, now + base::Days(400), now, now, |
| false /* secure */, false /* httponly */, CookieSameSite::UNSPECIFIED, |
| COOKIE_PRIORITY_DEFAULT)); |
| cookies.push_back(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "C", "B", "example.com", "/path", now, now + base::Days(401), now, now, |
| false /* secure */, false /* httponly */, CookieSameSite::UNSPECIFIED, |
| COOKIE_PRIORITY_DEFAULT)); |
| return cookies; |
| } |
| |
| bool AddV15CookiesToDB(sql::Database* db) { |
| std::vector<CanonicalCookie> cookies = CookiesForMigrationTest(); |
| sql::Statement statement(db->GetCachedStatement( |
| SQL_FROM_HERE, |
| "INSERT INTO cookies (creation_utc, top_frame_site_key, host_key, name, " |
| "value, encrypted_value, path, expires_utc, is_secure, is_httponly, " |
| "samesite, last_access_utc, has_expires, is_persistent, priority, " |
| "source_scheme, source_port, is_same_party) " |
| "VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)")); |
| if (!statement.is_valid()) |
| return false; |
| sql::Transaction transaction(db); |
| if (!transaction.Begin()) |
| return false; |
| for (const CanonicalCookie& cookie : cookies) { |
| statement.Reset(true); |
| statement.BindTime(0, cookie.CreationDate()); |
| std::string top_frame_site_key; |
| EXPECT_TRUE(CookiePartitionKey::Serialize(cookie.PartitionKey(), |
| top_frame_site_key)); |
| statement.BindString(1, top_frame_site_key); |
| statement.BindString(2, cookie.Domain()); |
| statement.BindString(3, cookie.Name()); |
| statement.BindString(4, cookie.Value()); |
| statement.BindBlob(5, base::span<uint8_t>()); // encrypted_value |
| statement.BindString(6, cookie.Path()); |
| statement.BindTime(7, cookie.ExpiryDate()); |
| statement.BindInt(8, cookie.IsSecure()); |
| statement.BindInt(9, cookie.IsHttpOnly()); |
| // Note that this, Priority(), and SourceScheme() below nominally rely on |
| // the enums in sqlite_persistent_cookie_store.cc having the same values as |
| // the ones in ../../cookies/cookie_constants.h. But nothing in this test |
| // relies on that equivalence, so it's not worth the hassle to guarantee |
| // that. |
| statement.BindInt(10, static_cast<int>(cookie.SameSite())); |
| statement.BindTime(11, cookie.LastAccessDate()); |
| statement.BindInt(12, cookie.IsPersistent()); |
| statement.BindInt(13, cookie.IsPersistent()); |
| statement.BindInt(14, static_cast<int>(cookie.Priority())); |
| statement.BindInt(15, static_cast<int>(cookie.SourceScheme())); |
| statement.BindInt(16, cookie.SourcePort()); |
| statement.BindInt(17, false /* is_same_party */); |
| if (!statement.Run()) |
| return false; |
| } |
| if (!transaction.Commit()) |
| return false; |
| |
| return true; |
| } |
| |
| bool AddV16CookiesToDB(sql::Database* db) { |
| // The difference between schemas is mainly the index. |
| return AddV15CookiesToDB(db); |
| } |
| |
| bool AddV17CookiesToDB(sql::Database* db) { |
| // This version fixed a bad migration to v16. |
| return AddV16CookiesToDB(db); |
| } |
| |
| // Versions 18, 19, and 20 use the same schema so they can reuse this function. |
| // AddV20CookiesToDB (and future versions) need to set max_expiration_delta to |
| // base::Days(400) to simulate expiration limits introduced in version 19. |
| bool AddV18CookiesToDB(sql::Database* db, |
| base::TimeDelta max_expiration_delta) { |
| std::vector<CanonicalCookie> cookies = CookiesForMigrationTest(); |
| sql::Statement statement(db->GetCachedStatement( |
| SQL_FROM_HERE, |
| "INSERT INTO cookies (creation_utc, top_frame_site_key, host_key, name, " |
| "value, encrypted_value, path, expires_utc, is_secure, is_httponly, " |
| "samesite, last_access_utc, has_expires, is_persistent, priority, " |
| "source_scheme, source_port, is_same_party, last_update_utc) " |
| "VALUES (?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?,?)")); |
| if (!statement.is_valid()) { |
| return false; |
| } |
| sql::Transaction transaction(db); |
| if (!transaction.Begin()) { |
| return false; |
| } |
| for (const CanonicalCookie& cookie : cookies) { |
| base::Time max_expiration(cookie.CreationDate() + max_expiration_delta); |
| |
| statement.Reset(true); |
| statement.BindTime(0, cookie.CreationDate()); |
| std::string top_frame_site_key; |
| EXPECT_TRUE(CookiePartitionKey::Serialize(cookie.PartitionKey(), |
| top_frame_site_key)); |
| statement.BindString(1, top_frame_site_key); |
| statement.BindString(2, cookie.Domain()); |
| statement.BindString(3, cookie.Name()); |
| statement.BindString(4, cookie.Value()); |
| statement.BindBlob(5, base::span<uint8_t>()); // encrypted_value |
| statement.BindString(6, cookie.Path()); |
| statement.BindTime(7, std::min(cookie.ExpiryDate(), max_expiration)); |
| statement.BindInt(8, cookie.IsSecure()); |
| statement.BindInt(9, cookie.IsHttpOnly()); |
| // Note that this, Priority(), and SourceScheme() below nominally rely on |
| // the enums in sqlite_persistent_cookie_store.cc having the same values as |
| // the ones in ../../cookies/cookie_constants.h. But nothing in this test |
| // relies on that equivalence, so it's not worth the hassle to guarantee |
| // that. |
| statement.BindInt(10, static_cast<int>(cookie.SameSite())); |
| statement.BindTime(11, cookie.LastAccessDate()); |
| statement.BindInt(12, cookie.IsPersistent()); |
| statement.BindInt(13, cookie.IsPersistent()); |
| statement.BindInt(14, static_cast<int>(cookie.Priority())); |
| statement.BindInt(15, static_cast<int>(cookie.SourceScheme())); |
| statement.BindInt(16, cookie.SourcePort()); |
| statement.BindInt(17, false /* is_same_party */); |
| statement.BindTime(18, cookie.LastUpdateDate()); |
| if (!statement.Run()) { |
| return false; |
| } |
| } |
| if (!transaction.Commit()) { |
| return false; |
| } |
| |
| return true; |
| } |
| |
| bool AddV20CookiesToDB(sql::Database* db) { |
| return AddV18CookiesToDB(db, base::Days(400)); |
| } |
| |
| // Confirm the cookie list passed in has the above cookies in it. |
| void ConfirmCookiesAfterMigrationTest( |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies, |
| bool expect_last_update_date = false) { |
| std::sort(read_in_cookies.begin(), read_in_cookies.end(), &CompareCookies); |
| int i = 0; |
| EXPECT_EQ("A", read_in_cookies[i]->Name()); |
| EXPECT_EQ("B", read_in_cookies[i]->Value()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| EXPECT_TRUE(read_in_cookies[i]->IsSecure()); |
| EXPECT_EQ(CookieSourceScheme::kUnset, read_in_cookies[i]->SourceScheme()); |
| EXPECT_EQ(read_in_cookies[i]->LastUpdateDate(), |
| expect_last_update_date ? read_in_cookies[i]->CreationDate() |
| : base::Time()); |
| EXPECT_EQ(read_in_cookies[i]->ExpiryDate(), |
| read_in_cookies[i]->CreationDate()); |
| |
| i++; |
| EXPECT_EQ("A", read_in_cookies[i]->Name()); |
| EXPECT_EQ("B", read_in_cookies[i]->Value()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/path", read_in_cookies[i]->Path()); |
| EXPECT_FALSE(read_in_cookies[i]->IsSecure()); |
| EXPECT_EQ(CookieSourceScheme::kUnset, read_in_cookies[i]->SourceScheme()); |
| EXPECT_EQ(read_in_cookies[i]->LastUpdateDate(), |
| expect_last_update_date ? read_in_cookies[i]->CreationDate() |
| : base::Time()); |
| EXPECT_EQ(read_in_cookies[i]->ExpiryDate(), |
| read_in_cookies[i]->CreationDate() + base::Days(400)); |
| |
| i++; |
| EXPECT_EQ("A", read_in_cookies[i]->Name()); |
| EXPECT_EQ("B", read_in_cookies[i]->Value()); |
| EXPECT_EQ("example2.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| EXPECT_TRUE(read_in_cookies[i]->IsSecure()); |
| EXPECT_EQ(CookieSourceScheme::kUnset, read_in_cookies[i]->SourceScheme()); |
| EXPECT_EQ(read_in_cookies[i]->LastUpdateDate(), |
| expect_last_update_date ? read_in_cookies[i]->CreationDate() |
| : base::Time()); |
| EXPECT_EQ(read_in_cookies[i]->ExpiryDate(), |
| read_in_cookies[i]->CreationDate()); |
| |
| i++; |
| EXPECT_EQ("C", read_in_cookies[i]->Name()); |
| EXPECT_EQ("B", read_in_cookies[i]->Value()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| EXPECT_TRUE(read_in_cookies[i]->IsSecure()); |
| EXPECT_EQ(CookieSourceScheme::kUnset, read_in_cookies[i]->SourceScheme()); |
| EXPECT_EQ(read_in_cookies[i]->LastUpdateDate(), |
| expect_last_update_date ? read_in_cookies[i]->CreationDate() |
| : base::Time()); |
| EXPECT_EQ(read_in_cookies[i]->ExpiryDate(), |
| read_in_cookies[i]->CreationDate()); |
| |
| i++; |
| EXPECT_EQ("C", read_in_cookies[i]->Name()); |
| EXPECT_EQ("B", read_in_cookies[i]->Value()); |
| EXPECT_EQ("example.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/path", read_in_cookies[i]->Path()); |
| EXPECT_FALSE(read_in_cookies[i]->IsSecure()); |
| EXPECT_EQ(CookieSourceScheme::kUnset, read_in_cookies[i]->SourceScheme()); |
| EXPECT_EQ(read_in_cookies[i]->LastUpdateDate(), |
| expect_last_update_date ? read_in_cookies[i]->CreationDate() |
| : base::Time()); |
| // The exact time will be within the last minute due to the cap. |
| EXPECT_LE(read_in_cookies[i]->ExpiryDate(), |
| base::Time::Now() + base::Days(400)); |
| EXPECT_GE(read_in_cookies[i]->ExpiryDate(), |
| base::Time::Now() + base::Days(400) - base::Minutes(1)); |
| |
| i++; |
| EXPECT_EQ("C", read_in_cookies[i]->Name()); |
| EXPECT_EQ("B", read_in_cookies[i]->Value()); |
| EXPECT_EQ("example2.com", read_in_cookies[i]->Domain()); |
| EXPECT_EQ("/", read_in_cookies[i]->Path()); |
| EXPECT_FALSE(read_in_cookies[i]->IsSecure()); |
| EXPECT_EQ(CookieSourceScheme::kUnset, read_in_cookies[i]->SourceScheme()); |
| EXPECT_EQ(read_in_cookies[i]->LastUpdateDate(), |
| expect_last_update_date ? read_in_cookies[i]->CreationDate() |
| : base::Time()); |
| EXPECT_EQ(read_in_cookies[i]->ExpiryDate(), |
| read_in_cookies[i]->CreationDate() + base::Days(399)); |
| |
| EXPECT_EQ(read_in_cookies.size(), static_cast<size_t>(i) + 1); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion16) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| ASSERT_TRUE(CreateV15Schema(&connection)); |
| ASSERT_TRUE(AddV15CookiesToDB(&connection)); |
| connection.Close(); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(false, false, &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies)); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion17) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| ASSERT_TRUE(CreateV16Schema(&connection)); |
| ASSERT_EQ(GetDBCurrentVersionNumber(&connection), 16); |
| ASSERT_TRUE(AddV16CookiesToDB(&connection)); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(false, false, &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies)); |
| ASSERT_GE(GetDBCurrentVersionNumber(&connection), 17); |
| connection.Close(); |
| } |
| |
| // Testing bug: 1290841 |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion17FromFaultyV16) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| ASSERT_TRUE(CreateFaultyV16Schema(&connection)); |
| ASSERT_EQ(GetDBCurrentVersionNumber(&connection), 16); |
| ASSERT_TRUE( |
| AddV15CookiesToDB(&connection)); // Intentional, this is part of the bug |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(false, false, &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies)); |
| ASSERT_GE(GetDBCurrentVersionNumber(&connection), 17); |
| connection.Close(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion18) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| ASSERT_TRUE(CreateV17Schema(&connection)); |
| ASSERT_EQ(GetDBCurrentVersionNumber(&connection), 17); |
| ASSERT_TRUE(AddV17CookiesToDB(&connection)); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(false, false, &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies)); |
| ASSERT_GE(GetDBCurrentVersionNumber(&connection), 18); |
| connection.Close(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion19) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| ASSERT_TRUE(CreateV18Schema(&connection)); |
| ASSERT_EQ(GetDBCurrentVersionNumber(&connection), 18); |
| ASSERT_TRUE(AddV18CookiesToDB(&connection, base::TimeDelta::Max())); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(false, false, &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies), |
| /*expect_last_update_date=*/true); |
| ASSERT_GE(GetDBCurrentVersionNumber(&connection), 19); |
| connection.Close(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion20) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| // V19's schema is the same as V18, so we can reuse the creation function. |
| ASSERT_TRUE(CreateV18Schema(&connection)); |
| ASSERT_EQ(GetDBCurrentVersionNumber(&connection), 18); |
| ASSERT_TRUE(AddV18CookiesToDB(&connection, base::TimeDelta::Max())); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(/*crypt_cookies=*/false, /*restore_old_session_cookies=*/false, |
| &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies), |
| /*expect_last_update_date=*/true); |
| ASSERT_GE(GetDBCurrentVersionNumber(&connection), 20); |
| connection.Close(); |
| } |
| |
| TEST_F(SQLitePersistentCookieStoreTest, UpgradeToSchemaVersion21) { |
| // Open db. |
| sql::Database connection; |
| ASSERT_TRUE(connection.Open(temp_dir_.GetPath().Append(kCookieFilename))); |
| ASSERT_TRUE(CreateV20Schema(&connection)); |
| ASSERT_EQ(GetDBCurrentVersionNumber(&connection), 20); |
| ASSERT_TRUE(AddV20CookiesToDB(&connection)); |
| |
| std::vector<std::unique_ptr<CanonicalCookie>> read_in_cookies; |
| CreateAndLoad(/*crypt_cookies=*/false, /*restore_old_session_cookies=*/false, |
| &read_in_cookies); |
| ConfirmCookiesAfterMigrationTest(std::move(read_in_cookies), |
| /*expect_last_update_date=*/true); |
| ASSERT_GE(GetDBCurrentVersionNumber(&connection), 21); |
| connection.Close(); |
| } |
| |
| class SQLitePersistentCookieStoreTest_OriginBoundCookies |
| : public SQLitePersistentCookieStoreTest { |
| public: |
| // Creates and stores 4 cookies that differ only by scheme and/or port. When |
| // this function returns, the store will be created and all the cookies loaded |
| // into cookies_. |
| void InitializeTest() { |
| InitializeStore(/*crypt=*/false, /*restore_old_session_cookies=*/false); |
| |
| basic_cookie_ = CanonicalCookie::Create( |
| basic_url_, "a=b; max-age=100000", /*creation_time=*/base::Time::Now(), |
| /*server_time=*/absl::nullopt, /*cookie_partition_key=*/absl::nullopt); |
| |
| http_cookie_ = std::make_unique<CanonicalCookie>(*basic_cookie_); |
| http_cookie_->SetSourceScheme(CookieSourceScheme::kNonSecure); |
| |
| port_444_cookie_ = std::make_unique<CanonicalCookie>(*basic_cookie_); |
| port_444_cookie_->SetSourcePort(444); |
| |
| http_444_cookie_ = std::make_unique<CanonicalCookie>(*basic_cookie_); |
| http_444_cookie_->SetSourceScheme(CookieSourceScheme::kNonSecure); |
| http_444_cookie_->SetSourcePort(444); |
| |
| store_->AddCookie(*basic_cookie_); |
| store_->AddCookie(*http_cookie_); |
| store_->AddCookie(*port_444_cookie_); |
| store_->AddCookie(*http_444_cookie_); |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| CreateAndLoad(false, false, &cookies_); |
| |
| EXPECT_EQ(cookies_.size(), 4UL); |
| } |
| |
| GURL basic_url_ = GURL("https://example.com"); |
| std::unique_ptr<net::CanonicalCookie> basic_cookie_; |
| std::unique_ptr<net::CanonicalCookie> http_cookie_; |
| std::unique_ptr<net::CanonicalCookie> port_444_cookie_; |
| std::unique_ptr<net::CanonicalCookie> http_444_cookie_; |
| |
| CanonicalCookieVector cookies_; |
| }; |
| |
| // Tests that cookies which differ only in their scheme and port are considered |
| // distinct. |
| TEST_F(SQLitePersistentCookieStoreTest_OriginBoundCookies, |
| UniquenessConstraint) { |
| InitializeTest(); |
| |
| // Try to add another cookie that is the same as basic_cookie_ except that its |
| // value is different. Value isn't considered as part of the unique constraint |
| // and so this cookie won't be considered unique and should fail to be added. |
| auto basic_cookie2 = CanonicalCookie::Create( |
| basic_url_, "a=b2; max-age=100000", |
| /*creation_time=*/base::Time::Now(), |
| /*server_time=*/absl::nullopt, /*cookie_partition_key=*/absl::nullopt); |
| |
| store_->AddCookie(*basic_cookie2); |
| |
| // Force the store to write its data to the disk. |
| DestroyStore(); |
| |
| cookies_.clear(); |
| CreateAndLoad(false, false, &cookies_); |
| |
| // Confirm that basic_cookie2 failed to be added. |
| EXPECT_THAT(cookies_, testing::UnorderedElementsAre( |
| MatchesEveryCookieField(*basic_cookie_), |
| MatchesEveryCookieField(*http_cookie_), |
| MatchesEveryCookieField(*port_444_cookie_), |
| MatchesEveryCookieField(*http_444_cookie_))); |
| } |
| |
| // Tests that deleting a cookie correctly takes the scheme and port into |
| // account. |
| TEST_F(SQLitePersistentCookieStoreTest_OriginBoundCookies, DeleteCookie) { |
| InitializeTest(); |
| |
| // Try to delete just one of the cookies. |
| store_->DeleteCookie(*http_444_cookie_); |
| DestroyStore(); |
| cookies_.clear(); |
| |
| CreateAndLoad(false, false, &cookies_); |
| |
| // Only the single cookie should be deleted. |
| EXPECT_THAT(cookies_, testing::UnorderedElementsAre( |
| MatchesEveryCookieField(*basic_cookie_), |
| MatchesEveryCookieField(*http_cookie_), |
| MatchesEveryCookieField(*port_444_cookie_))); |
| } |
| |
| // Tests that updating a cookie correctly takes the scheme and port into |
| // account. |
| TEST_F(SQLitePersistentCookieStoreTest_OriginBoundCookies, |
| UpdateCookieAccessTime) { |
| InitializeTest(); |
| |
| base::Time basic_last_access = basic_cookie_->LastAccessDate(); |
| base::Time http_last_access = http_cookie_->LastAccessDate(); |
| base::Time port_444_last_access = port_444_cookie_->LastAccessDate(); |
| base::Time http_444_last_access = http_444_cookie_->LastAccessDate(); |
| |
| base::Time new_last_access = http_444_last_access + base::Hours(1); |
| http_444_cookie_->SetLastAccessDate(new_last_access); |
| |
| store_->UpdateCookieAccessTime(*http_444_cookie_); |
| DestroyStore(); |
| cookies_.clear(); |
| |
| CreateAndLoad(false, false, &cookies_); |
| |
| // All loaded cookies' should have their original LastAccessDate() except for |
| // the one updated to new_last_access. |
| EXPECT_THAT( |
| cookies_, |
| testing::UnorderedElementsAre( |
| MatchesCookieKeyAndLastAccessDate(basic_cookie_->StrictlyUniqueKey(), |
| basic_last_access), |
| MatchesCookieKeyAndLastAccessDate(http_cookie_->StrictlyUniqueKey(), |
| http_last_access), |
| MatchesCookieKeyAndLastAccessDate( |
| port_444_cookie_->StrictlyUniqueKey(), port_444_last_access), |
| MatchesCookieKeyAndLastAccessDate( |
| http_444_cookie_->StrictlyUniqueKey(), new_last_access))); |
| } |
| |
| class PartitionedCookiesSQLitePersistentCookieStoreTest |
| : public SQLitePersistentCookieStoreTest, |
| public testing::WithParamInterface<bool> { |
| protected: |
| // testing::Test |
| void SetUp() override { |
| scoped_feature_list_.InitWithFeatureState(features::kPartitionedCookies, |
| PartitionedCookiesEnabled()); |
| SQLitePersistentCookieStoreTest::SetUp(); |
| } |
| |
| bool PartitionedCookiesEnabled() { return GetParam(); } |
| |
| private: |
| base::test::ScopedFeatureList scoped_feature_list_; |
| }; |
| |
| INSTANTIATE_TEST_SUITE_P(/* no label */, |
| PartitionedCookiesSQLitePersistentCookieStoreTest, |
| testing::Bool()); |
| |
| TEST_P(PartitionedCookiesSQLitePersistentCookieStoreTest, |
| SavingPartitionedCookies) { |
| InitializeStore(false, false); |
| |
| store_->AddCookie(*CanonicalCookie::CreateUnsafeCookieForTesting( |
| "__Host-foo", "bar", GURL("https://example.com/").host(), "/", |
| base::Time::Now(), base::Time::Now() + base::Days(1), base::Time::Now(), |
| base::Time::Now(), true /* secure */, false /* httponly */, |
| CookieSameSite::UNSPECIFIED, COOKIE_PRIORITY_DEFAULT, |
| CookiePartitionKey::FromURLForTesting(GURL("https://toplevelsite.com")))); |
| Flush(); |
| |
| std::string got_db_content(ReadRawDBContents()); |
| EXPECT_EQ(PartitionedCookiesEnabled(), |
| got_db_content.find("__Host-foo") != std::string::npos); |
| |
| DestroyStore(); |
| } |
| |
| TEST_P(PartitionedCookiesSQLitePersistentCookieStoreTest, |
| LoadingPartitionedCookies) { |
| InitializeStore(false, false); |
| DestroyStore(); |
| |
| // Insert a partitioned cookie into the database manually. |
| base::FilePath store_name(temp_dir_.GetPath().Append(kCookieFilename)); |
| std::unique_ptr<sql::Database> db(std::make_unique<sql::Database>()); |
| ASSERT_TRUE(db->Open(store_name)); |
| |
| sql::Statement stmt(db->GetUniqueStatement( |
| "INSERT INTO cookies (creation_utc, host_key, top_frame_site_key, name, " |
| "value, encrypted_value, path, expires_utc, is_secure, is_httponly, " |
| "samesite, last_access_utc, has_expires, is_persistent, priority, " |
| "source_scheme, source_port, last_update_utc) " |
| "VALUES (?,?,?,?,?,'',?,?,1,0,0,?,1,1,0,?,?,?)")); |
| ASSERT_TRUE(stmt.is_valid()); |
| |
| base::Time creation(base::Time::Now()); |
| base::Time expiration(creation + base::Days(1)); |
| base::Time last_access(base::Time::Now()); |
| base::Time last_update(base::Time::Now()); |
| |
| stmt.BindTime(0, creation); |
| stmt.BindString(1, GURL("https://www.example.com/").host()); |
| stmt.BindString(2, "https://toplevelsite.com"); |
| stmt.BindString(3, "__Host-foo"); |
| stmt.BindString(4, "bar"); |
| stmt.BindString(5, "/"); |
| stmt.BindTime(6, expiration); |
| stmt.BindTime(7, last_access); |
| stmt.BindInt(8, static_cast<int>(CookieSourceScheme::kUnset)); |
| stmt.BindInt(9, SQLitePersistentCookieStore::kDefaultUnknownPort); |
| stmt.BindTime(10, last_update); |
| ASSERT_TRUE(stmt.Run()); |
| stmt.Clear(); |
| |
| CanonicalCookieVector cookies; |
| CreateAndLoad(false, false, &cookies); |
| |
| if (PartitionedCookiesEnabled()) { |
| EXPECT_EQ(1u, cookies.size()); |
| auto cc = std::move(cookies[0]); |
| EXPECT_EQ("__Host-foo", cc->Name()); |
| EXPECT_EQ("bar", cc->Value()); |
| EXPECT_EQ(GURL("https://www.example.com/").host(), cc->Domain()); |
| EXPECT_TRUE(cc->IsPartitioned()); |
| EXPECT_EQ( |
| CookiePartitionKey::FromURLForTesting(GURL("https://toplevelsite.com")), |
| cc->PartitionKey()); |
| EXPECT_EQ(last_update, cc->LastUpdateDate()); |
| } else { |
| EXPECT_EQ(0u, cookies.size()); |
| // If Partitioned cookies are disabled, then we should delete any |
| // Partitioned cookie we tried to load. |
| std::string db_content(ReadRawDBContents()); |
| EXPECT_EQ(db_content.find("__Host-foo"), std::string::npos); |
| } |
| } |
| |
| } // namespace net |