Install android test certificate authority when host supports SNI

(pyOpenSSL 0.13 or greater). This relands https://crrev.com/855603002/, "Roll Web Page Replay to pick-up HTTPS certificate fixes," and picks-up one additional Web Page Replay change to test for SNI support. BUG=431686 Review URL: https://codereview.chromium.org/903153002 Cr-Commit-Position: refs/heads/master@{#315333}

Install android test certificate authority when host supports SNI
(pyOpenSSL 0.13 or greater). This relands https://crrev.com/855603002/, "Roll Web Page Replay to pick-up HTTPS certificate fixes," and picks-up one additional Web Page Replay change to test for SNI support. BUG=431686 Review URL: https://codereview.chromium.org/903153002 Cr-Commit-Position: refs/heads/master@{#315333}
30c06743 · slamm · Commit bot · 5f5ef2b4 · 30c06743 · 30c06743
Commit 30c06743 authored Feb 09, 2015 by slamm Committed by Commit bot Feb 09, 2015
3 changed files
--- a/DEPS
+++ b/DEPS
@@ -268,7 +268,7 @@ deps = {
   Var('chromium_git') + '/chromium/tools/deps2git.git' + '@' + 'f04828eb0b5acd3e7ad983c024870f17f17b06d9',
  'src/third_party/webpagereplay':
-   Var('chromium_git') + '/external/web-page-replay.git' + '@' + '2f7b704b8b567983c040f555d3e46f9766db8e87',
+   Var('chromium_git') + '/external/web-page-replay.git' + '@' + '532b413ff95e8595d5028e0dae75dcf3ba712d2e',
  'src/third_party/pywebsocket/src':
    Var('chromium_git') + '/external/pywebsocket/src.git' + '@' + 'cb349e87ddb30ff8d1fa1a89be39cec901f4a29c',

--- a/tools/telemetry/telemetry/core/platform/android_platform_backend.py
+++ b/tools/telemetry/telemetry/core/platform/android_platform_backend.py
@@ -437,12 +437,19 @@ class AndroidPlatformBackend(
    This allows transparent HTTPS testing with WPR server without need
    to tweak application network stack.
    """
+    # TODO(slamm): Move certificate creation related to webpagereplay.py.
+    # The only code that needs to be in platform backend is installing the cert.
    if certutils.openssl_import_error:
      logging.warning(
          'The OpenSSL module is unavailable. '
          'Will fallback to ignoring certificate errors.')
      return
+    if not certutils.has_sni():
+      logging.warning(
+          'Web Page Replay requires SNI support (pyOpenSSL 0.13 or greater) '
+          'to generate certificates from a test CA. '
+          'Will fallback to ignoring certificate errors.')
+      return
    try:
      self._wpr_ca_cert_path = os.path.join(tempfile.mkdtemp(), 'testca.pem')
      certutils.write_dummy_ca_cert(*certutils.generate_dummy_ca_cert(),
@@ -453,12 +460,13 @@ class AndroidPlatformBackend(
                   self._adb.device_serial())
      self._device_cert_util.install_cert(overwrite_cert=True)
      self._is_test_ca_installed = True
-    except Exception:
+    except Exception as e:
      # Fallback to ignoring certificate errors.
      self.RemoveTestCa()
-      logging.warning('Unable to install test certificate authority on device: '
+      logging.warning(
-                      '%s. Will fallback to ignoring certificate errors.'
+          'Unable to install test certificate authority on device: %s. '
-                      % self._adb.device_serial())
+          'Will fallback to ignoring certificate errors. Install error: %s',
+          self._adb.device_serial(), e)
  @property
  def is_test_ca_installed(self):

--- a/tools/telemetry/telemetry/unittest_util/system_stub.py
+++ b/tools/telemetry/telemetry/unittest_util/system_stub.py
@@ -490,6 +490,10 @@ class CertUtilsStub(object):
  def generate_dummy_ca_cert():
    return '-', '-'
+  @staticmethod
+  def has_sni():
+    return True
 class AdbInstallCertStub(object):
  class AndroidCertInstaller(object):
    def __init__(self, device_id, _cert_name, _cert_path):