Changeset 201404 in webkit

Timestamp:

May 25, 2016 2:58:08 PM (8 years ago)

Author:

Brent Fulgham

Message:

[WebSockets] No infrastructure for testing secure web sockets (wss)
​https://bugs.webkit.org/show_bug.cgi?id=157884
<rdar://problem/26477197>

Reviewed by Andy Estes.

Source/WebCore:

Add a new test-only flag used to tell CFNetwork that we do not wish to
validate the SLL certificate chain. This allows us to use self-signed
certificates in test cases.

Tests: http/tests/websocket/tests/hybi/simple-wss.html

• page/Settings.cpp:

(WebCore::Settings::setAllowsAnySSLCertificate): Added.
(WebCore::Settings::allowsAnySSLCertificate): Added. This defaults
to False.

• page/Settings.h:
• platform/network/cf/SocketStreamHandleCFNet.cpp:

(WebCore::SocketStreamHandle::createStreams): When running under our
testing infrastructure, do not require full certificate validation.

• testing/js/WebCoreTestSupport.cpp:

(WebCoreTestSupport::setAllowsAnySSLCertificate): Added.

• testing/js/WebCoreTestSupport.h:
• testing/InternalSettings.cpp:

(WebCore::InternalSettings::setAllowsAnySSLCertificate): Added.

• testing/InternalSettings.h:

Tools:

Add support to webkitpy to start and stop a secure Web Socket server running on port 9323
using the certificate, private-key from file LayoutTests/http/conf/webkit-httpd.pem. Also
teaches run-webkit-httpd to start and stop the Web Socket servers.

Modify DumpRenderTree and WebKitTestRunner to understand a new testRunner method,
'setAllowsAnySSLCertificate', which allows us to use the same self-signed test certificate
we do for our HTTPS tests.

• DumpRenderTree/TestRunner.cpp:

(setAllowsAnySSLCertificateCallback):
(TestRunner::setAllowsAnySSLCertificate):

• DumpRenderTree/TestRunner.h:
• DumpRenderTree/mac/DumpRenderTree.mm:

(resetWebViewToConsistentStateBeforeTesting): Make sure we turn off the new flag between tests.

• Scripts/run-webkit-httpd:

(main): Start the websocket server at launch.

• Scripts/webkitpy/layout_tests/controllers/manager.py:

(Manager.init): Remove dead code.

• Scripts/webkitpy/layout_tests/servers/websocket_server.py:

(PyWebSocket.init): Cleanup code.
(PyWebSocket): Pass '--tls-client-ca' to start command.
(PyWebSocket._prepare_config): Cleanups.

• Scripts/webkitpy/port/base.py:

(Port.to.start_http_server):
(Port.to):
(Port.to._extract_certificate_from_pem): Added.
(Port.to._extract_private_key_from_pem): Added.
(Port.to.start_websocket_server): Start secure socket server.
(Port.to.stop_websocket_server): Stop secure socket server.

• WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl: Add new API.
• WebKitTestRunner/InjectedBundle/InjectedBundle.cpp:

(WTR::InjectedBundle::setAllowsAnySSLCertificate): Added.

• WebKitTestRunner/InjectedBundle/InjectedBundle.h:
• WebKitTestRunner/InjectedBundle/TestRunner.cpp:

(WTR::TestRunner::setAllowsAnySSLCertificate): Added.

• WebKitTestRunner/InjectedBundle/TestRunner.h:

LayoutTests:

• http/tests/websocket/tests/hybi/simple-wss-expected.txt: Added.
• http/tests/websocket/tests/hybi/simple-wss.html: Added.

Location:

trunk

Files:

• LayoutTests/ChangeLog (modified) (1 diff)
• LayoutTests/http/tests/websocket/tests/hybi/simple-wss-expected.txt (added)
• LayoutTests/http/tests/websocket/tests/hybi/simple-wss.html (added)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/page/Settings.cpp (modified) (2 diffs)
• Source/WebCore/page/Settings.h (modified) (3 diffs)
• Source/WebCore/platform/network/cf/SocketStreamHandleCFNet.cpp (modified) (3 diffs)
• Source/WebCore/testing/InternalSettings.cpp (modified) (2 diffs)
• Source/WebCore/testing/InternalSettings.h (modified) (2 diffs)
• Source/WebCore/testing/js/WebCoreTestSupport.cpp (modified) (2 diffs)
• Source/WebCore/testing/js/WebCoreTestSupport.h (modified) (2 diffs)
• Tools/ChangeLog (modified) (1 diff)
• Tools/DumpRenderTree/TestRunner.cpp (modified) (3 diffs)
• Tools/DumpRenderTree/TestRunner.h (modified) (1 diff)
• Tools/DumpRenderTree/mac/DumpRenderTree.mm (modified) (1 diff)
• Tools/Scripts/run-webkit-httpd (modified) (2 diffs)
• Tools/Scripts/webkitpy/layout_tests/controllers/manager.py (modified) (1 diff)
• Tools/Scripts/webkitpy/layout_tests/servers/websocket_server.py (modified) (4 diffs)
• Tools/Scripts/webkitpy/port/base.py (modified) (3 diffs)
• Tools/WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl (modified) (1 diff)
• Tools/WebKitTestRunner/InjectedBundle/InjectedBundle.cpp (modified) (2 diffs)
• Tools/WebKitTestRunner/InjectedBundle/InjectedBundle.h (modified) (1 diff)
• Tools/WebKitTestRunner/InjectedBundle/TestRunner.cpp (modified) (1 diff)
• Tools/WebKitTestRunner/InjectedBundle/TestRunner.h (modified) (1 diff)

trunk/LayoutTests/ChangeLog

@@ +1 @@
+2016-05-25  Daniel Bates  <dabates@apple.com> and Brent Fulgham  <bfulgham@apple.com>
+
+        [WebSockets] No infrastructure for testing secure web sockets (wss)
+        https://bugs.webkit.org/show_bug.cgi?id=157884
+        <rdar://problem/26477197>
+
+        Reviewed by Andy Estes.
+
+        * http/tests/websocket/tests/hybi/simple-wss-expected.txt: Added.
+        * http/tests/websocket/tests/hybi/simple-wss.html: Added.
+
 2016-05-25  Ryan Haddad  <ryanhaddad@apple.com>
 

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2016-05-25  Brent Fulgham  <bfulgham@apple.com>
+
+        [WebSockets] No infrastructure for testing secure web sockets (wss)
+        https://bugs.webkit.org/show_bug.cgi?id=157884
+        <rdar://problem/26477197>
+
+        Reviewed by Andy Estes.
+
+        Add a new test-only flag used to tell CFNetwork that we do not wish to
+        validate the SLL certificate chain. This allows us to use self-signed
+        certificates in test cases.
+
+        Tests: http/tests/websocket/tests/hybi/simple-wss.html
+
+        * page/Settings.cpp:
+        (WebCore::Settings::setAllowsAnySSLCertificate): Added.
+        (WebCore::Settings::allowsAnySSLCertificate): Added. This defaults
+        to False.
+        * page/Settings.h:
+        * platform/network/cf/SocketStreamHandleCFNet.cpp:
+        (WebCore::SocketStreamHandle::createStreams): When running under our
+        testing infrastructure, do not require full certificate validation.
+        * testing/js/WebCoreTestSupport.cpp:
+        (WebCoreTestSupport::setAllowsAnySSLCertificate): Added.
+        * testing/js/WebCoreTestSupport.h:
+        * testing/InternalSettings.cpp:
+        (WebCore::InternalSettings::setAllowsAnySSLCertificate): Added.
+        * testing/InternalSettings.h:
+
 2016-05-25  Jer Noble  <jer.noble@apple.com>
 

trunk/Source/WebCore/page/Settings.cpp

@@ -102 +102 @@
 bool Settings::gLowPowerVideoAudioBufferSizeEnabled = false;
 bool Settings::gResourceLoadStatisticsEnabledEnabled = false;
+bool Settings::gAllowsAnySSLCertificate = false;
 
 #if PLATFORM(IOS)
@@ -755 +756 @@
 }
 
+void Settings::setAllowsAnySSLCertificate(bool allowAnySSLCertificate)
+{
+    gAllowsAnySSLCertificate = allowAnySSLCertificate;
+}
+
+bool Settings::allowsAnySSLCertificate()
+{
+    return gAllowsAnySSLCertificate;
+}
+
 } // namespace WebCore

trunk/Source/WebCore/page/Settings.h

@@ -1 +1 @@
 /*
- * Copyright (C) 2003, 2006, 2007, 2008, 2009, 2011, 2012, 2013 Apple Inc. All rights reserved.
+ * Copyright (C) 2003-2016 Apple Inc. All rights reserved.
  *           (C) 2006 Graham Dennis (graham.dennis@gmail.com)
  *
@@ -286 +286 @@
     WEBCORE_EXPORT void setForcePendingWebGLPolicy(bool);
     bool isForcePendingWebGLPolicy() const { return m_forcePendingWebGLPolicy; }
-    
+
+    WEBCORE_EXPORT static void setAllowsAnySSLCertificate(bool);
+    static bool allowsAnySSLCertificate();
+
 #if USE(APPLE_INTERNAL_SDK)
 #import <WebKitAdditions/SettingsGettersAndSetters.h>
@@ -382 +385 @@
     static bool gLowPowerVideoAudioBufferSizeEnabled;
     static bool gResourceLoadStatisticsEnabledEnabled;
+    static bool gAllowsAnySSLCertificate;
 
 #if USE(APPLE_INTERNAL_SDK)

trunk/Source/WebCore/platform/network/cf/SocketStreamHandleCFNet.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2009 Apple Inc.  All rights reserved.
+ * Copyright (C) 2009-2016 Apple Inc.  All rights reserved.
  * Copyright (C) 2009 Google Inc.  All rights reserved.
  *
@@ -38 +38 @@
 #include "NetworkingContext.h"
 #include "ProtectionSpace.h"
+#include "Settings.h"
 #include "SocketStreamError.h"
 #include "SocketStreamHandleClient.h"
@@ -341 +342 @@
 
     if (shouldUseSSL()) {
-        const void* keys[] = { kCFStreamSSLPeerName, kCFStreamSSLLevel };
-        const void* values[] = { host.get(), kCFStreamSocketSecurityLevelNegotiatedSSL };
+        CFBooleanRef validateCertificateChain = Settings::allowsAnySSLCertificate() ? kCFBooleanFalse : kCFBooleanTrue;
+        const void* keys[] = { kCFStreamSSLPeerName, kCFStreamSSLLevel, kCFStreamSSLValidatesCertificateChain };
+        const void* values[] = { host.get(), kCFStreamSocketSecurityLevelNegotiatedSSL, validateCertificateChain };
         RetainPtr<CFDictionaryRef> settings = adoptCF(CFDictionaryCreate(0, keys, values, WTF_ARRAY_LENGTH(keys), &kCFTypeDictionaryKeyCallBacks, &kCFTypeDictionaryValueCallBacks));
         CFReadStreamSetProperty(m_readStream.get(), kCFStreamPropertySSLSettings, settings.get());

trunk/Source/WebCore/testing/InternalSettings.cpp

@@ -185 +185 @@
     settings.setUserInterfaceDirectionPolicy(m_userInterfaceDirectionPolicy);
     settings.setSystemLayoutDirection(m_systemLayoutDirection);
+    Settings::setAllowsAnySSLCertificate(false);
 }
 
@@ -619 +620 @@
 }
 
+void InternalSettings::setAllowsAnySSLCertificate(bool allowsAnyCertificate)
+{
+    Settings::setAllowsAnySSLCertificate(allowsAnyCertificate);
+}
+
 // If you add to this list, make sure that you update the Backup class for test reproducability!
 

trunk/Source/WebCore/testing/InternalSettings.h

@@ -1 +1 @@
 /*
  * Copyright (C) 2012 Google Inc. All rights reserved.
- * Copyright (C) 2013, 2014, 2015, 2016 Apple Inc. All rights reserved.
+ * Copyright (C) 2013-2016 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -164 +164 @@
     void setSystemLayoutDirection(const String& direction, ExceptionCode&);
 
+    static void setAllowsAnySSLCertificate(bool);
+
 private:
     explicit InternalSettings(Page*);

trunk/Source/WebCore/testing/js/WebCoreTestSupport.cpp

@@ -1 +1 @@
 /*
  * Copyright (C) 2011, 2015 Google Inc. All rights reserved.
+ * Copyright (C) 2016 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -114 +115 @@
 }
 
+void setAllowsAnySSLCertificate(bool allowAnySSLCertificate)
+{
+    InternalSettings::setAllowsAnySSLCertificate(allowAnySSLCertificate);
 }
+
+}

trunk/Source/WebCore/testing/js/WebCoreTestSupport.h

@@ -1 +1 @@
 /*
  * Copyright (C) 2011, 2015 Google Inc. All rights reserved.
+ * Copyright (C) 2016 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -54 +55 @@
 void setLogChannelToAccumulate(const WTF::String& name) TEST_SUPPORT_EXPORT;
 void initializeLoggingChannelsIfNecessary() TEST_SUPPORT_EXPORT;
+void setAllowsAnySSLCertificate(bool) TEST_SUPPORT_EXPORT;
 
 } // namespace WebCore

trunk/Tools/ChangeLog

@@ +1 @@
+2016-05-25  Daniel Bates  <dabates@apple.com> and Brent Fulgham  <bfulgham@apple.com>
+
+        [WebSockets] No infrastructure for testing secure web sockets (wss)
+        https://bugs.webkit.org/show_bug.cgi?id=157884
+        <rdar://problem/26477197>
+
+        Reviewed by Andy Estes.
+
+        Add support to webkitpy to start and stop a secure Web Socket server running on port 9323
+        using the certificate, private-key from file LayoutTests/http/conf/webkit-httpd.pem. Also
+        teaches run-webkit-httpd to start and stop the Web Socket servers.
+
+        Modify DumpRenderTree and WebKitTestRunner to understand a new testRunner method,
+        'setAllowsAnySSLCertificate', which allows us to use the same self-signed test certificate
+        we do for our HTTPS tests.
+        
+        * DumpRenderTree/TestRunner.cpp:
+        (setAllowsAnySSLCertificateCallback):
+        (TestRunner::setAllowsAnySSLCertificate):
+        * DumpRenderTree/TestRunner.h:
+        * DumpRenderTree/mac/DumpRenderTree.mm:
+        (resetWebViewToConsistentStateBeforeTesting): Make sure we turn off the new flag between tests.
+        * Scripts/run-webkit-httpd:
+        (main): Start the websocket server at launch.
+        * Scripts/webkitpy/layout_tests/controllers/manager.py:
+        (Manager.__init__): Remove dead code.
+        * Scripts/webkitpy/layout_tests/servers/websocket_server.py:
+        (PyWebSocket.__init__): Cleanup code.
+        (PyWebSocket): Pass '--tls-client-ca' to start command.
+        (PyWebSocket._prepare_config): Cleanups.
+        * Scripts/webkitpy/port/base.py:
+        (Port.to.start_http_server):
+        (Port.to):
+        (Port.to._extract_certificate_from_pem): Added.
+        (Port.to._extract_private_key_from_pem): Added.
+        (Port.to.start_websocket_server): Start secure socket server.
+        (Port.to.stop_websocket_server): Stop secure socket server.
+        * WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl: Add new API.
+        * WebKitTestRunner/InjectedBundle/InjectedBundle.cpp:
+        (WTR::InjectedBundle::setAllowsAnySSLCertificate): Added.
+        * WebKitTestRunner/InjectedBundle/InjectedBundle.h:
+        * WebKitTestRunner/InjectedBundle/TestRunner.cpp:
+        (WTR::TestRunner::setAllowsAnySSLCertificate): Added.
+        * WebKitTestRunner/InjectedBundle/TestRunner.h:
+
 2016-05-25  Keith Miller  <keith_miller@apple.com>
 

trunk/Tools/DumpRenderTree/TestRunner.cpp

@@ -1184 +1184 @@
 }
 
+static JSValueRef setAllowsAnySSLCertificateCallback(JSContextRef context, JSObjectRef, JSObjectRef, size_t argumentCount, const JSValueRef arguments[], JSValueRef* exception)
+{
+    bool allowAnyCertificate = false;
+    if (argumentCount == 1)
+        allowAnyCertificate = JSValueToBoolean(context, arguments[0]);
+    
+    TestRunner::setAllowsAnySSLCertificate(allowAnyCertificate);
+    return JSValueMakeUndefined(context);
+}
 
 static JSValueRef setAllowUniversalAccessFromFileURLsCallback(JSContextRef context, JSObjectRef function, JSObjectRef thisObject, size_t argumentCount, const JSValueRef arguments[], JSValueRef* exception)
@@ -2102 +2111 @@
         { "setAllowUniversalAccessFromFileURLs", setAllowUniversalAccessFromFileURLsCallback, kJSPropertyAttributeReadOnly | kJSPropertyAttributeDontDelete },
         { "setAllowFileAccessFromFileURLs", setAllowFileAccessFromFileURLsCallback, kJSPropertyAttributeReadOnly | kJSPropertyAttributeDontDelete },
+        { "setAllowsAnySSLCertificate", setAllowsAnySSLCertificateCallback, kJSPropertyAttributeReadOnly | kJSPropertyAttributeDontDelete },
         { "setAlwaysAcceptCookies", setAlwaysAcceptCookiesCallback, kJSPropertyAttributeReadOnly | kJSPropertyAttributeDontDelete },
         { "setAppCacheMaximumSize", setAppCacheMaximumSizeCallback, kJSPropertyAttributeReadOnly | kJSPropertyAttributeDontDelete },
@@ -2281 +2291 @@
     WebCoreTestSupport::setLogChannelToAccumulate({ buffer.get() });
 }
+
+void TestRunner::setAllowsAnySSLCertificate(bool allowsAnySSLCertificate)
+{
+    WebCoreTestSupport::setAllowsAnySSLCertificate(allowsAnySSLCertificate);
+}

trunk/Tools/DumpRenderTree/TestRunner.h

@@ -128 +128 @@
     void resetPageVisibility();
 
+    static void setAllowsAnySSLCertificate(bool);
+
     void waitForPolicyDelegate();
     size_t webHistoryItemCount();

trunk/Tools/DumpRenderTree/mac/DumpRenderTree.mm

@@ -1847 +1847 @@
 
     TestRunner::setSerializeHTTPLoads(false);
+    TestRunner::setAllowsAnySSLCertificate(false);
 
     setlocale(LC_ALL, "");

trunk/Tools/Scripts/run-webkit-httpd

@@ -67 +67 @@
 
     port.start_http_server()
+    port.start_websocket_server()
 
     try:
@@ -73 +74 @@
             sys.stdout.write(tail.stdout.readline())
     except KeyboardInterrupt:
+        port.stop_websocket_server()
         port.stop_http_server()
 

trunk/Tools/Scripts/webkitpy/layout_tests/controllers/manager.py

@@ -79 +79 @@
         self._printer = printer
         self._expectations = None
-
         self.HTTP_SUBDIR = 'http' + port.TEST_PATH_SEPARATOR
         self.WEBSOCKET_SUBDIR = 'websocket' + port.TEST_PATH_SEPARATOR
         self.web_platform_test_subdir = self._port.web_platform_test_server_doc_root()
         self.LAYOUT_TESTS_DIRECTORY = 'LayoutTests'
-
-        # disable wss server. need to install pyOpenSSL on buildbots.
-        # self._websocket_secure_server = websocket_server.PyWebSocket(
-        #        options.results_directory, use_tls=True, port=9323)
-
         self._results_directory = self._port.results_directory()
         self._finder = LayoutTestFinder(self._port, self._options)

trunk/Tools/Scripts/webkitpy/layout_tests/servers/websocket_server.py

@@ -1 +1 @@
 # Copyright (C) 2011 Google Inc. All rights reserved.
+# Copyright (C) 2016 Apple Inc. All rights reserved.
 #
 # Redistribution and use in source and binary forms, with or without
@@ -40 +41 @@
 
 
-_WS_LOG_PREFIX = 'pywebsocket.ws.log-'
-_WSS_LOG_PREFIX = 'pywebsocket.wss.log-'
+_WS_LOG_NAME = 'pywebsocket.ws.log'
+_WSS_LOG_NAME = 'pywebsocket.wss.log'
 
 
@@ -103 +104 @@
 
         if self._use_tls:
-            self._log_prefix = _WSS_LOG_PREFIX
+            self._log_prefix = _WSS_LOG_NAME
         else:
-            self._log_prefix = _WS_LOG_PREFIX
+            self._log_prefix = _WS_LOG_NAME
 
     def _prepare_config(self):
-        time_str = time.strftime('%d%b%Y-%H%M%S')
-        log_file_name = self._log_prefix + time_str
+        log_file_name = self._log_prefix
         # FIXME: Doesn't Executive have a devnull, so that we don't have to use os.devnull directly?
         self._wsin = open(os.devnull, 'r')
@@ -146 +146 @@
                               '-c', self._certificate])
             if self._ca_certificate:
-                start_cmd.append('--ca-certificate')
+                start_cmd.append('--tls-client-ca')
                 start_cmd.append(self._ca_certificate)
 

trunk/Tools/Scripts/webkitpy/port/base.py

@@ -919 +919 @@
         self._http_server = server
 
+    def _extract_certificate_from_pem(self, pem_file, destination_certificate_file):
+        return self._executive.run_command(['openssl', 'x509', '-outform', 'pem', '-in', pem_file, '-out', destination_certificate_file], return_exit_code=True) == 0
+
+    def _extract_private_key_from_pem(self, pem_file, destination_private_key_file):
+        return self._executive.run_command(['openssl', 'rsa', '-in', pem_file, '-out', destination_private_key_file], return_exit_code=True) == 0
+
     def start_websocket_server(self):
         """Start a web server. Raise an error if it can't start or is already running.
@@ -928 +934 @@
         server.start()
         self._websocket_server = server
+
+        pem_file = self._filesystem.join(self.layout_tests_dir(), "http", "conf", "webkit-httpd.pem")
+        websocket_server_temporary_directory = self._filesystem.mkdtemp(prefix='webkitpy-websocket-server')
+        certificate_file = self._filesystem.join(str(websocket_server_temporary_directory), 'webkit-httpd.crt')
+        private_key_file = self._filesystem.join(str(websocket_server_temporary_directory), 'webkit-httpd.key')
+        self._websocket_server_temporary_directory = websocket_server_temporary_directory
+        if self._extract_certificate_from_pem(pem_file, certificate_file) and self._extract_private_key_from_pem(pem_file, private_key_file):
+            secure_server = self._websocket_secure_server = websocket_server.PyWebSocket(self, self.results_directory(),
+                                use_tls=True, port=9323, private_key=private_key_file, certificate=certificate_file)
+            secure_server.start()
+            self._websocket_secure_server = secure_server
 
     def start_web_platform_test_server(self, additional_dirs=None, number_of_servers=None):
@@ -965 +982 @@
             self._websocket_server.stop()
             self._websocket_server = None
+        if self._websocket_secure_server:
+            self._websocket_secure_server.stop()
+            self._websocket_secure_server = None
+        if self._websocket_server_temporary_directory:
+            self._filesystem.rmtree(str(self._websocket_server_temporary_directory))
 
     def stop_web_platform_test_server(self):

trunk/Tools/WebKitTestRunner/InjectedBundle/Bindings/TestRunner.idl

@@ -203 +203 @@
     void setAuthenticationPassword(DOMString password);
 
+    void setAllowsAnySSLCertificate(boolean value);
+
     // Secure text input mode (Mac only)
     readonly attribute boolean secureEventInputIsEnabled;

trunk/Tools/WebKitTestRunner/InjectedBundle/InjectedBundle.cpp

@@ -30 +30 @@
 #include "InjectedBundlePage.h"
 #include "StringFunctions.h"
+#include "WebCoreTestSupport.h"
 #include <WebKit/WKBundle.h>
 #include <WebKit/WKBundlePage.h>
@@ -737 +738 @@
 }
 
+void InjectedBundle::setAllowsAnySSLCertificate(bool allowsAnySSLCertificate)
+{
+    WebCoreTestSupport::setAllowsAnySSLCertificate(allowsAnySSLCertificate);
+}
+
 } // namespace WTR

trunk/Tools/WebKitTestRunner/InjectedBundle/InjectedBundle.h

@@ -124 +124 @@
     unsigned imageCountInGeneralPasteboard() const;
 
+    void setAllowsAnySSLCertificate(bool);
+    
 private:
     InjectedBundle();

trunk/Tools/WebKitTestRunner/InjectedBundle/TestRunner.cpp

@@ -370 +370 @@
 }
 
+void TestRunner::setAllowsAnySSLCertificate(bool enabled)
+{
+    InjectedBundle::singleton().setAllowsAnySSLCertificate(enabled);
+}
+
 void TestRunner::setAllowUniversalAccessFromFileURLs(bool enabled)
 {

trunk/Tools/WebKitTestRunner/InjectedBundle/TestRunner.h

@@ -124 +124 @@
     void setAsynchronousSpellCheckingEnabled(bool);
     void setDownloadAttributeEnabled(bool);
+    void setAllowsAnySSLCertificate(bool);
 
     // Special DOM functions.