diff options
| author | rsleevi@chromium.org <rsleevi@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2010-12-16 00:01:37 +0000 |
|---|---|---|
| committer | rsleevi@chromium.org <rsleevi@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2010-12-16 00:01:37 +0000 |
| commit | 32765f80889421c6161a7b9e73bc1ee722db6892 (patch) | |
| tree | bba0f974c84f9859da5b62bc233d00955e63c032 /net/base/cert_test_util.h | |
| parent | 235478be87f59f3962eda9d8f3fba04e8a5096e4 (diff) | |
| download | chromium_src-32765f80889421c6161a7b9e73bc1ee722db6892.zip chromium_src-32765f80889421c6161a7b9e73bc1ee722db6892.tar.gz chromium_src-32765f80889421c6161a7b9e73bc1ee722db6892.tar.bz2 | |
Add support for temporarily trusting a certificate for the duration of unit tests on Windows, rather than requiring the machine to be pre-configured out-of-band.
Given the lack of a Microsoft-provided high-level API to supply application-level trusts to the verification routines, this implements a workaround that intercepts attempts to open the trusted system root store and injects the test certificates directly. This allows the unit tests to work without requiring that the Test CA be added to the machine's Trusted Certificates store.
While doing so, clean up the interface to adding/removing trusted test certificates, so as to support more than one trusted certificate if necessary.
BUG=8470
TEST=To follow
Review URL: http://codereview.chromium.org/4646001
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@69351 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'net/base/cert_test_util.h')
| -rw-r--r-- | net/base/cert_test_util.h | 19 |
1 files changed, 13 insertions, 6 deletions
diff --git a/net/base/cert_test_util.h b/net/base/cert_test_util.h index 8709156..3452ac5 100644 --- a/net/base/cert_test_util.h +++ b/net/base/cert_test_util.h @@ -6,7 +6,9 @@ #define NET_BASE_CERT_TEST_UTIL_H_ #pragma once -#include "build/build_config.h" +#include <string> + +#include "base/ref_counted.h" class FilePath; @@ -14,11 +16,16 @@ namespace net { class X509Certificate; -#if defined(USE_NSS) || defined(OS_MACOSX) || defined(USE_OPENSSL) -// Loads and trusts a root CA certificate (stored in a file) temporarily. -// TODO(wtc): Implement this function on Windows (http://crbug.com/8470). -X509Certificate* LoadTemporaryRootCert(const FilePath& filename); -#endif +// Returns a FilePath object representing the src/net/data/ssl/certificates +// directory in the source tree. +FilePath GetTestCertsDirectory(); + +// Imports a certificate file in the src/net/data/ssl/certificates directory. +// certs_dir represents the test certificates directory. cert_file is the +// name of the certificate file. If cert_file contains multiple certificates, +// the first certificate found will be returned. +scoped_refptr<X509Certificate> ImportCertFromFile(const FilePath& certs_dir, + const std::string& cert_file); } // namespace net |