summaryrefslogtreecommitdiffstats
path: root/chrome/browser/ssl/ssl_manager.cc
diff options
context:
space:
mode:
Diffstat (limited to 'chrome/browser/ssl/ssl_manager.cc')
-rw-r--r--chrome/browser/ssl/ssl_manager.cc249
1 files changed, 124 insertions, 125 deletions
diff --git a/chrome/browser/ssl/ssl_manager.cc b/chrome/browser/ssl/ssl_manager.cc
index 99729b6..7683221 100644
--- a/chrome/browser/ssl/ssl_manager.cc
+++ b/chrome/browser/ssl/ssl_manager.cc
@@ -28,86 +28,6 @@ void SSLManager::RegisterUserPrefs(PrefService* prefs) {
FilterPolicy::DONT_FILTER);
}
-// static
-void SSLManager::OnSSLCertificateError(ResourceDispatcherHost* rdh,
- URLRequest* request,
- int cert_error,
- net::X509Certificate* cert) {
- DLOG(INFO) << "OnSSLCertificateError() cert_error: " << cert_error <<
- " url: " << request->url().spec();
-
- ResourceDispatcherHostRequestInfo* info =
- ResourceDispatcherHost::InfoForRequest(request);
- DCHECK(info);
-
- // A certificate error occurred. Construct a SSLCertErrorHandler object and
- // hand it over to the UI thread for processing.
- ChromeThread::PostTask(
- ChromeThread::UI, FROM_HERE,
- NewRunnableMethod(new SSLCertErrorHandler(rdh,
- request,
- info->resource_type(),
- info->frame_origin(),
- info->main_frame_origin(),
- cert_error,
- cert),
- &SSLCertErrorHandler::Dispatch));
-}
-
-// static
-void SSLManager::NotifySSLInternalStateChanged() {
- NotificationService::current()->Notify(
- NotificationType::SSL_INTERNAL_STATE_CHANGED,
- NotificationService::AllSources(),
- NotificationService::NoDetails());
-}
-
-// static
-std::string SSLManager::SerializeSecurityInfo(int cert_id,
- int cert_status,
- int security_bits) {
- Pickle pickle;
- pickle.WriteInt(cert_id);
- pickle.WriteInt(cert_status);
- pickle.WriteInt(security_bits);
- return std::string(static_cast<const char*>(pickle.data()), pickle.size());
-}
-
-// static
-bool SSLManager::DeserializeSecurityInfo(const std::string& state,
- int* cert_id,
- int* cert_status,
- int* security_bits) {
- DCHECK(cert_id && cert_status && security_bits);
- if (state.empty()) {
- // No SSL used.
- *cert_id = 0;
- *cert_status = 0;
- *security_bits = -1;
- return false;
- }
-
- Pickle pickle(state.data(), static_cast<int>(state.size()));
- void * iter = NULL;
- return pickle.ReadInt(&iter, cert_id) &&
- pickle.ReadInt(&iter, cert_status) &&
- pickle.ReadInt(&iter, security_bits);
-}
-
-// static
-std::wstring SSLManager::GetEVCertName(const net::X509Certificate& cert) {
- // EV are required to have an organization name and country.
- if (cert.subject().organization_names.empty() ||
- cert.subject().country_name.empty()) {
- NOTREACHED();
- return std::wstring();
- }
-
- return l10n_util::GetStringF(IDS_SECURE_CONNECTION_EV,
- UTF8ToWide(cert.subject().organization_names[0]),
- UTF8ToWide(cert.subject().country_name));
-}
-
SSLManager::SSLManager(NavigationController* controller)
: backend_(controller),
policy_(new SSLPolicy(&backend_)),
@@ -130,33 +50,44 @@ SSLManager::SSLManager(NavigationController* controller)
SSLManager::~SSLManager() {
}
-void SSLManager::DidCommitProvisionalLoad(
- const NotificationDetails& in_details) {
- NavigationController::LoadCommittedDetails* details =
- Details<NavigationController::LoadCommittedDetails>(in_details).ptr();
-
+bool SSLManager::ProcessedSSLErrorFromRequest() const {
NavigationEntry* entry = controller_->GetActiveEntry();
+ if (!entry) {
+ NOTREACHED();
+ return false;
+ }
- if (details->is_main_frame) {
- if (entry) {
- // Decode the security details.
- int ssl_cert_id, ssl_cert_status, ssl_security_bits;
- DeserializeSecurityInfo(details->serialized_security_info,
- &ssl_cert_id,
- &ssl_cert_status,
- &ssl_security_bits);
+ return net::IsCertStatusError(entry->ssl().cert_status());
+}
- // We may not have an entry if this is a navigation to an initial blank
- // page. Reset the SSL information and add the new data we have.
- entry->ssl() = NavigationEntry::SSLStatus();
- entry->ssl().set_cert_id(ssl_cert_id);
- entry->ssl().set_cert_status(ssl_cert_status);
- entry->ssl().set_security_bits(ssl_security_bits);
- }
- backend_.ShowPendingMessages();
- }
+// static
+void SSLManager::OnSSLCertificateError(ResourceDispatcherHost* rdh,
+ URLRequest* request,
+ int cert_error,
+ net::X509Certificate* cert) {
+ DLOG(INFO) << "OnSSLCertificateError() cert_error: " << cert_error <<
+ " url: " << request->url().spec();
- UpdateEntry(entry);
+ ResourceDispatcherHostRequestInfo* info =
+ ResourceDispatcherHost::InfoForRequest(request);
+ DCHECK(info);
+
+ // A certificate error occurred. Construct a SSLCertErrorHandler object and
+ // hand it over to the UI thread for processing.
+ ChromeThread::PostTask(
+ ChromeThread::UI, FROM_HERE,
+ NewRunnableMethod(new SSLCertErrorHandler(rdh,
+ request,
+ info->resource_type(),
+ info->frame_origin(),
+ info->main_frame_origin(),
+ cert_error,
+ cert),
+ &SSLCertErrorHandler::Dispatch));
+}
+
+void SSLManager::DidDisplayInsecureContent() {
+ policy()->DidDisplayInsecureContent(controller_->GetActiveEntry());
}
void SSLManager::DidRunInsecureContent(const std::string& security_origin) {
@@ -164,16 +95,6 @@ void SSLManager::DidRunInsecureContent(const std::string& security_origin) {
security_origin);
}
-bool SSLManager::ProcessedSSLErrorFromRequest() const {
- NavigationEntry* entry = controller_->GetActiveEntry();
- if (!entry) {
- NOTREACHED();
- return false;
- }
-
- return net::IsCertStatusError(entry->ssl().cert_status());
-}
-
void SSLManager::Observe(NotificationType type,
const NotificationSource& source,
const NotificationDetails& details) {
@@ -202,6 +123,27 @@ void SSLManager::Observe(NotificationType type,
}
}
+void SSLManager::DispatchSSLVisibleStateChanged() {
+ NotificationService::current()->Notify(
+ NotificationType::SSL_VISIBLE_STATE_CHANGED,
+ Source<NavigationController>(controller_),
+ NotificationService::NoDetails());
+}
+
+void SSLManager::UpdateEntry(NavigationEntry* entry) {
+ // We don't always have a navigation entry to update, for example in the
+ // case of the Web Inspector.
+ if (!entry)
+ return;
+
+ NavigationEntry::SSLStatus original_ssl_status = entry->ssl(); // Copy!
+
+ policy()->UpdateEntry(entry);
+
+ if (!entry->ssl().Equals(original_ssl_status))
+ DispatchSSLVisibleStateChanged();
+}
+
void SSLManager::DidLoadFromMemoryCache(LoadFromMemoryCacheDetails* details) {
DCHECK(details);
@@ -224,6 +166,35 @@ void SSLManager::DidLoadFromMemoryCache(LoadFromMemoryCacheDetails* details) {
policy()->OnRequestStarted(info.get());
}
+void SSLManager::DidCommitProvisionalLoad(
+ const NotificationDetails& in_details) {
+ NavigationController::LoadCommittedDetails* details =
+ Details<NavigationController::LoadCommittedDetails>(in_details).ptr();
+
+ NavigationEntry* entry = controller_->GetActiveEntry();
+
+ if (details->is_main_frame) {
+ if (entry) {
+ // Decode the security details.
+ int ssl_cert_id, ssl_cert_status, ssl_security_bits;
+ DeserializeSecurityInfo(details->serialized_security_info,
+ &ssl_cert_id,
+ &ssl_cert_status,
+ &ssl_security_bits);
+
+ // We may not have an entry if this is a navigation to an initial blank
+ // page. Reset the SSL information and add the new data we have.
+ entry->ssl() = NavigationEntry::SSLStatus();
+ entry->ssl().set_cert_id(ssl_cert_id);
+ entry->ssl().set_cert_status(ssl_cert_status);
+ entry->ssl().set_security_bits(ssl_security_bits);
+ }
+ backend_.ShowPendingMessages();
+ }
+
+ UpdateEntry(entry);
+}
+
void SSLManager::DidFailProvisionalLoadWithError(
ProvisionalLoadDetails* details) {
DCHECK(details);
@@ -267,20 +238,48 @@ void SSLManager::DidChangeSSLInternalState() {
UpdateEntry(controller_->GetActiveEntry());
}
-void SSLManager::UpdateEntry(NavigationEntry* entry) {
- // We don't always have a navigation entry to update, for example in the
- // case of the Web Inspector.
- if (!entry)
- return;
+// static
+std::string SSLManager::SerializeSecurityInfo(int cert_id,
+ int cert_status,
+ int security_bits) {
+ Pickle pickle;
+ pickle.WriteInt(cert_id);
+ pickle.WriteInt(cert_status);
+ pickle.WriteInt(security_bits);
+ return std::string(static_cast<const char*>(pickle.data()), pickle.size());
+}
- NavigationEntry::SSLStatus original_ssl_status = entry->ssl(); // Copy!
+// static
+bool SSLManager::DeserializeSecurityInfo(const std::string& state,
+ int* cert_id,
+ int* cert_status,
+ int* security_bits) {
+ DCHECK(cert_id && cert_status && security_bits);
+ if (state.empty()) {
+ // No SSL used.
+ *cert_id = 0;
+ *cert_status = 0;
+ *security_bits = -1;
+ return false;
+ }
- policy()->UpdateEntry(entry, controller_->tab_contents());
+ Pickle pickle(state.data(), static_cast<int>(state.size()));
+ void * iter = NULL;
+ return pickle.ReadInt(&iter, cert_id) &&
+ pickle.ReadInt(&iter, cert_status) &&
+ pickle.ReadInt(&iter, security_bits);
+}
- if (!entry->ssl().Equals(original_ssl_status)) {
- NotificationService::current()->Notify(
- NotificationType::SSL_VISIBLE_STATE_CHANGED,
- Source<NavigationController>(controller_),
- NotificationService::NoDetails());
+// static
+std::wstring SSLManager::GetEVCertName(const net::X509Certificate& cert) {
+ // EV are required to have an organization name and country.
+ if (cert.subject().organization_names.empty() ||
+ cert.subject().country_name.empty()) {
+ NOTREACHED();
+ return std::wstring();
}
+
+ return l10n_util::GetStringF(IDS_SECURE_CONNECTION_EV,
+ UTF8ToWide(cert.subject().organization_names[0]),
+ UTF8ToWide(cert.subject().country_name));
}
generated by cgit v1.1 at 2025-03-11 03:04:20 +0000