diff options
Diffstat (limited to 'net/ssl/client_cert_store_chromeos.h')
| -rw-r--r-- | net/ssl/client_cert_store_chromeos.h | 66 |
1 files changed, 66 insertions, 0 deletions
diff --git a/net/ssl/client_cert_store_chromeos.h b/net/ssl/client_cert_store_chromeos.h new file mode 100644 index 0000000..41339f1 --- /dev/null +++ b/net/ssl/client_cert_store_chromeos.h @@ -0,0 +1,66 @@ +// Copyright 2013 The Chromium Authors. All rights reserved. +// Use of this source code is governed by a BSD-style license that can be +// found in the LICENSE file. + +#ifndef NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ +#define NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ + +#include <string> + +#include "crypto/scoped_nss_types.h" +#include "net/cert/nss_profile_filter_chromeos.h" +#include "net/ssl/client_cert_store_nss.h" + +namespace net { + +class NET_EXPORT ClientCertStoreChromeOS : public ClientCertStoreNSS { + public: + ClientCertStoreChromeOS( + const std::string& username_hash, + const PasswordDelegateFactory& password_delegate_factory); + virtual ~ClientCertStoreChromeOS(); + + // ClientCertStoreNSS: + virtual void GetClientCerts(const SSLCertRequestInfo& cert_request_info, + CertificateList* selected_certs, + const base::Closure& callback) OVERRIDE; + + protected: + // ClientCertStoreNSS: + virtual void GetClientCertsImpl(CERTCertList* cert_list, + const SSLCertRequestInfo& request, + bool query_nssdb, + CertificateList* selected_certs) OVERRIDE; + + private: + friend class ClientCertStoreChromeOSTestDelegate; + + void DidGetPrivateSlot(const SSLCertRequestInfo* request, + CertificateList* selected_certs, + const base::Closure& callback, + crypto::ScopedPK11Slot private_slot); + + // Allows tests to initialize the cert store with the given slots. + // Must be called before SelectClientCertsForTesting. + void InitForTesting(crypto::ScopedPK11Slot public_slot, + crypto::ScopedPK11Slot private_slot); + + // A hook for testing. Filters |input_certs| using the logic being used to + // filter the system store when GetClientCerts() is called. + // Implemented by creating a list of certificates that otherwise would be + // extracted from the system store and filtering it using the common logic + // (less adequate than the approach used on Windows). + bool SelectClientCertsForTesting(const CertificateList& input_certs, + const SSLCertRequestInfo& cert_request_info, + CertificateList* selected_certs); + + + std::string username_hash_; + NSSProfileFilterChromeOS profile_filter_; + + DISALLOW_COPY_AND_ASSIGN(ClientCertStoreChromeOS); +}; + +} // namespace net + +#endif // NET_SSL_CLIENT_CERT_STORE_CHROMEOS_H_ |