1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
|
// Copyright (c) 2011 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/ssl/ssl_add_cert_handler.h"
#include "base/bind.h"
#include "chrome/browser/tab_contents/tab_contents_ssl_helper.h"
#include "chrome/browser/tab_contents/tab_util.h"
#include "chrome/browser/ui/tab_contents/tab_contents_wrapper.h"
#include "content/browser/renderer_host/resource_dispatcher_host.h"
#include "content/browser/renderer_host/resource_dispatcher_host_request_info.h"
#include "content/public/browser/browser_thread.h"
#include "net/base/cert_database.h"
#include "net/base/net_errors.h"
#include "net/base/x509_certificate.h"
#include "net/url_request/url_request.h"
using content::BrowserThread;
SSLAddCertHandler::SSLAddCertHandler(net::URLRequest* request,
net::X509Certificate* cert,
int render_process_host_id,
int render_view_id)
: cert_(cert),
render_process_host_id_(render_process_host_id),
render_view_id_(render_view_id) {
ResourceDispatcherHostRequestInfo* info =
ResourceDispatcherHost::InfoForRequest(request);
network_request_id_ = info->request_id();
// Stay alive until the process completes and Finished() is called.
AddRef();
// Delay adding the certificate until the next mainloop iteration.
BrowserThread::PostTask(
BrowserThread::IO, FROM_HERE,
base::Bind(&SSLAddCertHandler::Run, this));
}
SSLAddCertHandler::~SSLAddCertHandler() {}
void SSLAddCertHandler::Run() {
int cert_error;
{
net::CertDatabase db;
cert_error = db.CheckUserCert(cert_);
}
if (cert_error != net::OK) {
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(
&SSLAddCertHandler::CallVerifyClientCertificateError, this,
cert_error));
Finished(false);
return;
}
// TODO(davidben): Move the existing certificate dialog elsewhere, make
// AskToAddCert send a message to the RenderViewHostDelegate, and ask when we
// cannot completely verify the certificate for whatever reason.
// AskToAddCert();
Finished(true);
}
#if !defined(OS_MACOSX)
void SSLAddCertHandler::AskToAddCert() {
// TODO(snej): Someone should add Windows and GTK implementations with UI.
Finished(true);
}
#endif
void SSLAddCertHandler::Finished(bool add_cert) {
int cert_error = net::OK;
if (add_cert) {
net::CertDatabase db;
cert_error = db.AddUserCert(cert_);
}
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(
&SSLAddCertHandler::CallAddClientCertificate, this,
add_cert, cert_error));
Release();
}
void SSLAddCertHandler::CallVerifyClientCertificateError(int cert_error) {
TabContents* tab = tab_util::GetTabContentsByID(
render_process_host_id_, render_view_id_);
if (!tab)
return;
TabContentsWrapper* wrapper =
TabContentsWrapper::GetCurrentWrapperForContents(tab);
wrapper->ssl_helper()->OnVerifyClientCertificateError(this, cert_error);
}
void SSLAddCertHandler::CallAddClientCertificate(bool add_cert,
int cert_error) {
TabContents* tab = tab_util::GetTabContentsByID(
render_process_host_id_, render_view_id_);
if (!tab)
return;
TabContentsWrapper* wrapper =
TabContentsWrapper::GetCurrentWrapperForContents(tab);
if (add_cert) {
if (cert_error == net::OK) {
wrapper->ssl_helper()->OnAddClientCertificateSuccess(this);
} else {
wrapper->ssl_helper()->OnAddClientCertificateError(this, cert_error);
}
}
wrapper->ssl_helper()->OnAddClientCertificateFinished(this);
}
|
