content/browser/ssl/ssl_policy_backend.cc


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66

// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#include "content/browser/ssl/ssl_policy_backend.h"

#include "content/browser/frame_host/navigation_controller_impl.h"
#include "content/public/browser/browser_context.h"
#include "content/public/browser/ssl_host_state_delegate.h"

namespace content {

SSLPolicyBackend::SSLPolicyBackend(NavigationControllerImpl* controller)
    : ssl_host_state_delegate_(
          controller->GetBrowserContext()->GetSSLHostStateDelegate()),
      controller_(controller) {
  DCHECK(controller_);
}

void SSLPolicyBackend::HostRanInsecureContent(const std::string& host, int id) {
  if (ssl_host_state_delegate_)
    ssl_host_state_delegate_->HostRanInsecureContent(host, id);
  SSLManager::NotifySSLInternalStateChanged(controller_->GetBrowserContext());
}

bool SSLPolicyBackend::DidHostRunInsecureContent(const std::string& host,
                                                 int pid) const {
  if (!ssl_host_state_delegate_)
    return false;

  return ssl_host_state_delegate_->DidHostRunInsecureContent(host, pid);
}

void SSLPolicyBackend::RevokeUserAllowExceptions(const std::string& host) {
  if (!ssl_host_state_delegate_)
    return;

  ssl_host_state_delegate_->RevokeUserAllowExceptions(host);
}

bool SSLPolicyBackend::HasAllowException(const std::string& host) {
  if (!ssl_host_state_delegate_)
    return false;

  return ssl_host_state_delegate_->HasAllowException(host);
}

void SSLPolicyBackend::AllowCertForHost(const net::X509Certificate& cert,
                                        const std::string& host,
                                        net::CertStatus error) {
  if (ssl_host_state_delegate_)
    ssl_host_state_delegate_->AllowCert(host, cert, error);
}

SSLHostStateDelegate::CertJudgment SSLPolicyBackend::QueryPolicy(
    const net::X509Certificate& cert,
    const std::string& host,
    net::CertStatus error,
    bool* expired_previous_decision) {
  return ssl_host_state_delegate_ ?
      ssl_host_state_delegate_->QueryPolicy(
          host, cert, error, expired_previous_decision) :
      SSLHostStateDelegate::DENIED;
}

}  // namespace content