blob: ffbb301bd209c5ca21012318abab80a7a90639ce (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
|
// Copyright 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef NET_SSL_CLIENT_CERT_STORE_WIN_H_
#define NET_SSL_CLIENT_CERT_STORE_WIN_H_
#include "base/callback.h"
#include "base/macros.h"
#include "crypto/scoped_capi_types.h"
#include "net/base/net_export.h"
#include "net/ssl/client_cert_store.h"
#include "net/ssl/ssl_cert_request_info.h"
namespace net {
class NET_EXPORT ClientCertStoreWin : public ClientCertStore {
public:
// Uses the "MY" current user system certificate store.
ClientCertStoreWin();
// Takes ownership of |cert_store| and closes it at destruction time.
explicit ClientCertStoreWin(HCERTSTORE cert_store);
~ClientCertStoreWin() override;
// If a cert store has been provided at construction time GetClientCerts
// will use that. Otherwise it will use the current user's "MY" cert store
// instead.
void GetClientCerts(const SSLCertRequestInfo& cert_request_info,
CertificateList* selected_certs,
const base::Closure& callback) override;
private:
using ScopedHCERTSTORE = crypto::ScopedCAPIHandle<
HCERTSTORE,
crypto::CAPIDestroyerWithFlags<HCERTSTORE,
CertCloseStore,
CERT_CLOSE_STORE_CHECK_FLAG>>;
friend class ClientCertStoreWinTestDelegate;
// A hook for testing. Filters |input_certs| using the logic being used to
// filter the system store when GetClientCerts() is called.
// Implemented by creating a temporary in-memory store and filtering it
// using the common logic.
bool SelectClientCertsForTesting(const CertificateList& input_certs,
const SSLCertRequestInfo& cert_request_info,
CertificateList* selected_certs);
ScopedHCERTSTORE cert_store_;
DISALLOW_COPY_AND_ASSIGN(ClientCertStoreWin);
};
} // namespace net
#endif // NET_SSL_CLIENT_CERT_STORE_WIN_H_
|
