Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(378)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/base/keygen_handler.h

Issue 2668005: Bring the handling of <keygen> and support for the application/x-x509-user-ce... (Closed) Base URL: http://src.chromium.org/svn/trunk/src/
Patch Set: Whitespace/style Created 10 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « net/base/cert_database_win.cc ('k') | net/base/keygen_handler.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2010 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef NET_BASE_KEYGEN_HANDLER_H_ 5 #ifndef NET_BASE_KEYGEN_HANDLER_H_
6 #define NET_BASE_KEYGEN_HANDLER_H_ 6 #define NET_BASE_KEYGEN_HANDLER_H_
7 7
8 #include <map> 8 #include <map>
9 #include <string> 9 #include <string>
10 10
11 #include "base/lock.h" 11 #include "base/lock.h"
12 #include "base/singleton.h" 12 #include "base/singleton.h"
13 13
14 namespace net { 14 namespace net {
15 15
16 // This class handles keypair generation for generating client 16 // This class handles keypair generation for generating client
17 // certificates via the <keygen> tag. 17 // certificates via the <keygen> tag.
18 // <http://dev.w3.org/html5/spec/Overview.html#the-keygen-element> 18 // <http://dev.w3.org/html5/spec/Overview.html#the-keygen-element>
19 // <https://developer.mozilla.org/En/HTML/HTML_Extensions/KEYGEN_Tag> 19 // <https://developer.mozilla.org/En/HTML/HTML_Extensions/KEYGEN_Tag>
20 20
21 class KeygenHandler { 21 class KeygenHandler {
22 public: 22 public:
23 // This class stores the relative location for a given private key. It does
24 // not store the private key, or a handle to the private key, on the basis
25 // that the key may be located on a smart card or device which may not be
26 // present at the time of retrieval.
27 class KeyLocation {
28 public:
29 #if defined(OS_WIN)
30 std::wstring container_name;
31 std::wstring provider_name;
32 #elif defined(OS_MACOSX)
33 std::string keychain_path;
34 #elif defined(USE_NSS)
35 std::string slot_name;
36 #endif
37
38 // Only used by unit tests.
39 bool Equals(const KeyLocation& location) const;
40 };
41
42 // This class stores information about the keys the KeygenHandler has
43 // generated, so that the private keys can be properly associated with any
44 // certificates that might be sent to the client based on those keys.
45 // TODO(wtc): consider adding a Remove() method.
46 class Cache {
47 public:
48 static Cache* GetInstance();
49 void Insert(const std::string& public_key_info,
50 const KeyLocation& location);
51
52 // True if the |public_key_info| was located and the location stored into
53 // |*location|.
54 bool Find(const std::string& public_key_info, KeyLocation* location);
55
56 private:
57 typedef std::map<std::string, KeyLocation> KeyLocationMap;
58
59 // Obtain an instance of the KeyCache by using GetInstance().
60 Cache() {}
61 friend struct DefaultSingletonTraits<Cache>;
62
63 Lock lock_;
64
65 // The key cache. You must obtain |lock_| before using |cache_|.
66 KeyLocationMap cache_;
67
68 DISALLOW_COPY_AND_ASSIGN(Cache);
69 };
70
71 // Creates a handler that will generate a key with the given key size 23 // Creates a handler that will generate a key with the given key size
72 // and incorporate the |challenge| into the Netscape SPKAC structure. 24 // and incorporate the |challenge| into the Netscape SPKAC structure.
73 inline KeygenHandler(int key_size_in_bits, const std::string& challenge); 25 inline KeygenHandler(int key_size_in_bits, const std::string& challenge);
74 26
75 // Actually generates the key-pair and the cert request (SPKAC), and returns 27 // Actually generates the key-pair and the cert request (SPKAC), and returns
76 // a base64-encoded string suitable for use as the form value of <keygen>. 28 // a base64-encoded string suitable for use as the form value of <keygen>.
77 std::string GenKeyAndSignChallenge(); 29 std::string GenKeyAndSignChallenge();
78 30
79 // Exposed only for unit tests. 31 // Exposed only for unit tests.
80 void set_stores_key(bool store) { stores_key_ = store;} 32 void set_stores_key(bool store) { stores_key_ = store;}
81 33
82 private: 34 private:
83 int key_size_in_bits_; // key size in bits (usually 2048) 35 int key_size_in_bits_; // key size in bits (usually 2048)
84 std::string challenge_; // challenge string sent by server 36 std::string challenge_; // challenge string sent by server
85 bool stores_key_; // should the generated key-pair be stored persistently? 37 bool stores_key_; // should the generated key-pair be stored persistently?
86 }; 38 };
87 39
88 KeygenHandler::KeygenHandler(int key_size_in_bits, 40 KeygenHandler::KeygenHandler(int key_size_in_bits,
89 const std::string& challenge) 41 const std::string& challenge)
90 : key_size_in_bits_(key_size_in_bits), 42 : key_size_in_bits_(key_size_in_bits),
91 challenge_(challenge), 43 challenge_(challenge),
92 stores_key_(true) { 44 stores_key_(true) {
93 } 45 }
94 46
95 } // namespace net 47 } // namespace net
96 48
97 #endif // NET_BASE_KEYGEN_HANDLER_H_ 49 #endif // NET_BASE_KEYGEN_HANDLER_H_
OLDNEW
« no previous file with comments | « net/base/cert_database_win.cc ('k') | net/base/keygen_handler.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698