chrome/browser/chromeos/platform_keys/platform_keys_service.cc - Issue 1141253003: chrome.platformKeys: Add filtering by certificate types

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: chrome/browser/chromeos/platform_keys/platform_keys_service.cc

Issue 1141253003: chrome.platformKeys: Add filtering by certificate types (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: addressed pneubeck's comments Created 5 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « chrome/browser/chromeos/platform_keys/platform_keys_nss.cc ('k') | chrome/browser/extensions/api/platform_keys/platform_keys_api.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: chrome/browser/chromeos/platform_keys/platform_keys_service.cc

diff --git a/chrome/browser/chromeos/platform_keys/platform_keys_service.cc b/chrome/browser/chromeos/platform_keys/platform_keys_service.cc

index d4c38a66f3bdbe549cac32bb84082b2ed1fc8208..28b12bff491cae5ddad5fc4f07549aace27f98cd 100644

--- a/chrome/browser/chromeos/platform_keys/platform_keys_service.cc

+++ b/chrome/browser/chromeos/platform_keys/platform_keys_service.cc

@@ -481,7 +481,7 @@ class PlatformKeysService::SelectTask : public Task {

// |GotMatchingCerts()|.

void GetMatchingCerts() {

platform_keys::subtle::SelectClientCertificates(

- request_,

+ request_.certificate_authorities,

base::Bind(&SelectTask::GotMatchingCerts, weak_factory_.GetWeakPtr()),

service_->browser_context_);

}

@@ -498,7 +498,30 @@ class PlatformKeysService::SelectTask : public Task {

DoStep();

return;

}

- matches_.swap(*matches);

+ // If the type field does not contain any entries, certificates of all types

+ // shall be returned.

+ if (request_.certificate_key_types.size() == 0) {

+ matches_.swap(*matches);

+ DoStep();

+ return;

+ }

+ // Filter the retrieved certificates returning only those whose type is

+ // equal to one of the entries in the type field of the certificate request.

+ for (scoped_refptr<net::X509Certificate>& certificate : *matches) {

+ net::X509Certificate::PublicKeyType actual_key_type =

+ net::X509Certificate::kPublicKeyTypeUnknown;

+ size_t unused_key_size = 0;

+ net::X509Certificate::GetPublicKeyInfo(

+ certificate->os_cert_handle(), &unused_key_size, &actual_key_type);

+ const std::vector<net::X509Certificate::PublicKeyType>& accepted_types =

+ request_.certificate_key_types;

+ if (std::find(accepted_types.begin(), accepted_types.end(),

+ actual_key_type) != accepted_types.end()) {

+ matches_.push_back(certificate.Pass());

+ }

DoStep();

}