Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(322)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/ssl/client_key_store.cc

Issue 1278763002: Add a ClientKeyStore to allow injection of non-platform keys for TLS client auth. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@client_cert_store
Patch Set: Created 5 years, 4 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« net/ssl/client_key_store.h ('K') | « net/ssl/client_key_store.h ('k') | net/ssl/ssl_platform_key_nss.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
(Empty)
1 // Copyright 2015 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
4
5 #include "net/ssl/client_key_store.h"
6
7 #include "base/memory/singleton.h"
8 #include "net/cert/x509_certificate.h"
9 #include "net/ssl/ssl_private_key.h"
10
11 namespace net {
12
13 ClientKeyStore::CertAndKey::CertAndKey() {}
14 ClientKeyStore::CertAndKey::~CertAndKey() {}
15
16 ClientKeyStore::ClientKeyStore() {}
17
18 ClientKeyStore::~ClientKeyStore() {}
19
20 // static
21 ClientKeyStore* ClientKeyStore::GetInstance() {
22 return Singleton<ClientKeyStore, LeakySingletonTraits<ClientKeyStore>>::get();
23 }
24
25 ClientKeyStore::ProviderHandle ClientKeyStore::CreateNewProvider() {
26 base::AutoLock auto_lock(lock_);
27 return ProviderHandle(next_free_provider_id_++);
28 }
29
30 void ClientKeyStore::RemoveProvider(ProviderHandle provider) {
31 base::AutoLock auto_lock(lock_);
32 certs_per_provider_.erase(provider.id);
33 }
34
35 void ClientKeyStore::SetCertificates(ProviderHandle provider,
36 CertsAndKeys* certs) {
37 {
38 base::AutoLock auto_lock(lock_);
39 CertsAndKeys& stored_certs = certs_per_provider_[provider.id];
40 stored_certs.swap(*certs);
41 }
42 certs->clear();
43 }
44
45 scoped_ptr<SSLPrivateKey> ClientKeyStore::FetchClientCertPrivateKey(
46 const X509Certificate* certificate) {
47 base::AutoLock auto_lock(lock_);
48 for (const auto& provider_and_certs : certs_per_provider_) {
49 const CertsAndKeys& certs_and_keys = provider_and_certs.second;
50 for (const auto& cert_and_key : certs_and_keys) {
51 if (certificate->Equals(cert_and_key.certificate.get()))
Ryan Sleevi 2015/08/08 00:14:22 This also seems quite inefficient; a linear scan.
pneubeck (no reviews) 2015/08/13 08:20:19 refactored. (I will do so in the implementation of
52 return cert_and_key.key_getter.Run();
53 }
54 }
55 return nullptr;
56 }
57
58 } // namespace net
OLDNEW
« net/ssl/client_key_store.h ('K') | « net/ssl/client_key_store.h ('k') | net/ssl/ssl_platform_key_nss.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698