Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(554)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/profiles/profile_io_data.cc

Issue 137553004: NSS Cros multiprofile: trust roots added by a profile shouldn't apply to other profiles. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: handle additional trust roots, add TestRootCertsTest.Contains, remove instantiated certtests from c… Created 6 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« chrome/browser/io_thread.cc ('K') | « chrome/browser/io_thread.cc ('k') | chrome/chrome_browser_chromeos.gypi » ('j') | net/cert/cert_verify_proc_nss.h » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/profiles/profile_io_data.cc
diff --git a/chrome/browser/profiles/profile_io_data.cc b/chrome/browser/profiles/profile_io_data.cc
index 6e00398f8c9c295b45af38a05a01f6373cf3cc84..f4b8d30d77a944d200877f6e4d757d8b9ddaa043 100644
--- a/chrome/browser/profiles/profile_io_data.cc
+++ b/chrome/browser/profiles/profile_io_data.cc
@@ -94,6 +94,7 @@
#include "chrome/browser/chromeos/drive/drive_protocol_handler.h"
#include "chrome/browser/chromeos/login/user.h"
#include "chrome/browser/chromeos/login/user_manager.h"
+#include "chrome/browser/chromeos/net/cert_verify_proc_chromeos.h"
#include "chrome/browser/chromeos/policy/policy_cert_service.h"
#include "chrome/browser/chromeos/policy/policy_cert_service_factory.h"
#include "chrome/browser/chromeos/policy/policy_cert_verifier.h"
@@ -103,6 +104,7 @@
#include "chromeos/settings/cros_settings_names.h"
#include "crypto/nss_util.h"
#include "crypto/nss_util_internal.h"
+#include "net/cert/multi_threaded_cert_verifier.h"
#include "net/ssl/client_cert_store_chromeos.h"
#endif // defined(OS_CHROMEOS)
@@ -960,14 +962,20 @@ void ProfileIOData::Init(content::ProtocolHandlerMap* protocol_handlers) const {
#endif
#if defined(OS_CHROMEOS)
+ username_hash_ = profile_params_->username_hash;
+ crypto::ScopedPK11Slot public_slot =
+ crypto::GetPublicSlotForChromeOSUser(username_hash_);
+ // Private slot won't be ready by this point, just pass NULL. It shouldn't be
+ // necessary for cert trust purposes anyway.
+ scoped_refptr<net::CertVerifyProc> verify_proc =
+ new chromeos::CertVerifyProcChromeOS(public_slot.Pass());
if (cert_verifier_) {
- cert_verifier_->InitializeOnIOThread();
+ cert_verifier_->InitializeOnIOThread(verify_proc.get());
main_request_context_->set_cert_verifier(cert_verifier_.get());
} else {
main_request_context_->set_cert_verifier(
- io_thread_globals->cert_verifier.get());
+ new net::MultiThreadedCertVerifier(verify_proc.get()));
Ryan Sleevi 2014/01/30 05:27:40 Why are you not using the io_thread_globals here?
mattm 2014/02/04 05:31:21 Even if it's not using a PolicyCertVerifier for so
}
- username_hash_ = profile_params_->username_hash;
#else
main_request_context_->set_cert_verifier(
io_thread_globals->cert_verifier.get());
« chrome/browser/io_thread.cc ('K') | « chrome/browser/io_thread.cc ('k') | chrome/chrome_browser_chromeos.gypi » ('j') | net/cert/cert_verify_proc_nss.h » ('J')

Powered by Google App Engine
This is Rietveld 408576698