Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1687)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/chromeos/cros/network_library.h

Issue 16946002: Resolve certificate references in ONC by PEM. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Fix trust update. Add a utils test. Remove X509 dependency from Shill parsing. Created 7 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« chrome/browser/chromeos/cros/native_network_parser.cc ('K') | « chrome/browser/chromeos/cros/network_constants.h ('k') | chrome/browser/chromeos/cros/network_library.cc » ('j') | chrome/browser/chromeos/cros/network_library.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/chromeos/cros/network_library.h
diff --git a/chrome/browser/chromeos/cros/network_library.h b/chrome/browser/chromeos/cros/network_library.h
index 8b4e2ba45f3dc334a19fb7b593a24a08362bbe9d..9d1bd0065bd17a77df958a17134634b63b09060f 100644
--- a/chrome/browser/chromeos/cros/network_library.h
+++ b/chrome/browser/chromeos/cros/network_library.h
@@ -9,8 +9,10 @@
#include <string>
#include <vector>
+#include "base/callback.h"
#include "base/compiler_specific.h"
#include "base/gtest_prod_util.h"
+#include "base/memory/ref_counted.h"
#include "base/memory/scoped_ptr.h"
#include "base/memory/singleton.h"
#include "base/memory/weak_ptr.h"
@@ -656,7 +658,9 @@ class VirtualNetwork : public Network {
const std::string& server_hostname() const { return server_hostname_; }
ProviderType provider_type() const { return provider_type_; }
- const std::string& ca_cert_nss() const { return ca_cert_nss_; }
+ const std::string& ca_cert_fingerprint() const {
+ return ca_cert_fingerprint_;
+ }
const std::string& psk_passphrase() const { return psk_passphrase_; }
bool psk_passphrase_required() const { return psk_passphrase_required_; }
const std::string& client_cert_id() const { return client_cert_id_; }
@@ -683,7 +687,7 @@ class VirtualNetwork : public Network {
bool IsUserPassphraseRequired() const;
// Public setters.
- void SetCACertNSS(const std::string& ca_cert_nss);
+ void SetCACertFingerprint(const std::string& ca_cert_fingerprint);
void SetL2TPIPsecPSKCredentials(const std::string& psk_passphrase,
const std::string& username,
const std::string& user_passphrase,
@@ -720,8 +724,8 @@ class VirtualNetwork : public Network {
void set_provider_type(ProviderType provider_type) {
provider_type_ = provider_type;
}
- void set_ca_cert_nss(const std::string& ca_cert_nss) {
- ca_cert_nss_ = ca_cert_nss;
+ void set_ca_cert_fingerprint(const std::string& ca_cert_fingerprint) {
+ ca_cert_fingerprint_ = ca_cert_fingerprint;
}
void set_psk_passphrase(const std::string& psk_passphrase) {
psk_passphrase_ = psk_passphrase;
@@ -761,8 +765,7 @@ class VirtualNetwork : public Network {
std::string server_hostname_;
ProviderType provider_type_;
- // NSS nickname for server CA certificate.
- std::string ca_cert_nss_;
+ std::string ca_cert_fingerprint_;
std::string psk_passphrase_;
bool psk_passphrase_required_;
// PKCS#11 ID for client certificate.
@@ -995,8 +998,8 @@ class WifiNetwork : public WirelessNetwork {
EAPMethod eap_method() const { return eap_method_; }
EAPPhase2Auth eap_phase_2_auth() const { return eap_phase_2_auth_; }
- const std::string& eap_server_ca_cert_nss_nickname() const {
- return eap_server_ca_cert_nss_nickname_; }
+ const std::string& eap_server_ca_cert_fingerprint() const {
+ return eap_server_ca_cert_fingerprint_; }
const std::string& eap_client_cert_pkcs11_id() const {
return eap_client_cert_pkcs11_id_; }
const bool eap_use_system_cas() const { return eap_use_system_cas_; }
@@ -1018,7 +1021,7 @@ class WifiNetwork : public WirelessNetwork {
// 802.1x properties
void SetEAPMethod(EAPMethod method);
void SetEAPPhase2Auth(EAPPhase2Auth auth);
- void SetEAPServerCaCertNssNickname(const std::string& nss_nickname);
+ void SetEAPServerCaCertFingerprint(const std::string& ca_cert_fingerprint);
void SetEAPClientCertPkcs11Id(const std::string& pkcs11_id);
void SetEAPUseSystemCAs(bool use_system_cas);
void SetEAPIdentity(const std::string& identity);
@@ -1079,9 +1082,9 @@ class WifiNetwork : public WirelessNetwork {
void set_eap_phase_2_auth(EAPPhase2Auth eap_phase_2_auth) {
eap_phase_2_auth_ = eap_phase_2_auth;
}
- void set_eap_server_ca_cert_nss_nickname(
- const std::string& eap_server_ca_cert_nss_nickname) {
- eap_server_ca_cert_nss_nickname_ = eap_server_ca_cert_nss_nickname;
+ void set_eap_server_ca_cert_fingerprint(
+ const std::string& eap_server_ca_cert_fingerprint) {
+ eap_server_ca_cert_fingerprint_ = eap_server_ca_cert_fingerprint;
}
void set_eap_client_cert_pkcs11_id(
const std::string& eap_client_cert_pkcs11_id) {
@@ -1126,7 +1129,7 @@ class WifiNetwork : public WirelessNetwork {
EAPMethod eap_method_;
EAPPhase2Auth eap_phase_2_auth_;
- std::string eap_server_ca_cert_nss_nickname_;
+ std::string eap_server_ca_cert_fingerprint_;
std::string eap_client_cert_pkcs11_id_;
bool eap_use_system_cas_;
std::string eap_identity_;
@@ -1564,7 +1567,7 @@ class NetworkLibrary {
~EAPConfigData();
EAPMethod method;
EAPPhase2Auth auth;
- std::string server_ca_cert_nss_nickname;
+ std::string server_ca_cert_fingerprint;
bool use_system_cas;
std::string client_cert_pkcs11_id;
std::string identity;
@@ -1584,7 +1587,7 @@ class NetworkLibrary {
VPNConfigData();
~VPNConfigData();
std::string psk;
- std::string server_ca_cert_nss_nickname;
+ std::string server_ca_cert_fingerprint;
std::string client_cert_pkcs11_id;
std::string username;
std::string user_passphrase;
@@ -1665,9 +1668,18 @@ class NetworkLibrary {
// changes.
virtual void SwitchToPreferredNetwork() = 0;
- // Load networks from an NetworkConfigurations list of ONC.
+ // For a Server or CA certificate reference |fingerprint| (hexadecimal encoded
+ // SHA1 fingerprint), returns the PEM encoding of the certificate. Returns an
+ // empty string if the reference cannot be resolved.
+ typedef base::Callback<std::string(const std::string& fingerprint)>
+ FingerprintToPEM;
+
+ // Load networks from a list of NetworkConfigurations of ONC. Calls
+ // |fingerprint_to_pem| to translate fingerprints of Server and CA
+ // certificates to their PEM encoding.
virtual void LoadOncNetworks(const base::ListValue& network_configs,
- onc::ONCSource source) = 0;
+ onc::ONCSource source,
+ const FingerprintToPEM& fingerprint_to_pem) = 0;
// This sets the active network for the network type. Note: priority order
// is unchanged (i.e. if a wifi network is set to active, but an ethernet
« chrome/browser/chromeos/cros/native_network_parser.cc ('K') | « chrome/browser/chromeos/cros/network_constants.h ('k') | chrome/browser/chromeos/cros/network_library.cc » ('j') | chrome/browser/chromeos/cros/network_library.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698