Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(958)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/chromeos/policy/network_configuration_updater_impl_cros.cc

Issue 16946002: Resolve certificate references in ONC by PEM. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Fix trust update. Add a utils test. Remove X509 dependency from Shill parsing. Created 7 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« chrome/browser/chromeos/policy/network_configuration_updater_impl.cc ('K') | « chrome/browser/chromeos/policy/network_configuration_updater_impl.cc ('k') | chrome/browser/chromeos/policy/network_configuration_updater_impl_cros_unittest.cc » ('j') | chrome/browser/ui/webui/net_internals/net_internals_ui.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/chromeos/policy/network_configuration_updater_impl_cros.cc
diff --git a/chrome/browser/chromeos/policy/network_configuration_updater_impl_cros.cc b/chrome/browser/chromeos/policy/network_configuration_updater_impl_cros.cc
index 41a998699e25b29d85023c347ab252eda94190bf..d814f4bb39fa3f01b4a4c447da8ab46c5959eb22 100644
--- a/chrome/browser/chromeos/policy/network_configuration_updater_impl_cros.cc
+++ b/chrome/browser/chromeos/policy/network_configuration_updater_impl_cros.cc
@@ -165,11 +165,30 @@ void NetworkConfigurationUpdaterImplCros::ApplyNetworkConfiguration(
ParseAndValidateOncForImport(
onc_blob, onc_source, "", &network_configs, &certificates);
- network_library_->LoadOncNetworks(network_configs, onc_source);
-
+ chromeos::CertificateHandler::CertsByGUID imported_server_and_ca_certs;
scoped_ptr<net::CertificateList> web_trust_certs(new net::CertificateList);
certificate_handler_->ImportCertificates(
- certificates, onc_source, web_trust_certs.get());
+ certificates, onc_source, web_trust_certs.get(),
+ &imported_server_and_ca_certs);
+
+ if (!chromeos::onc::ResolveServerCertRefsInNetworks(
+ imported_server_and_ca_certs, &network_configs)) {
+ LOG(ERROR) << "Some certificate references in the ONC policy for source "
+ << chromeos::onc::GetSourceAsString(onc_source)
+ << " could not be resolved.";
Greg Spencer (Chromium) 2013/06/27 20:15:47 Same comment here re: failure.
pneubeck (no reviews) 2013/06/28 09:41:03 Ditto.
+ }
+
+ net::CertificateList imported_server_and_ca_certs_list;
+ for (chromeos::CertificateHandler::CertsByGUID::iterator it =
+ imported_server_and_ca_certs.begin();
+ it != imported_server_and_ca_certs.end(); ++it) {
+ imported_server_and_ca_certs_list.push_back(it->second);
+ }
+ network_library_->LoadOncNetworks(
+ network_configs,
+ onc_source,
+ base::Bind(&chromeos::onc::GetPEMEncodedCertFromFingerprint,
+ imported_server_and_ca_certs_list));
if (onc_source == chromeos::onc::ONC_SOURCE_USER_POLICY)
SetTrustAnchors(web_trust_certs.Pass());
« chrome/browser/chromeos/policy/network_configuration_updater_impl.cc ('K') | « chrome/browser/chromeos/policy/network_configuration_updater_impl.cc ('k') | chrome/browser/chromeos/policy/network_configuration_updater_impl_cros_unittest.cc » ('j') | chrome/browser/ui/webui/net_internals/net_internals_ui.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698