Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(4970)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.cc

Issue 2751423004: Move NetworkingPrivateDelegate::CryptoVerify to networking_cast_private (Closed)
Patch Set: . Created 3 years, 9 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.h ('k') | chrome/browser/extensions/api/networking_cast_private/networking_cast_private_api.cc » ('j') | chrome/browser/extensions/api/networking_private/networking_private_apitest.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.cc
diff --git a/chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.cc b/chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.cc
index f6fb067730455d39523c14b4a3f47ee5cc2d0ad1..bd58925d6814c68b6434fb07850b393a1e9ae1f5 100644
--- a/chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.cc
+++ b/chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.cc
@@ -4,17 +4,171 @@
#include "chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.h"
+#include <stdint.h>
+
+#include "base/base64.h"
+#include "base/bind.h"
+#include "base/bind_helpers.h"
#include "base/callback.h"
-#include "chrome/browser/extensions/api/networking_private/networking_private_verify_delegate_factory_impl.h"
-#include "extensions/common/api/networking_private.h"
+#include "base/memory/ptr_util.h"
+#include "base/sequenced_task_runner.h"
+#include "base/strings/string_number_conversions.h"
+#include "base/strings/string_util.h"
+#include "base/threading/sequenced_worker_pool.h"
+#include "base/threading/thread_task_runner_handle.h"
+#include "chrome/browser/extensions/api/networking_private/networking_private_credentials_getter.h"
+#include "chrome/browser/extensions/api/networking_private/networking_private_crypto.h"
+#include "content/public/browser/browser_thread.h"
namespace extensions {
namespace {
+const char kCryptoVerifySequenceTokenName[] = "CryptoVerify";
+
+const char kErrorEncryptionError[] = "Error.EncryptionError";
+
ChromeNetworkingCastPrivateDelegate::FactoryCallback* g_factory_callback =
nullptr;
+enum class VerificationResult { SUCCESS, VERIFY_FAILURE, DECODE_FAILURE };
+
+// Called from a blocking pool task runner. Tries to decode and verify the
+// provided credentials.
+VerificationResult DecodeAndVerifyCredentials(
+ const NetworkingCastPrivateDelegate::Credentials& credentials) {
+ std::string decoded_signed_data;
+ if (!base::Base64Decode(credentials.signed_data(), &decoded_signed_data)) {
+ LOG(ERROR) << "Failed to decode signed data";
+ return VerificationResult::DECODE_FAILURE;
+ }
+
+ if (networking_private_crypto::VerifyCredentials(
+ credentials.certificate(), credentials.intermediate_certificates(),
+ decoded_signed_data, credentials.unsigned_data(),
+ credentials.device_bssid())) {
+ return VerificationResult::SUCCESS;
+ }
+
+ return VerificationResult::VERIFY_FAILURE;
+}
+
+VerificationResult RunDecodeAndVerifyCredentials(
+ std::unique_ptr<NetworkingCastPrivateDelegate::Credentials> credentials) {
+ return DecodeAndVerifyCredentials(*credentials);
+}
+
+void VerifyDestinationCompleted(
+ const NetworkingCastPrivateDelegate::VerifiedCallback& success_callback,
+ const NetworkingCastPrivateDelegate::FailureCallback& failure_callback,
+ VerificationResult result) {
+ DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
+ if (result == VerificationResult::DECODE_FAILURE) {
+ failure_callback.Run(kErrorEncryptionError);
+ return;
+ }
+
+ success_callback.Run(result == VerificationResult::SUCCESS);
+}
+
+// Called from a blocking pool task runner. Returns |data| encoded using
+// |credentials| on success, or an empty string on failure.
+std::string RunVerifyAndEncryptData(
+ const std::string& data,
+ std::unique_ptr<NetworkingCastPrivateDelegate::Credentials> credentials) {
+ if (DecodeAndVerifyCredentials(*credentials) != VerificationResult::SUCCESS)
+ return std::string();
+
+ std::string decoded_public_key;
+ if (!base::Base64Decode(credentials->public_key(), &decoded_public_key)) {
+ LOG(ERROR) << "Failed to decode public key";
+ return std::string();
+ }
+
+ std::vector<uint8_t> public_key_data(decoded_public_key.begin(),
+ decoded_public_key.end());
+ std::vector<uint8_t> ciphertext;
+ if (!networking_private_crypto::EncryptByteString(public_key_data, data,
+ &ciphertext)) {
+ LOG(ERROR) << "Failed to encrypt data";
+ return std::string();
+ }
+
+ std::string base64_encoded_ciphertext;
+ base::Base64Encode(
+ base::StringPiece(reinterpret_cast<const char*>(ciphertext.data()),
+ ciphertext.size()),
+ &base64_encoded_ciphertext);
+ return base64_encoded_ciphertext;
+}
+
+void VerifyAndEncryptDataCompleted(
+ const NetworkingCastPrivateDelegate::DataCallback& success_callback,
+ const NetworkingCastPrivateDelegate::FailureCallback& failure_callback,
+ const std::string& encrypted_data) {
+ DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
+ if (encrypted_data.empty())
+ failure_callback.Run(kErrorEncryptionError);
+ else
+ success_callback.Run(encrypted_data);
+}
+
+// Called when NetworkingPrivateCredentialsGetter completes (from an arbitrary
+// thread). Posts the result to the UI thread.
+void CredentialsGetterCompleted(
+ const NetworkingCastPrivateDelegate::DataCallback& success_callback,
+ const NetworkingCastPrivateDelegate::FailureCallback& failure_callback,
+ const std::string& key_data,
+ const std::string& error) {
+ if (!error.empty()) {
+ content::BrowserThread::PostTask(content::BrowserThread::UI, FROM_HERE,
+ base::Bind(failure_callback, error));
+ } else {
+ content::BrowserThread::PostTask(content::BrowserThread::UI, FROM_HERE,
+ base::Bind(success_callback, key_data));
+ }
+}
+
+// Called from a blocking pool task runner. Returns true if
+// NetworkingPrivateCredentialsGetter is successfully started (which will
+// invoke the appropriate callback when completed), or false if unable
+// to start the getter (credentials or public key decode failed).
+bool RunVerifyAndEncryptCredentials(
+ const std::string& guid,
+ std::unique_ptr<NetworkingCastPrivateDelegate::Credentials> credentials,
+ const NetworkingCastPrivateDelegate::DataCallback& success_callback,
+ const NetworkingCastPrivateDelegate::FailureCallback& failure_callback) {
+ if (DecodeAndVerifyCredentials(*credentials) != VerificationResult::SUCCESS)
+ return false;
+
+ std::string decoded_public_key;
+ if (!base::Base64Decode(credentials->public_key(), &decoded_public_key)) {
+ LOG(ERROR) << "Failed to decode public key";
+ return false;
+ }
+
+ // Start getting credentials. CredentialsGetterCompleted will be called on
+ // completion. On Windows it will be called from a different thread after
+ // |credentials_getter| is deleted.
+ std::unique_ptr<NetworkingPrivateCredentialsGetter> credentials_getter(
+ NetworkingPrivateCredentialsGetter::Create());
+ credentials_getter->Start(guid, decoded_public_key,
+ base::Bind(&CredentialsGetterCompleted,
+ success_callback, failure_callback));
+ return true;
+}
+
+void VerifyAndEncryptCredentialsCompleted(
+ const NetworkingCastPrivateDelegate::FailureCallback& failure_callback,
+ bool succeeded) {
+ DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
+ // If VerifyAndEncryptCredentials succeeded, then the appropriate callback
+ // will be triggered from CredentialsGetterCompleted.
+ if (succeeded)
+ return;
+ failure_callback.Run(kErrorEncryptionError);
+}
+
} // namespace
std::unique_ptr<ChromeNetworkingCastPrivateDelegate>
@@ -22,8 +176,7 @@ ChromeNetworkingCastPrivateDelegate::Create() {
if (g_factory_callback)
return g_factory_callback->Run();
return std::unique_ptr<ChromeNetworkingCastPrivateDelegate>(
- new ChromeNetworkingCastPrivateDelegate(
- NetworkingPrivateVerifyDelegateFactoryImpl().CreateDelegate()));
+ new ChromeNetworkingCastPrivateDelegate);
}
void ChromeNetworkingCastPrivateDelegate::SetFactoryCallbackForTest(
@@ -31,36 +184,52 @@ void ChromeNetworkingCastPrivateDelegate::SetFactoryCallbackForTest(
g_factory_callback = factory_callback;
}
-ChromeNetworkingCastPrivateDelegate::ChromeNetworkingCastPrivateDelegate(
- std::unique_ptr<NetworkingPrivateDelegate::VerifyDelegate> crypto_verify)
- : crypto_verify_(std::move(crypto_verify)) {}
+ChromeNetworkingCastPrivateDelegate::ChromeNetworkingCastPrivateDelegate() {
+ base::SequencedWorkerPool::SequenceToken sequence_token =
+ content::BrowserThread::GetBlockingPool()->GetNamedSequenceToken(
+ kCryptoVerifySequenceTokenName);
+ blocking_pool_task_runner_ =
+ content::BrowserThread::GetBlockingPool()
+ ->GetSequencedTaskRunnerWithShutdownBehavior(
+ sequence_token, base::SequencedWorkerPool::SKIP_ON_SHUTDOWN);
stevenjb 2017/03/22 20:26:01 I think that we are supposed to be using base::Pos
tbarzic 2017/03/23 01:29:40 Oh yeah.. missed that. It doesn't seem that the t
stevenjb 2017/03/23 18:18:34 Agreed.
+}
ChromeNetworkingCastPrivateDelegate::~ChromeNetworkingCastPrivateDelegate() {}
void ChromeNetworkingCastPrivateDelegate::VerifyDestination(
- const api::networking_private::VerificationProperties& properties,
+ std::unique_ptr<Credentials> credentials,
const VerifiedCallback& success_callback,
const FailureCallback& failure_callback) {
- crypto_verify_->VerifyDestination(properties, success_callback,
- failure_callback);
+ base::PostTaskAndReplyWithResult(
+ blocking_pool_task_runner_.get(), FROM_HERE,
+ base::Bind(&RunDecodeAndVerifyCredentials, base::Passed(&credentials)),
+ base::Bind(&VerifyDestinationCompleted, success_callback,
+ failure_callback));
}
void ChromeNetworkingCastPrivateDelegate::VerifyAndEncryptCredentials(
const std::string& guid,
- const api::networking_private::VerificationProperties& properties,
+ std::unique_ptr<Credentials> credentials,
const DataCallback& success_callback,
const FailureCallback& failure_callback) {
- crypto_verify_->VerifyAndEncryptCredentials(
- guid, properties, success_callback, failure_callback);
+ base::PostTaskAndReplyWithResult(
+ blocking_pool_task_runner_.get(), FROM_HERE,
+ base::Bind(&RunVerifyAndEncryptCredentials, guid,
+ base::Passed(&credentials), success_callback,
+ failure_callback),
+ base::Bind(&VerifyAndEncryptCredentialsCompleted, failure_callback));
}
void ChromeNetworkingCastPrivateDelegate::VerifyAndEncryptData(
const std::string& data,
- const api::networking_private::VerificationProperties& properties,
+ std::unique_ptr<Credentials> credentials,
const DataCallback& success_callback,
const FailureCallback& failure_callback) {
- crypto_verify_->VerifyAndEncryptData(properties, data, success_callback,
- failure_callback);
+ base::PostTaskAndReplyWithResult(
+ blocking_pool_task_runner_.get(), FROM_HERE,
+ base::Bind(&RunVerifyAndEncryptData, data, base::Passed(&credentials)),
+ base::Bind(&VerifyAndEncryptDataCompleted, success_callback,
+ failure_callback));
}
} // namespace extensions
« no previous file with comments | « chrome/browser/extensions/api/networking_cast_private/chrome_networking_cast_private_delegate.h ('k') | chrome/browser/extensions/api/networking_cast_private/networking_cast_private_api.cc » ('j') | chrome/browser/extensions/api/networking_private/networking_private_apitest.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698