Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(368)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/chromeos/platform_keys/platform_keys_nss.cc

Issue 323093003: Add the Sign-At-Most-Once restriction the enterprise.platformKeys API. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Addressed comments. Created 6 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/chromeos/platform_keys/platform_keys.h ('k') | chrome/browser/chromeos/platform_keys/platform_keys_service.h » ('j') | chrome/browser/chromeos/platform_keys/platform_keys_service.h » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/chromeos/platform_keys/platform_keys_nss.cc
diff --git a/chrome/browser/chromeos/platform_keys/platform_keys_nss.cc b/chrome/browser/chromeos/platform_keys/platform_keys_nss.cc
index 5493e181674be925363dc23b78c39d098cc63d9a..a81813e2f5c2d3a7ed3c8d4e28222346037f33b8 100644
--- a/chrome/browser/chromeos/platform_keys/platform_keys_nss.cc
+++ b/chrome/browser/chromeos/platform_keys/platform_keys_nss.cc
@@ -37,7 +37,7 @@ const char kErrorAlgorithmNotSupported[] = "Algorithm not supported.";
// The current maximal RSA modulus length that ChromeOS's TPM supports for key
// generation.
-const unsigned int kMaxRSAModulusLength = 2048;
+const unsigned int kMaxRSAModulusLengthBits = 2048;
}
namespace chromeos {
@@ -125,8 +125,8 @@ void GetCertDatabase(const std::string& token_id,
class GenerateRSAKeyState : public NSSOperationState {
public:
- GenerateRSAKeyState(unsigned int modulus_length,
- const GenerateKeyCallback& callback);
+ GenerateRSAKeyState(unsigned int modulus_length_bits,
+ const subtle::GenerateKeyCallback& callback);
virtual ~GenerateRSAKeyState() {}
virtual void OnError(const tracked_objects::Location& from,
@@ -141,18 +141,18 @@ class GenerateRSAKeyState : public NSSOperationState {
from, base::Bind(callback_, public_key_spki_der, error_message));
}
- unsigned int modulus_length_;
+ unsigned int modulus_length_bits_;
private:
// Must be called on origin thread, use CallBack() therefore.
- GenerateKeyCallback callback_;
+ subtle::GenerateKeyCallback callback_;
};
class SignState : public NSSOperationState {
public:
SignState(const std::string& public_key,
const std::string& data,
- const SignCallback& callback);
+ const subtle::SignCallback& callback);
virtual ~SignState() {}
virtual void OnError(const tracked_objects::Location& from,
@@ -172,7 +172,7 @@ class SignState : public NSSOperationState {
private:
// Must be called on origin thread, use CallBack() therefore.
- SignCallback callback_;
+ subtle::SignCallback callback_;
};
class GetCertificatesState : public NSSOperationState {
@@ -251,14 +251,15 @@ NSSOperationState::NSSOperationState()
: origin_task_runner_(base::ThreadTaskRunnerHandle::Get()) {
}
-GenerateRSAKeyState::GenerateRSAKeyState(unsigned int modulus_length,
- const GenerateKeyCallback& callback)
- : modulus_length_(modulus_length), callback_(callback) {
+GenerateRSAKeyState::GenerateRSAKeyState(
+ unsigned int modulus_length_bits,
+ const subtle::GenerateKeyCallback& callback)
+ : modulus_length_bits_(modulus_length_bits), callback_(callback) {
}
SignState::SignState(const std::string& public_key,
const std::string& data,
- const SignCallback& callback)
+ const subtle::SignCallback& callback)
: public_key_(public_key), data_(data), callback_(callback) {
}
@@ -284,7 +285,7 @@ RemoveCertificateState::RemoveCertificateState(
void GenerateRSAKeyOnWorkerThread(scoped_ptr<GenerateRSAKeyState> state) {
scoped_ptr<crypto::RSAPrivateKey> rsa_key(
crypto::RSAPrivateKey::CreateSensitive(state->slot_.get(),
- state->modulus_length_));
+ state->modulus_length_bits_));
if (!rsa_key) {
LOG(ERROR) << "Couldn't create key.";
state->OnError(FROM_HERE, kErrorInternal);
@@ -468,15 +469,17 @@ void RemoveCertificateWithDB(scoped_ptr<RemoveCertificateState> state,
} // namespace
+namespace subtle {
+
void GenerateRSAKey(const std::string& token_id,
- unsigned int modulus_length,
+ unsigned int modulus_length_bits,
const GenerateKeyCallback& callback,
Profile* profile) {
DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI));
scoped_ptr<GenerateRSAKeyState> state(
- new GenerateRSAKeyState(modulus_length, callback));
+ new GenerateRSAKeyState(modulus_length_bits, callback));
- if (modulus_length > kMaxRSAModulusLength) {
+ if (modulus_length_bits > kMaxRSAModulusLengthBits) {
state->OnError(FROM_HERE, kErrorAlgorithmNotSupported);
return;
}
@@ -508,6 +511,8 @@ void Sign(const std::string& token_id,
state_ptr);
}
+} // namespace subtle
+
void GetCertificates(const std::string& token_id,
const GetCertificatesCallback& callback,
Profile* profile) {
« no previous file with comments | « chrome/browser/chromeos/platform_keys/platform_keys.h ('k') | chrome/browser/chromeos/platform_keys/platform_keys_service.h » ('j') | chrome/browser/chromeos/platform_keys/platform_keys_service.h » ('J')

Powered by Google App Engine
This is Rietveld 408576698