Chromium Code Reviews Chromium Code Reviews
Issue 465133004:
Remove DenyCertForHost from SSLHostStateDelegate API. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| Index: chrome/browser/ssl/chrome_ssl_host_state_delegate.cc |
| diff --git a/chrome/browser/ssl/chrome_ssl_host_state_delegate.cc b/chrome/browser/ssl/chrome_ssl_host_state_delegate.cc |
| index c306b22f0a9295b7f8e582a8e977fa859be4bc42..86ac4bbec0a79bf0fb1cfe9c3a1a7c29bf300a54 100644 |
| --- a/chrome/browser/ssl/chrome_ssl_host_state_delegate.cc |
| +++ b/chrome/browser/ssl/chrome_ssl_host_state_delegate.cc |
| @@ -38,7 +38,7 @@ const char kRememberCertificateErrorDecisionsFieldTrialDefaultGroup[] = |
| "Default"; |
| const char kRememberCertificateErrorDecisionsFieldTrialLengthParam[] = "length"; |
| -// Keys for the per-site error + certificate finger to judgement content |
| +// Keys for the per-site error + certificate finger to judgment content |
| // settings map. |
| const char kSSLCertDecisionCertErrorMapKey[] = "cert_exceptions_map"; |
| const char kSSLCertDecisionExpirationTimeKey[] = "decision_expiration_time"; |
| @@ -46,12 +46,6 @@ const char kSSLCertDecisionVersionKey[] = "version"; |
| const int kDefaultSSLCertDecisionVersion = 1; |
| -// Closes all idle network connections for the given URLRequestContext. This is |
| -// a big hammer and should be wielded with extreme caution as it can have a big, |
| -// negative impact on network performance. In this case, it is used by |
| -// RevokeUserDecisionsHard, which should only be called by rare, user initiated |
| -// events. See the comment before RevokeUserDecisionsHard implementation for |
| -// more information. |
| void CloseIdleConnections( |
| scoped_refptr<net::URLRequestContextGetter> url_request_context_getter) { |
| url_request_context_getter-> |
| @@ -262,16 +256,43 @@ ChromeSSLHostStateDelegate::~ChromeSSLHostStateDelegate() { |
| Clear(); |
| } |
| -void ChromeSSLHostStateDelegate::DenyCert(const std::string& host, |
| - net::X509Certificate* cert, |
| - net::CertStatus error) { |
| - ChangeCertPolicy(host, cert, error, net::CertPolicy::DENIED); |
| -} |
| - |
| void ChromeSSLHostStateDelegate::AllowCert(const std::string& host, |
| net::X509Certificate* cert, |
| net::CertStatus error) { |
| - ChangeCertPolicy(host, cert, error, net::CertPolicy::ALLOWED); |
| + GURL url = GetSecureGURLForHost(host); |
| + const ContentSettingsPattern pattern = |
| + ContentSettingsPattern::FromURLNoWildcard(url); |
| + HostContentSettingsMap* map = profile_->GetHostContentSettingsMap(); |
| + scoped_ptr<base::Value> value(map->GetWebsiteSetting( |
| + url, url, CONTENT_SETTINGS_TYPE_SSL_CERT_DECISIONS, std::string(), NULL)); |
| + |
| + if (!value.get() || !value->IsType(base::Value::TYPE_DICTIONARY)) |
| + value.reset(new base::DictionaryValue()); |
| + |
| + base::DictionaryValue* dict; |
| + bool success = value->GetAsDictionary(&dict); |
| + DCHECK(success); |
| + |
| + bool expired_previous_decision; // unused value in this function |
| + base::DictionaryValue* cert_dict = GetValidCertDecisionsDict( |
| + dict, CreateDictionaryEntries, &expired_previous_decision); |
| + // If a a valid certificate dictionary cannot be extracted from the content |
| + // setting, that means it's in an unknown format. Unfortunately, there's |
| + // nothing to be done in that case, so a silent fail is the only option. |
| + if (!cert_dict) |
| + return; |
| + |
| + dict->SetIntegerWithoutPathExpansion(kSSLCertDecisionVersionKey, |
| + kDefaultSSLCertDecisionVersion); |
| + cert_dict->SetIntegerWithoutPathExpansion(GetKey(cert, error), ALLOWED); |
| + |
| + // The map takes ownership of the value, so it is released in the call to |
| + // SetWebsiteSetting. |
| + map->SetWebsiteSetting(pattern, |
| + pattern, |
| + CONTENT_SETTINGS_TYPE_SSL_CERT_DECISIONS, |
| + std::string(), |
| + value.release()); |
| } |
| void ChromeSSLHostStateDelegate::Clear() { |
| @@ -279,11 +300,11 @@ void ChromeSSLHostStateDelegate::Clear() { |
| CONTENT_SETTINGS_TYPE_SSL_CERT_DECISIONS); |
| } |
| -net::CertPolicy::Judgment ChromeSSLHostStateDelegate::QueryPolicy( |
| - const std::string& host, |
| - net::X509Certificate* cert, |
| - net::CertStatus error, |
| - bool* expired_previous_decision) { |
| +content::SSLHostStateDelegate::CertJudgment |
| +ChromeSSLHostStateDelegate::QueryPolicy(const std::string& host, |
| + net::X509Certificate* cert, |
| + net::CertStatus error, |
| + bool* expired_previous_decision) { |
| HostContentSettingsMap* map = profile_->GetHostContentSettingsMap(); |
| GURL url = GetSecureGURLForHost(host); |
| scoped_ptr<base::Value> value(map->GetWebsiteSetting( |
| @@ -293,7 +314,7 @@ net::CertPolicy::Judgment ChromeSSLHostStateDelegate::QueryPolicy( |
| // full query. |
| *expired_previous_decision = false; |
| if (!value.get() || !value->IsType(base::Value::TYPE_DICTIONARY)) |
| - return net::CertPolicy::UNKNOWN; |
| + return DENIED; |
| base::DictionaryValue* dict; // Owned by value |
| int policy_decision; |
| @@ -306,24 +327,23 @@ net::CertPolicy::Judgment ChromeSSLHostStateDelegate::QueryPolicy( |
| if (!cert_error_dict) { |
| // This revoke is necessary to clear any old expired setting that may |
| // lingering in the case that an old decision expried. |
|
felt
2014/09/05 07:13:18
nit: "setting that may be lingering"
jww
2014/09/05 17:03:46
Done.
|
| - RevokeUserDecisions(host); |
| - return net::CertPolicy::UNKNOWN; |
| + RevokeUserAllowExceptions(host); |
| + return DENIED; |
| } |
| success = cert_error_dict->GetIntegerWithoutPathExpansion(GetKey(cert, error), |
| &policy_decision); |
| // If a policy decision was successfully retrieved and it's a valid value of |
| - // ALLOWED or DENIED, return the valid value. Otherwise, return UNKNOWN. |
| - if (success && policy_decision == net::CertPolicy::Judgment::ALLOWED) |
| - return net::CertPolicy::Judgment::ALLOWED; |
| - else if (success && policy_decision == net::CertPolicy::Judgment::DENIED) |
| - return net::CertPolicy::Judgment::DENIED; |
| + // ALLOWED, return the valid value. Otherwise, return DENIED. |
| + if (success && policy_decision == ALLOWED) |
| + return ALLOWED; |
| - return net::CertPolicy::Judgment::UNKNOWN; |
| + return DENIED; |
| } |
| -void ChromeSSLHostStateDelegate::RevokeUserDecisions(const std::string& host) { |
| +void ChromeSSLHostStateDelegate::RevokeUserAllowExceptions( |
| + const std::string& host) { |
| GURL url = GetSecureGURLForHost(host); |
| const ContentSettingsPattern pattern = |
| ContentSettingsPattern::FromURLNoWildcard(url); |
| @@ -348,19 +368,20 @@ void ChromeSSLHostStateDelegate::RevokeUserDecisions(const std::string& host) { |
| // showing the interstitial. We probably need to introduce into the networking |
| // stack a way revoke SSLConfig's allowed_bad_certs lists per socket. |
| // |
| -// For now, RevokeUserDecisionsHard is our solution for the rare case where it |
| -// is necessary to revoke the preferences immediately. It does so by flushing |
| -// idle sockets. |
| -void ChromeSSLHostStateDelegate::RevokeUserDecisionsHard( |
| +// For now, RevokeUserAllowExceptionsHard is our solution for the rare case |
| +// where it is necessary to revoke the preferences immediately. It does so by |
| +// flushing idle sockets, thus it is a big hammer and should be wielded with |
| +// extreme caution as it can have a big, negative impact on network performance. |
| +void ChromeSSLHostStateDelegate::RevokeUserAllowExceptionsHard( |
| const std::string& host) { |
| - RevokeUserDecisions(host); |
| + RevokeUserAllowExceptions(host); |
| scoped_refptr<net::URLRequestContextGetter> getter( |
| profile_->GetRequestContext()); |
| profile_->GetRequestContext()->GetNetworkTaskRunner()->PostTask( |
| FROM_HERE, base::Bind(&CloseIdleConnections, getter)); |
| } |
| -bool ChromeSSLHostStateDelegate::HasUserDecision(const std::string& host) { |
| +bool ChromeSSLHostStateDelegate::HasAllowException(const std::string& host) { |
| GURL url = GetSecureGURLForHost(host); |
| const ContentSettingsPattern pattern = |
| ContentSettingsPattern::FromURLNoWildcard(url); |
| @@ -379,8 +400,7 @@ bool ChromeSSLHostStateDelegate::HasUserDecision(const std::string& host) { |
| for (base::DictionaryValue::Iterator it(*dict); !it.IsAtEnd(); it.Advance()) { |
| int policy_decision; // Owned by dict |
| success = it.value().GetAsInteger(&policy_decision); |
| - if (success && (static_cast<net::CertPolicy::Judgment>(policy_decision) != |
| - net::CertPolicy::UNKNOWN)) |
| + if (success && (static_cast<CertJudgment>(policy_decision) == ALLOWED)) |
| return true; |
| } |
| @@ -400,44 +420,3 @@ bool ChromeSSLHostStateDelegate::DidHostRunInsecureContent( |
| void ChromeSSLHostStateDelegate::SetClock(scoped_ptr<base::Clock> clock) { |
| clock_.reset(clock.release()); |
| } |
| - |
| -void ChromeSSLHostStateDelegate::ChangeCertPolicy( |
| - const std::string& host, |
| - net::X509Certificate* cert, |
| - net::CertStatus error, |
| - net::CertPolicy::Judgment judgment) { |
| - GURL url = GetSecureGURLForHost(host); |
| - const ContentSettingsPattern pattern = |
| - ContentSettingsPattern::FromURLNoWildcard(url); |
| - HostContentSettingsMap* map = profile_->GetHostContentSettingsMap(); |
| - scoped_ptr<base::Value> value(map->GetWebsiteSetting( |
| - url, url, CONTENT_SETTINGS_TYPE_SSL_CERT_DECISIONS, std::string(), NULL)); |
| - |
| - if (!value.get() || !value->IsType(base::Value::TYPE_DICTIONARY)) |
| - value.reset(new base::DictionaryValue()); |
| - |
| - base::DictionaryValue* dict; |
| - bool success = value->GetAsDictionary(&dict); |
| - DCHECK(success); |
| - |
| - bool expired_previous_decision; // unused value in this function |
| - base::DictionaryValue* cert_dict = GetValidCertDecisionsDict( |
| - dict, CreateDictionaryEntries, &expired_previous_decision); |
| - // If a a valid certificate dictionary cannot be extracted from the content |
| - // setting, that means it's in an unknown format. Unfortunately, there's |
| - // nothing to be done in that case, so a silent fail is the only option. |
| - if (!cert_dict) |
| - return; |
| - |
| - dict->SetIntegerWithoutPathExpansion(kSSLCertDecisionVersionKey, |
| - kDefaultSSLCertDecisionVersion); |
| - cert_dict->SetIntegerWithoutPathExpansion(GetKey(cert, error), judgment); |
| - |
| - // The map takes ownership of the value, so it is released in the call to |
| - // SetWebsiteSetting. |
| - map->SetWebsiteSetting(pattern, |
| - pattern, |
| - CONTENT_SETTINGS_TYPE_SSL_CERT_DECISIONS, |
| - std::string(), |
| - value.release()); |
| -} |
