Chromium Code Reviews Chromium Code Reviews
Issue 596873002:
Remove SSLClientAuthHandler's RDH dependency. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master| Index: content/browser/ssl/ssl_client_auth_handler.cc |
| diff --git a/content/browser/ssl/ssl_client_auth_handler.cc b/content/browser/ssl/ssl_client_auth_handler.cc |
| index b7fe9f0a7fa4857c90074bcd7a04b07f69da8261..8fbc724a6f97cc4d04983ddbc116319db9154d9b 100644 |
| --- a/content/browser/ssl/ssl_client_auth_handler.cc |
| +++ b/content/browser/ssl/ssl_client_auth_handler.cc |
| @@ -5,77 +5,55 @@ |
| #include "content/browser/ssl/ssl_client_auth_handler.h" |
| #include "base/bind.h" |
| -#include "content/browser/loader/resource_dispatcher_host_impl.h" |
| #include "content/browser/loader/resource_request_info_impl.h" |
| #include "content/public/browser/browser_thread.h" |
| #include "content/public/browser/content_browser_client.h" |
| #include "net/cert/x509_certificate.h" |
| -#include "net/http/http_transaction_factory.h" |
| #include "net/ssl/client_cert_store.h" |
| #include "net/url_request/url_request.h" |
| -#include "net/url_request/url_request_context.h" |
| namespace content { |
| SSLClientAuthHandler::SSLClientAuthHandler( |
| scoped_ptr<net::ClientCertStore> client_cert_store, |
| net::URLRequest* request, |
| - net::SSLCertRequestInfo* cert_request_info) |
| + net::SSLCertRequestInfo* cert_request_info, |
| + const SSLClientAuthHandler::CertificateCallback& callback) |
| : request_(request), |
| - http_network_session_( |
| - request_->context()->http_transaction_factory()->GetSession()), |
| cert_request_info_(cert_request_info), |
| - client_cert_store_(client_cert_store.Pass()) { |
| + client_cert_store_(client_cert_store.Pass()), |
| + callback_(callback), |
| + weak_factory_(this) { |
| DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO)); |
| } |
| SSLClientAuthHandler::~SSLClientAuthHandler() { |
| - // If we were simply dropped, then act as if we selected no certificate. |
| - DoCertificateSelected(NULL); |
|
davidben
2014/09/23 21:22:02
If dropped, the consumer should know it's been can
|
| -} |
| - |
| -void SSLClientAuthHandler::OnRequestCancelled() { |
|
davidben
2014/09/23 21:22:02
This only ever happens right before destroying the
|
| - request_ = NULL; |
| } |
| void SSLClientAuthHandler::SelectCertificate() { |
| DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO)); |
| - DCHECK(request_); |
| if (client_cert_store_) { |
| client_cert_store_->GetClientCerts( |
| *cert_request_info_, |
| &cert_request_info_->client_certs, |
| - base::Bind(&SSLClientAuthHandler::DidGetClientCerts, this)); |
| + base::Bind(&SSLClientAuthHandler::DidGetClientCerts, |
| + weak_factory_.GetWeakPtr())); |
| } else { |
| DidGetClientCerts(); |
| } |
| } |
| -void SSLClientAuthHandler::CertificateSelected(net::X509Certificate* cert) { |
| - DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI)); |
| - |
| - VLOG(1) << this << " CertificateSelected " << cert; |
| - BrowserThread::PostTask( |
| - BrowserThread::IO, FROM_HERE, |
| - base::Bind( |
| - &SSLClientAuthHandler::DoCertificateSelected, this, |
| - make_scoped_refptr(cert))); |
| -} |
| - |
| void SSLClientAuthHandler::DidGetClientCerts() { |
| DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO)); |
| - // Request may have cancelled while we were getting client certs. |
| - if (!request_) |
| - return; |
| // Note that if |client_cert_store_| is NULL, we intentionally fall through to |
| // DoCertificateSelected. This is for platforms where the client cert matching |
| - // is not performed by Chrome, the platform can handle the cert matching |
| - // before showing the dialog. |
| + // is not performed by Chrome. Those platforms handle the cert matching before |
| + // showing the dialog. |
| if (client_cert_store_ && cert_request_info_->client_certs.empty()) { |
| // No need to query the user if there are no certs to choose from. |
| - DoCertificateSelected(NULL); |
| + CertificateSelected(NULL); |
| return; |
| } |
| @@ -83,43 +61,52 @@ void SSLClientAuthHandler::DidGetClientCerts() { |
| int render_frame_host_id; |
| if (!ResourceRequestInfo::ForRequest(request_)->GetAssociatedRenderFrame( |
| &render_process_host_id, |
| - &render_frame_host_id)) |
| + &render_frame_host_id)) { |
| NOTREACHED(); |
| + CertificateSelected(NULL); |
| + return; |
| + } |
| - // If the RVH does not exist by the time this task gets run, then the task |
| - // will be dropped and the scoped_refptr to SSLClientAuthHandler will go |
| - // away, so we do not leak anything. The destructor takes care of ensuring |
| - // the net::URLRequest always gets a response. |
|
davidben
2014/09/23 21:22:02
This comment was false. The ResourceLoader always
|
| BrowserThread::PostTask( |
| BrowserThread::UI, FROM_HERE, |
| - base::Bind( |
| - &SSLClientAuthHandler::DoSelectCertificate, this, |
| - render_process_host_id, render_frame_host_id)); |
| + base::Bind(&SSLClientAuthHandler::SelectCertificateOnUIThread, |
| + weak_factory_.GetWeakPtr(), |
| + render_process_host_id, render_frame_host_id, |
| + cert_request_info_)); |
| } |
| -void SSLClientAuthHandler::DoCertificateSelected(net::X509Certificate* cert) { |
| +// static |
| +void SSLClientAuthHandler::SelectCertificateOnUIThread( |
| + const base::WeakPtr<SSLClientAuthHandler>& handler, |
| + int render_process_host_id, |
| + int render_frame_host_id, |
| + net::SSLCertRequestInfo* cert_request_info) { |
| + DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI)); |
| + |
| + GetContentClient()->browser()->SelectClientCertificate( |
| + render_process_host_id, render_frame_host_id, cert_request_info, |
| + base::Bind(&SSLClientAuthHandler::CertificateSelectedOnUIThread, |
| + handler)); |
| +} |
| + |
| +// static |
| +void SSLClientAuthHandler::CertificateSelectedOnUIThread( |
| + const base::WeakPtr<SSLClientAuthHandler>& handler, |
| + net::X509Certificate* cert) { |
| + DCHECK(BrowserThread::CurrentlyOn(BrowserThread::UI)); |
| + |
| + BrowserThread::PostTask( |
| + BrowserThread::IO, FROM_HERE, |
| + base::Bind(&SSLClientAuthHandler::CertificateSelected, |
| + handler, make_scoped_refptr(cert))); |
| +} |
| + |
| +void SSLClientAuthHandler::CertificateSelected(net::X509Certificate* cert) { |
| VLOG(1) << this << " DoCertificateSelected " << cert; |
| DCHECK(BrowserThread::CurrentlyOn(BrowserThread::IO)); |
| - // request_ could have been NULLed if the request was cancelled while the |
| - // user was choosing a cert, or because we have already responded to the |
| - // certificate. |
| - if (request_) { |
| - request_->ContinueWithCertificate(cert); |
| - |
| - ResourceDispatcherHostImpl::Get()-> |
| - ClearSSLClientAuthHandlerForRequest(request_); |
| - request_ = NULL; |
| - } |
| -} |
| -void SSLClientAuthHandler::DoSelectCertificate( |
| - int render_process_host_id, int render_frame_host_id) { |
| - GetContentClient()->browser()->SelectClientCertificate( |
| - render_process_host_id, |
| - render_frame_host_id, |
| - http_network_session_, |
|
davidben
2014/09/23 21:22:02
Parameter removed in favor of pulling the BrowserC
|
| - cert_request_info_.get(), |
| - base::Bind(&SSLClientAuthHandler::CertificateSelected, this)); |
| + callback_.Run(cert); |
| + // |this| may be deleted at this point. |
| } |
| } // namespace content |
