components/wifi_sync/wifi_credential.cc - Issue 709683004: components: add wifi_sync component

Side by Side Diff: components/wifi_sync/wifi_credential.cc

Issue 709683004: components: add wifi_sync component (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@submit-1-security-class

Patch Set: address style issues from stevenjb's review of PS9 Created 6 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

« components/wifi_sync/wifi_credential.h ('K') | « components/wifi_sync/wifi_credential.h ('k') | components/wifi_sync/wifi_credential_syncable_service.h » ('j') | components/wifi_sync/wifi_credential_syncable_service.h » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

OLD	NEW
(Empty)
	1 // Copyright 2014 The Chromium Authors. All rights reserved.

	2 // Use of this source code is governed by a BSD-style license that can be

	3 // found in the LICENSE file.

	4

	5 #include "components/wifi_sync/wifi_credential.h"

	6

	7 #include <limits>

	8 #include <string>

	9

	10 #include "base/logging.h"

	11 #include "base/strings/string_number_conversions.h"

	12 #include "base/strings/stringprintf.h"

	13

	14 namespace wifi_sync {

	15

	16 WifiCredential::WifiCredential(

	17 const std::vector<unsigned char>& ssid,

	18 WifiSecurityClass security_class,

	19 const std::string& passphrase)

	20 : ssid_(ssid),

	21 security_class_(security_class),

	22 passphrase_(passphrase) {

	23 }

	24

	25 WifiCredential::~WifiCredential() {

	26 // Nothing special to do.
	erikwright (departed) 2014/12/08 21:21:36 remove comment. The reasons for an empty destructo remove comment. The reasons for an empty destructor definition are well-known. mukesh agrawal 2014/12/09 01:41:11 Done. Show quoted text On 2014/12/08 21:21:36, erikwright wrote: > remove comment. The reasons for an empty destructor definition are well-known. Done.
	27 }

	28

	29 std::string WifiCredential::ToString() const {

	30 DCHECK(ssid_.size() <= std::numeric_limits<size_t>::max() / 2);
	erikwright (departed) 2014/12/08 21:21:36 Is there not some more reasonable upper limit on a Is there not some more reasonable upper limit on an SSID? Note that I can come up with some SSIDs that would pass this test but still cause the generated string to exceed size_t chars (because of the boiler-plate in the string)... Also, this doesn't actually protect against exploit attempts (if the SSID could actually be made this long by an attacker) since it's a DCHECK. I would just remove it, or, if it is meant to be a protection, rethink it. mukesh agrawal 2014/12/09 01:41:11 Done. You're quite right on all three counts. Aft Show quoted text On 2014/12/08 21:21:36, erikwright wrote: > Is there not some more reasonable upper limit on an SSID? > > Note that I can come up with some SSIDs that would pass this test but still > cause the generated string to exceed size_t chars (because of the boiler-plate > in the string)... > > Also, this doesn't actually protect against exploit attempts (if the SSID could > actually be made this long by an attacker) since it's a DCHECK. > > I would just remove it, or, if it is meant to be a protection, rethink it. Done. You're quite right on all three counts. After some thought, I've concluded that the length checking should be done by whoever creates the WifiCredential. E.g., when we read data from sync, or the local network configuration back-end.
	31 return base::StringPrintf(

	32 "[SSID (hex): %s, SecurityClass: %d]",

	33 base::HexEncode(ssid_.data(), ssid_.size()).c_str(),

	34 security_class_); // Passphrase deliberately omitted.

	35 }

	36

	37 // static

	38 bool WifiCredential::IsLessThan(

	39 const WifiCredential& a, const WifiCredential& b) {

	40 return a.ssid_ < b.ssid_ \|\|

	41 a.security_class_< b.security_class_ \|\|

	42 a.passphrase_ < b.passphrase_;

	43 }

	44

	45 // static

	46 WifiCredential::CredentialSet WifiCredential::MakeSet() {

	47 return CredentialSet(WifiCredential::IsLessThan);

	48 }

	49

	50 } // namespace wifi_sync

OLD	NEW