1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/ssl/ssl_add_certificate.h"
#include "base/basictypes.h"
#include "base/strings/string_number_conversions.h"
#include "base/strings/utf_string_conversions.h"
#include "chrome/browser/certificate_viewer.h"
#include "chrome/browser/infobars/infobar_service.h"
#include "chrome/grit/generated_resources.h"
#include "components/infobars/core/confirm_infobar_delegate.h"
#include "components/infobars/core/infobar.h"
#include "components/infobars/core/simple_alert_infobar_delegate.h"
#include "content/public/browser/browser_thread.h"
#include "content/public/browser/render_frame_host.h"
#include "content/public/browser/web_contents.h"
#include "grit/theme_resources.h"
#include "net/base/net_errors.h"
#include "net/cert/cert_database.h"
#include "net/cert/x509_certificate.h"
#include "ui/base/l10n/l10n_util.h"
using content::BrowserThread;
using content::RenderFrameHost;
using content::WebContents;
namespace chrome {
namespace {
class SSLAddCertificateInfoBarDelegate : public ConfirmInfoBarDelegate {
public:
// Creates an SSL certificate enrollment result infobar and delegate.
static void Create(InfoBarService* infobar_service,
net::X509Certificate* cert) {
infobar_service->AddInfoBar(infobar_service->CreateConfirmInfoBar(
scoped_ptr<ConfirmInfoBarDelegate>(
new SSLAddCertificateInfoBarDelegate(cert))));
}
private:
explicit SSLAddCertificateInfoBarDelegate(net::X509Certificate* cert)
: cert_(cert) {}
~SSLAddCertificateInfoBarDelegate() override {}
// ConfirmInfoBarDelegate implementation:
int GetIconID() const override {
// TODO(davidben): Use a more appropriate icon.
return IDR_INFOBAR_SAVE_PASSWORD;
}
Type GetInfoBarType() const override { return PAGE_ACTION_TYPE; }
base::string16 GetMessageText() const override {
// TODO(evanm): GetDisplayName should return UTF-16.
return l10n_util::GetStringFUTF16(IDS_ADD_CERT_SUCCESS_INFOBAR_LABEL,
base::UTF8ToUTF16(
cert_->issuer().GetDisplayName()));
}
int GetButtons() const override { return BUTTON_OK; }
base::string16 GetButtonLabel(InfoBarButton button) const override {
DCHECK_EQ(BUTTON_OK, button);
return l10n_util::GetStringUTF16(IDS_ADD_CERT_SUCCESS_INFOBAR_BUTTON);
}
bool Accept() override {
WebContents* web_contents =
InfoBarService::WebContentsFromInfoBar(infobar());
ShowCertificateViewer(web_contents,
web_contents->GetTopLevelNativeWindow(),
cert_.get());
// It looks weird to hide the infobar just as the dialog opens.
return false;
}
// The certificate that was added.
scoped_refptr<net::X509Certificate> cert_;
DISALLOW_COPY_AND_ASSIGN(SSLAddCertificateInfoBarDelegate);
};
void ShowErrorInfoBar(int message_id,
int render_process_id,
int render_frame_id,
int cert_error) {
WebContents* web_contents = WebContents::FromRenderFrameHost(
RenderFrameHost::FromID(render_process_id, render_frame_id));
if (!web_contents)
return;
// TODO(davidben): Use a more appropriate icon.
// TODO(davidben): Display a more user-friendly error string.
SimpleAlertInfoBarDelegate::Create(
InfoBarService::FromWebContents(web_contents),
IDR_INFOBAR_SAVE_PASSWORD,
l10n_util::GetStringFUTF16(IDS_ADD_CERT_ERR_INVALID_CERT,
base::IntToString16(-cert_error),
base::ASCIIToUTF16(
net::ErrorToString(cert_error))),
true);
}
void ShowSuccessInfoBar(int render_process_id,
int render_frame_id,
net::X509Certificate* cert) {
WebContents* web_contents = WebContents::FromRenderFrameHost(
RenderFrameHost::FromID(render_process_id, render_frame_id));
if (!web_contents)
return;
SSLAddCertificateInfoBarDelegate::Create(
InfoBarService::FromWebContents(web_contents), cert);
}
} // namespace
void SSLAddCertificate(
net::CertificateMimeType cert_type,
const void* cert_data,
size_t cert_size,
int render_process_id,
int render_frame_id) {
// Chromium only supports X.509 User certificates on non-Android
// platforms. Note that this method should not be called for other
// certificate mime types.
if (cert_type != net::CERTIFICATE_MIME_TYPE_X509_USER_CERT)
return;
scoped_refptr<net::X509Certificate> cert;
if (cert_data != NULL) {
cert = net::X509Certificate::CreateFromBytes(
reinterpret_cast<const char*>(cert_data), cert_size);
}
// NOTE: Passing a NULL cert pointer if |cert_data| was NULL is
// intentional here.
// Check if we have a corresponding private key.
int cert_error = net::CertDatabase::GetInstance()->CheckUserCert(cert.get());
if (cert_error != net::OK) {
LOG_IF(ERROR, cert_error == net::ERR_NO_PRIVATE_KEY_FOR_CERT)
<< "No corresponding private key in store for cert: "
<< (cert.get() ? cert->subject().GetDisplayName() : "NULL");
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(&ShowErrorInfoBar, IDS_ADD_CERT_ERR_INVALID_CERT,
render_process_id, render_frame_id, cert_error));
return;
}
// Install it.
cert_error = net::CertDatabase::GetInstance()->AddUserCert(cert.get());
// Show the appropriate infobar.
if (cert_error != net::OK) {
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(&ShowErrorInfoBar, IDS_ADD_CERT_ERR_FAILED,
render_process_id, render_frame_id, cert_error));
} else {
BrowserThread::PostTask(
BrowserThread::UI, FROM_HERE,
base::Bind(&ShowSuccessInfoBar,
render_process_id, render_frame_id, cert));
}
}
} // namespace chrome
|
