| // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "net/cert/cert_database.h" |
| |
| #include "base/logging.h" |
| #include "base/observer_list_threadsafe.h" |
| #include "net/base/net_errors.h" |
| #include "net/ssl/openssl_client_key_store.h" |
| |
| namespace net { |
| |
| CertDatabase::CertDatabase() |
| : observer_list_(new base::ObserverListThreadSafe<Observer>) { |
| } |
| |
| CertDatabase::~CertDatabase() {} |
| |
| int CertDatabase::CheckUserCert(X509Certificate* cert) { |
| // NOTE: This method shall never be called on Android. |
| // |
| // On other platforms, it is only used by the SSLAddCertHandler class |
| // to handle veritication and installation of downloaded certificates. |
| // |
| // On Android, the certificate data is passed directly to the system's |
| // CertInstaller activity, which handles verification, naming, |
| // installation and UI (for success/failure). |
| NOTIMPLEMENTED(); |
| return ERR_NOT_IMPLEMENTED; |
| } |
| |
| int CertDatabase::AddUserCert(X509Certificate* cert) { |
| // This method is only used by the content SSLAddCertHandler which is |
| // never used on Android. |
| NOTIMPLEMENTED(); |
| return ERR_NOT_IMPLEMENTED; |
| } |
| |
| void CertDatabase::OnAndroidKeyStoreChanged() { |
| NotifyObserversOfCertAdded(NULL); |
| // Dump the OpenSSLClientKeyStore to drop references to now disconnected |
| // PrivateKeys stored in the in-memory key store. Note: this assumes that |
| // every SSLClientAuthCache is dumped as part of notifying |
| // OnCertAdded. Otherwise client auth decisions will be silently converted to |
| // no-certificate decisions. See https://crbug.com/382696 |
| OpenSSLClientKeyStore::GetInstance()->Flush(); |
| } |
| |
| void CertDatabase::OnAndroidKeyChainChanged() { |
| observer_list_->Notify(FROM_HERE, &Observer::OnCACertChanged, nullptr); |
| } |
| |
| } // namespace net |