net/http/http_network_transaction.cc - Issue 12035105: Move client certificates retrieval logic out of the SSL sockets.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/http/http_network_transaction.cc

Issue 12035105: Move client certificates retrieval logic out of the SSL sockets. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Add missing license header Created 7 years, 10 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/http/http_network_transaction.cc

diff --git a/net/http/http_network_transaction.cc b/net/http/http_network_transaction.cc

index 7c9c930d412c19e0f4bf7d733d1af5040d4f9015..5b120f765ae7da7fdf9e368e4639df27b9a8f175 100644

--- a/net/http/http_network_transaction.cc

+++ b/net/http/http_network_transaction.cc

@@ -1174,16 +1174,11 @@ int HttpNetworkTransaction::HandleCertificateRequest(int error) {

// is likely to accept, based on the criteria supplied in the

// CertificateRequest message.

if (client_cert) {

- const std::vector<scoped_refptr<X509Certificate> >& client_certs =

- response_.cert_request_info->client_certs;

- bool cert_still_valid = false;

- for (size_t i = 0; i < client_certs.size(); ++i) {

- if (client_cert->Equals(client_certs[i])) {

- cert_still_valid = true;

- break;

- }

+ const std::vector<std::string>& cert_authorities =

+ response_.cert_request_info->cert_authorities;

+ bool cert_still_valid = cert_authorities.empty() ||

+ client_cert->IsIssuedByEncoded(cert_authorities);

if (!cert_still_valid)

return error;

}

« no previous file with comments | « net/data/ssl/scripts/client_authentication/run-test-server.sh ('k') | net/socket/ssl_client_socket_nss.cc » ('j') | no next file with comments »