1// Copyright (c) 2012 The Chromium Authors. All rights reserved. 2// Use of this source code is governed by a BSD-style license that can be 3// found in the LICENSE file. 4 5#ifndef CONTENT_PUBLIC_BROWSER_CERT_STORE_H_ 6#define CONTENT_PUBLIC_BROWSER_CERT_STORE_H_ 7 8#include "base/memory/ref_counted.h" 9#include "content/common/content_export.h" 10 11namespace net { 12class X509Certificate; 13} 14 15namespace content { 16 17// The purpose of the cert store is to provide an easy way to store/retrieve 18// X509Certificate objects. When stored, an X509Certificate object is 19// associated with a RenderProcessHost. If all the RenderProcessHosts 20// associated with the cert have exited, the cert is removed from the store. 21// This class is used by the SSLManager to keep track of the certs associated 22// to loaded resources. 23// It can be accessed from the UI and IO threads (it is thread-safe). 24// Note that the cert ids will overflow if we register more than 2^32 - 1 certs 25// in 1 browsing session (which is highly unlikely to happen). 26class CertStore { 27 public: 28 // Returns the singleton instance of the CertStore. 29 CONTENT_EXPORT static CertStore* GetInstance(); 30 31 // Stores the specified cert and returns the id associated with it. The cert 32 // is associated to the specified RenderProcessHost. 33 // When all the RenderProcessHosts associated with a cert have exited, the 34 // cert is removed from the store. 35 // Note: ids starts at 1. 36 virtual int StoreCert(net::X509Certificate* cert, 37 int render_process_host_id) = 0; 38 39 // Tries to retrieve the previously stored cert associated with the specified 40 // |cert_id|. Returns whether the cert could be found, and, if |cert| is 41 // non-NULL, copies it in. 42 virtual bool RetrieveCert(int cert_id, 43 scoped_refptr<net::X509Certificate>* cert) = 0; 44 45 protected: 46 virtual ~CertStore() {} 47}; 48 49} // namespace content 50 51#endif // CONTENT_PUBLIC_BROWSER_CERT_STORE_H_ 52