#pragma once
#include "CertificateSummary.h"
#include "NotImplemented.h"
#include <libsoup/soup.h>
#include <wtf/Vector.h>
#include <wtf/glib/GRefPtr.h>
#include <wtf/persistence/PersistentCoders.h>
#include <wtf/persistence/PersistentDecoder.h>
#include <wtf/persistence/PersistentEncoder.h>
namespace WebCore {
class ResourceError;
class ResourceResponse;
class CertificateInfo {
public:
CertificateInfo();
explicit CertificateInfo(const WebCore::ResourceResponse&);
explicit CertificateInfo(const WebCore::ResourceError&);
CertificateInfo(GTlsCertificate*, GTlsCertificateFlags);
WEBCORE_EXPORT ~CertificateInfo();
CertificateInfo isolatedCopy() const;
GTlsCertificate* certificate() const { return m_certificate.get(); }
void setCertificate(GTlsCertificate* certificate) { m_certificate = certificate; }
GTlsCertificateFlags tlsErrors() const { return m_tlsErrors; }
void setTLSErrors(GTlsCertificateFlags tlsErrors) { m_tlsErrors = tlsErrors; }
bool containsNonRootSHA1SignedCertificate() const { notImplemented(); return false; }
Optional<CertificateSummary> summary() const { notImplemented(); return WTF::nullopt; }
bool isEmpty() const { return !m_certificate; }
private:
GRefPtr<GTlsCertificate> m_certificate;
GTlsCertificateFlags m_tlsErrors;
};
}
namespace WTF {
namespace Persistence {
template<> struct Coder<GRefPtr<GByteArray>> {
static void encode(Encoder &encoder, const GRefPtr<GByteArray>& byteArray)
{
encoder << static_cast<uint32_t>(byteArray->len);
encoder.encodeFixedLengthData(byteArray->data, byteArray->len);
}
static Optional<GRefPtr<GByteArray>> decode(Decoder& decoder)
{
Optional<uint32_t> size;
decoder >> size;
if (!size)
return WTF::nullopt;
GRefPtr<GByteArray> byteArray = adoptGRef(g_byte_array_sized_new(*size));
g_byte_array_set_size(byteArray.get(), *size);
if (!decoder.decodeFixedLengthData(byteArray->data, *size))
return WTF::nullopt;
return byteArray;
}
};
static Vector<GRefPtr<GByteArray>> certificatesDataListFromCertificateInfo(const WebCore::CertificateInfo &certificateInfo)
{
auto* certificate = certificateInfo.certificate();
if (!certificate)
return { };
Vector<GRefPtr<GByteArray>> certificatesDataList;
for (; certificate; certificate = g_tls_certificate_get_issuer(certificate)) {
GByteArray* certificateData = nullptr;
g_object_get(G_OBJECT(certificate), "certificate", &certificateData, nullptr);
if (!certificateData) {
certificatesDataList.clear();
break;
}
certificatesDataList.append(adoptGRef(certificateData));
}
certificatesDataList.reverse();
return certificatesDataList;
}
static GRefPtr<GTlsCertificate> certificateFromCertificatesDataList(const Vector<GRefPtr<GByteArray>> &certificatesDataList)
{
GType certificateType = g_tls_backend_get_certificate_type(g_tls_backend_get_default());
GRefPtr<GTlsCertificate> certificate;
for (auto& certificateData : certificatesDataList) {
certificate = adoptGRef(G_TLS_CERTIFICATE(g_initable_new(
certificateType, nullptr, nullptr, "certificate", certificateData.get(), "issuer", certificate.get(), nullptr)));
if (!certificate)
break;
}
return certificate;
}
template<> struct Coder<WebCore::CertificateInfo> {
static void encode(Encoder& encoder, const WebCore::CertificateInfo& certificateInfo)
{
auto certificatesDataList = certificatesDataListFromCertificateInfo(certificateInfo);
encoder << certificatesDataList;
if (certificatesDataList.isEmpty())
return;
encoder << static_cast<uint32_t>(certificateInfo.tlsErrors());
}
static Optional<WebCore::CertificateInfo> decode(Decoder& decoder)
{
Optional<Vector<GRefPtr<GByteArray>>> certificatesDataList;
decoder >> certificatesDataList;
if (!certificatesDataList)
return WTF::nullopt;
WebCore::CertificateInfo certificateInfo;
if (certificatesDataList->isEmpty())
return certificateInfo;
auto certificate = certificateFromCertificatesDataList(certificatesDataList.value());
if (!certificate)
return WTF::nullopt;
certificateInfo.setCertificate(certificate.get());
Optional<uint32_t> tlsErrors;
decoder >> tlsErrors;
if (!tlsErrors)
return WTF::nullopt;
certificateInfo.setTLSErrors(static_cast<GTlsCertificateFlags>(*tlsErrors));
return certificateInfo;
}
};
} }