unplugged-system/external/cronet/net/ssl/client_cert_store_mac.h

// Copyright 2013 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#ifndef NET_SSL_CLIENT_CERT_STORE_MAC_H_
#define NET_SSL_CLIENT_CERT_STORE_MAC_H_

#include "base/functional/callback.h"
#include "net/base/net_export.h"
#include "net/ssl/client_cert_store.h"
#include "net/ssl/ssl_cert_request_info.h"

namespace net {

class ClientCertIdentityMac;

class NET_EXPORT ClientCertStoreMac : public ClientCertStore {
 public:
  ClientCertStoreMac();

  ClientCertStoreMac(const ClientCertStoreMac&) = delete;
  ClientCertStoreMac& operator=(const ClientCertStoreMac&) = delete;

  ~ClientCertStoreMac() override;

  // ClientCertStore:
  void GetClientCerts(const SSLCertRequestInfo& cert_request_info,
                      ClientCertListCallback callback) override;

 private:
  // TODO(https://crbug.com/1302761): Improve test coverage and remove/reduce
  // the friend tests and ForTesting methods.
  friend class ClientCertStoreMacTest;
  friend class ClientCertStoreMacTestDelegate;

  // A hook for testing. Filters |input_identities| using the logic being used
  // to filter the system store when GetClientCerts() is called. Implemented by
  // creating a list of certificates that otherwise would be extracted from the
  // system store and filtering it using the common logic (less adequate than
  // the approach used on Windows).
  bool SelectClientCertsForTesting(
      std::vector<std::unique_ptr<ClientCertIdentityMac>> input_identities,
      const SSLCertRequestInfo& cert_request_info,
      ClientCertIdentityList* selected_identities);

  // Testing hook specific to Mac, where the internal logic recognizes preferred
  // certificates for particular domains. If the preferred certificate is
  // present in the output list (i.e. it doesn't get filtered out), it should
  // always come first.
  bool SelectClientCertsGivenPreferredForTesting(
      std::unique_ptr<ClientCertIdentityMac> preferred_identity,
      std::vector<std::unique_ptr<ClientCertIdentityMac>> regular_identities,
      const SSLCertRequestInfo& request,
      ClientCertIdentityList* selected_identities);
};

}  // namespace net

#endif  // NET_SSL_CLIENT_CERT_STORE_MAC_H_
Initial commit: AOSP 14 with modifications for Unplugged OS 2025-10-06 13:59:42 +00:00			`// Copyright 2013 The Chromium Authors`
			`// Use of this source code is governed by a BSD-style license that can be`
			`// found in the LICENSE file.`

			`#ifndef NET_SSL_CLIENT_CERT_STORE_MAC_H_`
			`#define NET_SSL_CLIENT_CERT_STORE_MAC_H_`

			`#include "base/functional/callback.h"`
			`#include "net/base/net_export.h"`
			`#include "net/ssl/client_cert_store.h"`
			`#include "net/ssl/ssl_cert_request_info.h"`

			`namespace net {`

			`class ClientCertIdentityMac;`

			`class NET_EXPORT ClientCertStoreMac : public ClientCertStore {`
			`public:`
			`ClientCertStoreMac();`

			`ClientCertStoreMac(const ClientCertStoreMac&) = delete;`
			`ClientCertStoreMac& operator=(const ClientCertStoreMac&) = delete;`

			`~ClientCertStoreMac() override;`

			`// ClientCertStore:`
			`void GetClientCerts(const SSLCertRequestInfo& cert_request_info,`
			`ClientCertListCallback callback) override;`

			`private:`
			`// TODO(https://crbug.com/1302761): Improve test coverage and remove/reduce`
			`// the friend tests and ForTesting methods.`
			`friend class ClientCertStoreMacTest;`
			`friend class ClientCertStoreMacTestDelegate;`

			`// A hook for testing. Filters \|input_identities\| using the logic being used`
			`// to filter the system store when GetClientCerts() is called. Implemented by`
			`// creating a list of certificates that otherwise would be extracted from the`
			`// system store and filtering it using the common logic (less adequate than`
			`// the approach used on Windows).`
			`bool SelectClientCertsForTesting(`
			`std::vector<std::unique_ptr<ClientCertIdentityMac>> input_identities,`
			`const SSLCertRequestInfo& cert_request_info,`
			`ClientCertIdentityList* selected_identities);`

			`// Testing hook specific to Mac, where the internal logic recognizes preferred`
			`// certificates for particular domains. If the preferred certificate is`
			`// present in the output list (i.e. it doesn't get filtered out), it should`
			`// always come first.`
			`bool SelectClientCertsGivenPreferredForTesting(`
			`std::unique_ptr<ClientCertIdentityMac> preferred_identity,`
			`std::vector<std::unique_ptr<ClientCertIdentityMac>> regular_identities,`
			`const SSLCertRequestInfo& request,`
			`ClientCertIdentityList* selected_identities);`
			`};`

			`} // namespace net`

			`#endif // NET_SSL_CLIENT_CERT_STORE_MAC_H_`