// Copyright 2017 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "chrome/browser/net/profile_network_context_service.h" #include <string> #include <string_view> #include "ash/constants/ash_features.h" #include "base/base64.h" #include "base/check_op.h" #include "base/command_line.h" #include "base/containers/flat_map.h" #include "base/feature_list.h" #include "base/files/file_path.h" #include "base/files/file_util.h" #include "base/functional/bind.h" #include "base/functional/callback_helpers.h" #include "base/metrics/field_trial.h" #include "base/metrics/field_trial_params.h" #include "base/metrics/histogram_macros.h" #include "base/notreached.h" #include "base/strings/string_split.h" #include "base/strings/string_util.h" #include "base/task/thread_pool.h" #include "base/trace_event/trace_event.h" #include "build/build_config.h" #include "build/chromeos_buildflags.h" #include "chrome/browser/browser_features.h" #include "chrome/browser/browser_process.h" #include "chrome/browser/content_settings/cookie_settings_factory.h" #include "chrome/browser/content_settings/host_content_settings_map_factory.h" #include "chrome/browser/domain_reliability/service_factory.h" #include "chrome/browser/first_party_sets/first_party_sets_policy_service.h" #include "chrome/browser/first_party_sets/first_party_sets_policy_service_factory.h" #include "chrome/browser/ip_protection/ip_protection_config_provider.h" #include "chrome/browser/net/system_network_context_manager.h" #include "chrome/browser/privacy_sandbox/privacy_sandbox_settings_factory.h" #include "chrome/browser/privacy_sandbox/tracking_protection_settings_factory.h" #include "chrome/browser/profiles/profile.h" #include "chrome/browser/ssl/sct_reporting_service.h" #include "chrome/browser/ssl/sct_reporting_service_factory.h" #include "chrome/browser/webid/federated_identity_permission_context.h" #include "chrome/browser/webid/federated_identity_permission_context_factory.h" #include "chrome/common/buildflags.h" #include "chrome/common/chrome_constants.h" #include "chrome/common/chrome_content_client.h" #include "chrome/common/chrome_features.h" #include "chrome/common/chrome_paths_internal.h" #include "chrome/common/pref_names.h" #include "components/certificate_transparency/pref_names.h" #include "components/content_settings/core/browser/cookie_settings.h" #include "components/content_settings/core/browser/host_content_settings_map.h" #include "components/content_settings/core/common/content_settings.h" #include "components/content_settings/core/common/content_settings_types.h" #include "components/content_settings/core/common/content_settings_utils.h" #include "components/content_settings/core/common/pref_names.h" #include "components/embedder_support/pref_names.h" #include "components/embedder_support/switches.h" #include "components/language/core/browser/language_prefs.h" #include "components/language/core/browser/pref_names.h" #include "components/metrics/metrics_pref_names.h" #include "components/permissions/features.h" #include "components/pref_registry/pref_registry_syncable.h" #include "components/prefs/pref_registry_simple.h" #include "components/prefs/pref_service.h" #include "components/privacy_sandbox/privacy_sandbox_prefs.h" #include "components/safe_browsing/core/common/safe_browsing_prefs.h" #include "content/public/browser/browser_context.h" #include "content/public/browser/browser_thread.h" #include "content/public/browser/first_party_sets_handler.h" #include "content/public/browser/network_service_instance.h" #include "content/public/browser/shared_cors_origin_access_list.h" #include "content/public/browser/storage_partition.h" #include "content/public/common/url_constants.h" #include "crypto/crypto_buildflags.h" #include "mojo/public/cpp/bindings/pending_remote.h" #include "net/base/features.h" #include "net/http/http_auth_preferences.h" #include "net/http/http_util.h" #include "net/net_buildflags.h" #include "net/ssl/client_cert_store.h" #include "services/cert_verifier/public/mojom/cert_verifier_service_factory.mojom.h" #include "services/network/public/cpp/cors/origin_access_list.h" #include "services/network/public/cpp/features.h" #include "services/network/public/mojom/cert_verifier_service.mojom.h" #include "services/network/public/mojom/first_party_sets_access_delegate.mojom.h" #include "services/network/public/mojom/network_context.mojom.h" #include "services/network/public/mojom/network_service.mojom.h" #include "third_party/blink/public/common/features.h" #include "net/cert/asn1_util.h" #if BUILDFLAG(IS_CHROMEOS) #include "chrome/browser/certificate_provider/certificate_provider.h" #include "chrome/browser/certificate_provider/certificate_provider_service.h" #include "chrome/browser/certificate_provider/certificate_provider_service_factory.h" #include "chrome/browser/policy/networking/policy_cert_service.h" #include "chrome/browser/policy/networking/policy_cert_service_factory.h" #include "chromeos/components/kiosk/kiosk_utils.h" #include "chromeos/constants/chromeos_features.h" #include "net/cert/x509_util.h" #endif #if BUILDFLAG(IS_CHROMEOS_ASH) #include "ash/constants/ash_switches.h" #include "chrome/browser/ash/kcer/kcer_factory_ash.h" #include "chrome/browser/ash/net/client_cert_store_ash.h" #include "chrome/browser/ash/net/client_cert_store_kcer.h" #include "chrome/browser/ash/profiles/profile_helper.h" #include "chrome/browser/policy/profile_policy_connector.h" #include "components/user_manager/user.h" #include "components/user_manager/user_manager.h" #endif #if BUILDFLAG(USE_NSS_CERTS) #include "chrome/browser/ui/crypto_module_delegate_nss.h" #include "net/ssl/client_cert_store_nss.h" #endif // BUILDFLAG(USE_NSS_CERTS) #if BUILDFLAG(IS_WIN) #include "net/ssl/client_cert_store_win.h" #endif // BUILDFLAG(IS_WIN) #if BUILDFLAG(IS_MAC) #include "net/ssl/client_cert_store_mac.h" #endif // BUILDFLAG(IS_MAC) #if BUILDFLAG(ENABLE_EXTENSIONS) #include "extensions/common/constants.h" #endif #if BUILDFLAG(IS_CHROMEOS_LACROS) #include "base/check_is_test.h" #include "chrome/browser/lacros/cert/cert_db_initializer_factory.h" #include "chrome/browser/lacros/cert/client_cert_store_lacros.h" #include "chrome/browser/profiles/incognito_helpers.h" #include "chromeos/startup/browser_params_proxy.h" #endif #if BUILDFLAG(IS_WIN) || BUILDFLAG(IS_MAC) || BUILDFLAG(IS_LINUX) #include "chrome/browser/enterprise/client_certificates/certificate_provisioning_service_factory.h" #include "components/enterprise/client_certificates/core/certificate_provisioning_service.h" #include "components/enterprise/client_certificates/core/client_certificates_service.h" #include "components/enterprise/client_certificates/core/features.h" #endif namespace { bool* g_discard_domain_reliability_uploads_for_testing = …; const char kHttpCacheFinchExperimentGroups[] = …; std::vector<std::string> TranslateStringArray(const base::Value::List& list) { … } std::string ComputeAcceptLanguageFromPref(const std::string& language_pref) { … } // Tests allowing ambient authentication with default credentials based on the // profile type. bool IsAmbientAuthAllowedForProfile(Profile* profile) { … } void UpdateAntiAbuseSettings(Profile* profile) { … } bool IsContentSettingsTypeEnabled(ContentSettingsType type) { … } void UpdateCookieSettings(Profile* profile, ContentSettingsType type) { … } #if BUILDFLAG(IS_WIN) || BUILDFLAG(IS_MAC) || BUILDFLAG(IS_LINUX) std::unique_ptr<net::ClientCertStore> GetWrappedCertStore( Profile* profile, std::unique_ptr<net::ClientCertStore> platform_store) { … } #endif // BUILDFLAG(IS_WIN) || BUILDFLAG(IS_MAC) || BUILDFLAG(IS_LINUX) } // namespace ProfileNetworkContextService::ProfileNetworkContextService(Profile* profile) : … { … } ProfileNetworkContextService::~ProfileNetworkContextService() = default; void ProfileNetworkContextService::ConfigureNetworkContextParams( bool in_memory, const base::FilePath& relative_partition_path, network::mojom::NetworkContextParams* network_context_params, cert_verifier::mojom::CertVerifierCreationParams* cert_verifier_creation_params) { … } void ProfileNetworkContextService::RegisterProfilePrefs( user_prefs::PrefRegistrySyncable* registry) { … } // static void ProfileNetworkContextService::RegisterLocalStatePrefs( PrefRegistrySimple* registry) { … } void ProfileNetworkContextService::DisableQuicIfNotAllowed() { … } void ProfileNetworkContextService::UpdateAcceptLanguage() { … } void ProfileNetworkContextService::OnThirdPartyCookieBlockingChanged( bool block_third_party_cookies) { … } void ProfileNetworkContextService::OnMitigationsEnabledFor3pcdChanged( bool enable) { … } void ProfileNetworkContextService::OnTrackingProtectionEnabledFor3pcdChanged( bool enable) { … } std::string ProfileNetworkContextService::ComputeAcceptLanguage() const { … } void ProfileNetworkContextService::UpdateReferrersEnabled() { … } network::mojom::CTPolicyPtr ProfileNetworkContextService::GetCTPolicy() { … } void ProfileNetworkContextService::UpdateCTPolicyForContexts( const std::vector<network::mojom::NetworkContext*>& contexts) { … } void ProfileNetworkContextService::UpdateCTPolicy() { … } void ProfileNetworkContextService::ScheduleUpdateCTPolicy() { … } cert_verifier::mojom::AdditionalCertificatesPtr ProfileNetworkContextService::GetCertificatePolicy( const base::FilePath& storage_partition_path) { … } void ProfileNetworkContextService::UpdateAdditionalCertificates() { … } void ProfileNetworkContextService::ScheduleUpdateCertificatePolicy() { … } ProfileNetworkContextService::CertificatePoliciesForView:: CertificatePoliciesForView() = default; ProfileNetworkContextService::CertificatePoliciesForView:: ~CertificatePoliciesForView() = default; ProfileNetworkContextService::CertificatePoliciesForView:: CertificatePoliciesForView(CertificatePoliciesForView&&) = default; ProfileNetworkContextService::CertificatePoliciesForView& ProfileNetworkContextService::CertificatePoliciesForView::operator=( CertificatePoliciesForView&& other) = default; ProfileNetworkContextService::CertificatePoliciesForView ProfileNetworkContextService::GetCertificatePolicyForView() { … } bool ProfileNetworkContextService::ShouldSplitAuthCacheByNetworkIsolationKey() const { … } void ProfileNetworkContextService::UpdateSplitAuthCacheByNetworkIsolationKey() { … } void ProfileNetworkContextService:: UpdateCorsNonWildcardRequestHeadersSupport() { … } #if BUILDFLAG(ENABLE_REPORTING) base::flat_map<std::string, GURL> ProfileNetworkContextService::GetEnterpriseReportingEndpoints() const { … } void ProfileNetworkContextService::UpdateEnterpriseReportingEndpoints() { … } #endif // static network::mojom::CookieManagerParamsPtr ProfileNetworkContextService::CreateCookieManagerParams( Profile* profile, const content_settings::CookieSettings& cookie_settings) { … } void ProfileNetworkContextService::FlushCachedClientCertIfNeeded( const net::HostPortPair& host, const scoped_refptr<net::X509Certificate>& certificate) { … } void ProfileNetworkContextService::FlushMatchingCachedClientCert( const scoped_refptr<net::X509Certificate>& certificate) { … } void ProfileNetworkContextService::FlushProxyConfigMonitorForTesting() { … } void ProfileNetworkContextService::SetDiscardDomainReliabilityUploadsForTesting( bool value) { … } std::unique_ptr<net::ClientCertStore> ProfileNetworkContextService::CreateClientCertStore() { … } bool GetHttpCacheBackendResetParam(PrefService* local_state) { … } void ProfileNetworkContextService::ConfigureNetworkContextParamsInternal( bool in_memory, const base::FilePath& relative_partition_path, network::mojom::NetworkContextParams* network_context_params, cert_verifier::mojom::CertVerifierCreationParams* cert_verifier_creation_params) { … } base::FilePath ProfileNetworkContextService::GetPartitionPath( const base::FilePath& relative_partition_path) { … } void ProfileNetworkContextService::OnContentSettingChanged( const ContentSettingsPattern& primary_pattern, const ContentSettingsPattern& secondary_pattern, ContentSettingsType content_type) { … }
Codebase Browser
chromium