Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(485)

Unified Diff: net/base/x509_certificate.h

Issue 6793026: Initial support for HSTS certificate locking. This isn't a finished work, but (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/
Patch Set: '' Created 9 years, 9 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
Index: net/base/x509_certificate.h
===================================================================
--- net/base/x509_certificate.h (revision 80114)
+++ net/base/x509_certificate.h (working copy)
@@ -323,6 +323,18 @@
// Frees (or releases a reference to) an OS certificate handle.
static void FreeOSCertHandle(OSCertHandle cert_handle);
+ // Gets the complete cert chain (including root and intermediaries).
+ // The returned chain must be freed with DestroyCertChain.
+ static void GetCertChainFromCert(OSCertHandle cert_handle,
+ OSCertHandles* cert_handles);
+
+ // Frees a cert chain.
+ static void DestroyCertChain(OSCertHandles* cert_handles);
abarth-chromium 2011/04/04 22:49:36 We should probably have a stack-allocated, scoped
+
+ // Calculates the SHA-1 fingerprint of the certificate. Returns an empty
+ // (all zero) fingerprint on failure.
+ static SHA1Fingerprint CalculateFingerprint(OSCertHandle cert_handle);
+
private:
friend class base::RefCountedThreadSafe<X509Certificate>;
friend class TestRootCerts; // For unit tests
@@ -353,10 +365,6 @@
static void ResetCertStore();
#endif
- // Calculates the SHA-1 fingerprint of the certificate. Returns an empty
- // (all zero) fingerprint on failure.
- static SHA1Fingerprint CalculateFingerprint(OSCertHandle cert_handle);
-
// Verifies that |hostname| matches one of the names in |cert_names|, based on
// TLS name matching rules, specifically following http://tools.ietf.org/html/draft-saintandre-tls-server-id-check-09#section-4.4.3
// The members of |cert_names| must have been extracted from the Subject CN or

Powered by Google App Engine
This is Rietveld 408576698