Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(103)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/base/x509_util.h

Issue 8890073: Handle Origin Bound Certificate expiration. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Created 9 years ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« net/base/origin_bound_cert_store.h ('K') | « net/base/origin_bound_cert_store.cc ('k') | net/base/x509_util_nss.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef NET_BASE_X509_UTIL_H_ 5 #ifndef NET_BASE_X509_UTIL_H_
6 #define NET_BASE_X509_UTIL_H_ 6 #define NET_BASE_X509_UTIL_H_
7 #pragma once 7 #pragma once
8 8
9 #include <string> 9 #include <string>
10 10
11 #include "base/time.h" 11 #include "base/time.h"
12 #include "net/base/net_export.h" 12 #include "net/base/net_export.h"
13 13
14 namespace crypto { 14 namespace crypto {
15 class ECPrivateKey; 15 class ECPrivateKey;
16 class RSAPrivateKey; 16 class RSAPrivateKey;
17 } 17 }
18 18
19 namespace net { 19 namespace net {
20 20
21 namespace x509_util { 21 namespace x509_util {
22 22
23 // Creates an origin bound certificate containing the public key in |key|. 23 // Creates an origin bound certificate containing the public key in |key|.
24 // Web origin, serial number and validity period are given as 24 // Web origin, serial number and validity period are given as
wtc 2011/12/15 03:18:51 "validity period" in this comment may need to be u
mattm 2011/12/20 00:28:38 I think with the following change, "validity perio
25 // parameters. The certificate is signed by the private key in |key|. 25 // parameters. The certificate is signed by the private key in |key|.
26 // The hashing algorithm for the signature is SHA-1. 26 // The hashing algorithm for the signature is SHA-1.
27 // 27 //
28 // See Internet Draft draft-balfanz-tls-obc-00 for more details: 28 // See Internet Draft draft-balfanz-tls-obc-00 for more details:
29 // http://tools.ietf.org/html/draft-balfanz-tls-obc-00 29 // http://tools.ietf.org/html/draft-balfanz-tls-obc-00
30 bool NET_EXPORT_PRIVATE CreateOriginBoundCertRSA(crypto::RSAPrivateKey* key, 30 bool NET_EXPORT_PRIVATE CreateOriginBoundCertRSA(crypto::RSAPrivateKey* key,
31 const std::string& origin, 31 const std::string& origin,
32 uint32 serial_number, 32 uint32 serial_number,
33 base::TimeDelta valid_duration, 33 base::Time not_valid_after,
34 std::string* der_cert); 34 std::string* der_cert);
35 bool NET_EXPORT_PRIVATE CreateOriginBoundCertEC(crypto::ECPrivateKey* key, 35 bool NET_EXPORT_PRIVATE CreateOriginBoundCertEC(crypto::ECPrivateKey* key,
36 const std::string& origin, 36 const std::string& origin,
37 uint32 serial_number, 37 uint32 serial_number,
38 base::TimeDelta valid_duration, 38 base::Time not_valid_after,
39 std::string* der_cert); 39 std::string* der_cert);
40 40
41 } // namespace x509_util 41 } // namespace x509_util
42 42
43 } // namespace net 43 } // namespace net
44 44
45 #endif // NET_BASE_X509_UTIL_H_ 45 #endif // NET_BASE_X509_UTIL_H_
OLDNEW
« net/base/origin_bound_cert_store.h ('K') | « net/base/origin_bound_cert_store.cc ('k') | net/base/x509_util_nss.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698