crypto/nss_key_util.h - Issue 1106103003: Don't use RSAPrivateKey in NSS integration code.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: crypto/nss_key_util.h

Issue 1106103003: Don't use RSAPrivateKey in NSS integration code. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@ocsp-refactor

Patch Set: pneubeck comments Created 5 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: crypto/nss_key_util.h

diff --git a/crypto/nss_key_util.h b/crypto/nss_key_util.h

new file mode 100644

index 0000000000000000000000000000000000000000..12b948d25bb2a269d432a1d57a4baa219902e2d9

--- /dev/null

+++ b/crypto/nss_key_util.h

@@ -0,0 +1,58 @@

+// Use of this source code is governed by a BSD-style license that can be

+// found in the LICENSE file.

+#ifndef CRYPTO_NSS_KEY_UTIL_H_

+#define CRYPTO_NSS_KEY_UTIL_H_

+#include <stdint.h>

+#include <vector>

+#include "build/build_config.h"

+#include "crypto/crypto_export.h"

+#include "crypto/scoped_nss_types.h"

+typedef struct PK11SlotInfoStr PK11SlotInfo;

+namespace crypto {

+// Generates a new RSA keypair of size |num_bits| in |slot|. Returns true on

+// success and false on failure. If |permanent| is true, the resulting key is

+// permanent and is not exportable in plaintext form.

+CRYPTO_EXPORT bool GenerateRSAKeyPairNSS(

+ PK11SlotInfo* slot,

+ uint16_t num_bits,

+ bool permanent,

+ ScopedSECKEYPublicKey* out_public_key,

+ ScopedSECKEYPrivateKey* out_private_key);

+// DER-encoded PrivateKeyInfo block from PKCS #8. Returns nullptr on error. If

+// |permanent| is true, the resulting key is permanent and is not exportable in

+// plaintext form.

+CRYPTO_EXPORT ScopedSECKEYPrivateKey

+ImportNSSKeyFromPrivateKeyInfo(PK11SlotInfo* slot,

+ const std::vector<uint8_t>& input,

+ bool permanent);

+#if defined(USE_NSS_CERTS)

+// Decodes |input| as a DER-encoded X.509 SubjectPublicKeyInfo and searches for

+// the private key half in the key database. Returns the private key on success

+// or nullptr on error.

+CRYPTO_EXPORT ScopedSECKEYPrivateKey

+FindNSSKeyFromPublicKeyInfo(const std::vector<uint8_t>& input);

+// Decodes |input| as a DER-encoded X.509 SubjectPublicKeyInfo and searches for

+// the private key half in the slot specified by |slot|. Returns the private key

+// on success or nullptr on error.

+CRYPTO_EXPORT ScopedSECKEYPrivateKey

+FindNSSKeyFromPublicKeyInfoInSlot(const std::vector<uint8_t>& input,

+ PK11SlotInfo* slot);

+#endif // defined(USE_NSS_CERTS)

+} // namespace crypto

+#endif // CRYPTO_NSS_KEY_UTIL_H_

« components/ownership.gypi ('K') | « crypto/crypto.gypi ('k') | crypto/nss_key_util.cc » ('j') | no next file with comments »