Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(26)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/ssl/server_bound_cert_service.h

Issue 13130004: Don't expire certs used as channel IDs. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Address mattm@'s comments. Created 7 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « no previous file | net/ssl/server_bound_cert_service.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef NET_SSL_SERVER_BOUND_CERT_SERVICE_H_ 5 #ifndef NET_SSL_SERVER_BOUND_CERT_SERVICE_H_
6 #define NET_SSL_SERVER_BOUND_CERT_SERVICE_H_ 6 #define NET_SSL_SERVER_BOUND_CERT_SERVICE_H_
7 7
8 #include <map> 8 #include <map>
9 #include <string> 9 #include <string>
10 #include <vector> 10 #include <vector>
(...skipping 11 matching lines...) Expand all
22 namespace base { 22 namespace base {
23 class TaskRunner; 23 class TaskRunner;
24 } 24 }
25 25
26 namespace net { 26 namespace net {
27 27
28 class ServerBoundCertServiceJob; 28 class ServerBoundCertServiceJob;
29 class ServerBoundCertServiceRequest; 29 class ServerBoundCertServiceRequest;
30 class ServerBoundCertServiceWorker; 30 class ServerBoundCertServiceWorker;
31 31
32 // A class for creating and fetching server bound certs. 32 // A class for creating and fetching server bound certs. These certs are used
33 // to identify users' machines; their public keys are used as channel IDs in
34 // http://tools.ietf.org/html/draft-balfanz-tls-channelid-00.
35 // As a result although certs are set to be invalid after one year, we don't
36 // actually expire them. Once generated, certs are valid as long as the users
37 // want. Users can delete existing certs, and new certs will be generated
38 // automatically.
39
33 // Inherits from NonThreadSafe in order to use the function 40 // Inherits from NonThreadSafe in order to use the function
34 // |CalledOnValidThread|. 41 // |CalledOnValidThread|.
35 class NET_EXPORT ServerBoundCertService 42 class NET_EXPORT ServerBoundCertService
36 : NON_EXPORTED_BASE(public base::NonThreadSafe) { 43 : NON_EXPORTED_BASE(public base::NonThreadSafe) {
37 public: 44 public:
38 class NET_EXPORT RequestHandle { 45 class NET_EXPORT RequestHandle {
39 public: 46 public:
40 RequestHandle(); 47 RequestHandle();
41 ~RequestHandle(); 48 ~RequestHandle();
42 49
(...skipping 113 matching lines...) Expand 10 before | Expand all | Expand 10 after
156 uint64 inflight_joins_; 163 uint64 inflight_joins_;
157 164
158 bool is_system_time_valid_; 165 bool is_system_time_valid_;
159 166
160 DISALLOW_COPY_AND_ASSIGN(ServerBoundCertService); 167 DISALLOW_COPY_AND_ASSIGN(ServerBoundCertService);
161 }; 168 };
162 169
163 } // namespace net 170 } // namespace net
164 171
165 #endif // NET_SSL_SERVER_BOUND_CERT_SERVICE_H_ 172 #endif // NET_SSL_SERVER_BOUND_CERT_SERVICE_H_
OLDNEW
« no previous file with comments | « no previous file | net/ssl/server_bound_cert_service.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698