Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(608)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/cert/x509_util.h

Issue 16158005: Adds CreateSelfSignedCertEC to x509_util.h in preparation of persistent DTLS identity store for Web… (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Created 7 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « no previous file | net/cert/x509_util_nss.cc » ('j') | net/cert/x509_util_nss.cc » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef NET_CERT_X509_UTIL_H_ 5 #ifndef NET_CERT_X509_UTIL_H_
6 #define NET_CERT_X509_UTIL_H_ 6 #define NET_CERT_X509_UTIL_H_
7 7
8 #include <string> 8 #include <string>
9 9
10 #include "base/memory/ref_counted.h" 10 #include "base/memory/ref_counted.h"
(...skipping 26 matching lines...) Expand all
37 // See Internet Draft draft-balfanz-tls-obc-00 for more details: 37 // See Internet Draft draft-balfanz-tls-obc-00 for more details:
38 // http://tools.ietf.org/html/draft-balfanz-tls-obc-00 38 // http://tools.ietf.org/html/draft-balfanz-tls-obc-00
39 NET_EXPORT_PRIVATE bool CreateDomainBoundCertEC( 39 NET_EXPORT_PRIVATE bool CreateDomainBoundCertEC(
40 crypto::ECPrivateKey* key, 40 crypto::ECPrivateKey* key,
41 const std::string& domain, 41 const std::string& domain,
42 uint32 serial_number, 42 uint32 serial_number,
43 base::Time not_valid_before, 43 base::Time not_valid_before,
44 base::Time not_valid_after, 44 base::Time not_valid_after,
45 std::string* der_cert); 45 std::string* der_cert);
46 46
47 // Creates a self-signed certificate containing the public key in |key|.
48 // Common name, serial number and validity period are given as parameters.
49 // The certificate is signed by the private key in |key|.
50 // The hashing algorithm for the signature is SHA-1.
51 NET_EXPORT_PRIVATE bool CreateSelfSignedCertEC(
52 crypto::ECPrivateKey* key,
53 const std::string& common_name,
54 uint32 serial_number,
55 base::Time not_valid_before,
56 base::Time not_valid_after,
57 std::string* der_cert);
58
47 // Comparator for use in STL algorithms that will sort client certificates by 59 // Comparator for use in STL algorithms that will sort client certificates by
48 // order of preference. 60 // order of preference.
49 // Returns true if |a| is more preferable than |b|, allowing it to be used 61 // Returns true if |a| is more preferable than |b|, allowing it to be used
50 // with any algorithm that compares according to strict weak ordering. 62 // with any algorithm that compares according to strict weak ordering.
51 // 63 //
52 // Criteria include: 64 // Criteria include:
53 // - Prefer certificates that have a longer validity period (later 65 // - Prefer certificates that have a longer validity period (later
54 // expiration dates) 66 // expiration dates)
55 // - If equal, prefer certificates that were issued more recently 67 // - If equal, prefer certificates that were issued more recently
56 // - If equal, prefer shorter chains (if available) 68 // - If equal, prefer shorter chains (if available)
57 class NET_EXPORT_PRIVATE ClientCertSorter { 69 class NET_EXPORT_PRIVATE ClientCertSorter {
58 public: 70 public:
59 ClientCertSorter(); 71 ClientCertSorter();
60 72
61 bool operator()( 73 bool operator()(
62 const scoped_refptr<X509Certificate>& a, 74 const scoped_refptr<X509Certificate>& a,
63 const scoped_refptr<X509Certificate>& b) const; 75 const scoped_refptr<X509Certificate>& b) const;
64 76
65 private: 77 private:
66 base::Time now_; 78 base::Time now_;
67 }; 79 };
68 80
69 } // namespace x509_util 81 } // namespace x509_util
70 82
71 } // namespace net 83 } // namespace net
72 84
73 #endif // NET_CERT_X509_UTIL_H_ 85 #endif // NET_CERT_X509_UTIL_H_
OLDNEW
« no previous file with comments | « no previous file | net/cert/x509_util_nss.cc » ('j') | net/cert/x509_util_nss.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698