| OLD | NEW |
|---|
| 1 /* This Source Code Form is subject to the terms of the Mozilla Public | 1 /* This Source Code Form is subject to the terms of the Mozilla Public |
| 2 * License, v. 2.0. If a copy of the MPL was not distributed with this | 2 * License, v. 2.0. If a copy of the MPL was not distributed with this |
| 3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ | 3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ |
| 4 /* | 4 /* |
| 5 * certi.h - private data structures for the certificate library | 5 * certi.h - private data structures for the certificate library |
| 6 */ | 6 */ |
| 7 #ifndef _CERTI_H_ | 7 #ifndef _CERTI_H_ |
| 8 #define _CERTI_H_ | 8 #define _CERTI_H_ |
| 9 | 9 |
| 10 #include "certt.h" | 10 #include "certt.h" |
| (...skipping 243 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 254 /* release a DPCache object that was previously acquired */ | 254 /* release a DPCache object that was previously acquired */ |
| 255 void ReleaseDPCache(CRLDPCache* dpcache, PRBool writeLocked); | 255 void ReleaseDPCache(CRLDPCache* dpcache, PRBool writeLocked); |
| 256 | 256 |
| 257 /* | 257 /* |
| 258 * map Stan errors into NSS errors | 258 * map Stan errors into NSS errors |
| 259 * This function examines the stan error stack and automatically sets | 259 * This function examines the stan error stack and automatically sets |
| 260 * PORT_SetError(); to the appropriate SEC_ERROR value. | 260 * PORT_SetError(); to the appropriate SEC_ERROR value. |
| 261 */ | 261 */ |
| 262 void CERT_MapStanError(); | 262 void CERT_MapStanError(); |
| 263 | 263 |
| 264 /* Like CERT_VerifyCert, except with an additional argument, flags. The |
| 265 * flags are defined immediately below. |
| 266 */ |
| 267 SECStatus |
| 268 cert_VerifyCertWithFlags(CERTCertDBHandle *handle, CERTCertificate *cert, |
| 269 PRBool checkSig, SECCertUsage certUsage, PRTime t, |
| 270 PRUint32 flags, void *wincx, CERTVerifyLog *log); |
| 271 |
| 272 /* Use the default settings. |
| 273 * cert_VerifyCertWithFlags(..., CERT_VERIFYCERT_USE_DEFAULTS, ...) is |
| 274 * equivalent to CERT_VerifyCert(...); |
| 275 */ |
| 276 #define CERT_VERIFYCERT_USE_DEFAULTS 0 |
| 277 |
| 278 /* Skip all the OCSP checks during certificate verification, regardless of |
| 279 * the global OCSP settings. By default, certificate |cert| will have its |
| 280 * revocation status checked via OCSP according to the global OCSP settings. |
| 281 * |
| 282 * OCSP checking is always skipped when certUsage is certUsageStatusResponder. |
| 283 */ |
| 284 #define CERT_VERIFYCERT_SKIP_OCSP 1 |
| 285 |
| 264 /* Interface function for libpkix cert validation engine: | 286 /* Interface function for libpkix cert validation engine: |
| 265 * cert_verify wrapper. */ | 287 * cert_verify wrapper. */ |
| 266 SECStatus | 288 SECStatus |
| 267 cert_VerifyCertChainPkix(CERTCertificate *cert, | 289 cert_VerifyCertChainPkix(CERTCertificate *cert, |
| 268 PRBool checkSig, | 290 PRBool checkSig, |
| 269 SECCertUsage requiredUsage, | 291 SECCertUsage requiredUsage, |
| 270 PRTime time, | 292 PRTime time, |
| 271 void *wincx, | 293 void *wincx, |
| 272 CERTVerifyLog *log, | 294 CERTVerifyLog *log, |
| 273 PRBool *sigError, | 295 PRBool *sigError, |
| (...skipping 98 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 372 * particular usage. | 394 * particular usage. |
| 373 */ | 395 */ |
| 374 SECStatus | 396 SECStatus |
| 375 cert_CheckLeafTrust(CERTCertificate *cert, | 397 cert_CheckLeafTrust(CERTCertificate *cert, |
| 376 SECCertUsage usage, | 398 SECCertUsage usage, |
| 377 unsigned int *failedFlags, | 399 unsigned int *failedFlags, |
| 378 PRBool *isTrusted); | 400 PRBool *isTrusted); |
| 379 | 401 |
| 380 #endif /* _CERTI_H_ */ | 402 #endif /* _CERTI_H_ */ |
| 381 | 403 |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 170823003:
Update to NSS 3.15.5 and NSPR 4.10.3. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/deps/third_party/nss/