net/cert/x509_util.h - Issue 17265013: Remove platform-specific implementations of RSAPrivateKey and SignatureCreator

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cert/x509_util.h

Issue 17265013: Remove platform-specific implementations of RSAPrivateKey and SignatureCreator (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Update includes Created 7 years, 6 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/cert/x509_util.h

diff --git a/net/cert/x509_util.h b/net/cert/x509_util.h

index 50ffc7f55fc9538cd6ca724e292cd224722ebc64..92fffc62cee3d28227cc84a7a84bdf99f7cafe9d 100644

--- a/net/cert/x509_util.h

+++ b/net/cert/x509_util.h

@@ -13,6 +13,7 @@

namespace crypto {

class ECPrivateKey;

+class RSAPrivateKey;

}

namespace net {

@@ -44,6 +45,31 @@ NET_EXPORT_PRIVATE bool CreateDomainBoundCertEC(

base::Time not_valid_after,

std::string* der_cert);

+// Create a self-signed certificate containing the public key in |key|.

+// Subject, serial number and validity period are given as parameters.

+// The certificate is signed by the private key in |key|. The hashing

+// algorithm for the signature is SHA-1.

+//

+// |subject| is a distinguished name defined in RFC4514.

+//

+// An example:

+// CN=Michael Wong,O=FooBar Corporation,DC=foobar,DC=com

+//

+// SECURITY WARNING

+//

+// Using self-signed certificates has the following security risks:

+// 1. Encryption without authentication and thus vulnerable to

+// man-in-the-middle attacks.

+// 2. Self-signed certificates cannot be revoked.

+//

+// Use this certificate only after the above risks are acknowledged.

+NET_EXPORT bool CreateSelfSignedCert(crypto::RSAPrivateKey* key,

wtc 2013/06/20 21:35:56 The change to x509_util::CreateSelfSignedCert shou

+ const std::string& common_name,

+ uint32 serial_number,

+ base::Time not_valid_before,

+ base::Time not_valid_after,

+ std::string* der_encoded);

wtc 2013/06/20 21:35:56 Nit: this output argument should ideally have the

// Comparator for use in STL algorithms that will sort client certificates by

// order of preference.

// Returns true if |a| is more preferable than |b|, allowing it to be used

« net/cert/x509_certificate_unittest.cc ('K') | « net/cert/x509_certificate_win.cc ('k') | net/cert/x509_util_nss.h » ('j') | net/cert/x509_util_nss.cc » ('J')