sdk/lib/io/secure_socket.dart - Issue 18097007: Add SecureSocket.addCertificate.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: sdk/lib/io/secure_socket.dart

Issue 18097007: Add SecureSocket.addCertificate. (Closed) Base URL: https://dart.googlecode.com/svn/branches/bleeding_edge/dart

Patch Set: Add documentation link, and some constant trust strings. Created 7 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: sdk/lib/io/secure_socket.dart

diff --git a/sdk/lib/io/secure_socket.dart b/sdk/lib/io/secure_socket.dart

index 18670502cf2c448ff7392687bc1ce014cba92d44..2fd9659bc5d27c3c0ecc844dbdd7fc5a20e00a04 100644

--- a/sdk/lib/io/secure_socket.dart

+++ b/sdk/lib/io/secure_socket.dart

@@ -96,6 +96,7 @@ abstract class SecureSocket implements Socket {

return completer.future;

}

/**

* Takes an already connected [socket] and starts server side TLS

* handshake to make the communication secure. When the returned

@@ -205,6 +206,40 @@ abstract class SecureSocket implements Socket {

external static void initialize({String database,

String password,

bool useBuiltinRoots: true});

+ /**

+ * Trust strings for use in [addCertificate].

+ */

+ static const String TRUST_ISSUE_SERVER_CERTIFICATES = 'C,,';

+ static const String TRUST_ISSUE_CLIENT_CERTIFICATES = 'T,,';

+ static const String TRUST_ISSUE_CLIENT_SERVER_CERTIFICATES = 'TC,,';

+ static const String TRUST_CERTIFICATE = 'P,,';

+ /**

+ * Adds a X509 certificate (for SSL and TLS secure networking) to the

+ * in-memory certificate database. Returns an X509Certificate object

+ * with information about the added certificate.

+ *

+ * [certificate] must be a list of bytes encoding a certificate in

+ * PEM format: a base64 encoded DER certificate, enclosed between

+ * "-----BEGIN CERTIFICATE-----" and "-----END CERTIFICATE-----".

+ *

+ * [trust] is a string specifying the allowed uses of this certificate.

+ * For example, 'TC,,' specifies that the certificate is for a certificate

+ * authority that is trusted to issue server and client certificates, so

+ * that a server or client certificate signed by this authority will be

+ * accepted.

+ *

+ * See the documentation of NSS certutil at

+ * http://developer.mozilla.org/en-US/docs/NSS_reference/NSS_tools_:_certutil

+ * or

+ * http://blogs.oracle.com/meena/entry/notes_about_trust_flags

+ * for more information about trust attributes.

+ */

+ external static X509Certificate addCertificate(List<int> certificate,

+ String trust);

}

@@ -412,7 +447,8 @@ class _RawSecureSocket extends Stream<RawSocketEvent>

static final int NUM_BUFFERS = 4;

// Is a buffer identifier for an encrypted buffer?

- static bool _isBufferEncrypted(int identifier) => identifier >= READ_ENCRYPTED;

+ static bool _isBufferEncrypted(int identifier) =>

+ identifier >= READ_ENCRYPTED;

RawSocket _socket;

final Completer<_RawSecureSocket> _handshakeComplete =

« no previous file with comments | « sdk/lib/_internal/lib/io_patch.dart ('k') | tests/standalone/io/certificate_test.dart » ('j') | no next file with comments »