net/cert/internal/trust_store.cc - Issue 1976433002: Add new ParsedCertificate class, move TrustStore to own file.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cert/internal/trust_store.cc

Issue 1976433002: Add new ParsedCertificate class, move TrustStore to own file. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@cert-parsing-remove-old-parsedcertificate

Patch Set: . Created 4 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« net/cert/internal/trust_store.h ('K') | « net/cert/internal/trust_store.h ('k') | net/cert/internal/verify_certificate_chain.h » ('j') | net/cert/internal/verify_certificate_chain.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: net/cert/internal/trust_store.cc

diff --git a/net/cert/internal/trust_store.cc b/net/cert/internal/trust_store.cc

new file mode 100644

index 0000000000000000000000000000000000000000..af02a554c408759d04e2a9226c134076c5f64973

--- /dev/null

+++ b/net/cert/internal/trust_store.cc

@@ -0,0 +1,45 @@

+// Use of this source code is governed by a BSD-style license that can be

+// found in the LICENSE file.

+#include "net/cert/internal/trust_store.h"

+#include "net/cert/internal/parsed_certificate.h"

+namespace net {

+TrustStore::TrustStore() {}

+TrustStore::~TrustStore() {}

+void TrustStore::Clear() {

+ anchors_.clear();

+void TrustStore::AddTrustedCertificate(

+ scoped_refptr<ParsedCertificate> anchor) {

+ // TODO(mattm): should this check for duplicate certs?

+ anchors_.insert(

+ std::pair<base::StringPiece, scoped_refptr<ParsedCertificate>>(

+ anchor->normalized_subject(), std::move(anchor)));

+void TrustStore::FindTrustAnchorsByNormalizedName(

+ const std::string& normalized_name,

+ std::vector<scoped_refptr<ParsedCertificate>>* matches) const {

+ auto range = anchors_.equal_range(normalized_name);

+ for (auto it = range.first; it != range.second; ++it)

+ matches->push_back(it->second);

+bool TrustStore::IsTrustedCertificate(const ParsedCertificate* cert) const {

+ auto range = anchors_.equal_range(cert->normalized_subject());

+ for (auto it = range.first; it != range.second; ++it) {

+ // First compare the ParsedCertificate pointers as an optimization, fall

eroman 2016/05/12 18:12:30 Do we currently use this or is it just a nice-to-h

mattm 2016/05/13 02:17:37 In this CL it could be used if we add the anchor t

+ // back to comparing full DER encoding.

+ if (it->second == cert || it->second->der_cert() == cert->der_cert())

+ return true;

+ }

+ return false;

+} // namespace net

« net/cert/internal/trust_store.h ('K') | « net/cert/internal/trust_store.h ('k') | net/cert/internal/verify_certificate_chain.h » ('j') | net/cert/internal/verify_certificate_chain.cc » ('J')