net/cert/merkle_tree_leaf.h - Issue 2107423004: Certificate Transparency: MerkleTreeLeaf, MerkleAuditProof improvements.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cert/merkle_tree_leaf.h

Issue 2107423004: Certificate Transparency: MerkleTreeLeaf, MerkleAuditProof improvements. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Fixing botched merge Created 4 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/cert/merkle_tree_leaf.h

diff --git a/net/cert/merkle_tree_leaf.h b/net/cert/merkle_tree_leaf.h

index 8f314f56a70641142300f8c6d556ab349178966b..21217bb6ec5c454e53c12e82cf2ff6e0b8cdf4f4 100644

--- a/net/cert/merkle_tree_leaf.h

+++ b/net/cert/merkle_tree_leaf.h

@@ -19,15 +19,25 @@ class X509Certificate;

namespace ct {

// Represents a MerkleTreeLeaf as defined in RFC6962, section 3.4.

-// Has all the data as the MerkleTreeLeaf defined in the RFC, arranged

-// slightly differently.

+// The goal of this struct is to represent the Merkle tree entry such that

+// all details are easily accessible and a leaf hash can be easily calculated

+// for the entry.

+//

+// As such, it has all the data as the MerkleTreeLeaf defined in the RFC,

+// but it is not identical to the structure in the RFC for the following

+// reasons:

+// * The version is implicit - it is only used for V1 leaves currently.

+// * the leaf_type is also implicit: There's exactly one leaf type and no

+// new types are planned.

+// * The timestamped_entry's |timestamp| and |extensions| fields are directly

+// accessible.

+// * The timestamped_entry's entry_type can be deduced from |log_entry|.type

struct NET_EXPORT MerkleTreeLeaf {

MerkleTreeLeaf();

+ MerkleTreeLeaf(const MerkleTreeLeaf& other);

+ MerkleTreeLeaf(MerkleTreeLeaf&&);

~MerkleTreeLeaf();

- // The log id this leaf belongs to.

- std::string log_id;

// Certificate / Precertificate and indication of entry type.

LogEntry log_entry;

@@ -38,13 +48,19 @@ struct NET_EXPORT MerkleTreeLeaf {

std::string extensions;

};

+// Given a |cert| and an |sct| for that certificate, constructs the

+// representation of this entry in the Merkle tree by filling in

+// |merkle_tree_leaf|.

+// Returns false if it failed to construct the |merkle_tree_leaf|.

NET_EXPORT bool GetMerkleTreeLeaf(const X509Certificate* cert,

const SignedCertificateTimestamp* sct,

MerkleTreeLeaf* merkle_tree_leaf);

-// Sets |*out| to the hash of the Merkle |tree_leaf|, as defined in RFC6962.

-// Returns true if the hash was generated, false if an error occurred.

-NET_EXPORT bool Hash(const MerkleTreeLeaf& tree_leaf, std::string* out);

+// Sets |*out| to the hash of the Merkle |tree_leaf|, as defined in RFC6962,

+// section 3.4. Returns true if the hash was generated, false if an error

+// occurred.

+NET_EXPORT bool HashMerkleTreeLeaf(const MerkleTreeLeaf& tree_leaf,

+ std::string* out);

} // namespace ct

« no previous file with comments | « net/cert/merkle_audit_proof.cc ('k') | net/cert/merkle_tree_leaf.cc » ('j') | no next file with comments »