Chromium Code Reviews Chromium Code Reviews
Issue 2225223002:
Certificate Transparency: Change CTVerifyResult to have a single list (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master| OLD | NEW |
|---|---|
| 1 // Copyright 2013 The Chromium Authors. All rights reserved. | 1 // Copyright 2013 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #ifndef NET_CERT_CT_VERIFY_RESULT_H_ | 5 #ifndef NET_CERT_CT_VERIFY_RESULT_H_ |
| 6 #define NET_CERT_CT_VERIFY_RESULT_H_ | 6 #define NET_CERT_CT_VERIFY_RESULT_H_ |
| 7 | 7 |
| 8 #include <vector> | 8 #include <vector> |
| 9 | 9 |
| 10 #include "net/base/net_export.h" | |
| 10 #include "net/cert/ct_policy_enforcer.h" | 11 #include "net/cert/ct_policy_enforcer.h" |
| 11 #include "net/cert/signed_certificate_timestamp.h" | 12 #include "net/cert/signed_certificate_timestamp_and_status.h" |
| 12 | 13 |
| 13 namespace net { | 14 namespace net { |
| 14 | 15 |
| 15 namespace ct { | 16 namespace ct { |
| 16 | 17 |
| 17 enum class CertPolicyCompliance; | 18 enum class CertPolicyCompliance; |
| 18 enum class EVPolicyCompliance; | 19 enum class EVPolicyCompliance; |
| 19 | 20 |
| 20 typedef std::vector<scoped_refptr<SignedCertificateTimestamp> > SCTList; | 21 typedef std::vector<scoped_refptr<SignedCertificateTimestamp> > SCTList; |
| 21 | 22 |
| 22 // Holds Signed Certificate Timestamps, depending on their verification | 23 // Holds Signed Certificate Timestamps, depending on their verification |
| 23 // results, and information about CT policies that were applied on the | 24 // results, and information about CT policies that were applied on the |
| 24 // connection. | 25 // connection. |
| 25 struct NET_EXPORT CTVerifyResult { | 26 struct NET_EXPORT CTVerifyResult { |
| 26 CTVerifyResult(); | 27 CTVerifyResult(); |
| 27 CTVerifyResult(const CTVerifyResult& other); | 28 CTVerifyResult(const CTVerifyResult& other); |
| 28 ~CTVerifyResult(); | 29 ~CTVerifyResult(); |
| 29 | 30 |
| 30 // SCTs from known logs where the signature verified correctly. | 31 // All SCTs and their statuses |
| 31 SCTList verified_scts; | 32 SignedCertificateTimestampAndStatusList scts; |
| 32 // SCTs from known logs where the signature failed to verify. | |
| 33 SCTList invalid_scts; | |
| 34 // SCTs from unknown logs and as such are unverifiable. | |
| 35 SCTList unknown_logs_scts; | |
| 36 | 33 |
| 37 // True if any CT policies were applied on this connection. | 34 // True if any CT policies were applied on this connection. |
| 38 bool ct_policies_applied; | 35 bool ct_policies_applied; |
| 39 // The result of evaluating whether the connection complies with the | 36 // The result of evaluating whether the connection complies with the |
| 40 // CT certificate policy. | 37 // CT certificate policy. |
| 41 CertPolicyCompliance cert_policy_compliance; | 38 CertPolicyCompliance cert_policy_compliance; |
| 42 // The result of evaluating whether the connection complies with the | 39 // The result of evaluating whether the connection complies with the |
| 43 // EV CT policy. | 40 // EV CT policy. |
| 44 EVPolicyCompliance ev_policy_compliance; | 41 EVPolicyCompliance ev_policy_compliance; |
| 45 }; | 42 }; |
| 46 | 43 |
| 44 // Return a list of SCTs from |sct_and_status_list| whose status matches | |
|
eroman
2016/08/10 19:00:40
Return --> Returns
Eran Messeri
2016/08/10 22:05:07
Done.
| |
| 45 // |match_status|. | |
| 46 SCTList NET_EXPORT SCTsMatchingStatus( | |
| 47 const SignedCertificateTimestampAndStatusList& sct_and_status_list, | |
| 48 SCTVerifyStatus match_status); | |
| 49 | |
| 47 } // namespace ct | 50 } // namespace ct |
| 48 | 51 |
| 49 } // namespace net | 52 } // namespace net |
| 50 | 53 |
| 51 #endif // NET_CERT_CT_VERIFY_RESULT_H_ | 54 #endif // NET_CERT_CT_VERIFY_RESULT_H_ |
| OLD | NEW |
