net/cert/internal/verify_certificate_chain.h - Issue 2225493003: Don't treat trust anchors as certificates during path building.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cert/internal/verify_certificate_chain.h

Issue 2225493003: Don't treat trust anchors as certificates during path building. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: address moar feedback Created 4 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/cert/internal/verify_certificate_chain.h

diff --git a/net/cert/internal/verify_certificate_chain.h b/net/cert/internal/verify_certificate_chain.h

index 5dc627579cb84616c068f27c2eb38479edfdc86c..6d5c557774c61dba0f0f8656e7bc8b7f06cec5bb 100644

--- a/net/cert/internal/verify_certificate_chain.h

+++ b/net/cert/internal/verify_certificate_chain.h

@@ -20,15 +20,19 @@ struct GeneralizedTime;

}

class SignaturePolicy;

+class TrustAnchor;

class TrustStore;

-// VerifyCertificateChainAssumingTrustedRoot() verifies a certificate path

-// (chain) based on the rules in RFC 5280. The caller is responsible for

-// building the path and ensuring the chain ends in a trusted root certificate.

+// VerifyCertificateChain() verifies a certificate path (chain) based on the

+// rules in RFC 5280. The caller is responsible for building the path and

+// finding the trust anchor.

// WARNING: This implementation is in progress, and is currently incomplete.

// Consult an OWNER before using it.

+// TODO(eroman): Take a CertPath instead of ParsedCertificateList +

+// TrustAnchor.

+//

// ---------

// Inputs

// ---------

@@ -39,11 +43,10 @@ class TrustStore;

// * cert_chain[0] is the target certificate to verify.

// * cert_chain[i+1] holds the certificate that issued cert_chain[i].

-// * cert_chain[N-1] must be the trust anchor.

+// * cert_chain[N-1] must be issued by the trust anchor.

-// trust_store:

-// Contains the set of trusted public keys (and their names). This is only

-// used to DCHECK that the final cert is a trust anchor.

+// trust_anchor:

+// Contains the trust anchor (root) used to verify the chain.

// signature_policy:

// The policy to use when verifying signatures (what hash algorithms are

@@ -57,12 +60,11 @@ class TrustStore;

// ---------

// Returns true if the target certificate can be verified.

-NET_EXPORT bool VerifyCertificateChainAssumingTrustedRoot(

- const ParsedCertificateList& certs,

- // The trust store is only used for assertions.

- const TrustStore& trust_store,

- const SignaturePolicy* signature_policy,

- const der::GeneralizedTime& time) WARN_UNUSED_RESULT;

+NET_EXPORT bool VerifyCertificateChain(const ParsedCertificateList& certs,

+ const TrustAnchor* trust_anchor,

+ const SignaturePolicy* signature_policy,

+ const der::GeneralizedTime& time)

+ WARN_UNUSED_RESULT;

} // namespace net

« no previous file with comments | « net/cert/internal/trust_store.cc ('k') | net/cert/internal/verify_certificate_chain.cc » ('j') | no next file with comments »