Remove ParsedCertificate::unparsed_extensions().

net/cert/internal/parsed_certificate.h

 // Copyright 2016 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef NET_CERT_INTERNAL_PARSED_CERTIFICATE_H_
 #define NET_CERT_INTERNAL_PARSED_CERTIFICATE_H_
 
 #include <map>
 #include <memory>
 #include <vector>
@@ skipping 124 matching lines @@
   // Returns true if the certificate has a KeyUsage extension.
   bool has_key_usage() const { return has_key_usage_; }
 
   // Returns the KeyUsage BitString. Caller must check
   // has_key_usage() before accessing this.
   const der::BitString& key_usage() const {
     DCHECK(has_key_usage_);
     return key_usage_;
   }
 
+  // Returns true if the certificate has a ExtendedKeyUsage extension.
+  bool has_extended_key_usage() const { return has_extended_key_usage_; }
+
+  // Returns the ExtendedKeyUsage key purpose OIDs. Caller must check
+  // has_extended_key_usage() before accessing this.
+  const std::vector<der::Input>& extended_key_usage() const {
+    DCHECK(has_extended_key_usage_);
+    return extended_key_usage_;
+  }
+
   // Returns true if the certificate has a SubjectAltName extension.
   bool has_subject_alt_names() const { return subject_alt_names_ != nullptr; }
 
   // Returns the ParsedExtension struct for the SubjectAltName extension.
   // If the cert did not have a SubjectAltName extension, this will be a
   // default-initialized ParsedExtension struct.
   const ParsedExtension& subject_alt_names_extension() const {
     return subject_alt_names_extension_;
   }
 
@@ skipping 22 matching lines @@
   }
 
   // Returns any caIssuers URIs from the AuthorityInfoAccess extension.
   const std::vector<base::StringPiece>& ca_issuers_uris() const {
     return ca_issuers_uris_;
   }
 
   // Returns any OCSP URIs from the AuthorityInfoAccess extension.
   const std::vector<base::StringPiece>& ocsp_uris() const { return ocsp_uris_; }
 
-  // Returns a map of unhandled extensions (excludes the ones above).
-  const ExtensionsMap& unparsed_extensions() const {
-    return unparsed_extensions_;
+  // Returns true if the certificate has a Policies extension.
+  bool has_policy_oids() const { return has_policy_oids_; }
+
+  // Returns the policy OIDs. Caller must check has_policy_oids() before
+  // accessing this.
+  const std::vector<der::Input>& policy_oids() const {
+    DCHECK(has_policy_oids());
+    return policy_oids_;
   }
 
+  // Returns a map of all the extensions in the certificate.
+  const ExtensionsMap& extensions() const { return extensions_; }
+
+  // Gets the value for extension matching |extension_oid|. Returns false if the
+  // extension is not present.
+  bool GetExtension(const der::Input& extension_oid,
+                    ParsedExtension* parsed_extension) const;
+
  private:
   friend class base::RefCountedThreadSafe<ParsedCertificate>;
   ParsedCertificate();
   ~ParsedCertificate();
 
   // Creates a ParsedCertificate.  If |backing_data| is non-null, the
   // certificate's DER-encoded data will be referenced from here. Otherwise the
   // certificate's data will be |static_data|, and the pointer MUST remain
   // valid and its data unmodified for the entirety of the program.
   static scoped_refptr<ParsedCertificate> CreateInternal(
@@ skipping 23 matching lines @@
   std::string normalized_issuer_;
 
   // BasicConstraints extension.
   bool has_basic_constraints_ = false;
   ParsedBasicConstraints basic_constraints_;
 
   // KeyUsage extension.
   bool has_key_usage_ = false;
   der::BitString key_usage_;
 
+  // ExtendedKeyUsage extension.
+  bool has_extended_key_usage_ = false;
+  std::vector<der::Input> extended_key_usage_;
+
   // Raw SubjectAltName extension.
   ParsedExtension subject_alt_names_extension_;
   // Parsed SubjectAltName extension.
   std::unique_ptr<GeneralNames> subject_alt_names_;
 
   // NameConstraints extension.
   std::unique_ptr<NameConstraints> name_constraints_;
 
   // AuthorityInfoAccess extension.
   bool has_authority_info_access_ = false;
   ParsedExtension authority_info_access_extension_;
   // CaIssuers and Ocsp URIs parsed from the AuthorityInfoAccess extension. Note
   // that the AuthorityInfoAccess may have contained other AccessDescriptions
   // which are not represented here.
   std::vector<base::StringPiece> ca_issuers_uris_;
   std::vector<base::StringPiece> ocsp_uris_;
 
-  // The remaining extensions (excludes the standard ones above).
-  ExtensionsMap unparsed_extensions_;
+  // Policies extension.
+  bool has_policy_oids_ = false;
+  std::vector<der::Input> policy_oids_;
+
+  // All of the extensions.
+  ExtensionsMap extensions_;
 
   DISALLOW_COPY_AND_ASSIGN(ParsedCertificate);
 };
 
 }  // namespace net
 
 #endif  // NET_CERT_INTERNAL_PARSED_CERTIFICATE_H_