OLD | NEW |
1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef NET_SSL_SSL_CERT_REQUEST_INFO_H_ | 5 #ifndef NET_SSL_SSL_CERT_REQUEST_INFO_H_ |
6 #define NET_SSL_SSL_CERT_REQUEST_INFO_H_ | 6 #define NET_SSL_SSL_CERT_REQUEST_INFO_H_ |
7 | 7 |
8 #include <string> | 8 #include <string> |
9 #include <vector> | 9 #include <vector> |
10 | 10 |
11 #include "base/memory/ref_counted.h" | 11 #include "base/memory/ref_counted.h" |
12 #include "net/base/host_port_pair.h" | 12 #include "net/base/host_port_pair.h" |
13 #include "net/base/net_export.h" | 13 #include "net/base/net_export.h" |
14 #include "net/ssl/ssl_client_cert_type.h" | 14 #include "net/ssl/ssl_client_cert_type.h" |
15 | 15 |
16 namespace net { | 16 namespace net { |
17 | 17 |
| 18 class X509Certificate; |
| 19 |
18 // The SSLCertRequestInfo class represents server criteria regarding client | 20 // The SSLCertRequestInfo class represents server criteria regarding client |
19 // certificate required for a secure connection. | 21 // certificate required for a secure connection. |
20 // | 22 // |
21 // In TLS 1.1, the CertificateRequest | 23 // In TLS 1.1, the CertificateRequest |
22 // message is defined as: | 24 // message is defined as: |
23 // enum { | 25 // enum { |
24 // rsa_sign(1), dss_sign(2), rsa_fixed_dh(3), dss_fixed_dh(4), | 26 // rsa_sign(1), dss_sign(2), rsa_fixed_dh(3), dss_fixed_dh(4), |
25 // rsa_ephemeral_dh_RESERVED(5), dss_ephemeral_dh_RESERVED(6), | 27 // rsa_ephemeral_dh_RESERVED(5), dss_ephemeral_dh_RESERVED(6), |
26 // fortezza_dms_RESERVED(20), (255) | 28 // fortezza_dms_RESERVED(20), (255) |
27 // } ClientCertificateType; | 29 // } ClientCertificateType; |
(...skipping 17 matching lines...) Expand all Loading... |
45 // True if the server that issues this request was the HTTPS proxy used in | 47 // True if the server that issues this request was the HTTPS proxy used in |
46 // the request. False, if the server was the origin server. | 48 // the request. False, if the server was the origin server. |
47 bool is_proxy; | 49 bool is_proxy; |
48 | 50 |
49 // List of DER-encoded X.509 DistinguishedName of certificate authorities | 51 // List of DER-encoded X.509 DistinguishedName of certificate authorities |
50 // allowed by the server. | 52 // allowed by the server. |
51 std::vector<std::string> cert_authorities; | 53 std::vector<std::string> cert_authorities; |
52 | 54 |
53 std::vector<SSLClientCertType> cert_key_types; | 55 std::vector<SSLClientCertType> cert_key_types; |
54 | 56 |
| 57 // Client certificates matching the server criteria. This should be removed |
| 58 // soon as being tracked in http://crbug.com/166642. |
| 59 std::vector<scoped_refptr<X509Certificate> > client_certs; |
| 60 |
55 private: | 61 private: |
56 friend class base::RefCountedThreadSafe<SSLCertRequestInfo>; | 62 friend class base::RefCountedThreadSafe<SSLCertRequestInfo>; |
57 | 63 |
58 ~SSLCertRequestInfo(); | 64 ~SSLCertRequestInfo(); |
59 }; | 65 }; |
60 | 66 |
61 } // namespace net | 67 } // namespace net |
62 | 68 |
63 #endif // NET_SSL_SSL_CERT_REQUEST_INFO_H_ | 69 #endif // NET_SSL_SSL_CERT_REQUEST_INFO_H_ |
OLD | NEW |