SignedCertificateTimestamp storing & serialization code.

net/ssl/ssl_info.h

Index: net/ssl/ssl_info.h
diff --git a/net/ssl/ssl_info.h b/net/ssl/ssl_info.h
index 3f1dd2df4e1ed3265e8bab76c44fb37383ffc19d..b12e3d61c158775af0bb7b79efdda41aeea9442b 100644
--- a/net/ssl/ssl_info.h
+++ b/net/ssl/ssl_info.h
@@ -10,12 +10,32 @@
 #include "base/memory/ref_counted.h"
 #include "net/base/net_export.h"
 #include "net/cert/cert_status_flags.h"
+#include "net/cert/sct_status_flags.h"
 #include "net/cert/x509_cert_types.h"
 
+class Pickle;
+class PickleIterator;
+
 namespace net {
 
+namespace ct {
+class SignedCertificateTimestamp;
+}
+
 class X509Certificate;
 
+struct SignedCertificateTimestampAndStatus {

[wtc, 2013/11/27 16:32:41]

Nit: this struct probably should be declared in a separate file.

[alcutter, 2013/11/27 18:05:55]

Done.

+  SignedCertificateTimestampAndStatus(
+      const scoped_refptr<ct::SignedCertificateTimestamp>& sct,
+      SignedCertificateTimestampVerificationStatus status);
+
+  scoped_refptr<ct::SignedCertificateTimestamp> sct_;
+  SignedCertificateTimestampVerificationStatus status_;
+};
+
+typedef std::vector<SignedCertificateTimestampAndStatus>
+    SignedCertificateTimestampAndStatusList;
+
 // SSL connection info.
 // This is really a struct.  All members are public.
 class NET_EXPORT SSLInfo {
@@ -43,6 +63,10 @@ class NET_EXPORT SSLInfo {
   // The SSL certificate.
   scoped_refptr<X509Certificate> cert;
 
+  // List of SignedCertificateTimestamps and their corresponding validation
+  // status.
+  SignedCertificateTimestampAndStatusList signed_certificate_timestamps;

[wtc, 2013/11/27 16:32:41]

I suggest moving this member after |cert_status|, so that |cert| and
|cert_status| are not separated.

Maybe we can move this member to the end of the SSLInfo struct?

[alcutter, 2013/11/27 18:05:55]

Done.

+
   // Bitmask of status info of |cert|, representing, for example, known errors
   // and extended validation (EV) status.
   // See cert_status_flags.h for values.