diff options
Diffstat (limited to 'src/pki/simple_path_builder_delegate.h')
-rw-r--r-- | src/pki/simple_path_builder_delegate.h | 28 |
1 files changed, 19 insertions, 9 deletions
diff --git a/src/pki/simple_path_builder_delegate.h b/src/pki/simple_path_builder_delegate.h index ac22d45..6d95b0d 100644 --- a/src/pki/simple_path_builder_delegate.h +++ b/src/pki/simple_path_builder_delegate.h @@ -5,13 +5,13 @@ #ifndef BSSL_PKI_SIMPLE_PATH_BUILDER_DELEGATE_H_ #define BSSL_PKI_SIMPLE_PATH_BUILDER_DELEGATE_H_ -#include "fillins/openssl_util.h" #include <stddef.h> +#include <openssl/base.h> +#include <openssl/pki/signature_verify_cache.h> #include "path_builder.h" #include "signature_algorithm.h" -#include "signature_verify_cache.h" namespace bssl { @@ -26,7 +26,8 @@ class CertErrors; // * If the |digest_policy| was set to kAllowSha1, then SHA1 is // additionally accepted. // * EC named curve can be P-256, P-384, P-521. -class OPENSSL_EXPORT SimplePathBuilderDelegate : public CertPathBuilderDelegate { +class OPENSSL_EXPORT SimplePathBuilderDelegate + : public CertPathBuilderDelegate { public: enum class DigestPolicy { // Accepts digests of SHA256, SHA348 or SHA512 @@ -48,26 +49,35 @@ class OPENSSL_EXPORT SimplePathBuilderDelegate : public CertPathBuilderDelegate // Accepts RSA PKCS#1, RSASSA-PSS or ECDA using any of the SHA* digests // (including SHA1). bool IsSignatureAlgorithmAcceptable(SignatureAlgorithm signature_algorithm, - CertErrors* errors) override; + CertErrors *errors) override; // Requires RSA keys be >= |min_rsa_modulus_length_bits_|. - bool IsPublicKeyAcceptable(EVP_PKEY* public_key, CertErrors* errors) override; + bool IsPublicKeyAcceptable(EVP_PKEY *public_key, CertErrors *errors) override; // No-op implementation. - void CheckPathAfterVerification(const CertPathBuilder& path_builder, - CertPathBuilderResultPath* path) override; + void CheckPathAfterVerification(const CertPathBuilder &path_builder, + CertPathBuilderResultPath *path) override; // No-op implementation. bool IsDeadlineExpired() override; // No-op implementation. - SignatureVerifyCache* GetVerifyCache() override; + SignatureVerifyCache *GetVerifyCache() override; + + // No-op implementation. + bool IsDebugLogEnabled() override; + + // No-op implementation. + void DebugLog(std::string_view msg) override; + + // No-op implementation. + bool AcceptPreCertificates() override; private: const size_t min_rsa_modulus_length_bits_; const DigestPolicy digest_policy_; }; -} // namespace net +} // namespace bssl #endif // BSSL_PKI_SIMPLE_PATH_BUILDER_DELEGATE_H_ |