security/certverifier/ExtendedValidation.h
author Cykesiopka <cykesiopka.bmo@gmail.com>
Fri, 05 Aug 2016 23:57:44 +0800
changeset 308920 7afd32fc3da6479f5a534ac4c19ba0dbbd2b425e
parent 189913 b3ebf7675c7bd1d85ed1b7290e1d2c3ae28a0490
child 318259 003ec40aa48433d748cacfcd7baf82d6347db407
permissions -rw-r--r--
Bug 1289455 - Obviate manual CERT_DestroyCertificate() calls in PSM. r=dkeeler MozReview-Commit-ID: Aoi1VWvkNjp

/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*-
 * This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#ifndef ExtendedValidation_h
#define ExtendedValidation_h

#include "ScopedNSSTypes.h"
#include "certt.h"
#include "prtypes.h"

namespace mozilla { namespace pkix { struct CertPolicyId; } }

namespace mozilla { namespace psm {

#ifndef MOZ_NO_EV_CERTS
void EnsureIdentityInfoLoaded();
void CleanupIdentityInfo();
SECStatus GetFirstEVPolicy(CERTCertificate* cert,
                           /*out*/ mozilla::pkix::CertPolicyId& policy,
                           /*out*/ SECOidTag& policyOidTag);

// CertIsAuthoritativeForEVPolicy does NOT evaluate whether the cert is trusted
// or distrusted.
bool CertIsAuthoritativeForEVPolicy(const UniqueCERTCertificate& cert,
                                    const mozilla::pkix::CertPolicyId& policy);
#endif

} } // namespace mozilla::psm

#endif // ExtendedValidation_h