security/certverifier/ExtendedValidation.h
author Brian Smith <brian@briansmith.org>
Mon, 16 Jun 2014 23:13:29 -0700
changeset 189913 b3ebf7675c7bd1d85ed1b7290e1d2c3ae28a0490
parent 183490 a4ae7060f43ac1a4e49b30dfd7a95c5212940d4b
child 308920 7afd32fc3da6479f5a534ac4c19ba0dbbd2b425e
permissions -rw-r--r--
Bug 975229: Remove NSS-based certificate verification, r=keeler

/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*-
 * This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#ifndef mozilla_psm_ExtendedValidation_h
#define mozilla_psm_ExtendedValidation_h

#include "certt.h"
#include "prtypes.h"

namespace mozilla { namespace pkix { struct CertPolicyId; } }

namespace mozilla { namespace psm {

#ifndef MOZ_NO_EV_CERTS
void EnsureIdentityInfoLoaded();
void CleanupIdentityInfo();
SECStatus GetFirstEVPolicy(CERTCertificate* cert,
                           /*out*/ mozilla::pkix::CertPolicyId& policy,
                           /*out*/ SECOidTag& policyOidTag);

// CertIsAuthoritativeForEVPolicy does NOT evaluate whether the cert is trusted
// or distrusted.
bool CertIsAuthoritativeForEVPolicy(const CERTCertificate* cert,
                                    const mozilla::pkix::CertPolicyId& policy);
#endif

} } // namespace mozilla::psm

#endif // mozilla_psm_ExtendedValidation_h