mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-11-06 17:16:12 +00:00
8f7bebaa5c
The (more) modern Mozilla string classes can be used instead, which at the very least provide built in automatic memory management and performance improvements. MozReview-Commit-ID: 4l2Er5rkeI0 --HG-- extra : transplant_source : %A1%16%AB%02m%CA%25HfW%40%96Mq%0D%F0%91%9C%99%29
77 lines
2.8 KiB
C++
77 lines
2.8 KiB
C++
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
#ifndef nsNSSCertificateDB_h
|
|
#define nsNSSCertificateDB_h
|
|
|
|
#include "ScopedNSSTypes.h"
|
|
#include "certt.h"
|
|
#include "mozilla/Mutex.h"
|
|
#include "mozilla/RefPtr.h"
|
|
#include "mozilla/UniquePtr.h"
|
|
#include "nsIX509CertDB.h"
|
|
#include "nsNSSShutDown.h"
|
|
#include "nsString.h"
|
|
|
|
class nsCString;
|
|
class nsIArray;
|
|
|
|
class nsNSSCertificateDB final : public nsIX509CertDB
|
|
, public nsNSSShutDownObject
|
|
|
|
{
|
|
public:
|
|
NS_DECL_THREADSAFE_ISUPPORTS
|
|
NS_DECL_NSIX509CERTDB
|
|
|
|
// Use this function to generate a default nickname for a user
|
|
// certificate that is to be imported onto a token.
|
|
static void
|
|
get_default_nickname(CERTCertificate *cert, nsIInterfaceRequestor* ctx,
|
|
nsCString &nickname,
|
|
const nsNSSShutDownPreventionLock &proofOfLock);
|
|
|
|
static nsresult
|
|
ImportValidCACerts(int numCACerts, SECItem *CACerts, nsIInterfaceRequestor *ctx,
|
|
const nsNSSShutDownPreventionLock &proofOfLock);
|
|
|
|
// This is a separate static method so nsNSSComponent can use it during NSS
|
|
// initialization. Other code should probably not use it.
|
|
static nsresult
|
|
FindCertByDBKey(const char* aDBKey, mozilla::UniqueCERTCertificate& cert);
|
|
|
|
protected:
|
|
virtual ~nsNSSCertificateDB();
|
|
|
|
private:
|
|
|
|
static nsresult
|
|
ImportValidCACertsInList(const mozilla::UniqueCERTCertList& filteredCerts,
|
|
nsIInterfaceRequestor* ctx,
|
|
const nsNSSShutDownPreventionLock& proofOfLock);
|
|
|
|
static void DisplayCertificateAlert(nsIInterfaceRequestor *ctx,
|
|
const char *stringID, nsIX509Cert *certToShow,
|
|
const nsNSSShutDownPreventionLock &proofOfLock);
|
|
|
|
CERTDERCerts* getCertsFromPackage(const mozilla::UniquePLArenaPool& arena,
|
|
uint8_t* data, uint32_t length,
|
|
const nsNSSShutDownPreventionLock& proofOfLock);
|
|
nsresult handleCACertDownload(nsIArray *x509Certs,
|
|
nsIInterfaceRequestor *ctx,
|
|
const nsNSSShutDownPreventionLock &proofOfLock);
|
|
|
|
// We don't own any NSS objects here, so no need to clean up
|
|
virtual void virtualDestroyNSSReference() override { };
|
|
};
|
|
|
|
#define NS_X509CERTDB_CID { /* fb0bbc5c-452e-4783-b32c-80124693d871 */ \
|
|
0xfb0bbc5c, \
|
|
0x452e, \
|
|
0x4783, \
|
|
{0xb3, 0x2c, 0x80, 0x12, 0x46, 0x93, 0xd8, 0x71} \
|
|
}
|
|
|
|
#endif // nsNSSCertificateDB_h
|