Certificate Transparency: Parse Signed Tree Heads and validate them
This change lays the groundwork for fetching STHs from CT logs and
using them for proof inclusion validation.
This change contains:
* A SignedTreeHead struct representing a signed tree head.
* CTLogResponseParser - a class to parse the STH returned by the log in
JSON format and fill in SignedTreeHead.
* An encoding function to create the binary blob over which the signature
in the STH applies.
* Addition to the CTLogVerifier class to validate and store provided STHs,
which uses the encoding function mentioned above.
BUG=
Review URL: https://codereview.chromium.org/230713002
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@269887 0039d316-1c4b-4281-b951-d872f2087c98
diff --git a/net/net.gypi b/net/net.gypi
index 4a59cf7a..f2e4f8cf 100644
--- a/net/net.gypi
+++ b/net/net.gypi
@@ -76,6 +76,7 @@
'cert/signed_certificate_timestamp.h',
'cert/single_request_cert_verifier.cc',
'cert/single_request_cert_verifier.h',
+ 'cert/signed_tree_head.h',
'cert/x509_cert_types.cc',
'cert/x509_cert_types.h',
'cert/x509_certificate.cc',
@@ -296,6 +297,8 @@
'cert/crl_set.h',
'cert/ct_known_logs.cc',
'cert/ct_known_logs.h',
+ 'cert/ct_log_response_parser.cc',
+ 'cert/ct_log_response_parser.h',
'cert/ct_log_verifier.cc',
'cert/ct_log_verifier.h',
'cert/ct_log_verifier_nss.cc',
@@ -1264,6 +1267,7 @@
'base/url_util_unittest.cc',
'cert/cert_verify_proc_unittest.cc',
'cert/crl_set_unittest.cc',
+ 'cert/ct_log_response_parser_unittest.cc',
'cert/ct_log_verifier_unittest.cc',
'cert/ct_objects_extractor_unittest.cc',
'cert/ct_serialization_unittest.cc',
