Mirror of BoringSSL (grpc依赖)
https://boringssl.googlesource.com/boringssl
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
31 lines
990 B
31 lines
990 B
// Copyright 2019 The Chromium Authors |
|
// Use of this source code is governed by a BSD-style license that can be |
|
// found in the LICENSE file. |
|
|
|
#ifndef BSSL_PKI_REVOCATION_UTIL_H_ |
|
#define BSSL_PKI_REVOCATION_UTIL_H_ |
|
|
|
#include <cstdint> |
|
#include <optional> |
|
|
|
#include <openssl/base.h> |
|
|
|
namespace bssl { |
|
|
|
namespace der { |
|
struct GeneralizedTime; |
|
} |
|
|
|
// Returns true if a revocation status with |this_update| field and potentially |
|
// a |next_update| field, is valid at POSIX time |verify_time_epoch_seconds| and |
|
// not older than |max_age_seconds| seconds, if specified. Expressed |
|
// differently, returns true if |this_update <= verify_time < next_update|, and |
|
// |this_update >= verify_time - max_age|. |
|
[[nodiscard]] OPENSSL_EXPORT bool CheckRevocationDateValid( |
|
const der::GeneralizedTime &this_update, |
|
const der::GeneralizedTime *next_update, int64_t verify_time_epoch_seconds, |
|
std::optional<int64_t> max_age_seconds); |
|
|
|
} // namespace bssl |
|
|
|
#endif // BSSL_PKI_REVOCATION_UTIL_H_
|
|
|