Added CreateOriginBound method to x509_certificate.h.

This static method branches the CreateSelfSigned code to create a self signed certificate that contains an X509v3 extension that indicates the ASCII weborigin that is bound to the generated certificate.

BUG=88782
TEST=


Review URL: http://codereview.chromium.org/7384002

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@98288 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 12 insertions, 0 deletions

diff --git a/net/base/x509_certificate.h b/net/base/x509_certificate.h
index 4c8dd01..8589e92 100644
--- a/net/base/x509_certificate.h
+++ b/net/base/x509_certificate.h
@@ -187,6 +187,18 @@ class NET_EXPORT X509Certificate
                                            uint32 serial_number,
                                            base::TimeDelta valid_duration);
 
+  // Create an origin bound certificate containing the public key in |key|.
+  // Web origin, serial number and validity period are given as
+  // parameters. The certificate is signed by the private key in |key|.
+  // The hashing algorithm for the signature is SHA-1.
+  //
+  // See Internet Draft draft-balfanz-tls-obc-00 for more details:
+  // http://balfanz.github.com/tls-obc-spec/draft-balfanz-tls-obc-00.html
+  static X509Certificate* CreateOriginBound(crypto::RSAPrivateKey* key,
+                                            const std::string& origin,
+                                            uint32 serial_number,
+                                            base::TimeDelta valid_duration);
+
   // Appends a representation of this object to the given pickle.
   void Persist(Pickle* pickle);