Support generation of EC keys using P256 curve and support ECDSA certs.

webrtc/base/nssidentity.h

 /*
  *  Copyright 2004 The WebRTC Project Authors. All rights reserved.
  *
  *  Use of this source code is governed by a BSD-style license
  *  that can be found in the LICENSE file in the root of the source
  *  tree. An additional intellectual property rights grant can be found
  *  in the file PATENTS.  All contributing project authors may
  *  be found in the AUTHORS file in the root of the source tree.
  */
 
 #ifndef WEBRTC_BASE_NSSIDENTITY_H_
 #define WEBRTC_BASE_NSSIDENTITY_H_
 
 #include <string>
 
 #include "cert.h"
 #include "nspr.h"
 #include "hasht.h"
 #include "keythi.h"
 
+#ifdef NSS_SSL_RELATIVE_PATH
+#include "ssl.h"
+#else
+#include "net/third_party/nss/ssl/ssl.h"
+#endif
+
 #include "webrtc/base/common.h"
 #include "webrtc/base/logging.h"
 #include "webrtc/base/scoped_ptr.h"
 #include "webrtc/base/sslidentity.h"
 
 namespace rtc {
 
 class NSSKeyPair {
  public:
-  NSSKeyPair(SECKEYPrivateKey* privkey, SECKEYPublicKey* pubkey) :
-      privkey_(privkey), pubkey_(pubkey) {}
+  NSSKeyPair(SECKEYPrivateKey* privkey, SECKEYPublicKey* pubkey)
+      : privkey_(privkey), pubkey_(pubkey), ssl_kea_type_(ssl_kea_null) {}
+  NSSKeyPair(SECKEYPrivateKey* privkey,
+             SECKEYPublicKey* pubkey,
+             SSLKEAType ssl_kea_type)
+      : privkey_(privkey), pubkey_(pubkey), ssl_kea_type_(ssl_kea_type) {}
   ~NSSKeyPair();
 
   // Generate a 1024-bit RSA key pair.
-  static NSSKeyPair* Generate();
+  static NSSKeyPair* Generate(KeyType key_type);
   NSSKeyPair* GetReference();
 
   SECKEYPrivateKey* privkey() const { return privkey_; }
   SECKEYPublicKey * pubkey() const { return pubkey_; }
+  SSLKEAType ssl_kea_type() const { return ssl_kea_type_; }
 
  private:
+  SSLKEAType ssl_kea_type_;
   SECKEYPrivateKey* privkey_;
   SECKEYPublicKey* pubkey_;
 
   DISALLOW_COPY_AND_ASSIGN(NSSKeyPair);
 };
 
 
 class NSSCertificate : public SSLCertificate {
  public:
   static NSSCertificate* FromPEMString(const std::string& pem_string);
@@ skipping 38 matching lines @@
 
   CERTCertificate* certificate_;
   scoped_ptr<SSLCertChain> chain_;
 
   DISALLOW_COPY_AND_ASSIGN(NSSCertificate);
 };
 
 // Represents a SSL key pair and certificate for NSS.
 class NSSIdentity : public SSLIdentity {
  public:
-  static NSSIdentity* Generate(const std::string& common_name);
-  static NSSIdentity* GenerateForTest(const SSLIdentityParams& params);
+  static NSSIdentity* Generate(const std::string& common_name,
+                               KeyType key_type);
+  static NSSIdentity* GenerateForTest(const SSLIdentityParams& params,
+                                      KeyType key_type);
   static SSLIdentity* FromPEMStrings(const std::string& private_key,
                                      const std::string& certificate);
   ~NSSIdentity() override;
 
   NSSIdentity* GetReference() const override;
   NSSCertificate& certificate() const override;
 
   NSSKeyPair* keypair() const { return keypair_.get(); }
 
  private:
   NSSIdentity(NSSKeyPair* keypair, NSSCertificate* cert);
 
-  static NSSIdentity* GenerateInternal(const SSLIdentityParams& params);
+  static NSSIdentity* GenerateInternal(const SSLIdentityParams& params,
+                                       KeyType key_type);
 
   rtc::scoped_ptr<NSSKeyPair> keypair_;
   rtc::scoped_ptr<NSSCertificate> certificate_;
 
   DISALLOW_COPY_AND_ASSIGN(NSSIdentity);
 };
 
 }  // namespace rtc
 
 #endif  // WEBRTC_BASE_NSSIDENTITY_H_