diff options
| author | Gregory Cooke <gregorycooke@google.com> | 2023-10-17 13:03:52 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-10-17 13:03:52 -0400 |
| commit | 0f0396ae928d559266dfa2e096f3f24b3e4ab0e4 (patch) | |
| tree | 5f517be4bfe50fc78161c900ccbb8f03e7b7ebc2 /Makefile | |
| parent | 5fd09c1aff1f5d5a722ba38b9ac6e3791b8514e7 (diff) | |
| download | grpc-grpc-0f0396ae928d559266dfa2e096f3f24b3e4ab0e4.tar.gz | |
[TLS - Revocation] Crl Provider (#33786)
The basic APIs for the CRL Reloading features.
This adds external types to represent CRL Providers, CRLs, and
CertificateInfo.
Internally we will use `CrlImpl` - this layer is needed to hide OpenSSL
details from the user.
GRFC - https://github.com/grpc/proposal/pull/382
Things Done
* Add external API for `CrlProvider`, `Crl`, `CertInfo` (`CertInfo` is
used during CRL lookup rather than passing the entire certificate).
* Add code paths in `ssl_transport_security` to utilize CRL providers
* Add `StaticCrlProvider`
* Refactor `crl_ssl_transport_security_test.cc` so it is more extensible
and can be used with providers
Diffstat (limited to 'Makefile')
| -rw-r--r-- | Makefile | 4 |
1 files changed, 4 insertions, 0 deletions
@@ -1637,6 +1637,7 @@ LIBGRPC_SRC = \ src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc \ src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.cc \ src/core/lib/security/credentials/tls/grpc_tls_credentials_options.cc \ + src/core/lib/security/credentials/tls/grpc_tls_crl_provider.cc \ src/core/lib/security/credentials/tls/tls_credentials.cc \ src/core/lib/security/credentials/tls/tls_utils.cc \ src/core/lib/security/credentials/xds/xds_credentials.cc \ @@ -1751,6 +1752,7 @@ PUBLIC_HEADERS_C += \ include/grpc/fork.h \ include/grpc/grpc.h \ include/grpc/grpc_audit_logging.h \ + include/grpc/grpc_crl_provider.h \ include/grpc/grpc_posix.h \ include/grpc/grpc_security.h \ include/grpc/grpc_security_constants.h \ @@ -2268,6 +2270,7 @@ PUBLIC_HEADERS_C += \ include/grpc/fork.h \ include/grpc/grpc.h \ include/grpc/grpc_audit_logging.h \ + include/grpc/grpc_crl_provider.h \ include/grpc/grpc_posix.h \ include/grpc/grpc_security.h \ include/grpc/grpc_security_constants.h \ @@ -3687,6 +3690,7 @@ src/core/lib/security/credentials/tls/grpc_tls_certificate_match.cc: $(OPENSSL_D src/core/lib/security/credentials/tls/grpc_tls_certificate_provider.cc: $(OPENSSL_DEP) src/core/lib/security/credentials/tls/grpc_tls_certificate_verifier.cc: $(OPENSSL_DEP) src/core/lib/security/credentials/tls/grpc_tls_credentials_options.cc: $(OPENSSL_DEP) +src/core/lib/security/credentials/tls/grpc_tls_crl_provider.cc: $(OPENSSL_DEP) src/core/lib/security/credentials/tls/tls_credentials.cc: $(OPENSSL_DEP) src/core/lib/security/credentials/xds/xds_credentials.cc: $(OPENSSL_DEP) src/core/lib/security/security_connector/alts/alts_security_connector.cc: $(OPENSSL_DEP) |