summaryrefslogtreecommitdiff
path: root/chromium/components/policy/proto/policy_signing_key.proto
diff options
context:
space:
mode:
Diffstat (limited to 'chromium/components/policy/proto/policy_signing_key.proto')
-rw-r--r--chromium/components/policy/proto/policy_signing_key.proto26
1 files changed, 26 insertions, 0 deletions
diff --git a/chromium/components/policy/proto/policy_signing_key.proto b/chromium/components/policy/proto/policy_signing_key.proto
new file mode 100644
index 00000000000..a5886e15b31
--- /dev/null
+++ b/chromium/components/policy/proto/policy_signing_key.proto
@@ -0,0 +1,26 @@
+// Copyright 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+syntax = "proto2";
+
+option optimize_for = LITE_RUNTIME;
+
+package enterprise_management;
+
+// Contains a signing key and its signature.
+message PolicySigningKey {
+ // The key used to verify policy blobs sent down from the server.
+ optional bytes signing_key = 1;
+
+ // The signature for this signing key (verified using a hard-coded key
+ // stored in the Chrome binary). This is essentially a certificate (key
+ // signed with another well-known key that establishes a trust root).
+ optional bytes signing_key_signature = 2;
+
+ // This is the hard-coded verification key used to generate/verify the
+ // signing_key_signature. We track this in the cache data so we know which
+ // verification key to use when validating the cached policy (important when
+ // doing key rotation).
+ optional bytes verification_key = 3;
+}
View Lorry Controller Status