net/base/ssl_info.h - Issue 415005: Linux: add next-protocol-negotiation to libssl.

Side by Side Diff: net/base/ssl_info.h

Issue 415005: Linux: add next-protocol-negotiation to libssl. (Closed)

Patch Set: Addressing wtc's comments. Created 11 years, 1 month ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

OLD	NEW
1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #ifndef NET_BASE_SSL_INFO_H_	5 #ifndef NET_BASE_SSL_INFO_H_

6 #define NET_BASE_SSL_INFO_H_	6 #define NET_BASE_SSL_INFO_H_

7	7

8 #include "net/base/cert_status_flags.h"	8 #include "net/base/cert_status_flags.h"

9 #include "net/base/x509_certificate.h"	9 #include "net/base/x509_certificate.h"

10	10

11 namespace net {	11 namespace net {

12	12

13 // SSL connection info.	13 // SSL connection info.

14 // This is really a struct. All members are public.	14 // This is really a struct. All members are public.

15 class SSLInfo {	15 class SSLInfo {

16 public:	16 public:

17 SSLInfo() : cert_status(0), security_bits(-1) { }	17 SSLInfo() : cert_status(0), security_bits(-1),

	18 next_proto_status(kNextProtoUnsupported) { }

18	19

19 void Reset() {	20 void Reset() {

20 cert = NULL;	21 cert = NULL;

21 security_bits = -1;	22 security_bits = -1;

22 cert_status = 0;	23 cert_status = 0;

	24 next_proto.clear();

	25 next_proto_status = kNextProtoUnsupported;

23 }	26 }

24	27

25 bool is_valid() const { return cert != NULL; }	28 bool is_valid() const { return cert != NULL; }

26	29

27 // Adds the specified \|error\| to the cert status.	30 // Adds the specified \|error\| to the cert status.

28 void SetCertError(int error) {	31 void SetCertError(int error) {

29 cert_status \|= MapNetErrorToCertStatus(error);	32 cert_status \|= MapNetErrorToCertStatus(error);

30 }	33 }

31	34

32 // The SSL certificate.	35 // The SSL certificate.

33 scoped_refptr<X509Certificate> cert;	36 scoped_refptr<X509Certificate> cert;

34	37

35 // Bitmask of status info of \|cert\|, representing, for example, known errors	38 // Bitmask of status info of \|cert\|, representing, for example, known errors

36 // and extended validation (EV) status.	39 // and extended validation (EV) status.

37 // See cert_status_flags.h for values.	40 // See cert_status_flags.h for values.

38 int cert_status;	41 int cert_status;

39	42

40 // The security strength, in bits, of the SSL cipher suite.	43 // The security strength, in bits, of the SSL cipher suite.

41 // 0 means the connection is not encrypted.	44 // 0 means the connection is not encrypted.

42 // -1 means the security strength is unknown.	45 // -1 means the security strength is unknown.

43 int security_bits;	46 int security_bits;

	47

	48 // Next Protocol Negotiation (NPN) allows a TLS client and server to come to

	49 // an agreement about the application level protocol to speak over a

	50 // connection. See also the next_protos field in SSLConfig.

	51 enum NextProtoStatus {
	willchan no longer on Chromium 2009/11/25 19:48:13 enums should go first in the class definition: htt enums should go first in the class definition: http://google-styleguide.googlecode.com/svn/trunk/cppguide.xml#Declaration_Order agl 2009/11/30 20:24:53 Done. Show quoted text On 2009/11/25 19:48:13, willchan wrote: > enums should go first in the class definition: > http://google-styleguide.googlecode.com/svn/trunk/cppguide.xml#Declaration_Order Done.
	52 kNextProtoUnsupported = 0, // The server doesn't support NPN.

	53 kNextProtoNegotiated = 1, // We agreed on a protocol, see next_proto

	54 kNextProtoNoOverlap = 2, // No protocols in common. We requested

	55 // \|next_proto\|.

	56 };

	57

	58 NextProtoStatus next_proto_status; // One of kNextProto*

	59 std::string next_proto; // The negotiated protocol, if any.
	willchan no longer on Chromium 2009/11/25 19:48:13 You should #include <string> for this. You should #include <string> for this. agl 2009/11/30 20:24:53 Done. Show quoted text On 2009/11/25 19:48:13, willchan wrote: > You should #include <string> for this. Done.
44 };	60 };

45	61

46 } // namespace net	62 } // namespace net

47	63

48 #endif // NET_BASE_SSL_INFO_H_	64 #endif // NET_BASE_SSL_INFO_H_

OLD	NEW

« net/base/ssl_config_service.h ('K') | « net/base/ssl_config_service.h ('k') | net/flip/flip_session.cc » ('j') | net/flip/flip_session.cc » ('J')