Chromium Code Reviews Chromium Code Reviews
Issue 5746003:
Defines SSLServerSocket and implements SSLServerSocketNSS (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| OLD | NEW |
|---|---|
| 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2010 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #ifndef NET_BASE_SSL_CONFIG_SERVICE_H_ | 5 #ifndef NET_BASE_SSL_CONFIG_SERVICE_H_ |
| 6 #define NET_BASE_SSL_CONFIG_SERVICE_H_ | 6 #define NET_BASE_SSL_CONFIG_SERVICE_H_ |
| 7 #pragma once | 7 #pragma once |
| 8 | 8 |
| 9 #include <vector> | 9 #include <vector> |
| 10 | 10 |
| (...skipping 13 matching lines...) Expand all Loading... | |
| 24 | 24 |
| 25 bool rev_checking_enabled; // True if server certificate revocation | 25 bool rev_checking_enabled; // True if server certificate revocation |
| 26 // checking is enabled. | 26 // checking is enabled. |
| 27 // SSL 2.0 is not supported. | 27 // SSL 2.0 is not supported. |
| 28 bool ssl3_enabled; // True if SSL 3.0 is enabled. | 28 bool ssl3_enabled; // True if SSL 3.0 is enabled. |
| 29 bool tls1_enabled; // True if TLS 1.0 is enabled. | 29 bool tls1_enabled; // True if TLS 1.0 is enabled. |
| 30 bool dnssec_enabled; // True if we'll accept DNSSEC chains in certificates. | 30 bool dnssec_enabled; // True if we'll accept DNSSEC chains in certificates. |
| 31 bool snap_start_enabled; // True if we'll try Snap Start handshakes. | 31 bool snap_start_enabled; // True if we'll try Snap Start handshakes. |
| 32 // True if we'll do async checks for certificate provenance using DNS. | 32 // True if we'll do async checks for certificate provenance using DNS. |
| 33 bool dns_cert_provenance_checking_enabled; | 33 bool dns_cert_provenance_checking_enabled; |
| 34 bool no_cache_enabled; // Disable caching. | |
|
wtc
2010/12/17 00:16:26
no_cache_enabled => session_cache_disabled
More i
Alpha Left Google
2010/12/17 08:30:43
I'd like to simply the implementations in the firs
wtc
2010/12/17 16:38:32
Adding a TODO for enabling server session cache is
Alpha Left Google
2010/12/17 20:09:57
SSLClientSocketNSS uses session key between tests.
| |
| 34 | 35 |
| 35 // Cipher suites which should be explicitly prevented from being used. By | 36 // Cipher suites which should be explicitly prevented from being used. By |
| 36 // default, all cipher suites supported by the underlying SSL implementation | 37 // default, all cipher suites supported by the underlying SSL implementation |
| 37 // will be enabled, except for: | 38 // will be enabled, except for: |
| 38 // - Null encryption cipher suites. | 39 // - Null encryption cipher suites. |
| 39 // - Weak cipher suites: < 80 bits of security strength. | 40 // - Weak cipher suites: < 80 bits of security strength. |
| 40 // - FORTEZZA cipher suites (obsolete). | 41 // - FORTEZZA cipher suites (obsolete). |
| 41 // - IDEA cipher suites (RFC 5469 explains why). | 42 // - IDEA cipher suites (RFC 5469 explains why). |
| 42 // - Anonymous cipher suites. | 43 // - Anonymous cipher suites. |
| 43 // | 44 // |
| (...skipping 142 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 186 void ProcessConfigUpdate(const SSLConfig& orig_config, | 187 void ProcessConfigUpdate(const SSLConfig& orig_config, |
| 187 const SSLConfig& new_config); | 188 const SSLConfig& new_config); |
| 188 | 189 |
| 189 private: | 190 private: |
| 190 ObserverList<Observer> observer_list_; | 191 ObserverList<Observer> observer_list_; |
| 191 }; | 192 }; |
| 192 | 193 |
| 193 } // namespace net | 194 } // namespace net |
| 194 | 195 |
| 195 #endif // NET_BASE_SSL_CONFIG_SERVICE_H_ | 196 #endif // NET_BASE_SSL_CONFIG_SERVICE_H_ |
| OLD | NEW |
