net/base/cert_status_flags.h - Issue 7819009: For the SSL cert status, convert anonymous enum that gives bit values into a typedefed uint32. Th...

Side by Side Diff: net/base/cert_status_flags.h

Issue 7819009: For the SSL cert status, convert anonymous enum that gives bit values into a typedefed uint32. Th... (Closed) Base URL: svn://chrome-svn/chrome/trunk/src/

Patch Set: Created 9 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2006-2008 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #ifndef NET_BASE_CERT_STATUS_FLAGS_H_	5 #ifndef NET_BASE_CERT_STATUS_FLAGS_H_

6 #define NET_BASE_CERT_STATUS_FLAGS_H_	6 #define NET_BASE_CERT_STATUS_FLAGS_H_

7 #pragma once	7 #pragma once

8	8

	9 #include "base/basictypes.h"

	10

9 namespace net {	11 namespace net {

10	12

11 // Status flags, such as errors and extended validation.	13 // Status flags, such as errors and extended validation.

12 enum {	14 typedef uint32 CertStatus;

13 // Bits 0 to 15 are for errors.	15 static const CertStatus CERT_STATUS_NO_ERROR = 0;

14 CERT_STATUS_ALL_ERRORS = 0xFFFF,

15 CERT_STATUS_COMMON_NAME_INVALID = 1 << 0,

16 CERT_STATUS_DATE_INVALID = 1 << 1,

17 CERT_STATUS_AUTHORITY_INVALID = 1 << 2,

18 // 1 << 3 is reserved for ERR_CERT_CONTAINS_ERRORS (not useful with WinHTTP).

19 CERT_STATUS_NO_REVOCATION_MECHANISM = 1 << 4,

20 CERT_STATUS_UNABLE_TO_CHECK_REVOCATION = 1 << 5,

21 CERT_STATUS_REVOKED = 1 << 6,

22 CERT_STATUS_INVALID = 1 << 7,

23 CERT_STATUS_WEAK_SIGNATURE_ALGORITHM = 1 << 8,

24 CERT_STATUS_NOT_IN_DNS = 1 << 9,

25 CERT_STATUS_NON_UNIQUE_NAME = 1 << 10,

26	16

27 // Bits 16 to 30 are for non-error statuses.	17 // Bits 0 to 15 are for errors.

28 CERT_STATUS_IS_EV = 1 << 16,	18 static const CertStatus CERT_STATUS_ALL_ERRORS = 0xFFFF;

29 CERT_STATUS_REV_CHECKING_ENABLED = 1 << 17,	19 static const CertStatus CERT_STATUS_COMMON_NAME_INVALID = 1 << 0;

30 CERT_STATUS_IS_DNSSEC = 1 << 18,	20 static const CertStatus CERT_STATUS_DATE_INVALID = 1 << 1;

	21 static const CertStatus CERT_STATUS_AUTHORITY_INVALID = 1 << 2;

	22 // 1 << 3 is reserved for ERR_CERT_CONTAINS_ERRORS (not useful with WinHTTP).

	23 static const CertStatus CERT_STATUS_NO_REVOCATION_MECHANISM = 1 << 4;

	24 static const CertStatus CERT_STATUS_UNABLE_TO_CHECK_REVOCATION = 1 << 5;

	25 static const CertStatus CERT_STATUS_REVOKED = 1 << 6;

	26 static const CertStatus CERT_STATUS_INVALID = 1 << 7;

	27 static const CertStatus CERT_STATUS_WEAK_SIGNATURE_ALGORITHM = 1 << 8;

	28 static const CertStatus CERT_STATUS_NOT_IN_DNS = 1 << 9;

	29 static const CertStatus CERT_STATUS_NON_UNIQUE_NAME = 1 << 10;

31	30

32 // 1 << 31 (the sign bit) is reserved so that the cert status will never be	31 // Bits 16 to 30 are for non-error statuses.

33 // negative.	32 static const CertStatus CERT_STATUS_IS_EV = 1 << 16;

34 };	33 static const CertStatus CERT_STATUS_REV_CHECKING_ENABLED = 1 << 17;

	34 static const CertStatus CERT_STATUS_IS_DNSSEC = 1 << 18;
	wtc 2011/09/02 22:40:35 Can these remain enumerators? Otherwise people ma Can these remain enumerators? Otherwise people may ask why they don't follow the naming convention of constants. Do not rename these constants. They are well-known and have appeared in bug reports. Peter Kasting 2011/09/12 17:28:40 In that case I think it's fine to simply add: // Show quoted text On 2011/09/02 22:40:35, wtc wrote: > Can these remain enumerators? Otherwise people may ask why > they don't follow the naming convention of constants. > > Do not rename these constants. They are well-known and > have appeared in bug reports. In that case I think it's fine to simply add: // These are named LIKE_MACROS instead of kLikeConstants for historical reasons. // Don't change these names -- they are well-known and have appeared in bug reports. Peter Kasting 2011/09/12 17:33:41 I pinged Brett about this and his response was tha Show quoted text On 2011/09/12 17:28:40, Peter Kasting wrote: > On 2011/09/02 22:40:35, wtc wrote: > > Can these remain enumerators? Otherwise people may ask why > > they don't follow the naming convention of constants. > > In that case I think it's fine to simply add: > > // These are named LIKE_MACROS instead of kLikeConstants for historical reasons. > // Don't change these names -- they are well-known and have appeared in bug > reports. I pinged Brett about this and his response was that he didn't care either way.
	35

	36 // Bit 31 is reserved so that values with that bit set can be safely assumed to

	37 // be invalid.
	wtc 2011/09/02 22:40:35 Since CertStatus is an unsigned integer, we can us Since CertStatus is an unsigned integer, we can use the most significant bit. Originiarry cert_status has the 'int' type, so we want to avoid a negative value for ease of debugging and logging. Peter Kasting 2011/09/12 17:28:40 OK, I can remove that comment. There's one unit t Show quoted text On 2011/09/02 22:40:35, wtc wrote: > Since CertStatus is an unsigned integer, we can use the > most significant bit. > > Originiarry cert_status has the 'int' type, so we want to > avoid a negative value for ease of debugging and logging. OK, I can remove that comment. There's one unit test (HttpNetworkTransactionTest.ResetStateForRestart) that is using "-15" as an "obviously bogus" value for the cert status; I'll just change it to -1, which should still be fine as all the test really checks is that the status gets reset to CERT_STATUS_NO_ERROR.
35	38

36 // Returns true if the specified cert status has an error set.	39 // Returns true if the specified cert status has an error set.

37 static inline bool IsCertStatusError(int status) {	40 static inline bool IsCertStatusError(CertStatus status) {

38 return (CERT_STATUS_ALL_ERRORS & status) != 0;	41 return (CERT_STATUS_ALL_ERRORS & status) != 0;

39 }	42 }

40	43

41 // Maps a network error code to the equivalent certificate status flag. If	44 // Maps a network error code to the equivalent certificate status flag. If

42 // the error code is not a certificate error, it is mapped to 0.	45 // the error code is not a certificate error, it is mapped to 0.

43 int MapNetErrorToCertStatus(int error);	46 CertStatus MapNetErrorToCertStatus(int error);

44	47

45 // Maps the most serious certificate error in the certificate status flags	48 // Maps the most serious certificate error in the certificate status flags

46 // to the equivalent network error code.	49 // to the equivalent network error code.

47 int MapCertStatusToNetError(int cert_status);	50 int MapCertStatusToNetError(CertStatus cert_status);

48	51

49 } // namespace net	52 } // namespace net

50	53

51 #endif // NET_BASE_CERT_STATUS_FLAGS_H_	54 #endif // NET_BASE_CERT_STATUS_FLAGS_H_

OLD	NEW

« no previous file with comments | « content/browser/tab_contents/tab_contents.cc ('k') | net/base/cert_status_flags.cc » ('j') | no next file with comments »