OLD | NEW |
1 // Copyright 2014 The Chromium Authors. All rights reserved. | 1 // Copyright 2014 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef NET_SSL_SSL_CONFIG_H_ | 5 #ifndef NET_SSL_SSL_CONFIG_H_ |
6 #define NET_SSL_SSL_CONFIG_H_ | 6 #define NET_SSL_SSL_CONFIG_H_ |
7 | 7 |
8 #include "base/basictypes.h" | 8 #include "base/basictypes.h" |
9 #include "base/memory/ref_counted.h" | 9 #include "base/memory/ref_counted.h" |
10 #include "net/base/net_export.h" | 10 #include "net/base/net_export.h" |
(...skipping 97 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
108 | 108 |
109 // Enables deprecated cipher suites. Currently, RC4 is deprecated. | 109 // Enables deprecated cipher suites. Currently, RC4 is deprecated. |
110 bool enable_deprecated_cipher_suites; | 110 bool enable_deprecated_cipher_suites; |
111 | 111 |
112 bool channel_id_enabled; // True if TLS channel ID extension is enabled. | 112 bool channel_id_enabled; // True if TLS channel ID extension is enabled. |
113 bool false_start_enabled; // True if we'll use TLS False Start. | 113 bool false_start_enabled; // True if we'll use TLS False Start. |
114 // True if the Certificate Transparency signed_certificate_timestamp | 114 // True if the Certificate Transparency signed_certificate_timestamp |
115 // TLS extension is enabled. | 115 // TLS extension is enabled. |
116 bool signed_cert_timestamps_enabled; | 116 bool signed_cert_timestamps_enabled; |
117 | 117 |
118 // require_forward_secrecy, if true, causes only (EC)DHE cipher suites to be | 118 // If true, causes only ECDHE cipher suites to be enabled. NOTE: This only |
119 // enabled. NOTE: this only applies to server sockets currently, although | 119 // applies to server sockets currently, although that could be extended if |
120 // that could be extended if needed. | 120 // needed. |
121 bool require_forward_secrecy; | 121 bool require_ecdhe; |
122 | 122 |
123 // TODO(wtc): move the following members to a new SSLParams structure. They | 123 // TODO(wtc): move the following members to a new SSLParams structure. They |
124 // are not SSL configuration settings. | 124 // are not SSL configuration settings. |
125 | 125 |
126 struct NET_EXPORT CertAndStatus { | 126 struct NET_EXPORT CertAndStatus { |
127 CertAndStatus(); | 127 CertAndStatus(); |
128 ~CertAndStatus(); | 128 ~CertAndStatus(); |
129 | 129 |
130 std::string der_cert; | 130 std::string der_cert; |
131 CertStatus cert_status; | 131 CertStatus cert_status; |
(...skipping 45 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
177 // |fastradio_padding_eligible| can be true when |fastradio_padding_enabled| | 177 // |fastradio_padding_eligible| can be true when |fastradio_padding_enabled| |
178 // is false: in this case, fastradio padding would not be enabled, but | 178 // is false: in this case, fastradio padding would not be enabled, but |
179 // metrics can be collected for experiments. | 179 // metrics can be collected for experiments. |
180 bool fastradio_padding_enabled; | 180 bool fastradio_padding_enabled; |
181 bool fastradio_padding_eligible; | 181 bool fastradio_padding_eligible; |
182 }; | 182 }; |
183 | 183 |
184 } // namespace net | 184 } // namespace net |
185 | 185 |
186 #endif // NET_SSL_SSL_CONFIG_H_ | 186 #endif // NET_SSL_SSL_CONFIG_H_ |
OLD | NEW |