OLD | NEW |
1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_ | 5 #ifndef COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_ |
6 #define COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_ | 6 #define COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_ |
7 | 7 |
8 #include "base/macros.h" | 8 #include "base/macros.h" |
9 #include "net/cert/cert_status_flags.h" | 9 #include "net/cert/cert_status_flags.h" |
10 #include "net/cert/sct_status_flags.h" | 10 #include "net/cert/sct_status_flags.h" |
(...skipping 96 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
107 net::CertStatus cert_status; | 107 net::CertStatus cert_status; |
108 int cert_id; | 108 int cert_id; |
109 // The security strength, in bits, of the SSL cipher suite. In late | 109 // The security strength, in bits, of the SSL cipher suite. In late |
110 // 2015, 128 is considered the minimum. | 110 // 2015, 128 is considered the minimum. |
111 // 0 means the connection is not encrypted. | 111 // 0 means the connection is not encrypted. |
112 // -1 means the security strength is unknown. | 112 // -1 means the security strength is unknown. |
113 int security_bits; | 113 int security_bits; |
114 // Information about the SSL connection, such as protocol and | 114 // Information about the SSL connection, such as protocol and |
115 // ciphersuite. See ssl_connection_flags.h in net. | 115 // ciphersuite. See ssl_connection_flags.h in net. |
116 int connection_status; | 116 int connection_status; |
117 // True if the protocol version and ciphersuite for the connection | 117 // A mask that indicates which of the protocol version, |
118 // are considered secure. | 118 // key exchange, or cipher for the connection is considered |
119 bool is_secure_protocol_and_ciphersuite; | 119 // obsolete. See net::ObsoleteSSLMask for specific mask values. |
| 120 int obsolete_ssl_status; |
| 121 |
120 // True if pinning was bypassed due to a local trust anchor. | 122 // True if pinning was bypassed due to a local trust anchor. |
121 bool pkp_bypassed; | 123 bool pkp_bypassed; |
122 }; | 124 }; |
123 | 125 |
124 // Contains the security state relevant to computing the SecurityInfo | 126 // Contains the security state relevant to computing the SecurityInfo |
125 // for a page. This is the input to GetSecurityInfo() provided by the | 127 // for a page. This is the input to GetSecurityInfo() provided by the |
126 // model's client. | 128 // model's client. |
127 struct VisibleSecurityState { | 129 struct VisibleSecurityState { |
128 VisibleSecurityState(); | 130 VisibleSecurityState(); |
129 ~VisibleSecurityState(); | 131 ~VisibleSecurityState(); |
(...skipping 53 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
183 mutable VisibleSecurityState visible_security_state_; | 185 mutable VisibleSecurityState visible_security_state_; |
184 | 186 |
185 SecurityStateModelClient* client_; | 187 SecurityStateModelClient* client_; |
186 | 188 |
187 DISALLOW_COPY_AND_ASSIGN(SecurityStateModel); | 189 DISALLOW_COPY_AND_ASSIGN(SecurityStateModel); |
188 }; | 190 }; |
189 | 191 |
190 } // namespace security_state | 192 } // namespace security_state |
191 | 193 |
192 #endif // COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_ | 194 #endif // COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_ |
OLD | NEW |