Chromium Code Reviews
Descriptioncontent::RTCCertificateGenerator and WebRTC-EnableWebRtcEcdsa update.
The flag WebRTC-EnableWebRtcEcdsa no longer makes assumptions about which type
the default certificate is. Compares with KT_DEFAULT instead; if flag is on ECDSA
is used, if off RSA is used. Previously assumed RSA was the default.
- This is preparation for modifying the value of KT_DEFAULT without messing up
the WebRTC-EnableWebRtcEcdsa experiment.
Synchronous version of content::RTCCerticicateGenerator's certificate generation
method added: generateCertificateAndWait. This is used in place of
SSLIdentity::Generate - or its replacement
rtc::RTCCertificateGenerator::GenerateCertificate - because using the Chromium
crypto path (PeerConnectionIdentityStore) still has performance benefits for
RSA-1024. We will stop taking advantage of this crypto path as soon as we remove
WebRTC-EnableWebRtcEcdsa and there is no risk of RSA-1024 being the default.
Using generateCertificateAndWait in rtc_peer_connection_handler.cc and removed
old code using SSLIdentity::Generate in its place.
BUG=601850
Patch Set 1 #Patch Set 2 : Reverted unnecessary CONTENT_EXPORT change and updated comment (no need to re-run trybots yet) #
Total comments: 28
Patch Set 3 : Addressed comments #
Messages
Total messages: 13 (5 generated)
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||