Index: net/third_party/nss/ssl/ssl.h |
diff --git a/net/third_party/nss/ssl/ssl.h b/net/third_party/nss/ssl/ssl.h |
index c083a6b2a604e41654286efc1a08c7c68d6c0b5b..4739fcf93f4112f20e84722b62717516560743c5 100644 |
--- a/net/third_party/nss/ssl/ssl.h |
+++ b/net/third_party/nss/ssl/ssl.h |
@@ -244,7 +244,6 @@ SSL_IMPORT SECStatus SSL_GetNextProto(PRFileDesc *fd, |
** is enabled, otherwise it is disabled. |
** The "cipher" values are defined in sslproto.h (the SSL_EN_* values). |
** EnableCipher records user preferences. |
-** SetPolicy sets the policy according to the policy module. |
*/ |
#ifdef SSL_DEPRECATED_FUNCTION |
/* Old deprecated function names */ |
@@ -257,7 +256,11 @@ SSL_IMPORT SECStatus SSL_CipherPrefSet(PRFileDesc *fd, PRInt32 cipher, PRBool en |
SSL_IMPORT SECStatus SSL_CipherPrefGet(PRFileDesc *fd, PRInt32 cipher, PRBool *enabled); |
SSL_IMPORT SECStatus SSL_CipherPrefSetDefault(PRInt32 cipher, PRBool enabled); |
SSL_IMPORT SECStatus SSL_CipherPrefGetDefault(PRInt32 cipher, PRBool *enabled); |
+ |
+/* Policy functions are deprecated and no longer have any effect. They exist in |
+ * order to maintain ABI compatibility. */ |
SSL_IMPORT SECStatus SSL_CipherPolicySet(PRInt32 cipher, PRInt32 policy); |
+/* SSL_CipherPolicyGet sets *policy to SSL_ALLOWED and returns SECSuccess. */ |
SSL_IMPORT SECStatus SSL_CipherPolicyGet(PRInt32 cipher, PRInt32 *policy); |
/* SSLChannelBindingType enumerates the types of supported channel binding |
@@ -352,7 +355,7 @@ SSL_IMPORT SECStatus SSL_VersionRangeSet(PRFileDesc *fd, |
const SSLVersionRange *vrange); |
-/* Values for "policy" argument to SSL_PolicySet */ |
+/* Values for "policy" argument to SSL_CipherPolicySet */ |
/* Values returned by SSL_CipherPolicyGet. */ |
#define SSL_NOT_ALLOWED 0 /* or invalid or unimplemented */ |
#define SSL_ALLOWED 1 |
@@ -892,26 +895,12 @@ SSL_IMPORT SECStatus NSS_CmpCertChainWCANames(CERTCertificate *cert, |
*/ |
SSL_IMPORT SSLKEAType NSS_FindCertKEAType(CERTCertificate * cert); |
-/* Set cipher policies to a predefined Domestic (U.S.A.) policy. |
- * This essentially enables all supported ciphers. |
- */ |
+/* |
+** The NSS_Set*Policy functions have no effect and exist in order to maintain |
+** ABI compatibility. All supported ciphers are now allowed. |
+*/ |
SSL_IMPORT SECStatus NSS_SetDomesticPolicy(void); |
- |
-/* Set cipher policies to a predefined Policy that is exportable from the USA |
- * according to present U.S. policies as we understand them. |
- * See documentation for the list. |
- * Note that your particular application program may be able to obtain |
- * an export license with more or fewer capabilities than those allowed |
- * by this function. In that case, you should use SSL_SetPolicy() |
- * to explicitly allow those ciphers you may legally export. |
- */ |
SSL_IMPORT SECStatus NSS_SetExportPolicy(void); |
- |
-/* Set cipher policies to a predefined Policy that is exportable from the USA |
- * according to present U.S. policies as we understand them, and that the |
- * nation of France will permit to be imported into their country. |
- * See documentation for the list. |
- */ |
SSL_IMPORT SECStatus NSS_SetFrancePolicy(void); |
SSL_IMPORT SSL3Statistics * SSL_GetStatistics(void); |