net/ssl/ssl_info.cc - Issue 2272603003: Route key_exchange_group over to DevTools.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/ssl/ssl_info.cc

Issue 2272603003: Route key_exchange_group over to DevTools. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: fix test maybe Created 4 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/ssl/ssl_info.cc

diff --git a/net/ssl/ssl_info.cc b/net/ssl/ssl_info.cc

index 12b3d4a5a17a63f8933b589af2d2414efad82728..d8b7aa63c50df1a8e90d05880fd3f3548b3be312 100644

--- a/net/ssl/ssl_info.cc

+++ b/net/ssl/ssl_info.cc

@@ -4,11 +4,14 @@

#include "net/ssl/ssl_info.h"

+#include <openssl/ssl.h>

#include "base/pickle.h"

#include "net/cert/cert_status_flags.h"

#include "net/cert/ct_policy_status.h"

#include "net/cert/signed_certificate_timestamp.h"

#include "net/cert/x509_certificate.h"

+#include "net/ssl/ssl_connection_status_flags.h"

namespace net {

@@ -71,6 +74,24 @@ void SSLInfo::Reset() {

ocsp_result = OCSPVerifyResult();

}

+uint16_t SSLInfo::GetKeyExchangeGroup() const {

+ // key_exchange_info is sometimes the (EC)DH group ID and sometimes a

lgarron 2016/08/30 22:13:51 That makes is sound like you can end up with a gri

davidben 2016/08/30 22:24:26 Cat emoji is... basically right. For DHE ciphers,

+ // completely different value.

+ //

+ // TODO(davidben): Once the DHE removal has stuck, remove key_exchange_info

+ // from this struct, doing all necessary conversions when parsing out of

+ // legacy cache entries. At that point, this accessor may be replaced with the

+ // struct field. See https://crbug.com/639421.

+ //

+ // TODO(davidben): When TLS 1.3 draft 15's new negotiation is implemented,

+ // also report key_exchange_info for the new AEAD/PRF ciphers.

+ uint16_t cipher_value = SSLConnectionStatusToCipherSuite(connection_status);

+ const SSL_CIPHER* cipher = SSL_get_cipher_by_value(cipher_value);

+ if (cipher && SSL_CIPHER_is_ECDHE(cipher))

+ return static_cast<uint16_t>(key_exchange_info);

+ return 0;

void SSLInfo::SetCertError(int error) {

cert_status |= MapNetErrorToCertStatus(error);

}

« content/common/ssl_status_serialization.cc ('K') | « net/ssl/ssl_info.h ('k') | third_party/WebKit/Source/core/inspector/InspectorNetworkAgent.cpp » ('j') | no next file with comments »