OLD | NEW |
---|---|
1 # Copyright (c) 2013 The Chromium Authors. All rights reserved. | 1 # Copyright (c) 2013 The Chromium Authors. All rights reserved. |
2 # Use of this source code is governed by a BSD-style license that can be | 2 # Use of this source code is governed by a BSD-style license that can be |
3 # found in the LICENSE file. | 3 # found in the LICENSE file. |
4 | 4 |
5 # This file declares build flags for the SSL library configuration. | 5 # This file declares build flags for the SSL library configuration. |
6 # | 6 # |
7 # TODO(brettw) this should probably be moved to src/crypto or somewhere, and | 7 # TODO(brettw) this should probably be moved to src/crypto or somewhere, and |
8 # the global build dependency on it should be removed. | 8 # the global build dependency on it should be removed. |
9 # | 9 # |
10 # PLEASE TRY TO AVOID ADDING FLAGS TO THIS FILE in cases where grit isn't | 10 # PLEASE TRY TO AVOID ADDING FLAGS TO THIS FILE in cases where grit isn't |
11 # required. See the declare_args block of BUILDCONFIG.gn for advice on how | 11 # required. See the declare_args block of BUILDCONFIG.gn for advice on how |
12 # to set up feature flags. | 12 # to set up feature flags. |
13 | 13 |
14 # True when we're using OpenSSL for representing certificates. When targeting | 14 # True when we're using OpenSSL for representing certificates. When targeting |
15 # Android, the platform certificate library is used for certificate | 15 # Android, the platform certificate library is used for certificate |
16 # verification. On NaCl, verification isn't supported. On other targets, this | 16 # verification. On NaCl, verification isn't supported. On other targets, this |
17 # flag also enables OpenSSL for certificate verification, but this configuration | 17 # flag also enables OpenSSL for certificate verification, but this configuration |
18 # is unsupported. | 18 # is unsupported. |
19 use_openssl_certs = is_android || is_nacl | 19 use_openssl_certs = is_android || is_nacl |
20 | 20 |
21 # True if NSS is used for certificate handling. It is possible to use OpenSSL | 21 # True if NSS is used for certificate handling. It is possible to use OpenSSL |
22 # for the crypto library, but NSS for the platform certificate library. | 22 # for the crypto library, but NSS for the platform certificate library. |
23 use_nss_certs = is_linux | 23 use_nss_certs = is_linux |
24 | |
25 # True if certificates are represented with DER byte buffers. This can be true | |
26 # in addition to use_openssl_certs or use_nss_certs, in that case byte certs | |
27 # are used internally but OpenSSL or NSS are used for certificate verification. | |
28 # TODO(mattm): crbug.com/671420: Implement and enable this for all platforms. | |
29 use_byte_certs = is_mac | |
mattm
2017/03/29 01:19:11
My thought is to land the CL with this set to fals
| |
OLD | NEW |