net/BUILD.gn - Issue 2746103003: Add X509CertificateBytes which uses CRYPTO_BUFFER instead of macOS-native certificate types.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/BUILD.gn

Issue 2746103003: Add X509CertificateBytes which uses CRYPTO_BUFFER instead of macOS-native certificate types. (Closed)

Patch Set: rebase Created 3 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« chrome/browser/ui/cocoa/ssl_client_certificate_selector_cocoa.mm ('K') | « chrome/browser/ui/cocoa/ssl_client_certificate_selector_cocoa.mm ('k') | net/cert/cert_verify_proc_mac.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: net/BUILD.gn

diff --git a/net/BUILD.gn b/net/BUILD.gn

index ec63747b01dee84f5d1cdbf7aed1cdaa0cc5782e..6c9038370899d801ebbf19a0b9e49fd04fc80dc9 100644

--- a/net/BUILD.gn

+++ b/net/BUILD.gn

@@ -37,6 +37,12 @@ posix_avoid_mmap = is_android && current_cpu != "x86"

use_v8_in_net = !is_ios && !is_proto_quic

enable_built_in_dns = !is_ios && !is_proto_quic

+# True if certificates are represented with DER byte buffers. This can be true

+# in addition to use_openssl_certs or use_nss_certs, in that case byte certs

+# are used internally but OpenSSL or NSS are used for certificate verification.

+# TODO(mattm): crbug.com/671420: Implement and enable this for all platforms.

+use_byte_certs = is_mac

buildflag_header("features") {

header = "net_features.h"

flags = [

@@ -45,6 +51,7 @@ buildflag_header("features") {

"DISABLE_FTP_SUPPORT=$disable_ftp_support",

"ENABLE_MDNS=$enable_mdns",

"ENABLE_WEBSOCKETS=$enable_websockets",

+ "USE_BYTE_CERTS=$use_byte_certs",

]

}

@@ -584,6 +591,7 @@ component("net") {

"cert/test_root_certs_win.cc",

"cert/x509_cert_types_mac.cc",

"cert/x509_cert_types_win.cc",

+ "cert/x509_certificate_bytes.cc",

"cert/x509_certificate_ios.cc",

"cert/x509_certificate_known_roots_win.h",

"cert/x509_certificate_mac.cc",

@@ -591,6 +599,8 @@ component("net") {

"cert/x509_certificate_win.cc",

"cert/x509_util_android.cc",

"cert/x509_util_android.h",

+ "cert/x509_util_ios.cc",

+ "cert/x509_util_ios.h",

"cert/x509_util_mac.cc",

"cert/x509_util_mac.h",

"cert/x509_util_nss.cc",

@@ -1713,6 +1723,26 @@ component("net") {

]

}

+ if (use_byte_certs) {

+ if (is_ios) {

+ sources -= [ "cert/x509_certificate_ios.cc" ]

+ }

+ if (is_mac) {

+ sources -= [ "cert/x509_certificate_mac.cc" ]

+ }

+ if (use_nss_certs) {

+ sources -= [ "cert/x509_certificate_nss.cc" ]

+ }

+ if (use_openssl_certs) {

+ sources -= [ "cert/x509_certificate_openssl.cc" ]

+ }

+ if (is_win) {

+ sources -= [ "cert/x509_certificate_win.cc" ]

+ }

+ } else {

+ sources -= [ "cert/x509_certificate_bytes.cc" ]

+ }

if (!use_openssl_certs) {

sources -= [

"cert/cert_database_openssl.cc",