OLD | NEW |
---|---|
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef NET_SSL_SSL_INFO_H_ | 5 #ifndef NET_SSL_SSL_INFO_H_ |
6 #define NET_SSL_SSL_INFO_H_ | 6 #define NET_SSL_SSL_INFO_H_ |
7 | 7 |
8 #include <stdint.h> | 8 #include <stdint.h> |
9 | 9 |
10 #include <vector> | 10 #include <vector> |
11 | 11 |
12 #include "base/memory/ref_counted.h" | 12 #include "base/memory/ref_counted.h" |
13 #include "net/base/net_export.h" | 13 #include "net/base/net_export.h" |
14 #include "net/cert/cert_status_flags.h" | 14 #include "net/cert/cert_status_flags.h" |
15 #include "net/cert/ct_verify_result.h" | 15 #include "net/cert/ct_verify_result.h" |
16 #include "net/cert/ocsp_verify_result.h" | 16 #include "net/cert/ocsp_verify_result.h" |
17 #include "net/cert/sct_status_flags.h" | 17 #include "net/cert/sct_status_flags.h" |
18 #include "net/cert/signed_certificate_timestamp_and_status.h" | 18 #include "net/cert/signed_certificate_timestamp_and_status.h" |
19 #include "net/cert/x509_cert_types.h" | 19 #include "net/cert/x509_cert_types.h" |
20 #include "net/ssl/ssl_config.h" | 20 #include "net/ssl/ssl_config.h" |
21 | 21 |
22 namespace net { | 22 namespace net { |
23 | 23 |
24 namespace ct { | 24 namespace ct { |
25 | 25 |
26 enum class CertPolicyCompliance; | 26 enum class CertPolicyCompliance; |
27 enum class EVPolicyCompliance; | |
28 | 27 |
29 } // namespace ct | 28 } // namespace ct |
30 | 29 |
31 class X509Certificate; | 30 class X509Certificate; |
32 | 31 |
33 // SSL connection info. | 32 // SSL connection info. |
34 // This is really a struct. All members are public. | 33 // This is really a struct. All members are public. |
35 class NET_EXPORT SSLInfo { | 34 class NET_EXPORT SSLInfo { |
36 public: | 35 public: |
37 // HandshakeType enumerates the possible resumption cases after an SSL | 36 // HandshakeType enumerates the possible resumption cases after an SSL |
(...skipping 86 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
124 // TransportSecurityState::PKPState::CheckPublicKeyPins in the event of a | 123 // TransportSecurityState::PKPState::CheckPublicKeyPins in the event of a |
125 // pinning failure. It is a (somewhat) human-readable string. | 124 // pinning failure. It is a (somewhat) human-readable string. |
126 std::string pinning_failure_log; | 125 std::string pinning_failure_log; |
127 | 126 |
128 // List of SignedCertificateTimestamps and their corresponding validation | 127 // List of SignedCertificateTimestamps and their corresponding validation |
129 // status. | 128 // status. |
130 SignedCertificateTimestampAndStatusList signed_certificate_timestamps; | 129 SignedCertificateTimestampAndStatusList signed_certificate_timestamps; |
131 | 130 |
132 // True if Certificate Transparency policies were applied on this | 131 // True if Certificate Transparency policies were applied on this |
133 // connection and results are available. If true, the field below | 132 // connection and results are available. If true, the field below |
134 // (|ev_policy_compliance|) will contain information about whether | 133 // (|ev_policy_compliance|) will contain information about whether |
mattm
2017/06/12 22:23:59
update comment
| |
135 // the connection complied with the policy and why the connection | 134 // the connection complied with the policy and why the connection |
136 // was considered non-compliant, if applicable. | 135 // was considered non-compliant, if applicable. |
137 bool ct_compliance_details_available; | 136 bool ct_compliance_details_available; |
138 | 137 |
139 // Whether the connection complied with the CT EV policy, and if not, | |
140 // why not. Only meaningful if |ct_compliance_details_available| is | |
141 // true. | |
142 ct::EVPolicyCompliance ct_ev_policy_compliance; | |
143 | |
144 // Whether the connection complied with the CT cert policy, and if | 138 // Whether the connection complied with the CT cert policy, and if |
145 // not, why not. Only meaningful it |ct_compliance_details_available| | 139 // not, why not. Only meaningful it |ct_compliance_details_available| |
146 // is true. | 140 // is true. |
147 ct::CertPolicyCompliance ct_cert_policy_compliance; | 141 ct::CertPolicyCompliance ct_cert_policy_compliance; |
148 | 142 |
149 // OCSP stapling details. | 143 // OCSP stapling details. |
150 OCSPVerifyResult ocsp_result; | 144 OCSPVerifyResult ocsp_result; |
151 }; | 145 }; |
152 | 146 |
153 } // namespace net | 147 } // namespace net |
154 | 148 |
155 #endif // NET_SSL_SSL_INFO_H_ | 149 #endif // NET_SSL_SSL_INFO_H_ |
OLD | NEW |