Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(426)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/ssl/ssl_info.h

Issue 2937563002: Remove the EV Certs Whitelist (Closed)
Patch Set: Created 3 years, 6 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « net/ssl/ssl_config_service.cc ('k') | net/ssl/ssl_info.cc » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #ifndef NET_SSL_SSL_INFO_H_ 5 #ifndef NET_SSL_SSL_INFO_H_
6 #define NET_SSL_SSL_INFO_H_ 6 #define NET_SSL_SSL_INFO_H_
7 7
8 #include <stdint.h> 8 #include <stdint.h>
9 9
10 #include <vector> 10 #include <vector>
11 11
12 #include "base/memory/ref_counted.h" 12 #include "base/memory/ref_counted.h"
13 #include "net/base/net_export.h" 13 #include "net/base/net_export.h"
14 #include "net/cert/cert_status_flags.h" 14 #include "net/cert/cert_status_flags.h"
15 #include "net/cert/ct_verify_result.h" 15 #include "net/cert/ct_verify_result.h"
16 #include "net/cert/ocsp_verify_result.h" 16 #include "net/cert/ocsp_verify_result.h"
17 #include "net/cert/sct_status_flags.h" 17 #include "net/cert/sct_status_flags.h"
18 #include "net/cert/signed_certificate_timestamp_and_status.h" 18 #include "net/cert/signed_certificate_timestamp_and_status.h"
19 #include "net/cert/x509_cert_types.h" 19 #include "net/cert/x509_cert_types.h"
20 #include "net/ssl/ssl_config.h" 20 #include "net/ssl/ssl_config.h"
21 21
22 namespace net { 22 namespace net {
23 23
24 namespace ct { 24 namespace ct {
25 25
26 enum class CertPolicyCompliance; 26 enum class CertPolicyCompliance;
27 enum class EVPolicyCompliance;
28 27
29 } // namespace ct 28 } // namespace ct
30 29
31 class X509Certificate; 30 class X509Certificate;
32 31
33 // SSL connection info. 32 // SSL connection info.
34 // This is really a struct. All members are public. 33 // This is really a struct. All members are public.
35 class NET_EXPORT SSLInfo { 34 class NET_EXPORT SSLInfo {
36 public: 35 public:
37 // HandshakeType enumerates the possible resumption cases after an SSL 36 // HandshakeType enumerates the possible resumption cases after an SSL
(...skipping 86 matching lines...) Expand 10 before | Expand all | Expand 10 after
124 // TransportSecurityState::PKPState::CheckPublicKeyPins in the event of a 123 // TransportSecurityState::PKPState::CheckPublicKeyPins in the event of a
125 // pinning failure. It is a (somewhat) human-readable string. 124 // pinning failure. It is a (somewhat) human-readable string.
126 std::string pinning_failure_log; 125 std::string pinning_failure_log;
127 126
128 // List of SignedCertificateTimestamps and their corresponding validation 127 // List of SignedCertificateTimestamps and their corresponding validation
129 // status. 128 // status.
130 SignedCertificateTimestampAndStatusList signed_certificate_timestamps; 129 SignedCertificateTimestampAndStatusList signed_certificate_timestamps;
131 130
132 // True if Certificate Transparency policies were applied on this 131 // True if Certificate Transparency policies were applied on this
133 // connection and results are available. If true, the field below 132 // connection and results are available. If true, the field below
134 // (|ev_policy_compliance|) will contain information about whether 133 // (|ev_policy_compliance|) will contain information about whether
mattm 2017/06/12 22:23:59 update comment
135 // the connection complied with the policy and why the connection 134 // the connection complied with the policy and why the connection
136 // was considered non-compliant, if applicable. 135 // was considered non-compliant, if applicable.
137 bool ct_compliance_details_available; 136 bool ct_compliance_details_available;
138 137
139 // Whether the connection complied with the CT EV policy, and if not,
140 // why not. Only meaningful if |ct_compliance_details_available| is
141 // true.
142 ct::EVPolicyCompliance ct_ev_policy_compliance;
143
144 // Whether the connection complied with the CT cert policy, and if 138 // Whether the connection complied with the CT cert policy, and if
145 // not, why not. Only meaningful it |ct_compliance_details_available| 139 // not, why not. Only meaningful it |ct_compliance_details_available|
146 // is true. 140 // is true.
147 ct::CertPolicyCompliance ct_cert_policy_compliance; 141 ct::CertPolicyCompliance ct_cert_policy_compliance;
148 142
149 // OCSP stapling details. 143 // OCSP stapling details.
150 OCSPVerifyResult ocsp_result; 144 OCSPVerifyResult ocsp_result;
151 }; 145 };
152 146
153 } // namespace net 147 } // namespace net
154 148
155 #endif // NET_SSL_SSL_INFO_H_ 149 #endif // NET_SSL_SSL_INFO_H_
OLDNEW
« no previous file with comments | « net/ssl/ssl_config_service.cc ('k') | net/ssl/ssl_info.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698