net/base/ssl_config_service.cc - Issue 6804032: Add TLS-SRP (RFC 5054) support

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/base/ssl_config_service.cc

Issue 6804032: Add TLS-SRP (RFC 5054) support Base URL: http://git.chromium.org/git/chromium.git@trunk

Patch Set: remove "httpsv" scheme, minor NSS/OpenSSL changes Created 9 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: net/base/ssl_config_service.cc

diff --git a/net/base/ssl_config_service.cc b/net/base/ssl_config_service.cc

index 9a448959f1fe3238120e0c3cd2fe5bc937714c95..e09e8110ec46d3daac99aaece7b9d358f87b0f82 100644

--- a/net/base/ssl_config_service.cc

+++ b/net/base/ssl_config_service.cc

@@ -24,7 +24,8 @@ SSLConfig::SSLConfig()

tls1_enabled(true), dnssec_enabled(false), snap_start_enabled(false),

dns_cert_provenance_checking_enabled(false),

mitm_proxies_allowed(false), false_start_enabled(true),

- send_client_cert(false), verify_ev_cert(false), ssl3_fallback(false) {

+ send_client_cert(false), verify_ev_cert(false), ssl3_fallback(false),

+ use_tls_auth(true), require_tls_auth(false) {

}

SSLConfig::~SSLConfig() {

@@ -94,6 +95,7 @@ static bool g_false_start_enabled = true;

static bool g_mitm_proxies_allowed = false;

static bool g_snap_start_enabled = false;

static bool g_dns_cert_provenance_checking = false;

+static bool g_use_tls_auth = true;

// static

void SSLConfigService::EnableDNSSEC() {

@@ -164,13 +166,15 @@ void SSLConfigService::SetSSLConfigFlags(SSLConfig* ssl_config) {

ssl_config->snap_start_enabled = g_snap_start_enabled;

ssl_config->dns_cert_provenance_checking_enabled =

g_dns_cert_provenance_checking;

+ ssl_config->use_tls_auth = g_use_tls_auth;

}

void SSLConfigService::ProcessConfigUpdate(const SSLConfig& orig_config,

const SSLConfig& new_config) {

if (orig_config.rev_checking_enabled != new_config.rev_checking_enabled ||

orig_config.ssl3_enabled != new_config.ssl3_enabled ||

- orig_config.tls1_enabled != new_config.tls1_enabled) {

+ orig_config.tls1_enabled != new_config.tls1_enabled ||

+ orig_config.use_tls_auth != new_config.use_tls_auth) {

FOR_EACH_OBSERVER(Observer, observer_list_, OnSSLConfigChanged());

}

« no previous file with comments | « net/base/ssl_config_service.h ('k') | net/base/ssl_info.h » ('j') | no next file with comments »