Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(54)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: net/ssl/ssl_config.cc

Issue 869393005: Perform ClientHello padding if the field trial is enabled (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@net_connection_error_uma
Patch Set: CR comment updates Created 5 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« net/socket/ssl_client_socket_pool.cc ('K') | « net/ssl/ssl_config.h ('k') | net/ssl/ssl_config_service.h » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright 2014 The Chromium Authors. All rights reserved. 1 // Copyright 2014 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #include "net/ssl/ssl_config.h" 5 #include "net/ssl/ssl_config.h"
6 6
7 #include "net/socket/ssl_client_socket.h" 7 #include "net/socket/ssl_client_socket.h"
8 8
9 namespace net { 9 namespace net {
10 10
(...skipping 11 matching lines...) Expand all
22 version_min(kDefaultSSLVersionMin), 22 version_min(kDefaultSSLVersionMin),
23 version_max(SSLClientSocket::GetMaxSupportedSSLVersion()), 23 version_max(SSLClientSocket::GetMaxSupportedSSLVersion()),
24 version_fallback_min(kDefaultSSLVersionFallbackMin), 24 version_fallback_min(kDefaultSSLVersionFallbackMin),
25 channel_id_enabled(true), 25 channel_id_enabled(true),
26 false_start_enabled(true), 26 false_start_enabled(true),
27 signed_cert_timestamps_enabled(true), 27 signed_cert_timestamps_enabled(true),
28 require_forward_secrecy(false), 28 require_forward_secrecy(false),
29 send_client_cert(false), 29 send_client_cert(false),
30 verify_ev_cert(false), 30 verify_ev_cert(false),
31 version_fallback(false), 31 version_fallback(false),
32 cert_io_enabled(true) { 32 cert_io_enabled(true),
33 enable_fastradio_padding(false) {
33 } 34 }
34 35
35 SSLConfig::~SSLConfig() {} 36 SSLConfig::~SSLConfig() {}
36 37
37 bool SSLConfig::IsAllowedBadCert(X509Certificate* cert, 38 bool SSLConfig::IsAllowedBadCert(X509Certificate* cert,
38 CertStatus* cert_status) const { 39 CertStatus* cert_status) const {
39 std::string der_cert; 40 std::string der_cert;
40 if (!X509Certificate::GetDEREncoded(cert->os_cert_handle(), &der_cert)) 41 if (!X509Certificate::GetDEREncoded(cert->os_cert_handle(), &der_cert))
41 return false; 42 return false;
42 return IsAllowedBadCert(der_cert, cert_status); 43 return IsAllowedBadCert(der_cert, cert_status);
43 } 44 }
44 45
45 bool SSLConfig::IsAllowedBadCert(const base::StringPiece& der_cert, 46 bool SSLConfig::IsAllowedBadCert(const base::StringPiece& der_cert,
46 CertStatus* cert_status) const { 47 CertStatus* cert_status) const {
47 for (size_t i = 0; i < allowed_bad_certs.size(); ++i) { 48 for (size_t i = 0; i < allowed_bad_certs.size(); ++i) {
48 if (der_cert == allowed_bad_certs[i].der_cert) { 49 if (der_cert == allowed_bad_certs[i].der_cert) {
49 if (cert_status) 50 if (cert_status)
50 *cert_status = allowed_bad_certs[i].cert_status; 51 *cert_status = allowed_bad_certs[i].cert_status;
51 return true; 52 return true;
52 } 53 }
53 } 54 }
54 return false; 55 return false;
55 } 56 }
56 57
57 } // namespace net 58 } // namespace net
OLDNEW
« net/socket/ssl_client_socket_pool.cc ('K') | « net/ssl/ssl_config.h ('k') | net/ssl/ssl_config_service.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698