diff options
| author | dkegel@google.com <dkegel@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2008-10-22 19:50:58 +0000 |
|---|---|---|
| committer | dkegel@google.com <dkegel@google.com@0039d316-1c4b-4281-b951-d872f2087c98> | 2008-10-22 19:50:58 +0000 |
| commit | b43c97c9b09d545890942909d1a0a4102847430b (patch) | |
| tree | 11bdec99230d9ed84f1432d8b99cd9b087bec827 /base/nss_init.cc | |
| parent | 3d13c830adf25a9884e5f1e5c0ee4ceae0d40d66 (diff) | |
| download | chromium_src-b43c97c9b09d545890942909d1a0a4102847430b.zip chromium_src-b43c97c9b09d545890942909d1a0a4102847430b.tar.gz chromium_src-b43c97c9b09d545890942909d1a0a4102847430b.tar.bz2 | |
Port SSLClientSocket to Linux
Passes tests (once you enable them by removing DISABLED_).
Probably want to add a mock https server so we can leave those tests enabled when we check in.
Had to add full duplex support to TCPClientSocket on Linux
to avoid kludgy plumbing issues.
Also had to add dummy implementation of
X509Certificate::~X509Certificate to prevent link error.
Rediffed to current trunk, addressed all review issues.
Review URL: http://codereview.chromium.org/4049
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@3751 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'base/nss_init.cc')
| -rw-r--r-- | base/nss_init.cc | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/base/nss_init.cc b/base/nss_init.cc index c5c10c4..c8ba44b 100644 --- a/base/nss_init.cc +++ b/base/nss_init.cc @@ -6,6 +6,12 @@ #include <nss.h> +// Work around https://bugzilla.mozilla.org/show_bug.cgi?id=455424 +// until NSS 3.12.2 comes out and we update to it. +#define Lock FOO_NSS_Lock +#include <ssl.h> +#undef Lock + #include "base/logging.h" #include "base/singleton.h" @@ -15,9 +21,16 @@ class NSSInitSingleton { public: NSSInitSingleton() { CHECK(NSS_NoDB_Init(".") == SECSuccess); + // Enable ciphers + NSS_SetDomesticPolicy(); + // Enable SSL + SSL_OptionSetDefault(SSL_SECURITY, PR_TRUE); } ~NSSInitSingleton() { + // Have to clear the cache, or NSS_Shutdown fails with SEC_ERROR_BUSY + SSL_ClearSessionCache(); + SECStatus status = NSS_Shutdown(); DCHECK(status == SECSuccess); } |