Add net to the repository.

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@14 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 96 insertions, 0 deletions

diff --git a/net/base/ssl_config_service.h b/net/base/ssl_config_service.h
new file mode 100644
index 0000000..e563f2d
--- /dev/null
+++ b/net/base/ssl_config_service.h
@@ -0,0 +1,96 @@
+// Copyright 2008, Google Inc.
+// All rights reserved.
+//
+// Redistribution and use in source and binary forms, with or without
+// modification, are permitted provided that the following conditions are
+// met:
+//
+//    * Redistributions of source code must retain the above copyright
+// notice, this list of conditions and the following disclaimer.
+//    * Redistributions in binary form must reproduce the above
+// copyright notice, this list of conditions and the following disclaimer
+// in the documentation and/or other materials provided with the
+// distribution.
+//    * Neither the name of Google Inc. nor the names of its
+// contributors may be used to endorse or promote products derived from
+// this software without specific prior written permission.
+//
+// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+// "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+// LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+// A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+// OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+// LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+// DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+// THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+// OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+#ifndef NET_BASE_SSL_CONFIG_SERVICE_H__
+#define NET_BASE_SSL_CONFIG_SERVICE_H__
+
+#include "base/time.h"
+
+namespace net {
+
+// A collection of SSL-related configuration settings.
+struct SSLConfig {
+  // Default to no revocation checking.
+  // Default to SSL 2.0 off, SSL 3.0 on, and TLS 1.0 on.
+  SSLConfig()
+      : rev_checking_enabled(false), ssl2_enabled(false),
+        ssl3_enabled(true), tls1_enabled(true) {
+  }
+
+  bool rev_checking_enabled;  // True if server certificate revocation
+                              // checking is enabled.
+  bool ssl2_enabled;  // True if SSL 2.0 is enabled.
+  bool ssl3_enabled;  // True if SSL 3.0 is enabled.
+  bool tls1_enabled;  // True if TLS 1.0 is enabled.
+};
+
+// This class is responsible for getting and setting the SSL configuration.
+//
+// We think the SSL configuration settings should apply to all applications
+// used by the user.  We consider IE's Internet Options as the de facto
+// system-wide network configuration settings, so we just use the values
+// from IE's Internet Settings registry key.
+class SSLConfigService {
+ public:
+  SSLConfigService();
+  explicit SSLConfigService(TimeTicks now);  // Used for testing.
+  ~SSLConfigService() { }
+
+  // Get the current SSL configuration settings.  Can be called on any
+  // thread.
+  static bool GetSSLConfigNow(SSLConfig* config);
+
+  // Setters.  Can be called on any thread.
+  static void SetRevCheckingEnabled(bool enabled);
+  static void SetSSL2Enabled(bool enabled);
+
+  // Get the (cached) SSL configuration settings that are fresh within 10
+  // seconds.  This is cheaper than GetSSLConfigNow and is suitable when
+  // we don't need the absolutely current configuration settings.  This
+  // method is not thread-safe, so it must be called on the same thread.
+  void GetSSLConfig(SSLConfig* config) {
+    GetSSLConfigAt(config, TimeTicks::Now());
+  }
+
+  // Used for testing.
+  void GetSSLConfigAt(SSLConfig* config, TimeTicks now);
+
+ private:
+  void UpdateConfig(TimeTicks now);
+
+  // We store the IE SSL config and the time that we fetched it.
+  SSLConfig config_info_;
+  TimeTicks config_time_;
+
+  DISALLOW_EVIL_CONSTRUCTORS(SSLConfigService);
+};
+
+}  // namespace net
+
+#endif  // NET_BASE_SSL_CONFIG_SERVICE_H__