Add support for fetching Certificate Transparency SCTs over a TLS extension

BUG=309578

Review URL: https://codereview.chromium.org/83333003

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@237775 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 11 insertions, 0 deletions

diff --git a/net/socket/ssl_client_socket.h b/net/socket/ssl_client_socket.h
index 9f8532a..a88c893 100644
--- a/net/socket/ssl_client_socket.h
+++ b/net/socket/ssl_client_socket.h
@@ -126,9 +126,18 @@ class NET_EXPORT SSLClientSocket : public SSLSocket {
   // Public for ssl_client_socket_openssl_unittest.cc.
   virtual bool WasChannelIDSent() const;
 
+  // Returns true if the server sent Certificate Transparency SCTs
+  // via a TLS extension.
+  // Temporary glue for testing while the CT code hasn't landed.
+  // TODO(ekasper): expose received SCTs via SSLInfo instead.
+  virtual bool WereSignedCertTimestampsReceived() const;
+
  protected:
   virtual void set_channel_id_sent(bool channel_id_sent);
 
+  virtual void set_signed_cert_timestamps_received(
+      bool signed_cert_timestamps_received);
+
   // Records histograms for channel id support during full handshakes - resumed
   // handshakes are ignored.
   static void RecordChannelIDSupport(
@@ -151,6 +160,8 @@ class NET_EXPORT SSLClientSocket : public SSLSocket {
   NextProto protocol_negotiated_;
   // True if a channel ID was sent.
   bool channel_id_sent_;
+  // True if SCTs were received via a TLS extension.
+  bool signed_cert_timestamps_received_;
 };
 
 }  // namespace net