diff options
| author | wtc@chromium.org <wtc@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2009-08-13 17:54:42 +0000 |
|---|---|---|
| committer | wtc@chromium.org <wtc@chromium.org@0039d316-1c4b-4281-b951-d872f2087c98> | 2009-08-13 17:54:42 +0000 |
| commit | 127017875991e4a1b3d12dfff23d70265f991ef6 (patch) | |
| tree | fc697789fb31e1c0fc137163aee660ba79f839d8 /net/socket/ssl_client_socket_mac.h | |
| parent | ad8c2293824aecaf34ecdcd1f01720919afac6db (diff) | |
| download | chromium_src-127017875991e4a1b3d12dfff23d70265f991ef6.zip chromium_src-127017875991e4a1b3d12dfff23d70265f991ef6.tar.gz chromium_src-127017875991e4a1b3d12dfff23d70265f991ef6.tar.bz2 | |
Implement SSL certificate error handling on the Mac. If the user gives
us bad certs to allow, we tell SecureTransport to not verify the server
cert, and only allow the cert to be one of the bad certs the user allows.
In the future we should figure out how to verify the server cert ourselves.
R=avi,eroman
BUG=http://crbug.com/11983
TEST=Visit https://www.ssl247.com/ and https://alioth.debian.org/. Clicking
the "Proceed anyway" button should bring you to the site with a red
"https" in the location bar.
Review URL: http://codereview.chromium.org/165191
git-svn-id: svn://svn.chromium.org/chrome/trunk/src@23321 0039d316-1c4b-4281-b951-d872f2087c98
Diffstat (limited to 'net/socket/ssl_client_socket_mac.h')
| -rw-r--r-- | net/socket/ssl_client_socket_mac.h | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/net/socket/ssl_client_socket_mac.h b/net/socket/ssl_client_socket_mac.h index f9a08af..906bde5 100644 --- a/net/socket/ssl_client_socket_mac.h +++ b/net/socket/ssl_client_socket_mac.h @@ -84,6 +84,8 @@ class SSLClientSocketMac : public SSLClientSocket { State next_state_; State next_io_state_; + // Set when handshake finishes. + scoped_refptr<X509Certificate> server_cert_; int server_cert_status_; bool completed_handshake_; |