summaryrefslogtreecommitdiffstats
path: root/net/third_party/nss/ssl/sslsock.c
diff options
context:
space:
mode:
Diffstat (limited to 'net/third_party/nss/ssl/sslsock.c')
-rw-r--r--net/third_party/nss/ssl/sslsock.c13
1 files changed, 13 insertions, 0 deletions
diff --git a/net/third_party/nss/ssl/sslsock.c b/net/third_party/nss/ssl/sslsock.c
index 85d1a8f..596ca3d 100644
--- a/net/third_party/nss/ssl/sslsock.c
+++ b/net/third_party/nss/ssl/sslsock.c
@@ -188,6 +188,7 @@ static sslOptions ssl_defaults = {
PR_FALSE, /* enableOCSPStapling */
PR_FALSE, /* enableCachedInfo */
PR_FALSE, /* enableOBCerts */
+ PR_FALSE, /* encryptClientCerts */
};
sslSessionIDLookupFunc ssl_sid_lookup;
@@ -757,6 +758,10 @@ SSL_OptionSet(PRFileDesc *fd, PRInt32 which, PRBool on)
ss->opt.enableOBCerts = on;
break;
+ case SSL_ENCRYPT_CLIENT_CERTS:
+ ss->opt.encryptClientCerts = on;
+ break;
+
default:
PORT_SetError(SEC_ERROR_INVALID_ARGS);
rv = SECFailure;
@@ -824,6 +829,8 @@ SSL_OptionGet(PRFileDesc *fd, PRInt32 which, PRBool *pOn)
case SSL_ENABLE_OCSP_STAPLING: on = ss->opt.enableOCSPStapling; break;
case SSL_ENABLE_CACHED_INFO: on = ss->opt.enableCachedInfo; break;
case SSL_ENABLE_OB_CERTS: on = ss->opt.enableOBCerts; break;
+ case SSL_ENCRYPT_CLIENT_CERTS:
+ on = ss->opt.encryptClientCerts; break;
default:
PORT_SetError(SEC_ERROR_INVALID_ARGS);
@@ -880,6 +887,8 @@ SSL_OptionGetDefault(PRInt32 which, PRBool *pOn)
break;
case SSL_ENABLE_CACHED_INFO: on = ssl_defaults.enableCachedInfo; break;
case SSL_ENABLE_OB_CERTS: on = ssl_defaults.enableOBCerts; break;
+ case SSL_ENCRYPT_CLIENT_CERTS:
+ on = ssl_defaults.encryptClientCerts; break;
default:
PORT_SetError(SEC_ERROR_INVALID_ARGS);
@@ -1039,6 +1048,10 @@ SSL_OptionSetDefault(PRInt32 which, PRBool on)
ssl_defaults.enableOBCerts = on;
break;
+ case SSL_ENCRYPT_CLIENT_CERTS:
+ ssl_defaults.encryptClientCerts = on;
+ break;
+
default:
PORT_SetError(SEC_ERROR_INVALID_ARGS);
return SECFailure;
generated by cgit v1.1 at 2025-03-13 01:44:34 +0000