blob: 545bf7ec6dfa449d342904d2c5a9301f48ed38c4 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "net/ssl/ssl_info.h"
#include "base/pickle.h"
#include "net/cert/cert_status_flags.h"
#include "net/cert/signed_certificate_timestamp.h"
#include "net/cert/x509_certificate.h"
namespace net {
SSLInfo::SSLInfo() {
Reset();
}
SSLInfo::SSLInfo(const SSLInfo& info) {
*this = info;
}
SSLInfo::~SSLInfo() {
}
SSLInfo& SSLInfo::operator=(const SSLInfo& info) {
cert = info.cert;
unverified_cert = info.unverified_cert;
cert_status = info.cert_status;
security_bits = info.security_bits;
key_exchange_info = info.key_exchange_info;
connection_status = info.connection_status;
is_issued_by_known_root = info.is_issued_by_known_root;
client_cert_sent = info.client_cert_sent;
channel_id_sent = info.channel_id_sent;
token_binding_negotiated = info.token_binding_negotiated;
token_binding_key_param = info.token_binding_key_param;
handshake_type = info.handshake_type;
public_key_hashes = info.public_key_hashes;
signed_certificate_timestamps = info.signed_certificate_timestamps;
pinning_failure_log = info.pinning_failure_log;
return *this;
}
void SSLInfo::Reset() {
cert = NULL;
unverified_cert = NULL;
cert_status = 0;
security_bits = -1;
key_exchange_info = 0;
connection_status = 0;
is_issued_by_known_root = false;
client_cert_sent = false;
channel_id_sent = false;
token_binding_negotiated = false;
token_binding_key_param = TB_PARAM_ECDSAP256;
handshake_type = HANDSHAKE_UNKNOWN;
public_key_hashes.clear();
signed_certificate_timestamps.clear();
pinning_failure_log.clear();
}
void SSLInfo::SetCertError(int error) {
cert_status |= MapNetErrorToCertStatus(error);
}
void SSLInfo::UpdateSignedCertificateTimestamps(
const ct::CTVerifyResult& ct_verify_result) {
for (const auto& sct : ct_verify_result.verified_scts) {
signed_certificate_timestamps.push_back(
SignedCertificateTimestampAndStatus(sct, ct::SCT_STATUS_OK));
}
for (const auto& sct : ct_verify_result.invalid_scts) {
signed_certificate_timestamps.push_back(
SignedCertificateTimestampAndStatus(sct, ct::SCT_STATUS_INVALID));
}
for (const auto& sct : ct_verify_result.unknown_logs_scts) {
signed_certificate_timestamps.push_back(
SignedCertificateTimestampAndStatus(sct, ct::SCT_STATUS_LOG_UNKNOWN));
}
}
} // namespace net
|
