chrome/browser/net/ssl_config_service_manager_pref.cc - Issue 14125003: Do not roll back to SSL 3.0 for Google properties.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: chrome/browser/net/ssl_config_service_manager_pref.cc

Issue 14125003: Do not roll back to SSL 3.0 for Google properties. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Cleanup. Created 7 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: chrome/browser/net/ssl_config_service_manager_pref.cc

diff --git a/chrome/browser/net/ssl_config_service_manager_pref.cc b/chrome/browser/net/ssl_config_service_manager_pref.cc

index c193463d0d4287968998f13cc0e32041685b386a..869f55b78145ec2e8a0e67623bda8e872bc1bcf7 100644

--- a/chrome/browser/net/ssl_config_service_manager_pref.cc

+++ b/chrome/browser/net/ssl_config_service_manager_pref.cc

@@ -180,6 +180,7 @@ class SSLConfigServiceManagerPref

StringPrefMember ssl_version_max_;

BooleanPrefMember channel_id_enabled_;

BooleanPrefMember ssl_record_splitting_disabled_;

+ BooleanPrefMember unrestricted_ssl3_fallback_enabled_;

// The cached list of disabled SSL cipher suites.

std::vector<uint16> disabled_cipher_suites_;

@@ -219,6 +220,9 @@ SSLConfigServiceManagerPref::SSLConfigServiceManagerPref(

prefs::kEnableOriginBoundCerts, local_state, local_state_callback);

ssl_record_splitting_disabled_.Init(

prefs::kDisableSSLRecordSplitting, local_state, local_state_callback);

+ unrestricted_ssl3_fallback_enabled_.Init(

+ prefs::kEnableUnrestrictedSSL3Fallback, local_state,

+ local_state_callback);

local_state_change_registrar_.Init(local_state);

local_state_change_registrar_.Add(

@@ -260,6 +264,8 @@ void SSLConfigServiceManagerPref::RegisterPrefs(PrefRegistrySimple* registry) {

default_config.channel_id_enabled);

registry->RegisterBooleanPref(prefs::kDisableSSLRecordSplitting,

!default_config.false_start_enabled);

+ registry->RegisterBooleanPref(prefs::kEnableUnrestrictedSSL3Fallback,

+ default_config.unrestricted_ssl3_fallback_enabled);

registry->RegisterListPref(prefs::kCipherSuiteBlacklist);

}

@@ -321,6 +327,8 @@ void SSLConfigServiceManagerPref::GetSSLConfigFromPrefs(

config->channel_id_enabled = false;

// disabling False Start also happens to disable record splitting.

config->false_start_enabled = !ssl_record_splitting_disabled_.GetValue();

+ config->unrestricted_ssl3_fallback_enabled =

+ unrestricted_ssl3_fallback_enabled_.GetValue();

SSLConfigServicePref::SetSSLConfigFlags(config);

}

« no previous file with comments | « no previous file | chrome/browser/net/ssl_config_service_manager_pref_unittest.cc » ('j') | no next file with comments »