| // Copyright (c) 2010 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #ifndef NET_BASE_SSL_CONNECTION_STATUS_FLAGS_H_ |
| #define NET_BASE_SSL_CONNECTION_STATUS_FLAGS_H_ |
| #pragma once |
| |
| namespace net { |
| |
| // Status flags for SSLInfo::connection_status. |
| enum { |
| // The lower 16 bits are reserved for the TLS ciphersuite id. |
| SSL_CONNECTION_CIPHERSUITE_SHIFT = 0, |
| SSL_CONNECTION_CIPHERSUITE_MASK = 0xffff, |
| |
| // The next two bits are reserved for the compression used. |
| SSL_CONNECTION_COMPRESSION_SHIFT = 16, |
| SSL_CONNECTION_COMPRESSION_MASK = 3, |
| |
| // We fell back to SSLv3 for this connection. |
| SSL_CONNECTION_SSL3_FALLBACK = 1 << 18, |
| |
| // The server doesn't support the renegotiation_info extension. If this bit |
| // is not set then either the extension isn't supported, or we don't have any |
| // knowledge either way. (The latter case will occur when we use an SSL |
| // library that doesn't report it, like SChannel.) |
| SSL_CONNECTION_NO_RENEGOTIATION_EXTENSION = 1 << 19, |
| |
| // The next three bits are reserved for the SSL version. |
| SSL_CONNECTION_VERSION_SHIFT = 20, |
| SSL_CONNECTION_VERSION_MASK = 7, |
| |
| // 1 << 31 (the sign bit) is reserved so that the SSL connection status will |
| // never be negative. |
| }; |
| |
| // NOTE: the SSL version enum constants must be between 0 and |
| // SSL_CONNECTION_VERSION_MASK, inclusive. |
| enum { |
| SSL_CONNECTION_VERSION_UNKNOWN = 0, // Unknown SSL version. |
| SSL_CONNECTION_VERSION_SSL2 = 1, |
| SSL_CONNECTION_VERSION_SSL3 = 2, |
| SSL_CONNECTION_VERSION_TLS1 = 3, |
| SSL_CONNECTION_VERSION_TLS1_1 = 4, |
| SSL_CONNECTION_VERSION_TLS1_2 = 5, |
| SSL_CONNECTION_VERSION_MAX, |
| }; |
| COMPILE_ASSERT(SSL_CONNECTION_VERSION_MAX - 1 <= SSL_CONNECTION_VERSION_MASK, |
| SSL_CONNECTION_VERSION_MASK_too_small); |
| |
| inline int SSLConnectionStatusToCipherSuite(int connection_status) { |
| return (connection_status >> SSL_CONNECTION_CIPHERSUITE_SHIFT) & |
| SSL_CONNECTION_CIPHERSUITE_MASK; |
| } |
| |
| inline int SSLConnectionStatusToCompression(int connection_status) { |
| return (connection_status >> SSL_CONNECTION_COMPRESSION_SHIFT) & |
| SSL_CONNECTION_COMPRESSION_MASK; |
| } |
| |
| inline int SSLConnectionStatusToVersion(int connection_status) { |
| return (connection_status >> SSL_CONNECTION_VERSION_SHIFT) & |
| SSL_CONNECTION_VERSION_MASK; |
| } |
| |
| } // namespace net |
| |
| #endif // NET_BASE_SSL_CONNECTION_STATUS_FLAGS_H_ |