diff options
Diffstat (limited to 'security/manager/ssl/SharedSSLState.h')
| -rw-r--r-- | security/manager/ssl/SharedSSLState.h | 84 |
1 files changed, 84 insertions, 0 deletions
diff --git a/security/manager/ssl/SharedSSLState.h b/security/manager/ssl/SharedSSLState.h new file mode 100644 index 0000000000..9431abeab9 --- /dev/null +++ b/security/manager/ssl/SharedSSLState.h @@ -0,0 +1,84 @@ +/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */ +/* vim: set ts=2 et sw=2 tw=80: */ +/* This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ + +#ifndef SharedSSLState_h +#define SharedSSLState_h + +#include "nsNSSIOLayer.h" + +class nsIObserver; + +namespace mozilla { +namespace psm { + +class SharedSSLState { + public: + NS_INLINE_DECL_THREADSAFE_REFCOUNTING(SharedSSLState) + explicit SharedSSLState(uint32_t aTlsFlags = 0); + + static void GlobalInit(); + static void GlobalCleanup(); + + nsSSLIOLayerHelpers& IOLayerHelpers() { return mIOLayerHelpers; } + + // Main-thread only + void ResetStoredData(); + void NotePrivateBrowsingStatus(); + void SetOCSPStaplingEnabled(bool staplingEnabled) { + mOCSPStaplingEnabled = staplingEnabled; + } + void SetOCSPMustStapleEnabled(bool mustStapleEnabled) { + mOCSPMustStapleEnabled = mustStapleEnabled; + } + void SetSignedCertTimestampsEnabled(bool signedCertTimestampsEnabled) { + mSignedCertTimestampsEnabled = signedCertTimestampsEnabled; + } + void SetPinningMode(CertVerifier::PinningMode aPinningMode) { + mPinningMode = aPinningMode; + } + void SetNameMatchingMode(BRNameMatchingPolicy::Mode aMode) { + mNameMatchingMode = aMode; + } + + // The following methods may be called from any thread + bool SocketCreated(); + void NoteSocketCreated(); + static void NoteCertOverrideServiceInstantiated(); + bool IsOCSPStaplingEnabled() const { return mOCSPStaplingEnabled; } + bool IsOCSPMustStapleEnabled() const { return mOCSPMustStapleEnabled; } + bool IsSignedCertTimestampsEnabled() const { + return mSignedCertTimestampsEnabled; + } + CertVerifier::PinningMode PinningMode() { return mPinningMode; } + BRNameMatchingPolicy::Mode NameMatchingMode() { return mNameMatchingMode; } + + private: + ~SharedSSLState(); + + void Cleanup(); + + nsCOMPtr<nsIObserver> mObserver; + nsSSLIOLayerHelpers mIOLayerHelpers; + + // True if any sockets have been created that use this shared data. + // Requires synchronization between the socket and main threads for + // reading/writing. + Mutex mMutex; + bool mSocketCreated; + bool mOCSPStaplingEnabled; + bool mOCSPMustStapleEnabled; + bool mSignedCertTimestampsEnabled; + CertVerifier::PinningMode mPinningMode; + BRNameMatchingPolicy::Mode mNameMatchingMode; +}; + +SharedSSLState* PublicSSLState(); +SharedSSLState* PrivateSSLState(); + +} // namespace psm +} // namespace mozilla + +#endif |