net/base/features.h - chromium/src - Git at Google

 // Copyright (c) 2018 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef NET_BASE_FEATURES_H_
 #define NET_BASE_FEATURES_H_

 #include "base/feature_list.h"
 #include "base/metrics/field_trial_params.h"
 #include "net/base/net_export.h"
 #include "net/net_buildflags.h"

 namespace net {
 namespace features {

 // Toggles the `Accept-Language` HTTP request header, which
 // https://github.com/WICG/lang-client-hint proposes that we deprecate.
 NET_EXPORT extern const base::Feature kAcceptLanguageHeader;

 // Caps the length of the `referer` header to 4k, which should be enough for
 // anyone.
 NET_EXPORT extern const base::Feature kCapRefererHeaderLength;
 NET_EXPORT extern const base::FeatureParam<int> kMaxRefererHeaderLength;

 // Enables the additional TLS 1.3 server-random-based downgrade protection
 // described in https://tools.ietf.org/html/rfc8446#section-4.1.3
 //
 // This is a MUST-level requirement of TLS 1.3, but has compatibility issues
 // with some buggy non-compliant TLS-terminating proxies.
 NET_EXPORT extern const base::Feature kEnforceTLS13Downgrade;

 // Enables TLS 1.3 early data.
 NET_EXPORT extern const base::Feature kEnableTLS13EarlyData;

 // Enables optimizing the network quality estimation algorithms in network
 // quality estimator (NQE).
 NET_EXPORT extern const base::Feature kNetworkQualityEstimator;

 // Splits cache entries by the request's network isolation key if one is
 // available.
 NET_EXPORT extern const base::Feature kSplitCacheByNetworkIsolationKey;

 // Partitions connections based on the NetworkIsolationKey associated with a
 // request.
 NET_EXPORT extern const base::Feature
     kPartitionConnectionsByNetworkIsolationKey;

 // Partitions HttpServerProperties based on the NetworkIsolationKey associated
 // with a request.
 NET_EXPORT extern const base::Feature
     kPartitionHttpServerPropertiesByNetworkIsolationKey;

 // Partitions TLS sessions and QUIC server configs based on the
 // NetworkIsolationKey associated with a request.
 //
 // This feature requires kPartitionConnectionsByNetworkIsolationKey to be
 // enabled to work.
 NET_EXPORT extern const base::Feature
     kPartitionSSLSessionsByNetworkIsolationKey;

 // Enables sending TLS 1.3 Key Update messages on TLS 1.3 connections in order
 // to ensure that this corner of the spec is exercised. This is currently
 // disabled by default because we discovered incompatibilities with some
 // servers.
 NET_EXPORT extern const base::Feature kTLS13KeyUpdate;

 // Enables CECPQ2, a post-quantum key-agreement, in TLS 1.3 connections.
 NET_EXPORT extern const base::Feature kPostQuantumCECPQ2;

 // Changes the timeout after which unused sockets idle sockets are cleaned up.
 NET_EXPORT extern const base::Feature kNetUnusedIdleSocketTimeout;

 // When enabled, makes cookies without a SameSite attribute behave like
 // SameSite=Lax cookies by default, and requires SameSite=None to be specified
 // in order to make cookies available in a third-party context. When disabled,
 // the default behavior for cookies without a SameSite attribute specified is no
 // restriction, i.e., available in a third-party context.
 NET_EXPORT extern const base::Feature kSameSiteByDefaultCookies;

 // When enabled, cookies without SameSite restrictions that don't specify the
 // Secure attribute will be rejected if set from an insecure context, or treated
 // as secure if set from a secure context. This ONLY has an effect if
 // SameSiteByDefaultCookies is also enabled.
 NET_EXPORT extern const base::Feature kCookiesWithoutSameSiteMustBeSecure;

 #if BUILDFLAG(BUILTIN_CERT_VERIFIER_FEATURE_SUPPORTED)
 // When enabled, use the builtin cert verifier instead of the platform verifier.
 NET_EXPORT extern const base::Feature kCertVerifierBuiltinFeature;
 #endif

 NET_EXPORT extern const base::Feature kAppendFrameOriginToNetworkIsolationKey;

 // Turns off streaming media caching to disk.
 NET_EXPORT extern const base::Feature kTurnOffStreamingMediaCaching;

 }  // namespace features
 }  // namespace net

 #endif  // NET_BASE_FEATURES_H_
	// Copyright (c) 2018 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef NET_BASE_FEATURES_H_
	#define NET_BASE_FEATURES_H_

	#include "base/feature_list.h"
	#include "base/metrics/field_trial_params.h"
	#include "net/base/net_export.h"
	#include "net/net_buildflags.h"

	namespace net {
	namespace features {

	// Toggles the `Accept-Language` HTTP request header, which
	// https://github.com/WICG/lang-client-hint proposes that we deprecate.
	NET_EXPORT extern const base::Feature kAcceptLanguageHeader;

	// Caps the length of the `referer` header to 4k, which should be enough for
	// anyone.
	NET_EXPORT extern const base::Feature kCapRefererHeaderLength;
	NET_EXPORT extern const base::FeatureParam<int> kMaxRefererHeaderLength;

	// Enables the additional TLS 1.3 server-random-based downgrade protection
	// described in https://tools.ietf.org/html/rfc8446#section-4.1.3
	//
	// This is a MUST-level requirement of TLS 1.3, but has compatibility issues
	// with some buggy non-compliant TLS-terminating proxies.
	NET_EXPORT extern const base::Feature kEnforceTLS13Downgrade;

	// Enables TLS 1.3 early data.
	NET_EXPORT extern const base::Feature kEnableTLS13EarlyData;

	// Enables optimizing the network quality estimation algorithms in network
	// quality estimator (NQE).
	NET_EXPORT extern const base::Feature kNetworkQualityEstimator;

	// Splits cache entries by the request's network isolation key if one is
	// available.
	NET_EXPORT extern const base::Feature kSplitCacheByNetworkIsolationKey;

	// Partitions connections based on the NetworkIsolationKey associated with a
	// request.
	NET_EXPORT extern const base::Feature
	kPartitionConnectionsByNetworkIsolationKey;

	// Partitions HttpServerProperties based on the NetworkIsolationKey associated
	// with a request.
	NET_EXPORT extern const base::Feature
	kPartitionHttpServerPropertiesByNetworkIsolationKey;

	// Partitions TLS sessions and QUIC server configs based on the
	// NetworkIsolationKey associated with a request.
	//
	// This feature requires kPartitionConnectionsByNetworkIsolationKey to be
	// enabled to work.
	NET_EXPORT extern const base::Feature
	kPartitionSSLSessionsByNetworkIsolationKey;

	// Enables sending TLS 1.3 Key Update messages on TLS 1.3 connections in order
	// to ensure that this corner of the spec is exercised. This is currently
	// disabled by default because we discovered incompatibilities with some
	// servers.
	NET_EXPORT extern const base::Feature kTLS13KeyUpdate;

	// Enables CECPQ2, a post-quantum key-agreement, in TLS 1.3 connections.
	NET_EXPORT extern const base::Feature kPostQuantumCECPQ2;

	// Changes the timeout after which unused sockets idle sockets are cleaned up.
	NET_EXPORT extern const base::Feature kNetUnusedIdleSocketTimeout;

	// When enabled, makes cookies without a SameSite attribute behave like
	// SameSite=Lax cookies by default, and requires SameSite=None to be specified
	// in order to make cookies available in a third-party context. When disabled,
	// the default behavior for cookies without a SameSite attribute specified is no
	// restriction, i.e., available in a third-party context.
	NET_EXPORT extern const base::Feature kSameSiteByDefaultCookies;

	// When enabled, cookies without SameSite restrictions that don't specify the
	// Secure attribute will be rejected if set from an insecure context, or treated
	// as secure if set from a secure context. This ONLY has an effect if
	// SameSiteByDefaultCookies is also enabled.
	NET_EXPORT extern const base::Feature kCookiesWithoutSameSiteMustBeSecure;

	#if BUILDFLAG(BUILTIN_CERT_VERIFIER_FEATURE_SUPPORTED)
	// When enabled, use the builtin cert verifier instead of the platform verifier.
	NET_EXPORT extern const base::Feature kCertVerifierBuiltinFeature;
	#endif

	NET_EXPORT extern const base::Feature kAppendFrameOriginToNetworkIsolationKey;

	// Turns off streaming media caching to disk.
	NET_EXPORT extern const base::Feature kTurnOffStreamingMediaCaching;

	} // namespace features
	} // namespace net

	#endif // NET_BASE_FEATURES_H_