net/socket/ssl_socket.h - Issue 10823084: Add a new GetTlsUniqueChannelBinding method to SSLSocket, and implement nss version.

Side by Side Diff: net/socket/ssl_socket.h

Issue 10823084: Add a new GetTlsUniqueChannelBinding method to SSLSocket, and implement nss version. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Created 8 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #ifndef NET_SOCKET_SSL_SOCKET_H_	5 #ifndef NET_SOCKET_SSL_SOCKET_H_

6 #define NET_SOCKET_SSL_SOCKET_H_	6 #define NET_SOCKET_SSL_SOCKET_H_

7	7

8 #include "base/basictypes.h"	8 #include "base/basictypes.h"

9 #include "base/string_piece.h"	9 #include "base/string_piece.h"

10 #include "net/socket/stream_socket.h"	10 #include "net/socket/stream_socket.h"

11	11

12 namespace net {	12 namespace net {

13	13

14 // SSLSocket interface defines method that are common between client	14 // SSLSocket interface defines method that are common between client

15 // and server SSL sockets.	15 // and server SSL sockets.

16 class NET_EXPORT SSLSocket : public StreamSocket {	16 class NET_EXPORT SSLSocket : public StreamSocket {

17 public:	17 public:

18 virtual ~SSLSocket() {}	18 virtual ~SSLSocket() {}

19	19

20 // Exports data derived from the SSL master-secret (see RFC 5705).	20 // Exports data derived from the SSL master-secret (see RFC 5705).

21 // If \|has_context\| is false, uses the no-context construction from the	21 // If \|has_context\| is false, uses the no-context construction from the

22 // RFC and \|context\| is ignored. The call will fail with an error if	22 // RFC and \|context\| is ignored. The call will fail with an error if

23 // the socket is not connected or the SSL implementation does not	23 // the socket is not connected or the SSL implementation does not

24 // support the operation.	24 // support the operation.

25 virtual int ExportKeyingMaterial(const base::StringPiece& label,	25 virtual int ExportKeyingMaterial(const base::StringPiece& label,

26 bool has_context,	26 bool has_context,

27 const base::StringPiece& context,	27 const base::StringPiece& context,

28 unsigned char* out,	28 unsigned char* out,

29 unsigned int outlen) = 0;	29 unsigned int outlen) = 0;

	30

	31 // Returns the tls-unique channel bindings (see RFC 5929).

	32 // At most, \|outlen_max\| bytes will be written to \|out\|. The

	33 // actual number of bytes written will be set in \|outlen\|.
	wtc 2012/07/30 20:05:08 Nit: remove the comma after "At most". Add '' be Nit: remove the comma after "At most". Add '' before outlen. Ryan Hamilton 2012/07/30 21:37:58 Done. Show quoted text On 2012/07/30 20:05:08, wtc wrote: > > Nit: remove the comma after "At most". Add '*' before outlen. Done.
	34 virtual int GetTlsUniqueChannelBinding(unsigned char* out,
	wtc 2012/07/30 20:05:08 Please spell "TLS" in all caps. History: our Styl Please spell "TLS" in all caps. History: our Style Guide does not mandate how abbreviations should be spelled in function or class names. The base and net components followed the WebKit/Apple style of spelling abbreviations in all caps. This style isn't consistently followed in net (for example, HTTP is often spelled "Http"). It may be better to define this method as GetChannelBinding, which takes the channel binding type (specified an enum or a string) as an input argument. We can do this later when we need to use another channel binding type. Ryan Hamilton 2012/07/30 21:37:58 Done. Show quoted text On 2012/07/30 20:05:08, wtc wrote: > > Please spell "TLS" in all caps. > > History: our Style Guide does not mandate how abbreviations > should be spelled in function or class names. The base and > net components followed the WebKit/Apple style of spelling > abbreviations in all caps. This style isn't consistently > followed in net (for example, HTTP is often spelled "Http"). > > It may be better to define this method as > GetChannelBinding, which takes the channel binding type > (specified an enum or a string) as an input argument. > We can do this later when we need to use another channel > binding type. Done.
	35 unsigned int *outlen,

	36 unsigned int outlen_max) = 0;
	wtc 2012/07/30 20:05:08 We probably should just use a std::string* out o We probably should just use a std::string* out output argument. At least, use size_t instead of unsigned int as the type of length. But I noticed that the existing ExportKeyingMaterial method above is already using 'unsigned int' as the type of length. (The use of unsigned int for lengths is an NSS-ism.) Ryan Hamilton 2012/07/30 21:37:58 Done. Show quoted text On 2012/07/30 20:05:08, wtc wrote: > > We probably should just use a > std::string* out > output argument. At least, use size_t instead of > unsigned int as the type of length. But I noticed that > the existing ExportKeyingMaterial method above is already > using 'unsigned int' as the type of length. (The use > of unsigned int for lengths is an NSS-ism.) Done.
30 };	37 };

31	38

32 } // namespace net	39 } // namespace net

33	40

34 #endif // NET_SOCKET_SSL_SOCKET_H_	41 #endif // NET_SOCKET_SSL_SOCKET_H_

OLD	NEW

« net/socket/ssl_server_socket_nss.h ('K') | « net/socket/ssl_server_socket_nss.cc ('k') | no next file » | no next file with comments »