Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1132)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: net/socket/ssl_server_socket_openssl.h

Issue 1474983003: Support for client certs in ssl_server_socket. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Rebase only Created 4 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« net/socket/ssl_client_socket_openssl.cc ('K') | « net/socket/ssl_server_socket_nss.cc ('k') | net/socket/ssl_server_socket_openssl.cc » ('j') | net/socket/ssl_server_socket_openssl.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: net/socket/ssl_server_socket_openssl.h
diff --git a/net/socket/ssl_server_socket_openssl.h b/net/socket/ssl_server_socket_openssl.h
index fd7824970fc10610e6f57c46b4d9330662804a5a..c789015fe3ba8cba11d12572f89f9193a702bb58 100644
--- a/net/socket/ssl_server_socket_openssl.h
+++ b/net/socket/ssl_server_socket_openssl.h
@@ -20,6 +20,7 @@
typedef struct bio_st BIO;
// <openssl/ssl.h>
typedef struct ssl_st SSL;
+typedef struct x509_store_ctx_st X509_STORE_CTX;
namespace net {
@@ -32,7 +33,7 @@ class SSLServerSocketOpenSSL : public SSLServerSocket {
SSLServerSocketOpenSSL(scoped_ptr<StreamSocket> socket,
scoped_refptr<X509Certificate> certificate,
const crypto::RSAPrivateKey& key,
- const SSLServerConfig& ssl_config);
+ const SSLServerConfig& ssl_server_config);
~SSLServerSocketOpenSSL() override;
// SSLServerSocket interface.
@@ -105,6 +106,8 @@ class SSLServerSocketOpenSSL : public SSLServerSocket {
void DoWriteCallback(int result);
int Init();
+ void ExtractClientCert();
davidben 2016/01/25 20:56:10 This function does not seem to exist.
ryanchung 2016/01/29 23:22:13 Done. Removed.
+ static int CertVerifyCallback(X509_STORE_CTX* store_ctx, void* arg);
// Members used to send and receive buffer.
bool transport_send_busy_;
@@ -140,7 +143,7 @@ class SSLServerSocketOpenSSL : public SSLServerSocket {
scoped_ptr<StreamSocket> transport_socket_;
// Options for the SSL socket.
- SSLServerConfig ssl_config_;
+ SSLServerConfig ssl_server_config_;
// Certificate for the server.
scoped_refptr<X509Certificate> cert_;
@@ -148,6 +151,9 @@ class SSLServerSocketOpenSSL : public SSLServerSocket {
// Private key used by the server.
scoped_ptr<crypto::RSAPrivateKey> key_;
+ // Certificate for the client.
+ scoped_refptr<X509Certificate> client_cert_;
+
State next_handshake_state_;
bool completed_handshake_;
« net/socket/ssl_client_socket_openssl.cc ('K') | « net/socket/ssl_server_socket_nss.cc ('k') | net/socket/ssl_server_socket_openssl.cc » ('j') | net/socket/ssl_server_socket_openssl.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698