Support for server session cache.

net/socket/ssl_server_socket.h

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef NET_SOCKET_SSL_SERVER_SOCKET_H_
 #define NET_SOCKET_SSL_SERVER_SOCKET_H_
 
 #include "base/memory/scoped_ptr.h"
 #include "net/base/completion_callback.h"
 #include "net/base/net_export.h"
@@ skipping 13 matching lines @@
  public:
   ~SSLServerSocket() override {}
 
   // Perform the SSL server handshake, and notify the supplied callback
   // if the process completes asynchronously.  If Disconnect is called before
   // completion then the callback will be silently, as for other StreamSocket
   // calls.
   virtual int Handshake(const CompletionCallback& callback) = 0;
 };
 
+class SSLServerSocketContext {

[davidben, 2016/01/22 23:57:48]

svaldez has been calling the corresponding client API 'SSLClientContext' which
is a little shorter.

[ryanchung, 2016/01/29 23:28:15]

Done. Will call it SSLServerContext.

+ public:
+  // Creates an SSL server socket over an already-connected transport socket.

[davidben, 2016/01/22 23:57:47]

Add: The caller must ensure the returned socket does not outlive the server
context.

[ryanchung, 2016/01/29 23:28:15]

Done.

+  //
+  // The returned SSLServerSocket takes ownership of |socket|.  Stubbed versions
+  // of CreateSSLServerSocket will delete |socket| and return NULL.

[davidben, 2016/01/22 23:57:47]

What do you mean stubbed versions? Nothing every checks that the return value is
nullptr and it doesn't really make sense for this to return nullptr. The
interface shouldn't be documented to do that.

[davidben, 2016/01/22 23:57:48]

This is already expressed in the function signature.

[ryanchung, 2016/01/29 23:28:15]

Whoops, looks like an outdated comment I accidentally moved from the original
CreateSSLServerSocket. Will remove.

[ryanchung, 2016/01/29 23:28:15]

Done.

+  //
+  // The caller starts the SSL server handshake by calling Handshake on the
+  // returned socket.
+  virtual scoped_ptr<SSLServerSocket> CreateSSLServerSocket(
+      scoped_ptr<StreamSocket> socket) = 0;
+};
+
 // Configures the underlying SSL library for the use of SSL server sockets.
 //
 // Due to the requirements of the underlying libraries, this should be called
 // early in process initialization, before any SSL socket, client or server,
 // has been used.
 //
 // Note: If a process does not use SSL server sockets, this call may be
 // omitted.
 NET_EXPORT void EnableSSLServerSockets();
 
-// Creates an SSL server socket over an already-connected transport socket.
+// Creates an SSL server socket context where all sockets spawned using this
+// context will share the same session cache.
+//
 // The caller must provide the server certificate and private key to use.
-//
-// The returned SSLServerSocket takes ownership of |socket|.  Stubbed versions
-// of CreateSSLServerSocket will delete |socket| and return NULL.
 // It takes a reference to |certificate|.
 // The |key| and |ssl_config| parameters are copied.
 //
-// The caller starts the SSL server handshake by calling Handshake on the
-// returned socket.
-NET_EXPORT scoped_ptr<SSLServerSocket> CreateSSLServerSocket(
-    scoped_ptr<StreamSocket> socket,
+NET_EXPORT scoped_ptr<SSLServerSocketContext> CreateSSLServerSocketContext(

[davidben, 2016/01/22 23:57:48]

Ditto re SSLServerSocketContext vs SSLServerContext.

[ryanchung, 2016/01/29 23:28:15]

Done.

     X509Certificate* certificate,
     const crypto::RSAPrivateKey& key,
     const SSLServerConfig& ssl_config);
 
 }  // namespace net
 
 #endif  // NET_SOCKET_SSL_SERVER_SOCKET_H_