Support for server session cache.

net/socket/ssl_server_socket_openssl.h

 // Copyright 2014 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef NET_SOCKET_SSL_SERVER_SOCKET_OPENSSL_H_
 #define NET_SOCKET_SSL_SERVER_SOCKET_OPENSSL_H_
 
 #include <stdint.h>
 
 #include "base/macros.h"
 #include "base/memory/scoped_ptr.h"
 #include "net/base/completion_callback.h"
 #include "net/base/io_buffer.h"
 #include "net/log/net_log.h"
 #include "net/socket/ssl_server_socket.h"
+#include "net/ssl/scoped_openssl_types.h"
 #include "net/ssl/ssl_server_config.h"
 
 // Avoid including misc OpenSSL headers, i.e.:
 // <openssl/bio.h>
 typedef struct bio_st BIO;
 // <openssl/ssl.h>
 typedef struct ssl_st SSL;
 typedef struct x509_store_ctx_st X509_STORE_CTX;
 
 namespace net {
 
 class SSLInfo;
 
+class SSLServerSocketContextOpenSSL : public SSLServerSocketContext {
+ public:
+  SSLServerSocketContextOpenSSL(scoped_refptr<X509Certificate> certificate,
+                                const crypto::RSAPrivateKey& key,
+                                const SSLServerConfig& ssl_server_config);
+
+  scoped_ptr<SSLServerSocket> CreateSSLServerSocket(
+      scoped_ptr<StreamSocket> socket) override;
+
+ private:
+  ~SSLServerSocketContextOpenSSL();
+
+  ScopedSSL_CTX ssl_ctx_;
+
+  // Options for the SSL socket.
+  SSLServerConfig ssl_server_config_;
+
+  // Certificate for the server.
+  scoped_refptr<X509Certificate> cert_;
+
+  // Private key used by the server.
+  scoped_ptr<crypto::RSAPrivateKey> key_;
+};
+
 class SSLServerSocketOpenSSL : public SSLServerSocket {

[davidben, 2016/01/22 23:57:48]

Ditto that this needn't be in the header file now. Also you could avoid the
friend bit by making this an inner class. (Forward-declare it in
SSLServerSocketContextOpenSSL and then define it in the C++ file.)

[ryanchung, 2016/01/29 23:28:16]

Done.

  public:
-  // See comments on CreateSSLServerSocket for details of how these
-  // parameters are used.
-  SSLServerSocketOpenSSL(scoped_ptr<StreamSocket> socket,
-                         scoped_refptr<X509Certificate> certificate,
-                         const crypto::RSAPrivateKey& key,
-                         const SSLServerConfig& ssl_server_config);
   ~SSLServerSocketOpenSSL() override;
 
   // SSLServerSocket interface.
   int Handshake(const CompletionCallback& callback) override;
 
   // SSLSocket interface.
   int ExportKeyingMaterial(const base::StringPiece& label,
                            bool has_context,
                            const base::StringPiece& context,
                            unsigned char* out,
@@ skipping 29 matching lines @@
   void ClearConnectionAttempts() override {}
   void AddConnectionAttempts(const ConnectionAttempts& attempts) override {}
   int64_t GetTotalReceivedBytes() const override;
 
  private:
   enum State {
     STATE_NONE,
     STATE_HANDSHAKE,
   };
 
+  // See comments on CreateSSLServerSocket for details of how these
+  // parameters are used.
+  SSLServerSocketOpenSSL(scoped_ptr<StreamSocket> socket,
+                         scoped_refptr<X509Certificate> certificate,
+                         const crypto::RSAPrivateKey& key,
+                         const SSLServerConfig& ssl_server_config,
+                         SSL* ssl);
+  friend class SSLServerSocketContextOpenSSL;
+
   void OnSendComplete(int result);
   void OnRecvComplete(int result);
   void OnHandshakeIOComplete(int result);
 
   int BufferSend();
   void BufferSendComplete(int result);
   void TransportWriteComplete(int result);
   int BufferRecv();
   void BufferRecvComplete(int result);
   int TransportReadComplete(int result);
@@ skipping 60 matching lines @@
 
   State next_handshake_state_;
   bool completed_handshake_;
 
   DISALLOW_COPY_AND_ASSIGN(SSLServerSocketOpenSSL);
 };
 
 }  // namespace net
 
 #endif  // NET_SOCKET_SSL_SERVER_SOCKET_OPENSSL_H_