net/quic/crypto/proof_verifier_chromium.h - Issue 17385010: OpenSSL/NSS implementation of ProofVerfifier.

Side by Side Diff: net/quic/crypto/proof_verifier_chromium.h

Issue 17385010: OpenSSL/NSS implementation of ProofVerfifier. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Fix compiler error Created 7 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
(Empty)
	1 // Copyright 2013 The Chromium Authors. All rights reserved.

	2 // Use of this source code is governed by a BSD-style license that can be

	3 // found in the LICENSE file.

	4

	5 #ifndef NET_QUIC_CRYPTO_PROOF_VERIFIER_CHROMIUM_H_

	6 #define NET_QUIC_CRYPTO_PROOF_VERIFIER_CHROMIUM_H_

	7

	8 #include <string>

	9 #include <vector>

	10

	11 #include "base/basictypes.h"

	12 #include "base/compiler_specific.h"

	13 #include "base/memory/scoped_ptr.h"

	14 #include "net/base/completion_callback.h"

	15 #include "net/base/net_export.h"

	16 #include "net/base/net_log.h"

	17 #include "net/cert/cert_verify_result.h"

	18 #include "net/cert/x509_certificate.h"

	19 #include "net/quic/crypto/proof_verifier.h"

	20

	21 namespace net {

	22

	23 class BoundNetLog;

	24 class CertVerifier;

	25 class CertVerifyResult;

	26 class SingleRequestCertVerifier;

	27 class X509Certificate;

	28

	29 struct CERTCertificateStr;

	30 typedef struct CERTCertificateStr CERTCertificate;
	wtc 2013/06/24 22:36:56 Delete these two lines. They are NSS-specific. Delete these two lines. They are NSS-specific. ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > Delete these two lines. They are NSS-specific. Done.
	31

	32 // ProofVerifierChromium implements the QUIC ProofVerifier interface.

	33 class NET_EXPORT_PRIVATE ProofVerifierChromium : public ProofVerifier {

	34 public:

	35 explicit ProofVerifierChromium(CertVerifier* cert_verifier);

	36 virtual ~ProofVerifierChromium();

	37

	38 // ProofVerifier interface

	39 virtual int VerifyProof(const std::string& hostname,

	40 const std::string& server_config,

	41 const std::vector<std::string>& certs,

	42 const std::string& signature,

	43 const CompletionCallback& callback,

	44 std::string* error_details) OVERRIDE;

	45

	46 // TODO(rtenneti): Do we need completed_cert_verification??
	wtc 2013/06/24 22:36:56 The completed_cert_verification() method doesn't s The completed_cert_verification() method doesn't seem necessary. ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > The completed_cert_verification() method doesn't seem necessary. Done.
	47 bool completed_cert_verification() const {

	48 return completed_cert_verification_;

	49 }

	50

	51 private:

	52 enum State {

	53 STATE_NONE,

	54 STATE_VERIFY_CERT,

	55 STATE_VERIFY_CERT_COMPLETE,

	56 };

	57

	58 int VerifyChain(const std::vector<std::string>& certs);

	59

	60 int DoVerifyCertLoop(int last_io_result);

	61 void OnVerifyCertIOComplete(int result);
	wtc 2013/06/24 22:36:56 These two functions can be named simply DoLoop(int These two functions can be named simply DoLoop(int result) and OnIOComplete(int result). ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > These two functions can be named simply DoLoop(int result) > and OnIOComplete(int result). Done.
	62 int DoVerifyCert(int result);

	63 int DoVerifyCertComplete(int result);

	64

	65 static bool VerifySignature(const std::string& signed_data,

	66 const std::string& signature,

	67 const std::string& cert);

	68

	69
	wtc 2013/06/24 22:36:56 Delete one blank line. Delete one blank line. ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > Delete one blank line. Done.
	70 // \|cert_verifier_\| and \|verifier_\| are used for verifying certificates.

	71 CertVerifier* const cert_verifier_;

	72 scoped_ptr<SingleRequestCertVerifier> verifier_;

	73

	74 // \|hostname\| specifies the hostname for which \|certs\| is a valid chain.

	75 std::string hostname_;

	76

	77 CompletionCallback callback_;

	78

	79 // True if the cert verification has been completed.

	80 bool completed_cert_verification_;

	81

	82 // The result of certificate verification.

	83 CertVerifyResult server_cert_verify_result_;
	wtc 2013/06/24 22:36:56 Remove "server_" from the member's name. Remove "server_" from the member's name. ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > Remove "server_" from the member's name. Done.
	84

	85 // X509Certificate from a chain of DER encoded certificates.

	86 scoped_refptr<X509Certificate> server_cert_;
	wtc 2013/06/24 22:36:56 It may be sufficient to just name this member \|cer It may be sufficient to just name this member \|cert_\|. ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > It may be sufficient to just name this member \|cert_\|. Done.
	87

	88 State next_cert_state_;
	wtc 2013/06/24 22:36:56 This member can be named simply next_state_. This member can be named simply next_state_. ramant (doing other things) 2013/06/28 19:16:56 Done. Show quoted text On 2013/06/24 22:36:56, wtc wrote: > > This member can be named simply next_state_. Done.
	89

	90 BoundNetLog net_log_;

	91

	92 DISALLOW_COPY_AND_ASSIGN(ProofVerifierChromium);

	93 };

	94

	95 } // namespace net

	96

	97 #endif // NET_QUIC_CRYPTO_PROOF_VERIFIER_CHROMIUM_H_

OLD	NEW

« net/quic/crypto/proof_verifier.h ('K') | « net/quic/crypto/proof_verifier.h ('k') | net/quic/crypto/proof_verifier_chromium.cc » ('j') | net/quic/crypto/proof_verifier_chromium.cc » ('J')