remoting/host/security_key/security_key_message.cc - Issue 1821393002: Adding the message definitions for the remote_security_key STDIO communication classes.

Side by Side Diff: remoting/host/security_key/security_key_message.cc

Issue 1821393002: Adding the message definitions for the remote_security_key STDIO communication classes. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Addressing feedback Created 4 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
(Empty)
	1 // Copyright 2016 The Chromium Authors. All rights reserved.

	2 // Use of this source code is governed by a BSD-style license that can be

	3 // found in the LICENSE file.

	4

	5 #include "remoting/host/security_key/security_key_message.h"

	6

	7 namespace {

	8

	9 // Limit remote security key messages to 256KB.

	10 const uint32_t kMaxSecurityKeyMessageByteCount = 256 * 1024;

	11

	12 const int kRemoteSecurityKeyMessageControlCodeByteCount = sizeof(uint8_t);
	Sergey Ulanov 2016/03/24 21:51:17 1 instead sizeof(uint8_t) please 1 instead sizeof(uint8_t) please joedow 2016/03/28 19:44:26 Done. Show quoted text On 2016/03/24 21:51:17, Sergey Ulanov wrote: > 1 instead sizeof(uint8_t) please Done.
	13

	14 } // namespace

	15

	16 namespace remoting {

	17

	18 const int SecurityKeyMessage::kHeaderSizeBytes = sizeof(uint32_t);
	Sergey Ulanov 2016/03/24 21:51:17 nit: replace sizeof(uint32_t) with 4. nit: replace sizeof(uint32_t) with 4. joedow 2016/03/28 19:44:26 Acknowledged. Show quoted text On 2016/03/24 21:51:17, Sergey Ulanov wrote: > nit: replace sizeof(uint32_t) with 4. Acknowledged.
	19

	20 SecurityKeyMessage::SecurityKeyMessage() {}

	21

	22 SecurityKeyMessage::~SecurityKeyMessage() {}

	23

	24 bool SecurityKeyMessage::IsValidMessageSize(uint32_t message_size) {

	25 return message_size > 0 && message_size <= kMaxSecurityKeyMessageByteCount;

	26 }

	27

	28 bool SecurityKeyMessage::ParseMessage(const std::string& message_data) {

	29 if (!IsValidMessageSize(message_data.size())) {

	30 return false;

	31 }

	32

	33 // The first char of the message is the message type.

	34 type_ = static_cast<RemoteSecurityKeyMessageType>(message_data[0]);

	35 if (type_ == RemoteSecurityKeyMessageType::kUnitialized) {
	Sergey Ulanov 2016/03/24 21:51:17 Do we also need to validate that it's in accepted Do we also need to validate that it's in accepted range. E.g. should this accept type_=33? joedow 2016/03/28 19:44:26 I thought about adding validation in but I don't t Show quoted text On 2016/03/24 21:51:17, Sergey Ulanov wrote: > Do we also need to validate that it's in accepted range. E.g. should this accept > type_=33? I thought about adding validation in but I don't think it is worth it as there is already a form of validation in the handler class (i.e. unknown messagea are rejected).. When we add messages or new error conditions, we need to update the enum and our validate function and I'd prefer this data type be simple and keep the validation in the handling code. Sergey Ulanov 2016/03/29 01:05:51 I think we want to validate the value before the s Show quoted text On 2016/03/28 19:44:26, joedow wrote: > On 2016/03/24 21:51:17, Sergey Ulanov wrote: > > Do we also need to validate that it's in accepted range. E.g. should this > accept > > type_=33? > > I thought about adding validation in but I don't think it is worth it as there > is already a form of validation in the handler class (i.e. unknown messagea are > rejected).. When we add messages or new error conditions, we need to update the > enum and our validate function and I'd prefer this data type be simple and keep > the validation in the handling code. I think we want to validate the value before the static_cast<>. static_cast<> behavior is unspecified when casting int type to enum. See http://stackoverflow.com/questions/18195312/what-happens-if-you-static-cast-i... This means that the compiler is allowed to crash. It's also allowed to truncate the higher bits, which means that the value may become valid after conversion. Alternatively you can change type of \|type_\| to int and assume that it's supposed to be validated elsewhere.
	36 return false;

	37 }

	38

	39 payload_.clear();

	40 if (message_data.size() > kRemoteSecurityKeyMessageControlCodeByteCount) {

	41 payload_.reserve(message_data.size() - 1);

	42 std::string::const_iterator it = message_data.begin();

	43 payload_.append(++it, message_data.end());
	Sergey Ulanov 2016/03/24 21:51:17 You don't really gain anything by calling reserve( You don't really gain anything by calling reserve() if append() is called only once. Also std::string uses random access iterator, so you could use "begin() + 1" here. But I think this would be more readable using substr(), i.e: payload_ = message_data.substr(1); joedow 2016/03/28 19:44:26 Done. Show quoted text On 2016/03/24 21:51:17, Sergey Ulanov wrote: > You don't really gain anything by calling reserve() if append() is called only > once. Also std::string uses random access iterator, so you could use "begin() + > 1" here. But I think this would be more readable using substr(), i.e: > payload_ = message_data.substr(1); Done.
	44 }

	45

	46 return true;

	47 }

	48

	49 } // namespace remoting

OLD	NEW

« remoting/host/security_key/security_key_message.h ('K') | « remoting/host/security_key/security_key_message.h ('k') | remoting/remoting_host_srcs.gypi » ('j') | no next file with comments »