net: support ALPN.

net/socket/ssl_client_socket_nss.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 // This file includes code SSLClientSocketNSS::DoVerifyCertComplete() derived
 // from AuthCertificateCallback() in
 // mozilla/security/manager/ssl/src/nsNSSCallbacks.cpp.
 
 /* ***** BEGIN LICENSE BLOCK *****
  * Version: MPL 1.1/GPL 2.0/LGPL 2.1
@@ skipping 2480 matching lines @@
   unsigned buf_len;
 
   SECStatus rv = SSL_GetNextProto(nss_fd_, &state, buf, &buf_len, sizeof(buf));
   if (rv != SECSuccess)
     return;
 
   nss_handshake_state_.next_proto =
       std::string(reinterpret_cast<char*>(buf), buf_len);
   switch (state) {
     case SSL_NEXT_PROTO_NEGOTIATED:
+    case SSL_NEXT_PROTO_SELECTED:

[Ryan Sleevi, 2013/07/02 19:13:10]

This will affect the histograms for NPN, as well as enable things like false
start.

I think this is OK for the initial landing, since we really do want the rest of
the codepaths to be the same for ALPN vs NPN, but it may be good to do a
follow-up CL to make sure we're not mis-reporting anything.

       nss_handshake_state_.next_proto_status = kNextProtoNegotiated;
       break;
     case SSL_NEXT_PROTO_NO_OVERLAP:
       nss_handshake_state_.next_proto_status = kNextProtoNoOverlap;
       break;
     case SSL_NEXT_PROTO_NO_SUPPORT:
       nss_handshake_state_.next_proto_status = kNextProtoUnsupported;
       break;
     default:
       NOTREACHED();
@@ skipping 1009 matching lines @@
   EnsureThreadIdAssigned();
   base::AutoLock auto_lock(lock_);
   return valid_thread_id_ == base::PlatformThread::CurrentId();
 }
 
 ServerBoundCertService* SSLClientSocketNSS::GetServerBoundCertService() const {
   return server_bound_cert_service_;
 }
 
 }  // namespace net