net/socket/ssl_client_socket_impl.cc - Issue 2189613003: Stop calling SSL_get_session in SSLClientSocketImpl.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/socket/ssl_client_socket_impl.cc

Issue 2189613003: Stop calling SSL_get_session in SSLClientSocketImpl. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 4 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/socket/ssl_client_socket_impl.cc

diff --git a/net/socket/ssl_client_socket_impl.cc b/net/socket/ssl_client_socket_impl.cc

index d042912d83bcff11d9492e2f07207d35419450c0..86fad0635e3aecec1ebcc137ee36090043939a1e 100644

--- a/net/socket/ssl_client_socket_impl.cc

+++ b/net/socket/ssl_client_socket_impl.cc

@@ -517,7 +517,6 @@ SSLClientSocketImpl::SSLClientSocketImpl(

disconnected_(false),

npn_status_(kNextProtoUnsupported),

channel_id_sent_(false),

- session_pending_(false),

certificate_verified_(false),

signature_result_(kNoPendingResult),

transport_security_state_(context.transport_security_state),

@@ -708,7 +707,7 @@ void SSLClientSocketImpl::Disconnect() {

channel_id_sent_ = false;

tb_was_negotiated_ = false;

- session_pending_ = false;

+ pending_session_ = nullptr;

certificate_verified_ = false;

channel_id_request_.Cancel();

@@ -804,8 +803,11 @@ bool SSLClientSocketImpl::GetSSLInfo(SSLInfo* ssl_info) {

const SSL_CIPHER* cipher = SSL_get_current_cipher(ssl_);

CHECK(cipher);

ssl_info->security_bits = SSL_CIPHER_get_bits(cipher, NULL);

- ssl_info->key_exchange_info =

- SSL_SESSION_get_key_exchange_info(SSL_get_session(ssl_));

+ if (SSL_CIPHER_is_ECDHE(cipher)) {

+ ssl_info->key_exchange_info = SSL_get_curve_id(ssl_);

+ } else if (SSL_CIPHER_is_DHE(cipher)) {

+ ssl_info->key_exchange_info = SSL_get_dhe_group_size(ssl_);

+ }

SSLConnectionStatusSetCipherSuite(

static_cast<uint16_t>(SSL_CIPHER_get_id(cipher)),

@@ -2071,25 +2073,18 @@ void SSLClientSocketImpl::MaybeCacheSession() {

// Only cache the session once both a new session has been established and the

// certificate has been verified. Due to False Start, these events may happen

// in either order.

- if (!session_pending_ || !certificate_verified_)

+ if (!pending_session_ || !certificate_verified_)

return;

SSLContext::GetInstance()->session_cache()->Insert(GetSessionCacheKey(),

- SSL_get_session(ssl_));

- session_pending_ = false;

+ pending_session_.get());

+ pending_session_ = nullptr;

}

int SSLClientSocketImpl::NewSessionCallback(SSL_SESSION* session) {

- DCHECK_EQ(session, SSL_get_session(ssl_));

- // Only sessions from the initial handshake get cached. Note this callback may

- // be signaled on abbreviated handshakes if the ticket was renewed.

- session_pending_ = true;

+ // OpenSSL passes a reference to |session|.

+ pending_session_.reset(session);

MaybeCacheSession();

- // OpenSSL passes a reference to |session|, but the session cache does not

- // take this reference, so release it.

- SSL_SESSION_free(session);

return 1;

}

« no previous file with comments | « net/socket/ssl_client_socket_impl.h ('k') | no next file » | no next file with comments »