Disk Based Certificate Cache Implementation

net/http/disk_based_cert_cache.h

Index: net/http/disk_based_cert_cache.h
diff --git a/net/http/disk_based_cert_cache.h b/net/http/disk_based_cert_cache.h
new file mode 100644
index 0000000000000000000000000000000000000000..49afa2d73efff14fb350a893098c01fd912616e1
--- /dev/null
+++ b/net/http/disk_based_cert_cache.h
@@ -0,0 +1,69 @@
+// Copyright (c) 2014 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef NET_HTTP_DISK_BASED_CERT_CACHE_H
+#define NET_HTTP_DISK_BASED_CERT_CACHE_H
+
+#include <string>
+
+#include "base/callback.h"
+#include "base/containers/hash_tables.h"
+#include "base/memory/weak_ptr.h"
+#include "net/base/net_export.h"
+#include "net/cert/x509_certificate.h"
+
+namespace disk_cache {
+class Backend;
+}  // namespace disk_cache
+
+namespace net {
+
+class NET_EXPORT_PRIVATE DiskBasedCertCache {

[wtc, 2014/06/20 01:27:07]

Please add a comment to summarize what this class is.

+ public:
+  typedef base::Callback<void(const X509Certificate::OSCertHandle cert_handle)>
+      GetCallback;
+  typedef base::Callback<void(const std::string&)> SetCallback;
+
+  // Constructor takes in a previously initialized backend, which is then
+  // used to store the certificates in the cache.
+  explicit DiskBasedCertCache(disk_cache::Backend* backend);
+  ~DiskBasedCertCache();
+
+  // Fetches the certificate associated with |key|. If the certificate is
+  // found within the cache, |cb| will be called with the certificate.
+  // Otherwise, |cb| will be called with NULL. Callers that wish to store
+  // a copy should use X509Certificate::DupOSCertHandle.

[wtc, 2014/06/20 01:27:07]

"store a copy" is not clear. I suggest something that "store a reference to the
certificate".

Add "inside |cb|" after "should use X509Certificate::DupOSCertHandle".

+  void Get(const std::string& key, const GetCallback& cb);
+
+  // Stores |cert_handle| in the cache. If |cert_handle| is successfully stored,
+  // |cb| will be called with the key. If |cb| is called with an empty
+  // string, then |cert_handle| was not stored.
+  void Set(const X509Certificate::OSCertHandle cert_handle,
+           const SetCallback& cb);
+
+ private:
+  class ReadWorker;
+  class WriteWorker;
+
+  typedef base::hash_map<std::string, ReadWorker*> ReadWorkerMap;
+  typedef base::hash_map<std::string, WriteWorker*> WriteWorkerMap;

[wtc, 2014/06/20 01:27:07]

Nit: document what the std::string is. (I guess it's the key for the cache.)

+
+  // FinishedReadOperation and FinishedWriteOperation are used by callbacks
+  // given to the workers to signal the DiskBasedCertCache they have completed
+  // their work. The workers are then deleted and removed from their respective
+  // hash maps.
+  void FinishedReadOperation(const std::string& key);
+  void FinishedWriteOperation(const std::string& key);
+
+  ReadWorkerMap read_worker_map_;
+  WriteWorkerMap write_worker_map_;
+
+  disk_cache::Backend* backend_;
+  base::WeakPtrFactory<DiskBasedCertCache> weak_factory_;
+  DISALLOW_COPY_AND_ASSIGN(DiskBasedCertCache);
+};
+
+}  // namespace net
+
+#endif  // NET_HTTP_DISK_BASED_CERT_CACHE_H