net/socket/ssl_client_socket.h - Issue 353713005: Implements new, more robust design for communicating between SSLConnectJobs.

Side by Side Diff: net/socket/ssl_client_socket.h

Issue 353713005: Implements new, more robust design for communicating between SSLConnectJobs. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Changed location of enable_connect_job_waiting_ and added documentation. Created 6 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #ifndef NET_SOCKET_SSL_CLIENT_SOCKET_H_	5 #ifndef NET_SOCKET_SSL_CLIENT_SOCKET_H_

6 #define NET_SOCKET_SSL_CLIENT_SOCKET_H_	6 #define NET_SOCKET_SSL_CLIENT_SOCKET_H_

7	7

8 #include <string>	8 #include <string>

9	9

10 #include "base/gtest_prod_util.h"	10 #include "base/gtest_prod_util.h"

(...skipping 63 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
74 kNextProtoUnsupported = 0, // The server doesn't support NPN.	74 kNextProtoUnsupported = 0, // The server doesn't support NPN.

75 kNextProtoNegotiated = 1, // We agreed on a protocol.	75 kNextProtoNegotiated = 1, // We agreed on a protocol.

76 kNextProtoNoOverlap = 2, // No protocols in common. We requested	76 kNextProtoNoOverlap = 2, // No protocols in common. We requested

77 // the first protocol in our list.	77 // the first protocol in our list.

78 };	78 };

79	79

80 // StreamSocket:	80 // StreamSocket:

81 virtual bool WasNpnNegotiated() const OVERRIDE;	81 virtual bool WasNpnNegotiated() const OVERRIDE;

82 virtual NextProto GetNegotiatedProtocol() const OVERRIDE;	82 virtual NextProto GetNegotiatedProtocol() const OVERRIDE;

83	83

	84 // Format a unique key for the SSL session cache. This method
	wtc 2014/07/11 00:48:53 Nit: Format => Formats See the Style Guide: Th Nit: Format => Formats See the Style Guide: These comments should be descriptive ("Opens the file") rather than imperative ("Open the file") ... http://google-styleguide.googlecode.com/svn/trunk/cppguide.xml#Function_Comments Please check the other function comments in this CL. mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > Nit: Format => Formats > > See the Style Guide: > > These comments should be descriptive ("Opens the file") rather than > imperative ("Open the file") ... > > http://google-styleguide.googlecode.com/svn/trunk/cppguide.xml#Function_Comments > > Please check the other function comments in this CL. Done.
	85 // is necessary so that all classes create cache keys in a consistent

	86 // manner.

	87 static std::string FormatSessionCacheKey(std::string host_and_port,
	wtc 2014/07/11 00:48:53 IMPORTANT: this method should ideally be a virtual IMPORTANT: this method should ideally be a virtual method of SSLClientSocket or ClientSocketFactory because the session cache key depends on the implementation of the SSLClientSocket. If this method is a static method of SSLClientSocket, it implies all subclasses of SSLClientSocket should use this method. In that case, we should also modify SSLClientSocketNSS to use this method. The code is in SSLClientSocketNSS::InitializeSSLPeerName. mshelley 2014/07/11 23:26:26 So basically I added this method because I needed Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > IMPORTANT: this method should ideally be a virtual method of SSLClientSocket or > ClientSocketFactory because the session cache key depends on the implementation > of the SSLClientSocket. > > If this method is a static method of SSLClientSocket, it implies all subclasses > of SSLClientSocket should use this method. In that case, we should also modify > SSLClientSocketNSS to use this method. The code is in > SSLClientSocketNSS::InitializeSSLPeerName. So basically I added this method because I needed to create a session cache key outside of the SSLCLientSocket so that I could index the messenger_map_ by cache key. I figured that creating this static function would standardize cache key creation between the connect job factory and the client socket. However, I've realized that after my changes in https://codereview.chromium.org/384873002/ I will no longer need to do this, because I don't add messengers to messenger_map_ until after the socket is created. As a result, I plan to remove this method entirely in my next patch to that CL.
	88 std::string ssl_session_cache_shard);
	wtc 2014/07/11 00:48:53 These two std::string input parameters should be c These two std::string input parameters should be const references to avoid copying. mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > These two std::string input parameters should be const references to avoid > copying. Done.
	89

	90 // Returns true if there is a cache entry in the ssl session cache

	91 // for the given cache key.
	wtc 2014/07/11 00:48:53 Nit: the given cache key => the cache key of the S Nit: the given cache key => the cache key of the SSL socket mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > Nit: the given cache key => the cache key of the SSL socket Done.
	92 //

	93 // The cache key consists of a host and port concatenated with a session

	94 // cache shard.
	wtc 2014/07/11 00:48:54 Please point out that these two pieces of info are Please point out that these two pieces of info are passed to the constructor of most SSLClientSocket subclasses (except for the mocks). mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:54, wtc wrote: > > Please point out that these two pieces of info are passed to the constructor of > most SSLClientSocket subclasses (except for the mocks). Done.
	95 virtual bool InSessionCache() const = 0;

	96

	97 // Tells the session cache to monitor this socket's session and inform

	98 // its SSLConnectJobMessenger upon the session's connection's completion.

	99 virtual void WatchSessionForCompletion(const base::Closure& callback) = 0;

	100

	101 // Sets the callback to be used if the socket's connection should fail.

	102 virtual void SetSocketFailureCallback(const base::Closure& callback) = 0;
	wtc 2014/07/11 00:48:53 IMPORTANT: WatchSessionForCompletion and SetSocket IMPORTANT: WatchSessionForCompletion and SetSocketFailureCallback are similar methods: both of them set a callback function. So their names should suggest this similarity. I suggest renaming WatchSessionForCompletion to SetHandshakeSuccessCallback or SetSessionAddedCallback. I think SetSocketFailureCallback should be renamed SetHandshakeFailureCallback because "socket failure" is broader than what this callback is for. Note: I suggest "Handshake" instead of "Connect" in the method names because Connect() returns prematurely when False Start is used. Your comments should also point out this issue. mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > IMPORTANT: WatchSessionForCompletion and SetSocketFailureCallback are similar > methods: both of them set a callback function. So their names should suggest > this similarity. I suggest renaming WatchSessionForCompletion to > SetHandshakeSuccessCallback or SetSessionAddedCallback. > > I think SetSocketFailureCallback should be renamed SetHandshakeFailureCallback > because "socket failure" is broader than what this callback is for. > > Note: I suggest "Handshake" instead of "Connect" in the method names because > Connect() returns prematurely when False Start is used. Your comments should > also point out this issue. Done.
	103

	104 // Marks this socket as the leading connection.

	105 virtual void SetIsLeader() = 0;
	wtc 2014/07/11 00:48:53 IMPORTANT: Remove this method. It is not necessary IMPORTANT: Remove this method. It is not necessary. (SSLClientSocket is also the wrong place for this method, but we can simply remove this method.) The three functions WatchSessionForCompletion, SetSocketFailureCallback, and SetIsLeader are always called together. Therefore, in the SSLClientSocketOpenSSL class, the error_callback_ and is_leader_ members are set together and cleared together. So you just need the error_callback_ member. mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > IMPORTANT: Remove this method. It is not necessary. (SSLClientSocket is also the > wrong place for this method, but we can simply remove this method.) > > The three functions WatchSessionForCompletion, SetSocketFailureCallback, and > SetIsLeader are always called together. Therefore, in the SSLClientSocketOpenSSL > class, the error_callback_ and is_leader_ members are set together and cleared > together. So you just need the error_callback_ member. Done.
	106

	107 // In the case of a failed connection, run the appropriate callback.

	108 virtual void OnSocketFailure() = 0;
	wtc 2014/07/11 00:48:53 IMPORTANT: Remove OnSocketFailure from this header IMPORTANT: Remove OnSocketFailure from this header. OnSocketFailure is only used internal to SSLClientSocketOpenSSL, so OnSocketFailure should be a private, non-virtual method of SSLClientSocketOpenSSL. mshelley 2014/07/11 23:26:26 Done. Show quoted text On 2014/07/11 00:48:53, wtc wrote: > > IMPORTANT: Remove OnSocketFailure from this header. OnSocketFailure is only used > internal to SSLClientSocketOpenSSL, so OnSocketFailure should be a private, > non-virtual method of SSLClientSocketOpenSSL. Done.
	109

84 // Gets the SSL CertificateRequest info of the socket after Connect failed	110 // Gets the SSL CertificateRequest info of the socket after Connect failed

85 // with ERR_SSL_CLIENT_AUTH_CERT_NEEDED.	111 // with ERR_SSL_CLIENT_AUTH_CERT_NEEDED.

86 virtual void GetSSLCertRequestInfo(	112 virtual void GetSSLCertRequestInfo(

87 SSLCertRequestInfo* cert_request_info) = 0;	113 SSLCertRequestInfo* cert_request_info) = 0;

88	114

89 // Get the application level protocol that we negotiated with the server.	115 // Get the application level protocol that we negotiated with the server.

90 // *proto is set to the resulting protocol (n.b. that the string may have	116 // *proto is set to the resulting protocol (n.b. that the string may have

91 // embedded NULs).	117 // embedded NULs).

92 // kNextProtoUnsupported: *proto is cleared.	118 // kNextProtoUnsupported: *proto is cleared.

93 // kNextProtoNegotiated: *proto is set to the negotiated protocol.	119 // kNextProtoNegotiated: *proto is set to the negotiated protocol.

(...skipping 89 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
183 bool channel_id_sent_;	209 bool channel_id_sent_;

184 // True if SCTs were received via a TLS extension.	210 // True if SCTs were received via a TLS extension.

185 bool signed_cert_timestamps_received_;	211 bool signed_cert_timestamps_received_;

186 // True if a stapled OCSP response was received.	212 // True if a stapled OCSP response was received.

187 bool stapled_ocsp_response_received_;	213 bool stapled_ocsp_response_received_;

188 };	214 };

189	215

190 } // namespace net	216 } // namespace net

191	217

192 #endif // NET_SOCKET_SSL_CLIENT_SOCKET_H_	218 #endif // NET_SOCKET_SSL_CLIENT_SOCKET_H_

OLD	NEW

« no previous file with comments | « net/socket/socket_test_util.cc ('k') | net/socket/ssl_client_socket.cc » ('j') | net/socket/ssl_client_socket_openssl.h » ('J')