Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(223)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 42380: Implement SSL renegotiation.... (Closed)

Created:
11 years, 9 months ago by wtc
Modified:
9 years, 7 months ago
CC:
chromium-reviews_googlegroups.com
Visibility:
Public.

Description

Implement SSL renegotiation. In the Windows Schannel API, a server requests renegotiation when DecryptMessage (decrypting received data) returns SEC_I_RENEGOTIATE. We need to jump to the handshake sequence, and when handshake completes, come back to reading data. I also cleaned up the code. I created the SetNextStateForRead and FreeSendBuffer functions to share common code, and made sure our handshake sequence is completely equivalent to the handshake sequence in the Platform SDK WebClient.c sample. R=rvargas BUG=6893 TEST=Visit these sites, which request SSL renegotiation: https://secure.skandiabanken.se/Skbsecure/LoginInternet/SKBLoginInternet.aspx https://secure.skandiabanken.no/SkbSecure/Authentication/Otp/Default.ashx https://www.myopenid.com/signin_certificate Committed: http://src.chromium.org/viewvc/chrome?view=rev&revision=12229

Patch Set 1 #

Patch Set 2 : Ready for review #

Patch Set 3 : Work in progress #

Patch Set 4 : It works now #

Total comments: 5

Patch Set 5 : Upload before checkin #

Unified diffs Side-by-side diffs Delta from patch set Stats (+122 lines, -77 lines) Patch
M net/base/ssl_client_socket_win.h View 1 2 3 4 4 chunks +15 lines, -2 lines 0 comments Download
M net/base/ssl_client_socket_win.cc View 1 2 3 4 15 chunks +107 lines, -75 lines 0 comments Download

Messages

Total messages: 3 (0 generated)
wtc
http://codereview.chromium.org/42380/diff/2002/2004 File net/base/ssl_client_socket_win.cc (left): http://codereview.chromium.org/42380/diff/2002/2004#oldcode562 Line 562: in_buffers[0].pvBuffer = &recv_buffer_[0]; The change from &recv_buffer_[0] to ...
11 years, 9 months ago (2009-03-20 21:24:59 UTC) #1
rvargas (doing something else)
Quite interesting. LGTM. http://codereview.chromium.org/42380/diff/2002/2004 File net/base/ssl_client_socket_win.cc (right): http://codereview.chromium.org/42380/diff/2002/2004#newcode592 Line 592: FAILED(isc_status_) && (out_flags & ISC_RET_EXTENDED_ERROR))) ...
11 years, 9 months ago (2009-03-20 23:07:16 UTC) #2
wtc
11 years, 9 months ago (2009-03-20 23:34:15 UTC) #3 
Ricardo,

Thanks for the review.  I made the changes you suggested
except adding new error codes for the conditions that I
assume can't happen.  I've been very successful with
asking users to run chrome.exe with --enable-logging
and pasting the chrome_debug.log contents, so the LOG(ERROR)
statements should be adequate.

I've checked in this CL.

Powered by Google App Engine
This is Rietveld 408576698