An implementation of chrome.socket.secure().

chrome/browser/extensions/api/socket/tls_socket.h

+// Copyright (c) 2013 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef CHROME_BROWSER_EXTENSIONS_API_SOCKET_TLS_SOCKET_H_
+#define CHROME_BROWSER_EXTENSIONS_API_SOCKET_TLS_SOCKET_H_
+
+#include <string>
+
+#include "chrome/browser/extensions/api/socket/socket.h"
+#include "chrome/browser/extensions/api/socket/socket_api.h"
+#include "chrome/browser/extensions/api/socket/tcp_socket.h"
+
+namespace net {
+class Socket;
+}
+
+namespace extensions {
+class TLSSocket;
+typedef base::Callback<void(TLSSocket*, int)> SecureCallback;

[Ryan Sleevi, 2014/01/14 01:32:06]

Does this make more sense as "scoped_ptr<TLSSocket>" / "const
scoped_refptr<TLSSocket>&" (depending on whether it's refcounted), to indicate
it's an ownership transferring/sharing operation?

[lally, 2014/01/29 23:57:45]

Yes, yes it does.  Done.

+
+// TLS Sockets from the chrome.socket API. A regular TCPSocket is converted
+// to a TLSSocket via chrome.socket.secure() or chrome.sockets.tcp.secure().
+// The inheritance here is for interface API compatibility, not for
+// implementation that comes with it. TLSSocket does not use its superclass's
+// socket state, so all methods are overridden here to prevent any access of
+// ResumableTCPSocket's socket state.
+class TLSSocket : public ResumableTCPSocket {
+ public:
+  TLSSocket(net::StreamSocket* tls_socket,
+            const std::string& owner_extension_id);
+
+  virtual ~TLSSocket();
+
+  // Most of these methods either fail or forward the method call on to the
+  // inner net::StreamSocket. The remaining few do actual TLS work.
+
+  // Fails.
+  virtual void Connect(const std::string& address,
+                       int port,
+                       const CompletionCallback& callback) OVERRIDE;
+  // Forwards.
+  virtual void Disconnect() OVERRIDE;
+
+  // The |callback| will be called with the number of bytes read into the
+  // buffer, or a negative number if an error occurred. Does TLS work.
+  virtual void Read(int count,
+                    const ReadCompletionCallback& callback) OVERRIDE;
+
+  // Fails. This should have been called on the TCP socket before secure() was
+  // invoked.
+  virtual bool SetKeepAlive(bool enable, int delay) OVERRIDE;
+
+  // Fails. This should have been called on the TCP socket before secure() was
+  // invoked.
+  virtual bool SetNoDelay(bool no_delay) OVERRIDE;
+
+  // Fails. TLSSocket is only a client.
+  virtual int Listen(const std::string& address, int port, int backlog,
+                     std::string* error_msg) OVERRIDE;
+  // Fails. TLSSocket is only a client.
+  virtual void Accept(const AcceptCompletionCallback &callback) OVERRIDE;
+
+  // Forwards.
+  virtual bool IsConnected() OVERRIDE;
+
+  // Forwards.
+  virtual bool GetPeerAddress(net::IPEndPoint* address) OVERRIDE;
+  // Forwards.
+  virtual bool GetLocalAddress(net::IPEndPoint* address) OVERRIDE;
+
+  // Returns TYPE_TLS.
+  virtual SocketType GetSocketType() const OVERRIDE;
+
+  // Convert the given |socket| to a TLS socket. Works only for TCP sockets.
+  // Must be invoked in the IO thread. |callback| will always be invoked.
+  // |profile| and |url_request_getter| must live at least until |callback|
+  // is invoked.  |callback| is always invoked.  Note: |callback| may get

[Ryan Sleevi, 2014/01/14 01:32:06]

nit: unnecessary extra space ;)

"Note: |callback| may be invoked synchronously prior to return" ?

[lally, 2014/01/29 23:57:45]

Note: |callback| may be invoked, synchronously, before UpgradeSocketToTLS
returns.

+  // invoked before UpgradeSocketToTLS returns.
+  static void UpgradeSocketToTLS(
+      Socket* socket,
+      Profile* profile,
+      net::URLRequestContextGetter* url_request_getter,
+      const std::string& extension_id,
+      api::socket::SecureOptions* options,
+      const SecureCallback& callback);
+
+ private:
+  virtual int WriteImpl(net::IOBuffer* io_buffer,
+                        int io_buffer_size,
+                        const net::CompletionCallback& callback) OVERRIDE;
+  void OnReadComplete(const scoped_refptr<net::IOBuffer>& io_buffer,
+                      int result);
+
+  static void TlsConnectDone(net::SSLClientSocket* ssl_socket,
+                             const std::string& extension_id,
+                             const SecureCallback& callback,
+                             int result);
+
+  scoped_ptr<net::StreamSocket> tls_socket_;
+  ReadCompletionCallback read_callback_;
+};
+
+}  // namespace extensions
+
+#endif  // CHROME_BROWSER_EXTENSIONS_API_SOCKET_TLS_SOCKET_H_