net/socket/ssl_server_socket_nss.h - Issue 994743003: Support for client certs in ssl_server_socket.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/socket/ssl_server_socket_nss.h

Issue 994743003: Support for client certs in ssl_server_socket. Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Created 5 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: net/socket/ssl_server_socket_nss.h

diff --git a/net/socket/ssl_server_socket_nss.h b/net/socket/ssl_server_socket_nss.h

index d40b096577cffc3848f57c49848dce3500ad55c9..b311272bda3b35ad65571af94bf704e513e65d02 100644

--- a/net/socket/ssl_server_socket_nss.h

+++ b/net/socket/ssl_server_socket_nss.h

@@ -32,6 +32,9 @@ class SSLServerSocketNSS : public SSLServerSocket {

// SSLServerSocket interface.

int Handshake(const CompletionCallback& callback) override;

+ void SetAllowClientCert(bool allow_client_cert) override;

+ void SetClientCertCAList(const CertificateList& client_cert_ca_list) override;

+ void SetClientCertVerifier(CertVerifier* client_cert_verifier) override;

// SSLSocket interface.

int ExportKeyingMaterial(const base::StringPiece& label,

@@ -102,6 +105,7 @@ class SSLServerSocketNSS : public SSLServerSocket {

static void HandshakeCallback(PRFileDesc* socket, void* arg);

int Init();

+ void ExtractClientCert();

// Members used to send and receive buffer.

bool transport_send_busy_;

@@ -141,9 +145,18 @@ class SSLServerSocketNSS : public SSLServerSocket {

// Private key used by the server.

scoped_ptr<crypto::RSAPrivateKey> key_;

+ // Certificate of the client.

+ scoped_refptr<X509Certificate> client_cert_;

State next_handshake_state_;

bool completed_handshake_;

+ // Information to be used in CertificateRequest message.

+ CertificateList client_cert_ca_list_;

+ // Used to provide callback for client certificate verification.

+ CertVerifier* client_cert_verifier_;

DISALLOW_COPY_AND_ASSIGN(SSLServerSocketNSS);

};