Accueil Explorer Aide
S'inscrire Connexion
drachfly
/
android10
1
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Branche: master
Branches Tags
android10
/
system
/
netd
/
resolv
/
DnsTlsSessionCache.h

DnsTlsSessionCache.h 2.0 KB
Lien permanent Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. /*
    2. 

  2.  * Copyright (C) 2018 The Android Open Source Project
    3. 

  3.  *
    4. 

  4.  * Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5.  * you may not use this file except in compliance with the License.
    6. 

  6.  * You may obtain a copy of the License at
    7. 

  7.  *
    8. 

  8.  *      http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9.  *
    10. 

  10.  * Unless required by applicable law or agreed to in writing, software
    11. 

  11.  * distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13.  * See the License for the specific language governing permissions and
    14. 

  14.  * limitations under the License.
    15. 

  15.  */
    16. 

  16. 

  17. #ifndef _DNS_DNSTLSSESSIONCACHE_H
    18. 

  18. #define _DNS_DNSTLSSESSIONCACHE_H
    19. 

  19. 

  20. #include <deque>
    21. 

  21. #include <mutex>
    22. 

  22. 

  23. #include <openssl/ssl.h>
    24. 

  24. 

  25. #include <android-base/thread_annotations.h>
    26. 

  26. 

  27. namespace android {
    28. 

  28. namespace net {
    29. 

  29. 

  30. // Cache of recently seen SSL_SESSIONs.  This is used to support session tickets.
    31. 

  31. // This class is thread-safe.
    32. 

  32. class DnsTlsSessionCache {
    33. 

  33.   public:
    34. 

  34.     // Prepare SSL objects to use this session cache.  These methods must be called
    35. 

  35.     // before making use of either object.
    36. 

  36.     void prepareSslContext(SSL_CTX* _Nonnull ssl_ctx);
    37. 

  37.     bool prepareSsl(SSL* _Nonnull ssl);
    38. 

  38. 

  39.     // Get the most recently discovered session.  For TLS 1.3 compatibility and
    40. 

  40.     // maximum privacy, each session will only be returned once, so the caller
    41. 

  41.     // gains ownership of the session.  (Here and throughout,
    42. 

  42.     // bssl::UniquePtr<SSL_SESSION> is actually serving as a reference counted
    43. 

  43.     // pointer.)
    44. 

  44.     bssl::UniquePtr<SSL_SESSION> getSession() EXCLUDES(mLock);
    45. 

  45. 

  46.   private:
    47. 

  47.     static constexpr size_t kMaxSize = 5;
    48. 

  48.     static int newSessionCallback(SSL* _Nullable ssl, SSL_SESSION* _Nullable session);
    49. 

  49. 

  50.     std::mutex mLock;
    51. 

  51.     void recordSession(SSL_SESSION* _Nullable session) EXCLUDES(mLock);
    52. 

  52. 

  53.     // Queue of sessions, from least recently added to most recently.
    54. 

  54.     std::deque<bssl::UniquePtr<SSL_SESSION>> mSessions GUARDED_BY(mLock);
    55. 

  55. };
    56. 

  56. 

  57. }  // end of namespace net
    58. 

  58. }  // end of namespace android
    59. 

  59. 

  60. #endif  // _DNS_DNSTLSSESSIONCACHE_H
    61.