admin/webrtc_m130
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

SSLCertificate::GetChain: Return scoped_ptr

Browse Source 
Instead of using a raw pointer output parameter. This is a good idea
in general, but will also be very convenient when scoped_ptr is gone,
since unique_ptr doesn't have an .accept() method.

BUG=webrtc:5520

Review URL: https://codereview.webrtc.org/1799233002

Cr-Commit-Position: refs/heads/master@{#12004}
This commit is contained in:
kwiberg 2016-03-15 12:53:24 -07:00 committed by Commit bot
parent 6021fe2b1e
commit f5d4786080
6 changed files with 15 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
webrtc/api/statscollector.cc
View File

@ -575,8 +575,8 @@ StatsReport* StatsCollector::AddCertificateReports(
RTC_DCHECK(cert != NULL);
StatsReport* issuer = nullptr;
rtc::scoped_ptr<rtc::SSLCertChain> chain;
if (cert->GetChain(chain.accept())) {
rtc::scoped_ptr<rtc::SSLCertChain> chain = cert->GetChain();
if (chain) {
// This loop runs in reverse, i.e. from root to leaf, so that each
// certificate's issuer's report ID is known before the child certificate's
// report is generated. The root certificate does not have an issuer ID

8
webrtc/base/fakesslidentity.h
View File

@ -68,14 +68,14 @@ class FakeSSLCertificate : public rtc::SSLCertificate {
digest, size);
return (*length != 0);
}
virtual bool GetChain(SSLCertChain** chain) const {
virtual rtc::scoped_ptr<SSLCertChain> GetChain() const {
if (certs_.empty())
return false;
return nullptr;
std::vector<SSLCertificate*> new_certs(certs_.size());
std::transform(certs_.begin(), certs_.end(), new_certs.begin(), DupCert);
*chain = new SSLCertChain(new_certs);
rtc::scoped_ptr<SSLCertChain> chain(new SSLCertChain(new_certs));
std::for_each(new_certs.begin(), new_certs.end(), DeleteCert);
return true;
return chain;
}
private:

4
webrtc/base/opensslidentity.cc
View File

@ -280,11 +280,11 @@ bool OpenSSLCertificate::GetSignatureDigestAlgorithm(
return true;
}
bool OpenSSLCertificate::GetChain(SSLCertChain** chain) const {
rtc::scoped_ptr<SSLCertChain> OpenSSLCertificate::GetChain() const {
// Chains are not yet supported when using OpenSSL.
// OpenSSLStreamAdapter::SSLVerifyCallback currently requires the remote
// certificate to be self-signed.
return false;
return nullptr;
}
bool OpenSSLCertificate::ComputeDigest(const std::string& algorithm,

2
webrtc/base/opensslidentity.h
View File

@ -85,7 +85,7 @@ class OpenSSLCertificate : public SSLCertificate {
size_t* length);
bool GetSignatureDigestAlgorithm(std::string* algorithm) const override;
bool GetChain(SSLCertChain** chain) const override;
rtc::scoped_ptr<SSLCertChain> GetChain() const override;
int64_t CertificateExpirationTime() const override;

7
webrtc/base/sslidentity.h
View File

@ -19,6 +19,7 @@
#include "webrtc/base/buffer.h"
#include "webrtc/base/messagedigest.h"
#include "webrtc/base/scoped_ptr.h"
#include "webrtc/base/timeutils.h"
namespace rtc {
@ -50,9 +51,9 @@ class SSLCertificate {
// Caller is responsible for freeing the returned object.
virtual SSLCertificate* GetReference() const = 0;
// Provides the cert chain, or returns false. The caller owns the chain.
// The chain includes a copy of each certificate, excluding the leaf.
virtual bool GetChain(SSLCertChain** chain) const = 0;
// Provides the cert chain, or null. The chain includes a copy of each
// certificate, excluding the leaf.
virtual rtc::scoped_ptr<SSLCertChain> GetChain() const = 0;
// Returns a PEM encoded string representation of the certificate.
virtual std::string ToPEMString() const = 0;

6
webrtc/base/sslstreamadapter_unittest.cc
View File

@ -1056,8 +1056,7 @@ TEST_F(SSLStreamAdapterTestDTLSFromPEMStrings, TestDTLSGetPeerCertificate) {
ASSERT_NE(kCERT_PEM, client_peer_string);
// It must not have a chain, because the test certs are self-signed.
rtc::SSLCertChain* client_peer_chain;
ASSERT_FALSE(client_peer_cert->GetChain(&client_peer_chain));
ASSERT_FALSE(client_peer_cert->GetChain());
// The server should have a peer certificate after the handshake.
ASSERT_TRUE(GetPeerCertificate(false, server_peer_cert.accept()));
@ -1067,8 +1066,7 @@ TEST_F(SSLStreamAdapterTestDTLSFromPEMStrings, TestDTLSGetPeerCertificate) {
ASSERT_EQ(kCERT_PEM, server_peer_cert->ToPEMString());
// It must not have a chain, because the test certs are self-signed.
rtc::SSLCertChain* server_peer_chain;
ASSERT_FALSE(server_peer_cert->GetChain(&server_peer_chain));
ASSERT_FALSE(server_peer_cert->GetChain());
}
// Test getting the used DTLS ciphers.