blob: 9f6929ab24284e77f1cc8f7d8a5285b93edeaf2c [file] [log] [blame] [edit]
// Copyright 2016 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef QUICHE_QUIC_CORE_CRYPTO_QUIC_COMPRESSED_CERTS_CACHE_H_
#define QUICHE_QUIC_CORE_CRYPTO_QUIC_COMPRESSED_CERTS_CACHE_H_
#include <string>
#include <vector>
#include "quic/core/crypto/proof_source.h"
#include "quic/core/quic_lru_cache.h"
#include "quic/platform/api/quic_export.h"
namespace quic {
// QuicCompressedCertsCache is a cache to track most recently compressed certs.
class QUIC_EXPORT_PRIVATE QuicCompressedCertsCache {
public:
explicit QuicCompressedCertsCache(int64_t max_num_certs);
~QuicCompressedCertsCache();
// Returns the pointer to the cached compressed cert if
// |chain, client_common_set_hashes, client_cached_cert_hashes| hits cache.
// Otherwise, return nullptr.
// Returned pointer might become invalid on the next call to Insert().
const std::string* GetCompressedCert(
const QuicReferenceCountedPointer<ProofSource::Chain>& chain,
const std::string& client_common_set_hashes,
const std::string& client_cached_cert_hashes);
// Inserts the specified
// |chain, client_common_set_hashes,
// client_cached_cert_hashes, compressed_cert| tuple to the cache.
// If the insertion causes the cache to become overfull, entries will
// be deleted in an LRU order to make room.
void Insert(const QuicReferenceCountedPointer<ProofSource::Chain>& chain,
const std::string& client_common_set_hashes,
const std::string& client_cached_cert_hashes,
const std::string& compressed_cert);
// Returns max number of cache entries the cache can carry.
size_t MaxSize();
// Returns current number of cache entries in the cache.
size_t Size();
// Default size of the QuicCompressedCertsCache per server side investigation.
static const size_t kQuicCompressedCertsCacheSize;
private:
// A wrapper of the tuple:
// |chain, client_common_set_hashes, client_cached_cert_hashes|
// to identify uncompressed representation of certs.
struct QUIC_EXPORT_PRIVATE UncompressedCerts {
UncompressedCerts();
UncompressedCerts(
const QuicReferenceCountedPointer<ProofSource::Chain>& chain,
const std::string* client_common_set_hashes,
const std::string* client_cached_cert_hashes);
~UncompressedCerts();
const QuicReferenceCountedPointer<ProofSource::Chain> chain;
const std::string* client_common_set_hashes;
const std::string* client_cached_cert_hashes;
};
// Certs stored by QuicCompressedCertsCache where uncompressed certs data is
// used to identify the uncompressed representation of certs and
// |compressed_cert| is the cached compressed representation.
class QUIC_EXPORT_PRIVATE CachedCerts {
public:
CachedCerts();
CachedCerts(const UncompressedCerts& uncompressed_certs,
const std::string& compressed_cert);
CachedCerts(const CachedCerts& other);
~CachedCerts();
// Returns true if the |uncompressed_certs| matches uncompressed
// representation of this cert.
bool MatchesUncompressedCerts(
const UncompressedCerts& uncompressed_certs) const;
const std::string* compressed_cert() const;
private:
// Uncompressed certs data.
QuicReferenceCountedPointer<ProofSource::Chain> chain_;
const std::string client_common_set_hashes_;
const std::string client_cached_cert_hashes_;
// Cached compressed representation derived from uncompressed certs.
const std::string compressed_cert_;
};
// Computes a uint64_t hash for |uncompressed_certs|.
uint64_t ComputeUncompressedCertsHash(
const UncompressedCerts& uncompressed_certs);
// Key is a unit64_t hash for UncompressedCerts. Stored associated value is
// CachedCerts which has both original uncompressed certs data and the
// compressed representation of the certs.
QuicLRUCache<uint64_t, CachedCerts> certs_cache_;
};
} // namespace quic
#endif // QUICHE_QUIC_CORE_CRYPTO_QUIC_COMPRESSED_CERTS_CACHE_H_