Handle small window sizes better in SafeBrowsing interstitials.
[chromium-blink-merge.git] / crypto / openssl_util.h
blobb390fe7aea0fe9e6f37715a6fc1c7773f37e5d7d
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
5 #ifndef CRYPTO_OPENSSL_UTIL_H_
6 #define CRYPTO_OPENSSL_UTIL_H_
8 #include "base/basictypes.h"
9 #include "base/location.h"
10 #include "crypto/crypto_export.h"
12 namespace crypto {
14 // A helper class that takes care of destroying OpenSSL objects when it goes out
15 // of scope.
16 template <typename T, void (*destructor)(T*)>
17 class ScopedOpenSSL {
18 public:
19 ScopedOpenSSL() : ptr_(NULL) { }
20 explicit ScopedOpenSSL(T* ptr) : ptr_(ptr) { }
21 ~ScopedOpenSSL() {
22 reset(NULL);
25 T* get() const { return ptr_; }
26 void reset(T* ptr) {
27 if (ptr != ptr_) {
28 if (ptr_) (*destructor)(ptr_);
29 ptr_ = ptr;
33 private:
34 T* ptr_;
36 DISALLOW_COPY_AND_ASSIGN(ScopedOpenSSL);
39 // Provides a buffer of at least MIN_SIZE bytes, for use when calling OpenSSL's
40 // SHA256, HMAC, etc functions, adapting the buffer sizing rules to meet those
41 // of the our base wrapper APIs.
42 // This allows the library to write directly to the caller's buffer if it is of
43 // sufficient size, but if not it will write to temporary |min_sized_buffer_|
44 // of required size and then its content is automatically copied out on
45 // destruction, with truncation as appropriate.
46 template<int MIN_SIZE>
47 class ScopedOpenSSLSafeSizeBuffer {
48 public:
49 ScopedOpenSSLSafeSizeBuffer(unsigned char* output, size_t output_len)
50 : output_(output),
51 output_len_(output_len) {
54 ~ScopedOpenSSLSafeSizeBuffer() {
55 if (output_len_ < MIN_SIZE) {
56 // Copy the temporary buffer out, truncating as needed.
57 memcpy(output_, min_sized_buffer_, output_len_);
59 // else... any writing already happened directly into |output_|.
62 unsigned char* safe_buffer() {
63 return output_len_ < MIN_SIZE ? min_sized_buffer_ : output_;
66 private:
67 // Pointer to the caller's data area and its associated size, where data
68 // written via safe_buffer() will [eventually] end up.
69 unsigned char* output_;
70 size_t output_len_;
72 // Temporary buffer writen into in the case where the caller's
73 // buffer is not of sufficient size.
74 unsigned char min_sized_buffer_[MIN_SIZE];
76 DISALLOW_COPY_AND_ASSIGN(ScopedOpenSSLSafeSizeBuffer);
79 // Initialize OpenSSL if it isn't already initialized. This must be called
80 // before any other OpenSSL functions.
81 // This function is thread-safe, and OpenSSL will only ever be initialized once.
82 // OpenSSL will be properly shut down on program exit.
83 void CRYPTO_EXPORT EnsureOpenSSLInit();
85 // Drains the OpenSSL ERR_get_error stack. On a debug build the error codes
86 // are send to VLOG(1), on a release build they are disregarded. In most
87 // cases you should pass FROM_HERE as the |location|.
88 void CRYPTO_EXPORT ClearOpenSSLERRStack(
89 const tracked_objects::Location& location);
91 // Place an instance of this class on the call stack to automatically clear
92 // the OpenSSL error stack on function exit.
93 class OpenSSLErrStackTracer {
94 public:
95 // Pass FROM_HERE as |location|, to help track the source of OpenSSL error
96 // messages. Note any diagnostic emitted will be tagged with the location of
97 // the constructor call as it's not possible to trace a destructor's callsite.
98 explicit OpenSSLErrStackTracer(const tracked_objects::Location& location)
99 : location_(location) {
100 EnsureOpenSSLInit();
102 ~OpenSSLErrStackTracer() {
103 ClearOpenSSLERRStack(location_);
106 private:
107 const tracked_objects::Location location_;
109 DISALLOW_IMPLICIT_CONSTRUCTORS(OpenSSLErrStackTracer);
112 } // namespace crypto
114 #endif // CRYPTO_OPENSSL_UTIL_H_