Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(11)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: crypto/hmac.h

Issue 7277024: Add a Verify routine for HMAC (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: Created 9 years, 5 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch | Annotate | Revision Log
« no previous file with comments | « no previous file | crypto/hmac.cc » ('j') | crypto/hmac.cc » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright (c) 2011 The Chromium Authors. All rights reserved. 1 // Copyright (c) 2011 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 // Utility class for calculating the HMAC for a given message. We currently 5 // Utility class for calculating the HMAC for a given message. We currently
6 // only support SHA1 for the hash algorithm, but this can be extended easily. 6 // only support SHA1 for the hash algorithm, but this can be extended easily.
7 7
8 #ifndef CRYPTO_HMAC_H_ 8 #ifndef CRYPTO_HMAC_H_
9 #define CRYPTO_HMAC_H_ 9 #define CRYPTO_HMAC_H_
10 #pragma once 10 #pragma once
(...skipping 36 matching lines...) Expand 10 before | Expand all | Expand 10 after
47 static_cast<int>(key.size())); 47 static_cast<int>(key.size()));
48 } 48 }
49 49
50 // Calculates the HMAC for the message in |data| using the algorithm supplied 50 // Calculates the HMAC for the message in |data| using the algorithm supplied
51 // to the constructor and the key supplied to the Init method. The HMAC is 51 // to the constructor and the key supplied to the Init method. The HMAC is
52 // returned in |digest|, which has |digest_length| bytes of storage available. 52 // returned in |digest|, which has |digest_length| bytes of storage available.
53 // TODO(abarth): digest_length should be a size_t. 53 // TODO(abarth): digest_length should be a size_t.
54 bool Sign(const base::StringPiece& data, unsigned char* digest, 54 bool Sign(const base::StringPiece& data, unsigned char* digest,
55 int digest_length) const; 55 int digest_length) const;
56 56
57 // TODO(albertb): Add a Verify method. 57 // Verifies that the HMAC for the message in |data| equals the HMAC provided
58 // in |digest|, using the algorithm supplied to the constructor and the key
59 // supplied to the Init method. Use of this method is strongly recommended
60 // over using Sign() with a manual comparison (such as memcmp), as such
61 // comparisons may result in side-channel disclosures, such as timing, that
62 // undermine the cryptographic integrity. This method does not support
63 // comparing truncated HMACs.
64 bool Verify(const base::StringPiece& data,
65 const base::StringPiece& digest) const;
58 66
59 private: 67 private:
60 HashAlgorithm hash_alg_; 68 HashAlgorithm hash_alg_;
61 scoped_ptr<HMACPlatformData> plat_; 69 scoped_ptr<HMACPlatformData> plat_;
62 70
63 DISALLOW_COPY_AND_ASSIGN(HMAC); 71 DISALLOW_COPY_AND_ASSIGN(HMAC);
64 }; 72 };
65 73
66 } // namespace crypto 74 } // namespace crypto
67 75
68 #endif // CRYPTO_HMAC_H_ 76 #endif // CRYPTO_HMAC_H_
OLDNEW
« no previous file with comments | « no previous file | crypto/hmac.cc » ('j') | crypto/hmac.cc » ('J')

Powered by Google App Engine
This is Rietveld 408576698