ppapi/api/private/ppb_nacl_hash_private.idl - Issue 14683004: Check that the PNaCl cache hash is truly derived from the bitcode content.

Side by Side Diff: ppapi/api/private/ppb_nacl_hash_private.idl

Issue 14683004: Check that the PNaCl cache hash is truly derived from the bitcode content. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: minor cleanup Created 7 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

« no previous file with comments | « chrome/test/data/nacl/pnacl_error_handling/pnacl_error_handling.html ('k') | ppapi/c/private/ppb_nacl_hash_private.h » ('j') | ppapi/native_client/src/trusted/plugin/pnacl_coordinator.cc » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

OLD	NEW
(Empty)
	1 /* Copyright (c) 2013 The Chromium Authors. All rights reserved.

	2 * Use of this source code is governed by a BSD-style license that can be

	3 * found in the LICENSE file.

	4 */

	5

	6 /* This file contains NaCl private interfaces for hashing. This interface

	7 * is not versioned and is for internal Chrome use. It may change without

	8 * notice. If we convert the NaCl plugin from PPAPI to be renderer code

	9 * then we can depend on the chrome hash functions directly.

	10 */

	11

	12 /* PPB_NaCl_Hash_Private */

	13 interface PPB_NaCl_Hash_Private {

	14 // Create the hash object for incremental hashing.

	15 mem_t CreateSHA256Hash();
	dmichael (off chromium) 2013/05/01 17:22:15 Should that be "CreateSHA256Hasher" or "...HashObj Should that be "CreateSHA256Hasher" or "...HashObject" or something? Just to make it clearer it's not returning an actual hash. jvoung (off chromium) 2013/05/01 18:23:00 Done. Show quoted text On 2013/05/01 17:22:15, dmichael wrote: > Should that be "CreateSHA256Hasher" or "...HashObject" or something? Just to > make it clearer it's not returning an actual hash. Done.
	16

	17 // Update the hash with len more bytes of data.

	18 void Update([inout] mem_t hasher, [in] mem_t data, uint32_t len);

	19

	20 // Finish hashing and get a digest up to len bytes.

	21 void Finish([inout] mem_t hasher, [out] mem_t output, [in] uint32_t len);

	22

	23 // Delete the hash object.

	24 void Delete([inout] mem_t hasher);
	dmichael (off chromium) 2013/05/01 17:22:15 I think it's appropriate to just use [in] for the I think it's appropriate to just use [in] for the hasher param in all of these. jvoung (off chromium) 2013/05/01 18:23:00 Hmm, but Update() and Finish() can modify the hash Show quoted text On 2013/05/01 17:22:15, dmichael wrote: > I think it's appropriate to just use [in] for the hasher param in all of these. Hmm, but Update() and Finish() can modify the hasher (the methods aren't const)? dmichael (off chromium) 2013/05/01 18:34:15 But you don't modify the actual \|hasher\| pointer. Show quoted text On 2013/05/01 18:23:00, jvoung (cr) wrote: > On 2013/05/01 17:22:15, dmichael wrote: > > I think it's appropriate to just use [in] for the hasher param in all of > these. > > Hmm, but Update() and Finish() can modify the hasher (the methods aren't const)? But you don't modify the actual \|hasher\| pointer. It's basically an opaque handle, much like PP_Resource. In those cases, where the "handle" itself isn't modified, we just use [in]. jvoung (off chromium) 2013/05/01 19:18:43 Do you mean that the pointer won't end up pointing Show quoted text On 2013/05/01 18:34:15, dmichael wrote: > On 2013/05/01 18:23:00, jvoung (cr) wrote: > > On 2013/05/01 17:22:15, dmichael wrote: > > > I think it's appropriate to just use [in] for the hasher param in all of > > these. > > > > Hmm, but Update() and Finish() can modify the hasher (the methods aren't > const)? > But you don't modify the actual \|hasher\| pointer. It's basically an opaque > handle, much like PP_Resource. In those cases, where the "handle" itself isn't > modified, we just use [in]. > Do you mean that the pointer won't end up pointing to something else? I think the issue is that these API files are normally for a C interface where "const T*" means that the pointer is const, but the implementation and user of this API is C++ where that syntax means that the pointed-to object is const?
	25

	26 // Compare two hashes and return PP_TRUE if they are equal.

	27 PP_Bool SecureMemEqual([in] str_t hash1, [in] str_t hash2,
	dmichael (off chromium) 2013/05/01 17:22:15 Any reason you're using str_t and mem_t elsewhere? Any reason you're using str_t and mem_t elsewhere? It seems like mem_t is equally appropriate here as for Update and Finish. jvoung (off chromium) 2013/05/01 18:23:00 Ah yes, will convert to mem_t. Originally I had s Show quoted text On 2013/05/01 17:22:15, dmichael wrote: > Any reason you're using str_t and mem_t elsewhere? It seems like mem_t is > equally appropriate here as for Update and Finish. Ah yes, will convert to mem_t. Originally I had str_t, but changed it since the original crypto/ headers use void* instead of char. The original MemEqual also takes a void.
	28 [in] uint32_t len);

	29 };

OLD	NEW