| Index: net/quic/crypto/channel_id_openssl.cc
|
| ===================================================================
|
| --- net/quic/crypto/channel_id_openssl.cc (revision 203993)
|
| +++ net/quic/crypto/channel_id_openssl.cc (working copy)
|
| @@ -13,6 +13,7 @@
|
| #include "crypto/openssl_util.h"
|
|
|
| using base::StringPiece;
|
| +using std::string;
|
|
|
| namespace net {
|
|
|
| @@ -20,6 +21,14 @@
|
| bool ChannelIDVerifier::Verify(StringPiece key,
|
| StringPiece signed_data,
|
| StringPiece signature) {
|
| + return VerifyRaw(key, signed_data, signature, true);
|
| +}
|
| +
|
| +// static
|
| +bool ChannelIDVerifier::VerifyRaw(StringPiece key,
|
| + StringPiece signed_data,
|
| + StringPiece signature,
|
| + bool is_channel_id_signature) {
|
| if (key.size() != 32 * 2 ||
|
| signature.size() != 32 * 2) {
|
| return false;
|
| @@ -65,10 +74,10 @@
|
|
|
| SHA256_CTX sha256;
|
| SHA256_Init(&sha256);
|
| - SHA256_Update(&sha256, ChannelIDVerifier::kContextStr,
|
| - strlen(ChannelIDVerifier::kContextStr) + 1);
|
| - SHA256_Update(&sha256, ChannelIDVerifier::kClientToServerStr,
|
| - strlen(ChannelIDVerifier::kClientToServerStr) + 1);
|
| + if (is_channel_id_signature) {
|
| + SHA256_Update(&sha256, kContextStr, strlen(kContextStr) + 1);
|
| + SHA256_Update(&sha256, kClientToServerStr, strlen(kClientToServerStr) + 1);
|
| + }
|
| SHA256_Update(&sha256, signed_data.data(), signed_data.size());
|
|
|
| unsigned char digest[SHA256_DIGEST_LENGTH];
|
|
|
Chromium Code Reviews
Issue 16638016:
Implement ChannelIDVerifier using NSS. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src/