| Index: remoting/protocol/auth_util.cc
|
| diff --git a/remoting/protocol/auth_util.cc b/remoting/protocol/auth_util.cc
|
| index 17263bfa0ede61e129d1eb47fd7f6f3c15b648f4..d7eba4db70902a069facd61e7ab272f15a4daec5 100644
|
| --- a/remoting/protocol/auth_util.cc
|
| +++ b/remoting/protocol/auth_util.cc
|
| @@ -22,20 +22,19 @@ const char kHostAuthSslExporterLabel[] =
|
|
|
| const char kSslFakeHostName[] = "chromoting";
|
|
|
| -std::string GenerateSupportAuthToken(const std::string& jid,
|
| - const std::string& access_code) {
|
| - std::string sha256 = crypto::SHA256HashString(jid + " " + access_code);
|
| - std::string sha256_base64;
|
| - base::Base64Encode(sha256, &sha256_base64);
|
| - return sha256_base64;
|
| -}
|
| +std::string GetSharedSecretHash(const std::string& tag,
|
| + const std::string& shared_secret) {
|
| + crypto::HMAC response(crypto::HMAC::SHA256);
|
| + if (!response.Init(tag)) {
|
| + LOG(FATAL) << "HMAC::Init failed";
|
| + }
|
| +
|
| + unsigned char out_bytes[kSharedSecretHashLength];
|
| + if (!response.Sign(shared_secret, out_bytes, sizeof(out_bytes))) {
|
| + LOG(FATAL) << "HMAC::Sign failed";
|
| + }
|
|
|
| -bool VerifySupportAuthToken(const std::string& jid,
|
| - const std::string& access_code,
|
| - const std::string& auth_token) {
|
| - std::string expected_token =
|
| - GenerateSupportAuthToken(jid, access_code);
|
| - return expected_token == auth_token;
|
| + return std::string(out_bytes, out_bytes + sizeof(out_bytes));
|
| }
|
|
|
| // static
|
|
|
Chromium Code Reviews
Issue 1768383004:
Cleanup AuthenticatorMethod usage. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master