media/crypto/aes_decryptor.cc - Issue 10800091: Replace memcmp() with HMAC.VerifyTruncated() in aes_decryptor.cc

Side by Side Diff: media/crypto/aes_decryptor.cc

Issue 10800091: Replace memcmp() with HMAC.VerifyTruncated() in aes_decryptor.cc (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Add comment about checking checksum_size. Created 8 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch | Annotate | Revision Log

OLD	NEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #include "media/crypto/aes_decryptor.h"	5 #include "media/crypto/aes_decryptor.h"

6	6

7 #include "base/logging.h"	7 #include "base/logging.h"

8 #include "base/stl_util.h"	8 #include "base/stl_util.h"

9 #include "base/string_number_conversions.h"	9 #include "base/string_number_conversions.h"

10 #include "crypto/encryptor.h"	10 #include "crypto/encryptor.h"

(...skipping 48 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
59 const base::StringPiece& hmac_key) {	59 const base::StringPiece& hmac_key) {

60 CHECK(input.GetDataSize());	60 CHECK(input.GetDataSize());

61 CHECK(input.GetDecryptConfig());	61 CHECK(input.GetDecryptConfig());

62 CHECK_GT(input.GetDecryptConfig()->checksum_size(), 0);	62 CHECK_GT(input.GetDecryptConfig()->checksum_size(), 0);

63 CHECK(!hmac_key.empty());	63 CHECK(!hmac_key.empty());

64	64

65 crypto::HMAC hmac(crypto::HMAC::SHA1);	65 crypto::HMAC hmac(crypto::HMAC::SHA1);

66 if (!hmac.Init(hmac_key))	66 if (!hmac.Init(hmac_key))

67 return false;	67 return false;

68	68

69 // The HMAC covers the IV and the frame data.	69 // The component that initializes \|input.GetDecryptConfig()\| is responsible

	70 // for checking that \|input.GetDecryptConfig()->checksum_size()\| matches

	71 // what is defined by the format.
	ddorwin 2012/07/24 18:09:40 Thanks. One might assume this is related to the ne Thanks. One might assume this is related to the next line. To avoid that, you might say something like, "Here, just confirm that the size is not bigger than the cypher's digest length." fgalligan1 2012/07/24 18:38:33 Done. PTAL. Show quoted text On 2012/07/24 18:09:40, ddorwin wrote: > Thanks. One might assume this is related to the next line. To avoid that, you > might say something like, "Here, just confirm that the size is not bigger than > the cypher's digest length." Done. PTAL.
	72 DCHECK_LE(input.GetDecryptConfig()->checksum_size(),

	73 static_cast<int>(hmac.DigestLength()));

	74

70 base::StringPiece data_to_check(	75 base::StringPiece data_to_check(

71 reinterpret_cast<const char*>(input.GetData()), input.GetDataSize());	76 reinterpret_cast<const char*>(input.GetData()), input.GetDataSize());

	77 base::StringPiece digest(

	78 reinterpret_cast<const char*>(input.GetDecryptConfig()->checksum()),

	79 input.GetDecryptConfig()->checksum_size());

72	80

73 scoped_array<uint8> calculated_hmac(new uint8[hmac.DigestLength()]);	81 return hmac.VerifyTruncated(data_to_check, digest);

74 if (!hmac.Sign(data_to_check, calculated_hmac.get(), hmac.DigestLength()))

75 return false;

76

77 DCHECK(input.GetDecryptConfig()->checksum_size() <=

78 static_cast<int>(hmac.DigestLength()));

79 if (memcmp(input.GetDecryptConfig()->checksum(),

80 calculated_hmac.get(),

81 input.GetDecryptConfig()->checksum_size()) != 0)

82 return false;

83 return true;

84 }	82 }

85	83

86 // Decrypts \|input\| using \|key\|. \|encrypted_data_offset\| is the number of bytes	84 // Decrypts \|input\| using \|key\|. \|encrypted_data_offset\| is the number of bytes

87 // into \|input\| that the encrypted data starts.	85 // into \|input\| that the encrypted data starts.

88 // Returns a DecoderBuffer with the decrypted data if decryption succeeded or	86 // Returns a DecoderBuffer with the decrypted data if decryption succeeded or

89 // NULL if decryption failed.	87 // NULL if decryption failed.

90 static scoped_refptr<DecoderBuffer> DecryptData(const DecoderBuffer& input,	88 static scoped_refptr<DecoderBuffer> DecryptData(const DecoderBuffer& input,

91 crypto::SymmetricKey* key,	89 crypto::SymmetricKey* key,

92 int encrypted_data_offset) {	90 int encrypted_data_offset) {

93 CHECK(input.GetDataSize());	91 CHECK(input.GetDataSize());

(...skipping 205 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
299	297

300 decryption_key_.reset(	298 decryption_key_.reset(

301 crypto::SymmetricKey::Import(crypto::SymmetricKey::AES, secret_));	299 crypto::SymmetricKey::Import(crypto::SymmetricKey::AES, secret_));

302 if (!decryption_key_.get()) {	300 if (!decryption_key_.get()) {

303 return false;	301 return false;

304 }	302 }

305 return true;	303 return true;

306 }	304 }

307	305

308 } // namespace media	306 } // namespace media

OLD	NEW

« no previous file with comments | « no previous file | no next file » | no next file with comments »