mirror of
https://github.com/mollyim/webrtc.git
synced 2025-05-15 14:50:39 +01:00
b3f887b823
This change just wraps the openssl key derivation functions in a simple interface in a similar way to how we do it for messagedigest.h so we aren't coupled to openssl in the core implementation. Bug: webrtc:9917 Change-Id: I8556bd6e38b7da34d93abbe29415c3366f6532ba Reviewed-on: https://webrtc-review.googlesource.com/c/107981 Reviewed-by: Qingsi Wang <qingsi@webrtc.org> Commit-Queue: Benjamin Wright <benwright@webrtc.org> Cr-Commit-Position: refs/heads/master@{#25440}
54 lines
2.1 KiB
C++
54 lines
2.1 KiB
C++
/*
|
|
* Copyright 2018 The WebRTC Project Authors. All rights reserved.
|
|
*
|
|
* Use of this source code is governed by a BSD-style license
|
|
* that can be found in the LICENSE file in the root of the source
|
|
* tree. An additional intellectual property rights grant can be found
|
|
* in the file PATENTS. All contributing project authors may
|
|
* be found in the AUTHORS file in the root of the source tree.
|
|
*/
|
|
|
|
#ifndef RTC_BASE_OPENSSL_KEY_DERIVATION_HKDF_H_
|
|
#define RTC_BASE_OPENSSL_KEY_DERIVATION_HKDF_H_
|
|
|
|
#include "rtc_base/constructormagic.h"
|
|
#include "rtc_base/key_derivation.h"
|
|
|
|
namespace rtc {
|
|
|
|
// OpenSSLKeyDerivationHKDF provides a concrete implementation of the
|
|
// KeyDerivation interface to support the HKDF algorithm using the
|
|
// OpenSSL/BoringSSL internal implementation.
|
|
class OpenSSLKeyDerivationHKDF final : public KeyDerivation {
|
|
public:
|
|
OpenSSLKeyDerivationHKDF();
|
|
~OpenSSLKeyDerivationHKDF() override;
|
|
|
|
// General users shouldn't be generating keys smaller than 128 bits.
|
|
static const size_t kMinKeyByteSize;
|
|
// The maximum available derivation size 255*DIGEST_LENGTH
|
|
static const size_t kMaxKeyByteSize;
|
|
// The minimum acceptable secret size.
|
|
static const size_t kMinSecretByteSize;
|
|
|
|
// Derives a new key from existing key material using HKDF.
|
|
// secret - The random secret value you wish to derive a key from.
|
|
// salt - Optional (non secret) cryptographically random value.
|
|
// label - A non secret but unique label value to determine the derivation.
|
|
// derived_key_byte_size - The size of the derived key.
|
|
// return - A ZeroOnFreeBuffer containing the derived key or an error
|
|
// condition. Checking error codes is explicit in the API and error should
|
|
// never be ignored.
|
|
absl::optional<ZeroOnFreeBuffer<uint8_t>> DeriveKey(
|
|
rtc::ArrayView<const uint8_t> secret,
|
|
rtc::ArrayView<const uint8_t> salt,
|
|
rtc::ArrayView<const uint8_t> label,
|
|
size_t derived_key_byte_size) override;
|
|
|
|
private:
|
|
RTC_DISALLOW_COPY_AND_ASSIGN(OpenSSLKeyDerivationHKDF);
|
|
};
|
|
|
|
} // namespace rtc
|
|
|
|
#endif // RTC_BASE_OPENSSL_KEY_DERIVATION_HKDF_H_
|