// Copyright 2015 The Chromium Authors // Use of this source code is governed by a BSD-style license that can be // found in the LICENSE file. #include "components/gcm_driver/crypto/gcm_message_cryptographer.h" #include <stddef.h> #include <stdint.h> #include <algorithm> #include <string> #include <string_view> #include "base/containers/span.h" #include "base/logging.h" #include "base/notreached.h" #include "base/numerics/byte_conversions.h" #include "base/numerics/ostream_operators.h" #include "base/numerics/safe_conversions.h" #include "base/numerics/safe_math.h" #include "base/strings/strcat.h" #include "crypto/hkdf.h" #include "third_party/boringssl/src/include/openssl/aead.h" namespace gcm { namespace { // Size, in bytes, of the nonce for a record. This must be at least the size // of a uint64_t, which is used to indicate the record sequence number. const uint64_t kNonceSize = …; // The default record size as defined by httpbis-encryption-encoding-06. const size_t kDefaultRecordSize = …; // Key size, in bytes, of a valid AEAD_AES_128_GCM key. const size_t kContentEncryptionKeySize = …; // The BoringSSL functions used to seal (encrypt) and open (decrypt) a payload // follow the same prototype, declared as follows. EVP_AEAD_CTX_TransformFunction; // Implementation of draft 03 of the Web Push Encryption standard: // https://tools.ietf.org/html/draft-ietf-webpush-encryption-03 // https://tools.ietf.org/html/draft-ietf-httpbis-encryption-encoding-02 class WebPushEncryptionDraft03 : public GCMMessageCryptographer::EncryptionScheme { … }; // Implementation of draft 08 of the Web Push Encryption standard: // https://tools.ietf.org/html/draft-ietf-webpush-encryption-08 // https://tools.ietf.org/html/draft-ietf-httpbis-encryption-encoding-07 class WebPushEncryptionDraft08 : public GCMMessageCryptographer::EncryptionScheme { … }; } // namespace const size_t GCMMessageCryptographer::kAuthenticationTagBytes = …; const size_t GCMMessageCryptographer::kSaltSize = …; GCMMessageCryptographer::GCMMessageCryptographer(Version version) { … } GCMMessageCryptographer::~GCMMessageCryptographer() = default; bool GCMMessageCryptographer::Encrypt(std::string_view recipient_public_key, std::string_view sender_public_key, std::string_view ecdh_shared_secret, std::string_view auth_secret, std::string_view salt, std::string_view plaintext, size_t* record_size, std::string* ciphertext) const { … } bool GCMMessageCryptographer::Decrypt(std::string_view recipient_public_key, std::string_view sender_public_key, std::string_view ecdh_shared_secret, std::string_view auth_secret, std::string_view salt, std::string_view ciphertext, size_t record_size, std::string* plaintext) const { … } bool GCMMessageCryptographer::TransformRecord(Direction direction, std::string_view input, std::string_view key, std::string_view nonce, std::string* output) const { … } std::string GCMMessageCryptographer::DeriveContentEncryptionKey( std::string_view recipient_public_key, std::string_view sender_public_key, std::string_view ecdh_shared_secret, std::string_view salt) const { … } std::string GCMMessageCryptographer::DeriveNonce( std::string_view recipient_public_key, std::string_view sender_public_key, std::string_view ecdh_shared_secret, std::string_view salt) const { … } } // namespace gcm
Codebase Browser
chromium