1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
|
// Copyright (c) 2012 The Chromium OS Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <cstring> // memcpy
#include <base/stl_util.h>
#include "brillo/secure_blob.h"
namespace brillo {
SecureBlob::SecureBlob(const std::string& data)
: SecureBlob(data.begin(), data.end()) {}
SecureBlob::~SecureBlob() {
clear();
}
void SecureBlob::resize(size_type count) {
if (count < size()) {
SecureMemset(data() + count, 0, capacity() - count);
}
Blob::resize(count);
}
void SecureBlob::resize(size_type count, const value_type& value) {
if (count < size()) {
SecureMemset(data() + count, 0, capacity() - count);
}
Blob::resize(count, value);
}
void SecureBlob::clear() {
SecureMemset(data(), 0, capacity());
Blob::clear();
}
std::string SecureBlob::to_string() const {
return std::string(data(), data() + size());
}
SecureBlob SecureBlob::Combine(const SecureBlob& blob1,
const SecureBlob& blob2) {
SecureBlob result;
result.reserve(blob1.size() + blob2.size());
result.insert(result.end(), blob1.begin(), blob1.end());
result.insert(result.end(), blob2.begin(), blob2.end());
return result;
}
void* SecureMemset(void* v, int c, size_t n) {
volatile uint8_t* p = reinterpret_cast<volatile uint8_t*>(v);
while (n--)
*p++ = c;
return v;
}
int SecureMemcmp(const void* s1, const void* s2, size_t n) {
const uint8_t* us1 = reinterpret_cast<const uint8_t*>(s1);
const uint8_t* us2 = reinterpret_cast<const uint8_t*>(s2);
int result = 0;
if (0 == n)
return 1;
/* Code snippet without data-dependent branch due to
* Nate Lawson (nate@root.org) of Root Labs. */
while (n--)
result |= *us1++ ^ *us2++;
return result != 0;
}
} // namespace brillo
|
