1*6777b538SAndroid Build Coastguard Worker // Copyright 2013 The Chromium Authors
2*6777b538SAndroid Build Coastguard Worker // Use of this source code is governed by a BSD-style license that can be
3*6777b538SAndroid Build Coastguard Worker // found in the LICENSE file.
4*6777b538SAndroid Build Coastguard Worker
5*6777b538SAndroid Build Coastguard Worker #include "crypto/hkdf.h"
6*6777b538SAndroid Build Coastguard Worker
7*6777b538SAndroid Build Coastguard Worker #include <stddef.h>
8*6777b538SAndroid Build Coastguard Worker #include <stdint.h>
9*6777b538SAndroid Build Coastguard Worker
10*6777b538SAndroid Build Coastguard Worker #include <memory>
11*6777b538SAndroid Build Coastguard Worker
12*6777b538SAndroid Build Coastguard Worker #include "base/check.h"
13*6777b538SAndroid Build Coastguard Worker #include "crypto/hmac.h"
14*6777b538SAndroid Build Coastguard Worker #include "third_party/boringssl/src/include/openssl/digest.h"
15*6777b538SAndroid Build Coastguard Worker #include "third_party/boringssl/src/include/openssl/hkdf.h"
16*6777b538SAndroid Build Coastguard Worker
17*6777b538SAndroid Build Coastguard Worker namespace crypto {
18*6777b538SAndroid Build Coastguard Worker
HkdfSha256(std::string_view secret,std::string_view salt,std::string_view info,size_t derived_key_size)19*6777b538SAndroid Build Coastguard Worker std::string HkdfSha256(std::string_view secret,
20*6777b538SAndroid Build Coastguard Worker std::string_view salt,
21*6777b538SAndroid Build Coastguard Worker std::string_view info,
22*6777b538SAndroid Build Coastguard Worker size_t derived_key_size) {
23*6777b538SAndroid Build Coastguard Worker std::string key;
24*6777b538SAndroid Build Coastguard Worker key.resize(derived_key_size);
25*6777b538SAndroid Build Coastguard Worker int result = ::HKDF(
26*6777b538SAndroid Build Coastguard Worker reinterpret_cast<uint8_t*>(&key[0]), derived_key_size, EVP_sha256(),
27*6777b538SAndroid Build Coastguard Worker reinterpret_cast<const uint8_t*>(secret.data()), secret.size(),
28*6777b538SAndroid Build Coastguard Worker reinterpret_cast<const uint8_t*>(salt.data()), salt.size(),
29*6777b538SAndroid Build Coastguard Worker reinterpret_cast<const uint8_t*>(info.data()), info.size());
30*6777b538SAndroid Build Coastguard Worker DCHECK(result);
31*6777b538SAndroid Build Coastguard Worker return key;
32*6777b538SAndroid Build Coastguard Worker }
33*6777b538SAndroid Build Coastguard Worker
HkdfSha256(base::span<const uint8_t> secret,base::span<const uint8_t> salt,base::span<const uint8_t> info,size_t derived_key_size)34*6777b538SAndroid Build Coastguard Worker std::vector<uint8_t> HkdfSha256(base::span<const uint8_t> secret,
35*6777b538SAndroid Build Coastguard Worker base::span<const uint8_t> salt,
36*6777b538SAndroid Build Coastguard Worker base::span<const uint8_t> info,
37*6777b538SAndroid Build Coastguard Worker size_t derived_key_size) {
38*6777b538SAndroid Build Coastguard Worker std::vector<uint8_t> ret;
39*6777b538SAndroid Build Coastguard Worker ret.resize(derived_key_size);
40*6777b538SAndroid Build Coastguard Worker int result =
41*6777b538SAndroid Build Coastguard Worker ::HKDF(ret.data(), derived_key_size, EVP_sha256(), secret.data(),
42*6777b538SAndroid Build Coastguard Worker secret.size(), salt.data(), salt.size(), info.data(), info.size());
43*6777b538SAndroid Build Coastguard Worker DCHECK(result);
44*6777b538SAndroid Build Coastguard Worker return ret;
45*6777b538SAndroid Build Coastguard Worker }
46*6777b538SAndroid Build Coastguard Worker
47*6777b538SAndroid Build Coastguard Worker } // namespace crypto
48