1 // 2 // Copyright (C) 2009 The Android Open Source Project 3 // 4 // Licensed under the Apache License, Version 2.0 (the "License"); 5 // you may not use this file except in compliance with the License. 6 // You may obtain a copy of the License at 7 // 8 // http://www.apache.org/licenses/LICENSE-2.0 9 // 10 // Unless required by applicable law or agreed to in writing, software 11 // distributed under the License is distributed on an "AS IS" BASIS, 12 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 13 // See the License for the specific language governing permissions and 14 // limitations under the License. 15 // 16 17 #ifndef UPDATE_ENGINE_COMMON_HASH_CALCULATOR_H_ 18 #define UPDATE_ENGINE_COMMON_HASH_CALCULATOR_H_ 19 20 #include <openssl/sha.h> 21 #include <unistd.h> 22 23 #include <string> 24 #include <vector> 25 26 #include <base/logging.h> 27 #include <base/macros.h> 28 #include <brillo/secure_blob.h> 29 30 // This class provides a simple wrapper around OpenSSL providing a hash of data 31 // passed in. 32 // The methods of this class must be called in a very specific order: First the 33 // ctor (of course), then 0 or more calls to Update(), then Finalize(), then 0 34 // or more calls to raw_hash(). 35 36 namespace chromeos_update_engine { 37 38 class HashCalculator { 39 public: 40 HashCalculator(); 41 42 // Update is called with all of the data that should be hashed in order. 43 // Update will read |length| bytes of |data|. 44 // Returns true on success. 45 bool Update(const void* data, size_t length); 46 47 // Updates the hash with up to |length| bytes of data from |file|. If |length| 48 // is negative, reads in and updates with the whole file. Returns the number 49 // of bytes that the hash was updated with, or -1 on error. 50 off_t UpdateFile(const std::string& name, off_t length); 51 52 // Call Finalize() when all data has been passed in. This method tells 53 // OpenSSL that no more data will come in. 54 // Returns true on success. 55 bool Finalize(); 56 raw_hash()57 const brillo::Blob& raw_hash() const { 58 DCHECK(!raw_hash_.empty()) << "Call Finalize() first"; 59 return raw_hash_; 60 } 61 62 // Gets the current hash context. Note that the string will contain binary 63 // data (including \0 characters). 64 std::string GetContext() const; 65 66 // Sets the current hash context. |context| must the string returned by a 67 // previous HashCalculator::GetContext method call. Returns true on success, 68 // and false otherwise. 69 bool SetContext(const std::string& context); 70 71 static bool RawHashOfBytes(const void* data, 72 size_t length, 73 brillo::Blob* out_hash); 74 static bool RawHashOfData(const brillo::Blob& data, brillo::Blob* out_hash); 75 static off_t RawHashOfFile(const std::string& name, 76 off_t length, 77 brillo::Blob* out_hash); 78 static bool RawHashOfFile(const std::string& name, brillo::Blob* out_hash); 79 static std::string SHA256Digest(std::string_view blob); 80 81 static std::string SHA256Digest(std::vector<unsigned char> blob); 82 static std::string SHA256Digest(std::vector<char> blob); 83 84 private: 85 // If non-empty, the final raw hash. Will only be set to non-empty when 86 // Finalize is called. 87 brillo::Blob raw_hash_; 88 89 // Init success 90 bool valid_; 91 92 // The hash state used by OpenSSL 93 SHA256_CTX ctx_{}; 94 DISALLOW_COPY_AND_ASSIGN(HashCalculator); 95 }; 96 97 } // namespace chromeos_update_engine 98 99 #endif // UPDATE_ENGINE_COMMON_HASH_CALCULATOR_H_ 100