min
/
boring2
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Indicate that memcmp::eq should be used for HMACs

This commit is contained in:
Steven Fackler 2016-12-31 09:44:57 -08:00
parent 283036c5ad
commit 5c49b58a88
1 changed files with 10 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
openssl/src/sign.rs
View File

@ -35,12 +35,13 @@
//! assert!(verifier.finish(&signature).unwrap()); //! assert!(verifier.finish(&signature).unwrap());
//! ``` //! ```
//! //!
//! Compute an HMAC (note that `Verifier` cannot be used with HMACs): //! Compute an HMAC:
//! //!
//! ```rust //! ```rust
//! use openssl::sign::Signer;
//! use openssl::pkey::PKey;
//! use openssl::hash::MessageDigest; //! use openssl::hash::MessageDigest;
//! use openssl::memcmp;
//! use openssl::pkey::PKey;
//! use openssl::sign::Signer;
//! //!
//! // Create a PKey //! // Create a PKey
//! let key = PKey::hmac(b"my secret").unwrap(); //! let key = PKey::hmac(b"my secret").unwrap();
@ -53,6 +54,12 @@
//! signer.update(data).unwrap(); //! signer.update(data).unwrap();
//! signer.update(data2).unwrap(); //! signer.update(data2).unwrap();
//! let hmac = signer.finish().unwrap(); //! let hmac = signer.finish().unwrap();
//!
//! // `Verifier` cannot be used with HMACs; use the `memcmp::eq` function instead
//! //
//! // Do not simply check for equality with `==`!
//! # let target = hmac.clone();
//! assert!(memcmp::eq(&hmac, &target));
//! ``` //! ```
use ffi; use ffi;
use std::io::{self, Write}; use std::io::{self, Write};