Annotation of embedaddon/strongswan/src/libstrongswan/plugins/openssl/openssl_hmac.c, revision 1.1.1.1
1.1 misho 1: /*
2: * Copyright (C) 2012 Tobias Brunner
3: * HSR Hochschule fuer Technik Rapperswil
4: *
5: * This program is free software; you can redistribute it and/or modify it
6: * under the terms of the GNU General Public License as published by the
7: * Free Software Foundation; either version 2 of the License, or (at your
8: * option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
9: *
10: * This program is distributed in the hope that it will be useful, but
11: * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
12: * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
13: * for more details.
14: */
15:
16: /*
17: * Copyright (C) 2012 Aleksandr Grinberg
18: *
19: * Permission is hereby granted, free of charge, to any person obtaining a copy
20: * of this software and associated documentation files (the "Software"), to deal
21: * in the Software without restriction, including without limitation the rights
22: * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
23: * copies of the Software, and to permit persons to whom the Software is
24: * furnished to do so, subject to the following conditions:
25: *
26: * The above copyright notice and this permission notice shall be included in
27: * all copies or substantial portions of the Software.
28: *
29: * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
30: * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
31: * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
32: * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
33: * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
34: * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
35: * THE SOFTWARE.
36: */
37:
38: #include <openssl/opensslconf.h>
39:
40: #ifndef OPENSSL_NO_HMAC
41:
42: #include <openssl/evp.h>
43: #include <openssl/hmac.h>
44:
45: #include "openssl_hmac.h"
46:
47: #include <crypto/mac.h>
48: #include <crypto/prfs/mac_prf.h>
49: #include <crypto/signers/mac_signer.h>
50:
51: typedef struct private_mac_t private_mac_t;
52:
53: /**
54: * Private data of a mac_t object.
55: */
56: struct private_mac_t {
57:
58: /**
59: * Public interface
60: */
61: mac_t public;
62:
63: /**
64: * Hasher to use
65: */
66: const EVP_MD *hasher;
67:
68: /**
69: * Current HMAC context
70: */
71: HMAC_CTX *hmac;
72:
73: #if OPENSSL_VERSION_NUMBER < 0x10100000L
74: /**
75: * Static context for OpenSSL < 1.1.0
76: */
77: HMAC_CTX hmac_ctx;
78: #endif
79:
80: /**
81: * Key set on HMAC_CTX?
82: */
83: bool key_set;
84: };
85:
86: METHOD(mac_t, set_key, bool,
87: private_mac_t *this, chunk_t key)
88: {
89: #if OPENSSL_VERSION_NUMBER >= 0x10000000L
90: if (HMAC_Init_ex(this->hmac, key.ptr, key.len, this->hasher, NULL))
91: {
92: this->key_set = TRUE;
93: return TRUE;
94: }
95: return FALSE;
96: #else /* OPENSSL_VERSION_NUMBER < 1.0 */
97: HMAC_Init_ex(this->hmac, key.ptr, key.len, this->hasher, NULL);
98: this->key_set = TRUE;
99: return TRUE;
100: #endif
101: }
102:
103: METHOD(mac_t, get_mac, bool,
104: private_mac_t *this, chunk_t data, uint8_t *out)
105: {
106: if (!this->key_set)
107: {
108: return FALSE;
109: }
110: #if OPENSSL_VERSION_NUMBER >= 0x10000000L
111: if (!HMAC_Update(this->hmac, data.ptr, data.len))
112: {
113: return FALSE;
114: }
115: if (out == NULL)
116: {
117: return TRUE;
118: }
119: if (!HMAC_Final(this->hmac, out, NULL))
120: {
121: return FALSE;
122: }
123: #else /* OPENSSL_VERSION_NUMBER < 1.0 */
124: HMAC_Update(this->hmac, data.ptr, data.len);
125: if (out == NULL)
126: {
127: return TRUE;
128: }
129: HMAC_Final(this->hmac, out, NULL);
130: #endif
131: return set_key(this, chunk_empty);
132: }
133:
134: METHOD(mac_t, get_mac_size, size_t,
135: private_mac_t *this)
136: {
137: return EVP_MD_size(this->hasher);
138: }
139:
140: METHOD(mac_t, destroy, void,
141: private_mac_t *this)
142: {
143: #if OPENSSL_VERSION_NUMBER >= 0x10100000L
144: HMAC_CTX_free(this->hmac);
145: #else
146: HMAC_CTX_cleanup(&this->hmac_ctx);
147: #endif
148: free(this);
149: }
150:
151: /*
152: * Create an OpenSSL-backed implementation of the mac_t interface
153: */
154: static mac_t *hmac_create(hash_algorithm_t algo)
155: {
156: private_mac_t *this;
157: char *name;
158:
159: name = enum_to_name(hash_algorithm_short_names, algo);
160: if (!name)
161: {
162: return NULL;
163: }
164:
165: INIT(this,
166: .public = {
167: .get_mac = _get_mac,
168: .get_mac_size = _get_mac_size,
169: .set_key = _set_key,
170: .destroy = _destroy,
171: },
172: .hasher = EVP_get_digestbyname(name),
173: );
174:
175: if (!this->hasher)
176: {
177: free(this);
178: return NULL;
179: }
180:
181: #if OPENSSL_VERSION_NUMBER >= 0x10100000L
182: this->hmac = HMAC_CTX_new();
183: #else
184: HMAC_CTX_init(&this->hmac_ctx);
185: this->hmac = &this->hmac_ctx;
186: #endif
187:
188: /* make sure the underlying hash algorithm is supported */
189: if (!set_key(this, chunk_from_str("")))
190: {
191: destroy(this);
192: return NULL;
193: }
194: return &this->public;
195: }
196:
197: /*
198: * Described in header
199: */
200: prf_t *openssl_hmac_prf_create(pseudo_random_function_t algo)
201: {
202: mac_t *hmac;
203:
204: hmac = hmac_create(hasher_algorithm_from_prf(algo));
205: if (hmac)
206: {
207: return mac_prf_create(hmac);
208: }
209: return NULL;
210: }
211:
212: /*
213: * Described in header
214: */
215: signer_t *openssl_hmac_signer_create(integrity_algorithm_t algo)
216: {
217: mac_t *hmac;
218: size_t trunc;
219:
220: hmac = hmac_create(hasher_algorithm_from_integrity(algo, &trunc));
221: if (hmac)
222: {
223: return mac_signer_create(hmac, trunc);
224: }
225: return NULL;
226: }
227:
228: #endif /* OPENSSL_NO_HMAC */
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to openssl_hmac.c CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / strongswan / src / libstrongswan / plugins / openssl