Home Explore Help
Sign In
RISCI_ATOM
/
Minoca-os
mirror of https://github.com/minoca/os.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 5bb001e90f
Branches Tags
Minoca-os
/
lib
/
crypto
/
hmac.c

hmac.c 7.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322 
  1. /*++
    2. 

  2. 

  3. Copyright (c) 2015 Minoca Corp.
    4. 

  4. 

  5.     This file is licensed under the terms of the GNU General Public License
    6. 

  6.     version 3. Alternative licensing terms are available. Contact
    7. 

  7.     info@minocacorp.com for details. See the LICENSE file at the root of this
    8. 

  8.     project for complete licensing information.
    9. 

  9. 

  10. Module Name:
    11. 

  11. 

  12.     hmac.c
    13. 

  13. 

  14. Abstract:
    15. 

  15. 

  16.     This module computes a Hashed Message Authentication Code based on a
    17. 

  17.     message, key, and hash function.
    18. 

  18. 

  19. Author:
    20. 

  20. 

  21.     Evan Green 13-Jan-2015
    22. 

  22. 

  23. Environment:
    24. 

  24. 

  25.     Any
    26. 

  26. 

  27. --*/
    28. 

  28. 

  29. //
    30. 

  30. // ------------------------------------------------------------------- Includes
    31. 

  31. //
    32. 

  32. 

  33. #include "cryptop.h"
    34. 

  34. 

  35. //
    36. 

  36. // ---------------------------------------------------------------- Definitions
    37. 

  37. //
    38. 

  38. 

  39. //
    40. 

  40. // ------------------------------------------------------ Data Type Definitions
    41. 

  41. //
    42. 

  42. 

  43. //
    44. 

  44. // ----------------------------------------------- Internal Function Prototypes
    45. 

  45. //
    46. 

  46. 

  47. //
    48. 

  48. // -------------------------------------------------------------------- Globals
    49. 

  49. //
    50. 

  50. 

  51. //
    52. 

  52. // ------------------------------------------------------------------ Functions
    53. 

  53. //
    54. 

  54. 

  55. CRYPTO_API
    56. 

  56. VOID
    57. 

  57. CySha1ComputeHmac (
    58. 

  58.     PUCHAR Message,
    59. 

  59.     ULONG Length,
    60. 

  60.     PUCHAR Key,
    61. 

  61.     ULONG KeyLength,
    62. 

  62.     UCHAR Digest[SHA1_HASH_SIZE]
    63. 

  63.     )
    64. 

  64. 

  65. /*++
    66. 

  66. 

  67. Routine Description:
    68. 

  68. 

  69.     This routine obtains a SHA-1 HMAC signature based on the message and key.
    70. 

  70.     Note that the key must be no longer than the hash function's block size.
    71. 

  71. 

  72. Arguments:
    73. 

  73. 

  74.     Message - Supplies a pointer to the data buffer to hash and sign.
    75. 

  75. 

  76.     Length - Supplies the length of the message, in bytes.
    77. 

  77. 

  78.     Key - Supplies a pointer to the secret key buffer.
    79. 

  79. 

  80.     KeyLength - Supplies the length of the secret key, in bytes. This must be
    81. 

  81.         less than or equal to 64 bytes, the block size of the SHA-1 hash
    82. 

  82.         function.
    83. 

  83. 

  84.     Digest - Supplies a pointer where the HMAC digest will be returned. This
    85. 

  85.         buffer is assumed to be 20 bytes, the size of a SHA-1 hash.
    86. 

  86. 

  87. Return Value:
    88. 

  88. 

  89.     None.
    90. 

  90. 

  91. --*/
    92. 

  92. 

  93. {
    94. 

  94. 

  95.     INT ByteIndex;
    96. 

  96.     SHA1_CONTEXT Context;
    97. 

  97.     UCHAR Ipad[64];
    98. 

  98.     UCHAR Opad[64];
    99. 

  99. 

  100.     //
    101. 

  101.     // Copy the key into ipad and opad, and pad any remainder with zero.
    102. 

  102.     //
    103. 

  103. 

  104.     if (KeyLength > sizeof(Ipad)) {
    105. 

  105.         KeyLength = sizeof(Ipad);
    106. 

  106.     }
    107. 

  107. 

  108.     for (ByteIndex = 0; ByteIndex < KeyLength; ByteIndex += 1) {
    109. 

  109.         Ipad[ByteIndex] = Key[ByteIndex];
    110. 

  110.         Opad[ByteIndex] = Key[ByteIndex];
    111. 

  111.     }
    112. 

  112. 

  113.     while (ByteIndex < sizeof(Ipad)) {
    114. 

  114.         Ipad[ByteIndex] = 0;
    115. 

  115.         Opad[ByteIndex] = 0;
    116. 

  116.         ByteIndex += 1;
    117. 

  117.     }
    118. 

  118. 

  119.     //
    120. 

  120.     // XOR in the magic values to ipad and opad.
    121. 

  121.     //
    122. 

  122. 

  123.     for (ByteIndex = 0; ByteIndex < sizeof(Ipad); ByteIndex += 1) {
    124. 

  124.         Ipad[ByteIndex] ^= 0x36;
    125. 

  125.         Opad[ByteIndex] ^= 0x5C;
    126. 

  126.     }
    127. 

  127. 

  128.     //
    129. 

  129.     // Perform the double hash.
    130. 

  130.     //
    131. 

  131. 

  132.     CySha1Initialize(&Context);
    133. 

  133.     CySha1AddContent(&Context, Ipad, sizeof(Ipad));
    134. 

  134.     CySha1AddContent(&Context, Message, Length);
    135. 

  135.     CySha1GetHash(&Context, Digest);
    136. 

  136.     CySha1Initialize(&Context);
    137. 

  137.     CySha1AddContent(&Context, Opad, sizeof(Opad));
    138. 

  138.     CySha1AddContent(&Context, Digest, SHA1_HASH_SIZE);
    139. 

  139.     CySha1GetHash(&Context, Digest);
    140. 

  140.     return;
    141. 

  141. }
    142. 

  142. 

  143. CRYPTO_API
    144. 

  144. VOID
    145. 

  145. CySha256ComputeHmac (
    146. 

  146.     PUCHAR Message,
    147. 

  147.     ULONG Length,
    148. 

  148.     PUCHAR Key,
    149. 

  149.     ULONG KeyLength,
    150. 

  150.     UCHAR Digest[SHA256_HASH_SIZE]
    151. 

  151.     )
    152. 

  152. 

  153. /*++
    154. 

  154. 

  155. Routine Description:
    156. 

  156. 

  157.     This routine obtains a SHA-256 HMAC signature based on the message and key.
    158. 

  158.     Note that the key must be no longer than the hash function's block size.
    159. 

  159. 

  160. Arguments:
    161. 

  161. 

  162.     Message - Supplies a pointer to the data buffer to hash and sign.
    163. 

  163. 

  164.     Length - Supplies the length of the message, in bytes.
    165. 

  165. 

  166.     Key - Supplies a pointer to the secret key buffer.
    167. 

  167. 

  168.     KeyLength - Supplies the length of the secret key, in bytes. This must be
    169. 

  169.         less than or equal to 64 bytes, the block size of the SHA-1 hash
    170. 

  170.         function.
    171. 

  171. 

  172.     Digest - Supplies a pointer where the HMAC digest will be returned. This
    173. 

  173.         buffer is assumed to be 64 bytes, the size of a SHA-256 hash.
    174. 

  174. 

  175. Return Value:
    176. 

  176. 

  177.     None.
    178. 

  178. 

  179. --*/
    180. 

  180. 

  181. {
    182. 

  182. 

  183.     INT ByteIndex;
    184. 

  184.     SHA256_CONTEXT Context;
    185. 

  185.     UCHAR Ipad[64];
    186. 

  186.     UCHAR Opad[64];
    187. 

  187. 

  188.     //
    189. 

  189.     // Copy the key into ipad and opad, and pad any remainder with zero.
    190. 

  190.     //
    191. 

  191. 

  192.     if (KeyLength > sizeof(Ipad)) {
    193. 

  193.         KeyLength = sizeof(Ipad);
    194. 

  194.     }
    195. 

  195. 

  196.     for (ByteIndex = 0; ByteIndex < KeyLength; ByteIndex += 1) {
    197. 

  197.         Ipad[ByteIndex] = Key[ByteIndex];
    198. 

  198.         Opad[ByteIndex] = Key[ByteIndex];
    199. 

  199.     }
    200. 

  200. 

  201.     while (ByteIndex < sizeof(Ipad)) {
    202. 

  202.         Ipad[ByteIndex] = 0;
    203. 

  203.         Opad[ByteIndex] = 0;
    204. 

  204.         ByteIndex += 1;
    205. 

  205.     }
    206. 

  206. 

  207.     //
    208. 

  208.     // XOR in the magic values to ipad and opad.
    209. 

  209.     //
    210. 

  210. 

  211.     for (ByteIndex = 0; ByteIndex < sizeof(Ipad); ByteIndex += 1) {
    212. 

  212.         Ipad[ByteIndex] ^= 0x36;
    213. 

  213.         Opad[ByteIndex] ^= 0x5C;
    214. 

  214.     }
    215. 

  215. 

  216.     //
    217. 

  217.     // Perform the double hash.
    218. 

  218.     //
    219. 

  219. 

  220.     CySha256Initialize(&Context);
    221. 

  221.     CySha256AddContent(&Context, Ipad, sizeof(Ipad));
    222. 

  222.     CySha256AddContent(&Context, Message, Length);
    223. 

  223.     CySha256GetHash(&Context, Digest);
    224. 

  224.     CySha256Initialize(&Context);
    225. 

  225.     CySha256AddContent(&Context, Opad, sizeof(Opad));
    226. 

  226.     CySha256AddContent(&Context, Digest, SHA256_HASH_SIZE);
    227. 

  227.     CySha256GetHash(&Context, Digest);
    228. 

  228.     return;
    229. 

  229. }
    230. 

  230. 

  231. CRYPTO_API
    232. 

  232. VOID
    233. 

  233. CyMd5ComputeHmac (
    234. 

  234.     PUCHAR Message,
    235. 

  235.     ULONG Length,
    236. 

  236.     PUCHAR Key,
    237. 

  237.     ULONG KeyLength,
    238. 

  238.     UCHAR Digest[MD5_HASH_SIZE]
    239. 

  239.     )
    240. 

  240. 

  241. /*++
    242. 

  242. 

  243. Routine Description:
    244. 

  244. 

  245.     This routine obtains an MD5 HMAC signature based on the message and key.
    246. 

  246.     Note that the key must be no longer than the hash function's block size.
    247. 

  247. 

  248. Arguments:
    249. 

  249. 

  250.     Message - Supplies a pointer to the data buffer to hash and sign.
    251. 

  251. 

  252.     Length - Supplies the length of the message, in bytes.
    253. 

  253. 

  254.     Key - Supplies a pointer to the secret key buffer.
    255. 

  255. 

  256.     KeyLength - Supplies the length of the secret key, in bytes. This must be
    257. 

  257.         less than or equal to 64 bytes, the block size of the SHA-1 hash
    258. 

  258.         function.
    259. 

  259. 

  260.     Digest - Supplies a pointer where the HMAC digest will be returned. This
    261. 

  261.         buffer is assumed to be 16 bytes, the size of an MD5 hash.
    262. 

  262. 

  263. Return Value:
    264. 

  264. 

  265.     None.
    266. 

  266. 

  267. --*/
    268. 

  268. 

  269. {
    270. 

  270. 

  271.     INT ByteIndex;
    272. 

  272.     MD5_CONTEXT Context;
    273. 

  273.     UCHAR Ipad[64];
    274. 

  274.     UCHAR Opad[64];
    275. 

  275. 

  276.     //
    277. 

  277.     // Copy the key into ipad and opad, and pad any remainder with zero.
    278. 

  278.     //
    279. 

  279. 

  280.     if (KeyLength > sizeof(Ipad)) {
    281. 

  281.         KeyLength = sizeof(Ipad);
    282. 

  282.     }
    283. 

  283. 

  284.     for (ByteIndex = 0; ByteIndex < KeyLength; ByteIndex += 1) {
    285. 

  285.         Ipad[ByteIndex] = Key[ByteIndex];
    286. 

  286.         Opad[ByteIndex] = Key[ByteIndex];
    287. 

  287.     }
    288. 

  288. 

  289.     while (ByteIndex < sizeof(Ipad)) {
    290. 

  290.         Ipad[ByteIndex] = 0;
    291. 

  291.         Opad[ByteIndex] = 0;
    292. 

  292.         ByteIndex += 1;
    293. 

  293.     }
    294. 

  294. 

  295.     //
    296. 

  296.     // XOR in the magic values to ipad and opad.
    297. 

  297.     //
    298. 

  298. 

  299.     for (ByteIndex = 0; ByteIndex < sizeof(Ipad); ByteIndex += 1) {
    300. 

  300.         Ipad[ByteIndex] ^= 0x36;
    301. 

  301.         Opad[ByteIndex] ^= 0x5C;
    302. 

  302.     }
    303. 

  303. 

  304.     //
    305. 

  305.     // Perform the double hash.
    306. 

  306.     //
    307. 

  307. 

  308.     CyMd5Initialize(&Context);
    309. 

  309.     CyMd5AddContent(&Context, Ipad, sizeof(Ipad));
    310. 

  310.     CyMd5AddContent(&Context, Message, Length);
    311. 

  311.     CyMd5GetHash(&Context, Digest);
    312. 

  312.     CyMd5Initialize(&Context);
    313. 

  313.     CyMd5AddContent(&Context, Opad, sizeof(Opad));
    314. 

  314.     CyMd5AddContent(&Context, Digest, MD5_HASH_SIZE);
    315. 

  315.     CyMd5GetHash(&Context, Digest);
    316. 

  316.     return;
    317. 

  317. }
    318. 

  318. 

  319. //
    320. 

  320. // --------------------------------------------------------- Internal Functions
    321. 

  321. //
    322. 

  322.