Home Explore Help
Sign In
txlyre
/
winamp
mirror of https://git.lumaeris.com/mirrors/winamp
1
0
Fork 0
Files Issues 0 Wiki
Branch: community
Branches Tags
winamp
/
Src
/
auth
/
hmac_sha256.c

hmac_sha256.c 6.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195 
  1. /*
    2. 

  2.  * hmac_sha1.c
    3. 

  3.  *
    4. 

  4.  * Version 1.0.0
    5. 

  5.  *
    6. 

  6.  * Written by Aaron D. Gifford <[email protected]>
    7. 

  7.  *
    8. 

  8.  * Copyright 1998, 2000 Aaron D. Gifford.  All rights reserved.
    9. 

  9.  *
    10. 

  10.  * Redistribution and use in source and binary forms, with or without
    11. 

  11.  * modification, are permitted provided that the following conditions
    12. 

  12.  * are met:
    13. 

  13.  * 1. Redistributions of source code must retain the above copyright
    14. 

  14.  *    notice, this list of conditions and the following disclaimer.
    15. 

  15.  * 2. Redistributions in binary form must reproduce the above copyright
    16. 

  16.  *    notice, this list of conditions and the following disclaimer in the
    17. 

  17.  *    documentation and/or other materials provided with the distribution.
    18. 

  18.  * 3. Neither the name of the copyright holder nor the names of contributors
    19. 

  19.  *    may be used to endorse or promote products derived from this software
    20. 

  20.  *    without specific prior written permission.
    21. 

  21.  * 
    22. 

  22.  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) AND CONTRIBUTORS ``AS IS'' AND
    23. 

  23.  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    24. 

  24.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    25. 

  25.  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR(S) OR CONTRIBUTORS BE LIABLE
    26. 

  26.  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
    27. 

  27.  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
    28. 

  28.  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
    29. 

  29.  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
    30. 

  30.  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
    31. 

  31.  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
    32. 

  32.  * SUCH DAMAGE.
    33. 

  33.  */
    34. 

  34. 

  35. /*
    36. 

  36.  * The HMAC-SHA256 has is defined as:
    37. 

  37.  *
    38. 

  38.  *     HMAC = SHA256(K XOR opad, SHA256(K XOR ipad, message))
    39. 

  39.  *
    40. 

  40.  * "opad" is 64 bytes filled with 0x5c
    41. 

  41.  * "ipad" is 64 bytes filled with 0x36
    42. 

  42.  * "K" is the key material
    43. 

  43.  *
    44. 

  44.  * If the key material "K" is longer than 64 bytes, then the key material
    45. 

  45.  * will first be digested (K = SHA1(K)) resulting in a 20-byte hash.
    46. 

  46.  * If the key material is shorter than 64 bytes, it is padded with zero
    47. 

  47.  * bytes.
    48. 

  48.  *
    49. 

  49.  * This code precomputes "K XOR ipad" and "K XOR opad" since that just makes
    50. 

  50.  * sense.
    51. 

  51.  *
    52. 

  52.  * This code was heavily influenced by Eric A. Young's in how the interface
    53. 

  53.  * was designed and how this file is formatted.
    54. 

  54.  */
    55. 

  55. 

  56. #ifndef __HMAC_SHA256_H__
    57. 

  57. #define __HMAC_SHA256_H__
    58. 

  58. 

  59. #include "hmac_sha256.h"
    60. 

  60. #include <string.h>
    61. 

  61. 

  62. #ifdef  __cplusplus
    63. 

  63. extern "C" {
    64. 

  64. #endif
    65. 

  65. 

  66. /* Filler bytes: */
    67. 

  67. #define IPAD_BYTE	0x36
    68. 

  68. #define OPAD_BYTE	0x5c
    69. 

  69. #define ZERO_BYTE	0x00
    70. 

  70. 

  71. void HMAC_SHA256_Init(HMAC_SHA256_CTX *ctx) {
    72. 

  72. 	memset(&(ctx->key[0]), ZERO_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    73. 

  73. 	memset(&(ctx->ipad[0]), IPAD_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    74. 

  74. 	memset(&(ctx->opad[0]), OPAD_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    75. 

  75. 	ctx->keylen = 0;
    76. 

  76. 	ctx->hashkey = 0;
    77. 

  77. }
    78. 

  78. 

  79. void HMAC_SHA256_UpdateKey(HMAC_SHA256_CTX *ctx, unsigned char *key, unsigned int keylen) {
    80. 

  80. 

  81. 	/* Do we have anything to work with?  If not, return right away. */
    82. 

  82. 	if (keylen < 1)
    83. 

  83. 		return;
    84. 

  84. 

  85. 	/*
    86. 

  86. 	 * Is the total key length (current data and any previous data)
    87. 

  87. 	 * longer than the hash block length?
    88. 

  88. 	 */
    89. 

  89. 	if (ctx->hashkey !=0 || (keylen + ctx->keylen) > HMAC_SHA256_BLOCK_LENGTH) {
    90. 

  90. 		/*
    91. 

  91. 		 * Looks like the key data exceeds the hash block length,
    92. 

  92. 		 * so that means we use a hash of the key as the key data
    93. 

  93. 		 * instead.
    94. 

  94. 		 */
    95. 

  95. 		if (ctx->hashkey == 0) {
    96. 

  96. 			/*
    97. 

  97. 			 * Ah, we haven't started hashing the key
    98. 

  98. 			 * data yet, so we must init. the hash
    99. 

  99. 			 * monster to begin feeding it.
    100. 

  100. 			 */
    101. 

  101. 

  102. 			/* Set the hash key flag to true (non-zero) */
    103. 

  103. 			ctx->hashkey = 1;
    104. 

  104. 

  105. 			/* Init. the hash beastie... */
    106. 

  106. 			SHA256_Init(&ctx->shactx);
    107. 

  107. 

  108. 			/* If there's any previous key data, use it */
    109. 

  109. 			if (ctx->keylen > 0) {
    110. 

  110. 				SHA256_Update(&ctx->shactx, &(ctx->key[0]), ctx->keylen);
    111. 

  111. 			}
    112. 

  112. 

  113. 			/*
    114. 

  114. 			 * Reset the key length to the future true
    115. 

  115. 			 * key length, HMAC_SHA256_DIGEST_LENGTH
    116. 

  116. 			 */
    117. 

  117. 			ctx->keylen = HMAC_SHA256_DIGEST_LENGTH;
    118. 

  118. 		}
    119. 

  119. 		/* Now feed the latest key data to the has monster */
    120. 

  120. 		SHA256_Update(&ctx->shactx, key, keylen);
    121. 

  121. 	} else {
    122. 

  122. 		/*
    123. 

  123. 		 * Key data length hasn't yet exceeded the hash
    124. 

  124. 		 * block length (HMAC_SHA1_BLOCK_LENGTH), so theres
    125. 

  125. 		 * no need to hash the key data (yet).  Copy it
    126. 

  126. 		 * into the key buffer.
    127. 

  127. 		 */
    128. 

  128. 		memcpy(&(ctx->key[ctx->keylen]), key, keylen);
    129. 

  129. 		ctx->keylen += keylen;
    130. 

  130. 	}
    131. 

  131. }
    132. 

  132. 

  133. void HMAC_SHA256_EndKey(HMAC_SHA256_CTX *ctx) {
    134. 

  134. 	unsigned char	*ipad, *opad, *key;
    135. 

  135. 	int		i;
    136. 

  136. 	unsigned int j;
    137. 

  137. 

  138. 	/* Did we end up hashing the key? */
    139. 

  139. 	if (ctx->hashkey) {
    140. 

  140. 		memset(&(ctx->key[0]), ZERO_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    141. 

  141. 		/* Yes, so finish up and copy the key data */
    142. 

  142. 		SHA256_Final(&(ctx->key[0]), &ctx->shactx);
    143. 

  143. 		/* ctx->keylen was already set correctly */
    144. 

  144. 	}
    145. 

  145. 	/* Pad the key if necessary with zero bytes */
    146. 

  146. 	if ((i = HMAC_SHA256_BLOCK_LENGTH - ctx->keylen) > 0) {
    147. 

  147. 		memset(&(ctx->key[ctx->keylen]), ZERO_BYTE, i);
    148. 

  148. 	}
    149. 

  149. 

  150. 	ipad = &(ctx->ipad[0]);
    151. 

  151. 	opad = &(ctx->opad[0]);
    152. 

  152. 

  153. 	/* Precompute the respective pads XORed with the key */
    154. 

  154. 	key = &(ctx->key[0]);
    155. 

  155. 	for (j = 0; j < ctx->keylen; j++, key++) {
    156. 

  156. 		/* XOR the key byte with the appropriate pad filler byte */
    157. 

  157. 		*ipad++ ^= *key;
    158. 

  158. 		*opad++ ^= *key;
    159. 

  159. 	}
    160. 

  160. }
    161. 

  161. 

  162. void HMAC_SHA256_StartMessage(HMAC_SHA256_CTX *ctx) {
    163. 

  163. 	SHA256_Init(&ctx->shactx);
    164. 

  164. 	SHA256_Update(&ctx->shactx, &(ctx->ipad[0]), HMAC_SHA256_BLOCK_LENGTH);
    165. 

  165. }
    166. 

  166. 

  167. void HMAC_SHA256_UpdateMessage(HMAC_SHA256_CTX *ctx, unsigned char *data, unsigned int datalen) {
    168. 

  168. 	SHA256_Update(&ctx->shactx, data, datalen);
    169. 

  169. }
    170. 

  170. 

  171. void HMAC_SHA256_EndMessage(unsigned char *out, HMAC_SHA256_CTX *ctx) {
    172. 

  172. 	unsigned char	buf[HMAC_SHA256_DIGEST_LENGTH];
    173. 

  173. 	SHA256_CTX		*c = &ctx->shactx;
    174. 

  174. 

  175. 	SHA256_Final(&(buf[0]), c);
    176. 

  176. 	SHA256_Init(c);
    177. 

  177. 	SHA256_Update(c, &(ctx->opad[0]), HMAC_SHA256_BLOCK_LENGTH);
    178. 

  178. 	SHA256_Update(c, buf, HMAC_SHA256_DIGEST_LENGTH);
    179. 

  179. 	SHA256_Final(out, c);
    180. 

  180. }
    181. 

  181. 

  182. void HMAC_SHA256_Done(HMAC_SHA256_CTX *ctx) {
    183. 

  183. 	/* Just to be safe, toast all context data */
    184. 

  184. 	memset(&(ctx->ipad[0]), ZERO_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    185. 

  185. 	memset(&(ctx->ipad[0]), ZERO_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    186. 

  186. 	memset(&(ctx->key[0]), ZERO_BYTE, HMAC_SHA256_BLOCK_LENGTH);
    187. 

  187. 	ctx->keylen = 0;
    188. 

  188. 	ctx->hashkey = 0;
    189. 

  189. } 
    190. 

  190. 

  191. #ifdef  __cplusplus
    192. 

  192. }
    193. 

  193. #endif
    194. 

  194. 

  195. #endif
    196.