201 lines
5.3 KiB
C
201 lines
5.3 KiB
C
|
// -*- mode: C++; tab-width: 4; indent-tabs-mode: nil -*- (for GNU Emacs)
|
||
|
//
|
||
|
// Copyright (c) 1985-2000 Microsoft Corporation
|
||
|
//
|
||
|
// This file is part of the Microsoft Research IPv6 Network Protocol Stack.
|
||
|
// You should have received a copy of the Microsoft End-User License Agreement
|
||
|
// for this software along with this release; see the file "license.txt".
|
||
|
// If not, please see http://www.research.microsoft.com/msripv6/license.htm,
|
||
|
// or write to Microsoft Research, One Microsoft Way, Redmond, WA 98052-6399.
|
||
|
//
|
||
|
// Abstract:
|
||
|
//
|
||
|
// HMAC (Hashed? Message Authentication Code) wrapper for MD5 algorithm.
|
||
|
// This code is based on the algorithm given in RFC 2104, which for
|
||
|
// HMAC-MD5 is MD5(Key XOR outer pad, MD5(Key XOR inner pad, text)), where
|
||
|
// the inner pad is 64 bytes of 0x36 and the outer pad is 64 bytes of 0x5c.
|
||
|
//
|
||
|
|
||
|
#include <string.h>
|
||
|
#include "oscfg.h"
|
||
|
#include "md5.h"
|
||
|
|
||
|
|
||
|
//* HMAC_MD5KeyPrep - preprocess raw keying data into directly usuable form.
|
||
|
//
|
||
|
// This routine is called to convert raw keying information into the most
|
||
|
// convienient form for later processing. For MD5, we hash keys larger than
|
||
|
// 64 bytes down to 64 bytes. We also perform the XOR operations between the
|
||
|
// key and the inner and outer pads here since they don't change once we have
|
||
|
// the key. Thus we return 128 bytes of data: 64 bytes of the (possibly
|
||
|
// folded) key XOR'd with the inner pad, and 64 bytes of the key XOR'd with
|
||
|
// the outer pad.
|
||
|
//
|
||
|
// REVIEW: Instead of "Temp", we could operate directly "*Key".
|
||
|
//
|
||
|
void
|
||
|
HMAC_MD5KeyPrep(
|
||
|
uchar *RawKey, // Raw keying information.
|
||
|
uint RawKeySize, // Size of above in bytes.
|
||
|
uchar *Key) // Resulting 128 bytes of preprocessed key info.
|
||
|
{
|
||
|
uchar Temp[128];
|
||
|
uint Loop;
|
||
|
|
||
|
//
|
||
|
// Load raw key into temp storage.
|
||
|
// Constrain size of keying information to 64 bytes.
|
||
|
//
|
||
|
memset(Temp, 0, 64);
|
||
|
if (RawKeySize > 64) {
|
||
|
MD5_CTX Context;
|
||
|
|
||
|
//
|
||
|
// Use MD5 to hash key down to 16 bytes.
|
||
|
//
|
||
|
MD5Init(&Context);
|
||
|
MD5Update(&Context, RawKey, RawKeySize);
|
||
|
MD5Final(&Context);
|
||
|
memcpy(Temp, Context.digest, MD5DIGESTLEN);
|
||
|
|
||
|
} else
|
||
|
memcpy(Temp, RawKey, RawKeySize);
|
||
|
|
||
|
//
|
||
|
// The first 64 bytes of "Temp" contain our (possibly hashed) key.
|
||
|
// Make a copy of this in the second 64 bytes.
|
||
|
//
|
||
|
memcpy(&Temp[64], Temp, 64);
|
||
|
|
||
|
//
|
||
|
// XOR the first 64 bytes with the inner pad, and the second 64 bytes
|
||
|
// with the outer pad.
|
||
|
//
|
||
|
for (Loop = 0; Loop < 64; Loop++) {
|
||
|
Temp[Loop] ^= 0x36; // Inner Pad.
|
||
|
Temp[Loop + 64] ^= 0x5c; // Outer Pad.
|
||
|
}
|
||
|
|
||
|
//
|
||
|
// Return the result to location designated by our caller.
|
||
|
//
|
||
|
memcpy(Key, Temp, 128);
|
||
|
|
||
|
//
|
||
|
// Zero sensitive information.
|
||
|
// REVIEW: bother?
|
||
|
//
|
||
|
memset(Temp, 0, 16);
|
||
|
}
|
||
|
|
||
|
|
||
|
//* HMAC_MD5Init - prepare to process data.
|
||
|
//
|
||
|
void
|
||
|
HMAC_MD5Init(
|
||
|
void *Context, // HMAC-MD5 context maintained across operations.
|
||
|
uchar *Key) // Keying information.
|
||
|
{
|
||
|
MD5_CTX *MD5_Context = Context;
|
||
|
|
||
|
//
|
||
|
// Start off the inner hash. I.e. "MD5(Key XOR inner pad, ...".
|
||
|
//
|
||
|
MD5Init(MD5_Context);
|
||
|
MD5Update(MD5_Context, Key, 64);
|
||
|
}
|
||
|
|
||
|
|
||
|
//* HMAC_MD5Op - Process a chunk of data.
|
||
|
//
|
||
|
void
|
||
|
HMAC_MD5Op(
|
||
|
void *Context, // HMAC-MD5 context maintained across operations.
|
||
|
uchar *Key, // Keying information.
|
||
|
uchar *Data, // Data to process.
|
||
|
uint Len) // Amount of above in bytes.
|
||
|
{
|
||
|
MD5_CTX *MD5_Context = Context;
|
||
|
|
||
|
//
|
||
|
// Continue the inner hash. I.e. "MD5(..., text)".
|
||
|
//
|
||
|
MD5Update(MD5_Context, Data, Len);
|
||
|
}
|
||
|
|
||
|
|
||
|
//* HMAC_MD5Finalize - close off processing current data and return result.
|
||
|
//
|
||
|
// REVIEW: Instead of "Temp", we could operate directly "*Result".
|
||
|
//
|
||
|
void
|
||
|
HMAC_MD5Final(
|
||
|
void *Context, // HMAC-MD5 context maintained across operations.
|
||
|
uchar *Key, // Keying information.
|
||
|
uchar *Result) // Where to put result of this process.
|
||
|
{
|
||
|
uchar Temp[16];
|
||
|
MD5_CTX *MD5_Context = Context;
|
||
|
|
||
|
//
|
||
|
// Finish the inner hash.
|
||
|
//
|
||
|
MD5Final(MD5_Context);
|
||
|
memcpy(Temp, MD5_Context->digest, MD5DIGESTLEN);
|
||
|
|
||
|
//
|
||
|
// Perform the outer hash. I.e. MD5(Key XOR outer pad, ...).
|
||
|
// MD5Final returns the result directly to our caller.
|
||
|
//
|
||
|
MD5Init(MD5_Context);
|
||
|
MD5Update(MD5_Context, &Key[64], 64);
|
||
|
MD5Update(MD5_Context, Temp, 16);
|
||
|
MD5Final(MD5_Context);
|
||
|
memcpy(Result, MD5_Context->digest, MD5DIGESTLEN);
|
||
|
|
||
|
//
|
||
|
// Zero sensitive information.
|
||
|
// REVIEW: bother?
|
||
|
//
|
||
|
memset(Temp, 0, 16);
|
||
|
}
|
||
|
|
||
|
void
|
||
|
HMAC_MD5_96Final(
|
||
|
void *Context, // HMAC-MD5 context maintained across operations.
|
||
|
uchar *Key, // Keying information.
|
||
|
uchar *Result) // Where to put result of this process.
|
||
|
{
|
||
|
uchar Temp[16];
|
||
|
MD5_CTX *MD5_Context = Context;
|
||
|
|
||
|
//
|
||
|
// Finish the inner hash.
|
||
|
//
|
||
|
MD5Final(MD5_Context);
|
||
|
memcpy(Temp, MD5_Context->digest, MD5DIGESTLEN);
|
||
|
|
||
|
//
|
||
|
// Perform the outer hash. I.e. MD5(Key XOR outer pad, ...).
|
||
|
//
|
||
|
MD5Init(MD5_Context);
|
||
|
MD5Update(MD5_Context, &Key[64], 64);
|
||
|
MD5Update(MD5_Context, Temp, 16);
|
||
|
MD5Final(MD5_Context);
|
||
|
|
||
|
//
|
||
|
// Truncate the MD5 16 byte output to 12 bytes.
|
||
|
// The first 12 bytes from the left are stored.
|
||
|
//
|
||
|
memcpy(Result, MD5_Context->digest, 12);
|
||
|
|
||
|
//
|
||
|
// Zero sensitive information.
|
||
|
// REVIEW: bother?
|
||
|
//
|
||
|
memset(Temp, 0, 16);
|
||
|
}
|
||
|
|
||
|
|
||
|
|