2017-09-10 14:44:12 +08:00
|
|
|
/*
|
2017-10-18 19:14:11 +08:00
|
|
|
* libwebsockets - generic hash and HMAC api hiding the backend
|
2017-09-10 14:44:12 +08:00
|
|
|
*
|
|
|
|
|
* Copyright (C) 2017 Andy Green <andy@warmcat.com>
|
|
|
|
|
*
|
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
|
* modify it under the terms of the GNU Lesser General Public
|
|
|
|
|
* License as published by the Free Software Foundation:
|
|
|
|
|
* version 2.1 of the License.
|
|
|
|
|
*
|
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
|
|
|
* Lesser General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU Lesser General Public
|
|
|
|
|
* License along with this library; if not, write to the Free Software
|
|
|
|
|
* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston,
|
|
|
|
|
* MA 02110-1301 USA
|
|
|
|
|
*
|
2017-10-18 19:14:11 +08:00
|
|
|
* lws_genhash provides a hash / hmac abstraction api in lws that works the
|
|
|
|
|
* same whether you are using openssl or mbedtls hash functions underneath.
|
2017-09-10 14:44:12 +08:00
|
|
|
*/
|
|
|
|
|
#include "libwebsockets.h"
|
2019-01-29 15:28:56 +08:00
|
|
|
#include <openssl/obj_mac.h>
|
2018-12-13 20:05:12 +08:00
|
|
|
/*
|
|
|
|
|
* Care: many openssl apis return 1 for success. These are translated to the
|
|
|
|
|
* lws convention of 0 for success.
|
|
|
|
|
*/
|
|
|
|
|
|
2017-09-10 14:44:12 +08:00
|
|
|
int
|
2017-10-18 19:14:11 +08:00
|
|
|
lws_genhash_init(struct lws_genhash_ctx *ctx, enum lws_genhash_types type)
|
2017-09-10 14:44:12 +08:00
|
|
|
{
|
|
|
|
|
ctx->type = type;
|
|
|
|
|
ctx->mdctx = EVP_MD_CTX_create();
|
|
|
|
|
if (!ctx->mdctx)
|
|
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
switch (ctx->type) {
|
|
|
|
|
case LWS_GENHASH_TYPE_SHA1:
|
|
|
|
|
ctx->evp_type = EVP_sha1();
|
|
|
|
|
break;
|
|
|
|
|
case LWS_GENHASH_TYPE_SHA256:
|
|
|
|
|
ctx->evp_type = EVP_sha256();
|
|
|
|
|
break;
|
2017-10-18 19:14:11 +08:00
|
|
|
case LWS_GENHASH_TYPE_SHA384:
|
|
|
|
|
ctx->evp_type = EVP_sha384();
|
|
|
|
|
break;
|
2017-09-10 14:44:12 +08:00
|
|
|
case LWS_GENHASH_TYPE_SHA512:
|
|
|
|
|
ctx->evp_type = EVP_sha512();
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (EVP_DigestInit_ex(ctx->mdctx, ctx->evp_type, NULL) != 1) {
|
|
|
|
|
EVP_MD_CTX_destroy(ctx->mdctx);
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
lws_genhash_update(struct lws_genhash_ctx *ctx, const void *in, size_t len)
|
|
|
|
|
{
|
2018-12-13 20:05:12 +08:00
|
|
|
if (!len)
|
|
|
|
|
return 0;
|
|
|
|
|
|
2017-09-10 14:44:12 +08:00
|
|
|
return EVP_DigestUpdate(ctx->mdctx, in, len) != 1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
lws_genhash_destroy(struct lws_genhash_ctx *ctx, void *result)
|
|
|
|
|
{
|
|
|
|
|
unsigned int len;
|
|
|
|
|
int ret = 0;
|
|
|
|
|
|
|
|
|
|
if (result)
|
|
|
|
|
ret = EVP_DigestFinal_ex(ctx->mdctx, result, &len) != 1;
|
|
|
|
|
|
|
|
|
|
(void)len;
|
|
|
|
|
|
|
|
|
|
EVP_MD_CTX_destroy(ctx->mdctx);
|
|
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
|
2017-10-18 19:14:11 +08:00
|
|
|
int
|
|
|
|
|
lws_genhmac_init(struct lws_genhmac_ctx *ctx, enum lws_genhmac_types type,
|
|
|
|
|
const uint8_t *key, size_t key_len)
|
|
|
|
|
{
|
|
|
|
|
EVP_PKEY *pkey;
|
|
|
|
|
|
|
|
|
|
ctx->type = type;
|
|
|
|
|
|
|
|
|
|
switch (type) {
|
|
|
|
|
case LWS_GENHMAC_TYPE_SHA256:
|
2019-01-29 15:28:56 +08:00
|
|
|
ctx->evp_type = EVP_sha256();
|
2017-10-18 19:14:11 +08:00
|
|
|
break;
|
|
|
|
|
case LWS_GENHMAC_TYPE_SHA384:
|
2019-01-29 15:28:56 +08:00
|
|
|
ctx->evp_type = EVP_sha384();
|
2017-10-18 19:14:11 +08:00
|
|
|
break;
|
|
|
|
|
case LWS_GENHMAC_TYPE_SHA512:
|
2019-01-29 15:28:56 +08:00
|
|
|
ctx->evp_type = EVP_sha512();
|
2017-10-18 19:14:11 +08:00
|
|
|
break;
|
|
|
|
|
default:
|
2019-01-29 15:28:56 +08:00
|
|
|
lwsl_err("%s: unknown HMAC type %d\n", __func__, type);
|
2017-10-18 19:14:11 +08:00
|
|
|
return -1;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
ctx->ctx = EVP_MD_CTX_create();
|
|
|
|
|
if (!ctx->ctx)
|
|
|
|
|
return -1;
|
|
|
|
|
|
2019-01-29 15:28:56 +08:00
|
|
|
if (EVP_DigestInit_ex(ctx->ctx, ctx->evp_type, NULL) != 1)
|
2017-10-18 19:14:11 +08:00
|
|
|
return -1;
|
2017-09-10 14:44:12 +08:00
|
|
|
|
2017-10-25 08:00:23 +08:00
|
|
|
pkey = EVP_PKEY_new_mac_key(EVP_PKEY_HMAC, NULL, key, (int)key_len);
|
2017-10-18 19:14:11 +08:00
|
|
|
|
2019-01-29 15:28:56 +08:00
|
|
|
if (EVP_DigestSignInit(ctx->ctx, NULL, ctx->evp_type, NULL, pkey) != 1)
|
2017-10-18 19:14:11 +08:00
|
|
|
return -1;
|
|
|
|
|
|
|
|
|
|
EVP_PKEY_free(pkey);
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
lws_genhmac_update(struct lws_genhmac_ctx *ctx, const void *in, size_t len)
|
|
|
|
|
{
|
|
|
|
|
if (EVP_DigestSignUpdate(ctx->ctx, in, len) != 1)
|
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
int
|
|
|
|
|
lws_genhmac_destroy(struct lws_genhmac_ctx *ctx, void *result)
|
|
|
|
|
{
|
|
|
|
|
size_t size = lws_genhmac_size(ctx->type);
|
|
|
|
|
int n = EVP_DigestSignFinal(ctx->ctx, result, &size);
|
|
|
|
|
|
|
|
|
|
EVP_MD_CTX_destroy(ctx->ctx);
|
|
|
|
|
if (n != 1)
|
|
|
|
|
return -1;
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
