1*aca3beaaSApple OSS Distributions /* Copyright (c) (2010,2011,2015,2016,2018,2019) Apple Inc. All rights reserved.
2*aca3beaaSApple OSS Distributions *
3*aca3beaaSApple OSS Distributions * corecrypto is licensed under Apple Inc.’s Internal Use License Agreement (which
4*aca3beaaSApple OSS Distributions * is contained in the License.txt file distributed with corecrypto) and only to
5*aca3beaaSApple OSS Distributions * people who accept that license. IMPORTANT: Any license rights granted to you by
6*aca3beaaSApple OSS Distributions * Apple Inc. (if any) are limited to internal use within your organization only on
7*aca3beaaSApple OSS Distributions * devices and computers you own or control, for the sole purpose of verifying the
8*aca3beaaSApple OSS Distributions * security characteristics and correct functioning of the Apple Software. You may
9*aca3beaaSApple OSS Distributions * not, directly or indirectly, redistribute the Apple Software or any portions thereof.
10*aca3beaaSApple OSS Distributions *
11*aca3beaaSApple OSS Distributions * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
12*aca3beaaSApple OSS Distributions *
13*aca3beaaSApple OSS Distributions * This file contains Original Code and/or Modifications of Original Code
14*aca3beaaSApple OSS Distributions * as defined in and that are subject to the Apple Public Source License
15*aca3beaaSApple OSS Distributions * Version 2.0 (the 'License'). You may not use this file except in
16*aca3beaaSApple OSS Distributions * compliance with the License. The rights granted to you under the License
17*aca3beaaSApple OSS Distributions * may not be used to create, or enable the creation or redistribution of,
18*aca3beaaSApple OSS Distributions * unlawful or unlicensed copies of an Apple operating system, or to
19*aca3beaaSApple OSS Distributions * circumvent, violate, or enable the circumvention or violation of, any
20*aca3beaaSApple OSS Distributions * terms of an Apple operating system software license agreement.
21*aca3beaaSApple OSS Distributions *
22*aca3beaaSApple OSS Distributions * Please obtain a copy of the License at
23*aca3beaaSApple OSS Distributions * http://www.opensource.apple.com/apsl/ and read it before using this file.
24*aca3beaaSApple OSS Distributions *
25*aca3beaaSApple OSS Distributions * The Original Code and all software distributed under the License are
26*aca3beaaSApple OSS Distributions * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
27*aca3beaaSApple OSS Distributions * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
28*aca3beaaSApple OSS Distributions * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
29*aca3beaaSApple OSS Distributions * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
30*aca3beaaSApple OSS Distributions * Please see the License for the specific language governing rights and
31*aca3beaaSApple OSS Distributions * limitations under the License.
32*aca3beaaSApple OSS Distributions *
33*aca3beaaSApple OSS Distributions * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
34*aca3beaaSApple OSS Distributions */
35*aca3beaaSApple OSS Distributions
36*aca3beaaSApple OSS Distributions #include "cc_internal.h"
37*aca3beaaSApple OSS Distributions #include <corecrypto/ccdigest_priv.h>
38*aca3beaaSApple OSS Distributions #include <corecrypto/cchmac.h>
39*aca3beaaSApple OSS Distributions #include <corecrypto/ccn.h>
40*aca3beaaSApple OSS Distributions #include <corecrypto/cc_priv.h>
41*aca3beaaSApple OSS Distributions
42*aca3beaaSApple OSS Distributions /* The HMAC_<DIG> transform looks like:
43*aca3beaaSApple OSS Distributions * <DIG> (K XOR opad || <DIG> (K XOR ipad || text))
44*aca3beaaSApple OSS Distributions * Where K is a n byte key
45*aca3beaaSApple OSS Distributions * ipad is the byte 0x36 repeated 64 times.
46*aca3beaaSApple OSS Distributions * opad is the byte 0x5c repeated 64 times.
47*aca3beaaSApple OSS Distributions * text is the data being protected.
48*aca3beaaSApple OSS Distributions */
49*aca3beaaSApple OSS Distributions void
cchmac_init(const struct ccdigest_info * di,cchmac_ctx_t hc,size_t key_len,const void * key_data)50*aca3beaaSApple OSS Distributions cchmac_init(const struct ccdigest_info *di, cchmac_ctx_t hc,
51*aca3beaaSApple OSS Distributions size_t key_len, const void *key_data)
52*aca3beaaSApple OSS Distributions {
53*aca3beaaSApple OSS Distributions CC_ENSURE_DIT_ENABLED
54*aca3beaaSApple OSS Distributions
55*aca3beaaSApple OSS Distributions const unsigned char *key = key_data;
56*aca3beaaSApple OSS Distributions
57*aca3beaaSApple OSS Distributions /* Set cchmac_data(di, hc) to key ^ opad. */
58*aca3beaaSApple OSS Distributions size_t byte = 0;
59*aca3beaaSApple OSS Distributions if (key_len <= di->block_size) {
60*aca3beaaSApple OSS Distributions for (; byte < key_len; ++byte) {
61*aca3beaaSApple OSS Distributions cchmac_data(di, hc)[byte] = key[byte] ^ 0x5c;
62*aca3beaaSApple OSS Distributions }
63*aca3beaaSApple OSS Distributions } else {
64*aca3beaaSApple OSS Distributions /* Key is longer than di->block size, reset it to key=digest(key) */
65*aca3beaaSApple OSS Distributions ccdigest_init(di, cchmac_digest_ctx(di, hc));
66*aca3beaaSApple OSS Distributions ccdigest_update(di, cchmac_digest_ctx(di, hc), key_len, key);
67*aca3beaaSApple OSS Distributions ccdigest_final(di, cchmac_digest_ctx(di, hc), cchmac_data(di, hc));
68*aca3beaaSApple OSS Distributions key_len = di->output_size;
69*aca3beaaSApple OSS Distributions for (; byte < key_len; ++byte) {
70*aca3beaaSApple OSS Distributions cchmac_data(di, hc)[byte] ^= 0x5c;
71*aca3beaaSApple OSS Distributions }
72*aca3beaaSApple OSS Distributions }
73*aca3beaaSApple OSS Distributions /* Fill remainder of cchmac_data(di, hc) with opad. */
74*aca3beaaSApple OSS Distributions if (key_len < di->block_size) {
75*aca3beaaSApple OSS Distributions cc_memset(cchmac_data(di, hc) + key_len, 0x5c, di->block_size - key_len);
76*aca3beaaSApple OSS Distributions }
77*aca3beaaSApple OSS Distributions
78*aca3beaaSApple OSS Distributions /* Set cchmac_ostate32(di, hc) to the state of the first round of the
79*aca3beaaSApple OSS Distributions * outer digest. */
80*aca3beaaSApple OSS Distributions ccdigest_copy_state(di, cchmac_ostate32(di, hc), di->initial_state);
81*aca3beaaSApple OSS Distributions di->compress(cchmac_ostate(di, hc), 1, cchmac_data(di, hc));
82*aca3beaaSApple OSS Distributions
83*aca3beaaSApple OSS Distributions /* Set cchmac_data(di, hc) to key ^ ipad. */
84*aca3beaaSApple OSS Distributions for (byte = 0; byte < di->block_size; ++byte) {
85*aca3beaaSApple OSS Distributions cchmac_data(di, hc)[byte] ^= (0x5c ^ 0x36);
86*aca3beaaSApple OSS Distributions }
87*aca3beaaSApple OSS Distributions ccdigest_copy_state(di, cchmac_istate32(di, hc), di->initial_state);
88*aca3beaaSApple OSS Distributions di->compress(cchmac_istate(di, hc), 1, cchmac_data(di, hc));
89*aca3beaaSApple OSS Distributions cchmac_num(di, hc) = 0;
90*aca3beaaSApple OSS Distributions cchmac_nbits(di, hc) = di->block_size * 8;
91*aca3beaaSApple OSS Distributions }
92