sl@0: /* p12_mutl.c */ sl@0: /* Written by Dr Stephen N Henson (shenson@bigfoot.com) for the OpenSSL sl@0: * project 1999. sl@0: */ sl@0: /* ==================================================================== sl@0: * Copyright (c) 1999 The OpenSSL Project. All rights reserved. sl@0: * sl@0: * Redistribution and use in source and binary forms, with or without sl@0: * modification, are permitted provided that the following conditions sl@0: * are met: sl@0: * sl@0: * 1. Redistributions of source code must retain the above copyright sl@0: * notice, this list of conditions and the following disclaimer. sl@0: * sl@0: * 2. Redistributions in binary form must reproduce the above copyright sl@0: * notice, this list of conditions and the following disclaimer in sl@0: * the documentation and/or other materials provided with the sl@0: * distribution. sl@0: * sl@0: * 3. All advertising materials mentioning features or use of this sl@0: * software must display the following acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" sl@0: * sl@0: * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to sl@0: * endorse or promote products derived from this software without sl@0: * prior written permission. For written permission, please contact sl@0: * licensing@OpenSSL.org. sl@0: * sl@0: * 5. Products derived from this software may not be called "OpenSSL" sl@0: * nor may "OpenSSL" appear in their names without prior written sl@0: * permission of the OpenSSL Project. sl@0: * sl@0: * 6. Redistributions of any form whatsoever must retain the following sl@0: * acknowledgment: sl@0: * "This product includes software developed by the OpenSSL Project sl@0: * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" sl@0: * sl@0: * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY sl@0: * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE sl@0: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR sl@0: * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR sl@0: * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, sl@0: * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT sl@0: * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; sl@0: * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) sl@0: * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, sl@0: * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) sl@0: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED sl@0: * OF THE POSSIBILITY OF SUCH DAMAGE. sl@0: * ==================================================================== sl@0: * sl@0: * This product includes cryptographic software written by Eric Young sl@0: * (eay@cryptsoft.com). This product includes software written by Tim sl@0: * Hudson (tjh@cryptsoft.com). sl@0: * sl@0: */ sl@0: sl@0: #ifndef OPENSSL_NO_HMAC sl@0: #include sl@0: #include "cryptlib.h" sl@0: #include sl@0: #include sl@0: #include sl@0: sl@0: /* Generate a MAC */ sl@0: EXPORT_C int PKCS12_gen_mac(PKCS12 *p12, const char *pass, int passlen, sl@0: unsigned char *mac, unsigned int *maclen) sl@0: { sl@0: const EVP_MD *md_type; sl@0: HMAC_CTX hmac; sl@0: unsigned char key[EVP_MAX_MD_SIZE], *salt; sl@0: int saltlen, iter; sl@0: sl@0: if (!PKCS7_type_is_data(p12->authsafes)) sl@0: { sl@0: PKCS12err(PKCS12_F_PKCS12_GEN_MAC,PKCS12_R_CONTENT_TYPE_NOT_DATA); sl@0: return 0; sl@0: } sl@0: sl@0: salt = p12->mac->salt->data; sl@0: saltlen = p12->mac->salt->length; sl@0: if (!p12->mac->iter) iter = 1; sl@0: else iter = ASN1_INTEGER_get (p12->mac->iter); sl@0: if(!(md_type = sl@0: EVP_get_digestbyobj (p12->mac->dinfo->algor->algorithm))) { sl@0: PKCS12err(PKCS12_F_PKCS12_GEN_MAC,PKCS12_R_UNKNOWN_DIGEST_ALGORITHM); sl@0: return 0; sl@0: } sl@0: if(!PKCS12_key_gen (pass, passlen, salt, saltlen, PKCS12_MAC_ID, iter, sl@0: EVP_MD_size(md_type), key, md_type)) { sl@0: PKCS12err(PKCS12_F_PKCS12_GEN_MAC,PKCS12_R_KEY_GEN_ERROR); sl@0: return 0; sl@0: } sl@0: HMAC_CTX_init(&hmac); sl@0: HMAC_Init_ex(&hmac, key, EVP_MD_size(md_type), md_type, NULL); sl@0: HMAC_Update(&hmac, p12->authsafes->d.data->data, sl@0: p12->authsafes->d.data->length); sl@0: HMAC_Final(&hmac, mac, maclen); sl@0: HMAC_CTX_cleanup(&hmac); sl@0: return 1; sl@0: sl@0: } sl@0: sl@0: /* Verify the mac */ sl@0: EXPORT_C int PKCS12_verify_mac(PKCS12 *p12, const char *pass, int passlen) sl@0: { sl@0: unsigned char mac[EVP_MAX_MD_SIZE]; sl@0: unsigned int maclen; sl@0: if(p12->mac == NULL) { sl@0: PKCS12err(PKCS12_F_PKCS12_VERIFY_MAC,PKCS12_R_MAC_ABSENT); sl@0: return 0; sl@0: } sl@0: if (!PKCS12_gen_mac (p12, pass, passlen, mac, &maclen)) { sl@0: PKCS12err(PKCS12_F_PKCS12_VERIFY_MAC,PKCS12_R_MAC_GENERATION_ERROR); sl@0: return 0; sl@0: } sl@0: if ((maclen != (unsigned int)p12->mac->dinfo->digest->length) sl@0: || memcmp (mac, p12->mac->dinfo->digest->data, maclen)) return 0; sl@0: return 1; sl@0: } sl@0: sl@0: /* Set a mac */ sl@0: sl@0: EXPORT_C int PKCS12_set_mac(PKCS12 *p12, const char *pass, int passlen, sl@0: unsigned char *salt, int saltlen, int iter, const EVP_MD *md_type) sl@0: { sl@0: unsigned char mac[EVP_MAX_MD_SIZE]; sl@0: unsigned int maclen; sl@0: sl@0: if (!md_type) md_type = EVP_sha1(); sl@0: if (PKCS12_setup_mac (p12, iter, salt, saltlen, md_type) == sl@0: PKCS12_ERROR) { sl@0: PKCS12err(PKCS12_F_PKCS12_SET_MAC,PKCS12_R_MAC_SETUP_ERROR); sl@0: return 0; sl@0: } sl@0: if (!PKCS12_gen_mac (p12, pass, passlen, mac, &maclen)) { sl@0: PKCS12err(PKCS12_F_PKCS12_SET_MAC,PKCS12_R_MAC_GENERATION_ERROR); sl@0: return 0; sl@0: } sl@0: if (!(M_ASN1_OCTET_STRING_set (p12->mac->dinfo->digest, mac, maclen))) { sl@0: PKCS12err(PKCS12_F_PKCS12_SET_MAC,PKCS12_R_MAC_STRING_SET_ERROR); sl@0: return 0; sl@0: } sl@0: return 1; sl@0: } sl@0: sl@0: /* Set up a mac structure */ sl@0: EXPORT_C int PKCS12_setup_mac(PKCS12 *p12, int iter, unsigned char *salt, int saltlen, sl@0: const EVP_MD *md_type) sl@0: { sl@0: if (!(p12->mac = PKCS12_MAC_DATA_new())) return PKCS12_ERROR; sl@0: if (iter > 1) { sl@0: if(!(p12->mac->iter = M_ASN1_INTEGER_new())) { sl@0: PKCS12err(PKCS12_F_PKCS12_SETUP_MAC, ERR_R_MALLOC_FAILURE); sl@0: return 0; sl@0: } sl@0: if (!ASN1_INTEGER_set(p12->mac->iter, iter)) { sl@0: PKCS12err(PKCS12_F_PKCS12_SETUP_MAC, ERR_R_MALLOC_FAILURE); sl@0: return 0; sl@0: } sl@0: } sl@0: if (!saltlen) saltlen = PKCS12_SALT_LEN; sl@0: p12->mac->salt->length = saltlen; sl@0: if (!(p12->mac->salt->data = OPENSSL_malloc (saltlen))) { sl@0: PKCS12err(PKCS12_F_PKCS12_SETUP_MAC, ERR_R_MALLOC_FAILURE); sl@0: return 0; sl@0: } sl@0: if (!salt) { sl@0: if (RAND_pseudo_bytes (p12->mac->salt->data, saltlen) < 0) sl@0: return 0; sl@0: } sl@0: else memcpy (p12->mac->salt->data, salt, saltlen); sl@0: p12->mac->dinfo->algor->algorithm = OBJ_nid2obj(EVP_MD_type(md_type)); sl@0: if (!(p12->mac->dinfo->algor->parameter = ASN1_TYPE_new())) { sl@0: PKCS12err(PKCS12_F_PKCS12_SETUP_MAC, ERR_R_MALLOC_FAILURE); sl@0: return 0; sl@0: } sl@0: p12->mac->dinfo->algor->parameter->type = V_ASN1_NULL; sl@0: sl@0: return 1; sl@0: } sl@0: #endif