diff options
| author | Werner Koch <wk@gnupg.org> | 2008-11-05 19:13:22 +0000 |
|---|---|---|
| committer | Werner Koch <wk@gnupg.org> | 2008-11-05 19:13:22 +0000 |
| commit | 0c42eaece11c4fc326b7084f5a89664804134fb5 (patch) | |
| tree | 4edd6a9b4af5e90df09bc0f1a8d830495d5385a3 /cipher/md.c | |
| parent | 76116202872239eaa02a92f08a2f5bd69325debc (diff) | |
| download | libgcrypt-0c42eaece11c4fc326b7084f5a89664804134fb5.tar.gz | |
Fixed HMAC for SHA-384 and SHA-512 with keys longer than 64 bytes.
Diffstat (limited to 'cipher/md.c')
| -rw-r--r-- | cipher/md.c | 48 |
1 files changed, 26 insertions, 22 deletions
diff --git a/cipher/md.c b/cipher/md.c index d6890873..5dfbbd95 100644 --- a/cipher/md.c +++ b/cipher/md.c @@ -474,14 +474,18 @@ md_open (gcry_md_hd_t *h, int algo, int secure, int hmac) if (hmac) { - if ( (GCRY_MD_SHA384 == algo) || (GCRY_MD_SHA512 == algo) ) { - ctx->macpads_Bsize = 128; - ctx->macpads = gcry_malloc_secure (2*(ctx->macpads_Bsize)); - } else { - ctx->macpads_Bsize = 64; - ctx->macpads = gcry_malloc_secure (2*(ctx->macpads_Bsize)); - } - if (! ctx->macpads) + switch (algo) + { + case GCRY_MD_SHA384: + case GCRY_MD_SHA512: + ctx->macpads_Bsize = 128; + break; + default: + ctx->macpads_Bsize = 64; + break; + } + ctx->macpads = gcry_malloc_secure (2*(ctx->macpads_Bsize)); + if (!ctx->macpads) { err = gpg_err_code_from_errno (errno); md_close (hd); @@ -842,25 +846,25 @@ md_final (gcry_md_hd_t a) } static gcry_err_code_t -prepare_macpads( gcry_md_hd_t hd, const byte *key, size_t keylen) +prepare_macpads (gcry_md_hd_t hd, const unsigned char *key, size_t keylen) { int i; - int algo = md_get_algo( hd ); - byte *helpkey = NULL; - byte *ipad, *opad; + int algo = md_get_algo (hd); + unsigned char *helpkey = NULL; + unsigned char *ipad, *opad; - if ( !algo ) - return GPG_ERR_DIGEST_ALGO; /* i.e. no algo enabled */ + if (!algo) + return GPG_ERR_DIGEST_ALGO; /* Might happen if no algo is enabled. */ - if ( keylen > 64 ) + if ( keylen > hd->ctx->macpads_Bsize ) { - helpkey = gcry_malloc_secure ( md_digest_length( algo ) ); - if ( !helpkey ) + helpkey = gcry_malloc_secure (md_digest_length (algo)); + if (!helpkey) return gpg_err_code_from_errno (errno); - gcry_md_hash_buffer ( algo, helpkey, key, keylen ); + gcry_md_hash_buffer (algo, helpkey, key, keylen); key = helpkey; - keylen = md_digest_length( algo ); - gcry_assert ( keylen <= 64 ); + keylen = md_digest_length (algo); + gcry_assert ( keylen <= hd->ctx->macpads_Bsize ); } memset ( hd->ctx->macpads, 0, 2*(hd->ctx->macpads_Bsize) ); @@ -868,12 +872,12 @@ prepare_macpads( gcry_md_hd_t hd, const byte *key, size_t keylen) opad = (hd->ctx->macpads)+(hd->ctx->macpads_Bsize); memcpy ( ipad, key, keylen ); memcpy ( opad, key, keylen ); - for (i=0; i < (hd->ctx->macpads_Bsize); i++ ) + for (i=0; i < hd->ctx->macpads_Bsize; i++ ) { ipad[i] ^= 0x36; opad[i] ^= 0x5c; } - gcry_free( helpkey ); + gcry_free (helpkey); return GPG_ERR_NO_ERROR; } |