// -*- mode: C++; tab-width: 4; indent-tabs-mode: nil -*- (for GNU Emacs) // // Copyright (c) 1985-2000 Microsoft Corporation // // This file is part of the Microsoft Research IPv6 Network Protocol Stack. // You should have received a copy of the Microsoft End-User License Agreement // for this software along with this release; see the file "license.txt". // If not, please see http://www.research.microsoft.com/msripv6/license.htm, // or write to Microsoft Research, One Microsoft Way, Redmond, WA 98052-6399. // // Abstract: // // HMAC (Hashed? Message Authentication Code) wrapper for MD5 algorithm. // This code is based on the algorithm given in RFC 2104, which for // HMAC-MD5 is MD5(Key XOR outer pad, MD5(Key XOR inner pad, text)), where // the inner pad is 64 bytes of 0x36 and the outer pad is 64 bytes of 0x5c. // #include #include "oscfg.h" #include "md5.h" //* HMAC_MD5KeyPrep - preprocess raw keying data into directly usuable form. // // This routine is called to convert raw keying information into the most // convienient form for later processing. For MD5, we hash keys larger than // 64 bytes down to 64 bytes. We also perform the XOR operations between the // key and the inner and outer pads here since they don't change once we have // the key. Thus we return 128 bytes of data: 64 bytes of the (possibly // folded) key XOR'd with the inner pad, and 64 bytes of the key XOR'd with // the outer pad. // // REVIEW: Instead of "Temp", we could operate directly "*Key". // void HMAC_MD5KeyPrep( uchar *RawKey, // Raw keying information. uint RawKeySize, // Size of above in bytes. uchar *Key) // Resulting 128 bytes of preprocessed key info. { uchar Temp[128]; uint Loop; // // Load raw key into temp storage. // Constrain size of keying information to 64 bytes. // memset(Temp, 0, 64); if (RawKeySize > 64) { MD5_CTX Context; // // Use MD5 to hash key down to 16 bytes. // MD5Init(&Context); MD5Update(&Context, RawKey, RawKeySize); MD5Final(&Context); memcpy(Temp, Context.digest, MD5DIGESTLEN); } else memcpy(Temp, RawKey, RawKeySize); // // The first 64 bytes of "Temp" contain our (possibly hashed) key. // Make a copy of this in the second 64 bytes. // memcpy(&Temp[64], Temp, 64); // // XOR the first 64 bytes with the inner pad, and the second 64 bytes // with the outer pad. // for (Loop = 0; Loop < 64; Loop++) { Temp[Loop] ^= 0x36; // Inner Pad. Temp[Loop + 64] ^= 0x5c; // Outer Pad. } // // Return the result to location designated by our caller. // memcpy(Key, Temp, 128); // // Zero sensitive information. // REVIEW: bother? // RtlSecureZeroMemory(Temp, 128); } //* HMAC_MD5Init - prepare to process data. // void HMAC_MD5Init( void *Context, // HMAC-MD5 context maintained across operations. uchar *Key) // Keying information. { MD5_CTX *MD5_Context = Context; // // Start off the inner hash. I.e. "MD5(Key XOR inner pad, ...". // MD5Init(MD5_Context); MD5Update(MD5_Context, Key, 64); } //* HMAC_MD5Op - Process a chunk of data. // void HMAC_MD5Op( void *Context, // HMAC-MD5 context maintained across operations. uchar *Key, // Keying information. uchar *Data, // Data to process. uint Len) // Amount of above in bytes. { MD5_CTX *MD5_Context = Context; UNREFERENCED_PARAMETER(Key); // // Continue the inner hash. I.e. "MD5(..., text)". // MD5Update(MD5_Context, Data, Len); } //* HMAC_MD5Finalize - close off processing current data and return result. // // REVIEW: Instead of "Temp", we could operate directly "*Result". // void HMAC_MD5Final( void *Context, // HMAC-MD5 context maintained across operations. uchar *Key, // Keying information. uchar *Result) // Where to put result of this process. { uchar Temp[16]; MD5_CTX *MD5_Context = Context; // // Finish the inner hash. // MD5Final(MD5_Context); memcpy(Temp, MD5_Context->digest, MD5DIGESTLEN); // // Perform the outer hash. I.e. MD5(Key XOR outer pad, ...). // MD5Final returns the result directly to our caller. // MD5Init(MD5_Context); MD5Update(MD5_Context, &Key[64], 64); MD5Update(MD5_Context, Temp, 16); MD5Final(MD5_Context); memcpy(Result, MD5_Context->digest, MD5DIGESTLEN); // // Zero sensitive information. // REVIEW: bother? // RtlSecureZeroMemory(Temp, 16); } void HMAC_MD5_96Final( void *Context, // HMAC-MD5 context maintained across operations. uchar *Key, // Keying information. uchar *Result) // Where to put result of this process. { uchar Temp[16]; MD5_CTX *MD5_Context = Context; // // Finish the inner hash. // MD5Final(MD5_Context); memcpy(Temp, MD5_Context->digest, MD5DIGESTLEN); // // Perform the outer hash. I.e. MD5(Key XOR outer pad, ...). // MD5Init(MD5_Context); MD5Update(MD5_Context, &Key[64], 64); MD5Update(MD5_Context, Temp, 16); MD5Final(MD5_Context); // // Truncate the MD5 16 byte output to 12 bytes. // The first 12 bytes from the left are stored. // memcpy(Result, MD5_Context->digest, 12); // // Zero sensitive information. // REVIEW: bother? // RtlSecureZeroMemory(Temp, 16); }