1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
|
//
// HMACEngine.h
//
// Library: Foundation
// Package: Crypt
// Module: HMACEngine
//
// Definition of the HMACEngine class.
//
// Copyright (c) 2004-2006, Applied Informatics Software Engineering GmbH.
// and Contributors.
//
// SPDX-License-Identifier: BSL-1.0
//
#ifndef Foundation_HMACEngine_INCLUDED
#define Foundation_HMACEngine_INCLUDED
#include "Poco/Foundation.h"
#include "Poco/DigestEngine.h"
#include <cstring>
namespace Poco {
template <class Engine>
class HMACEngine: public DigestEngine
/// This class implementes the HMAC message
/// authentication code algorithm, as specified
/// in RFC 2104. The underlying DigestEngine
/// (MD5Engine, SHA1Engine, etc.) must be given as
/// template argument.
/// Since the HMACEngine is a DigestEngine, it can
/// be used with the DigestStream class to create
/// a HMAC for a stream.
{
public:
enum
{
BLOCK_SIZE = Engine::BLOCK_SIZE,
DIGEST_SIZE = Engine::DIGEST_SIZE
};
HMACEngine(const std::string& passphrase)
{
init(passphrase.data(), passphrase.length());
}
HMACEngine(const char* passphrase, std::size_t length)
{
poco_check_ptr (passphrase);
init(passphrase, length);
}
~HMACEngine()
{
std::memset(_ipad, 0, BLOCK_SIZE);
std::memset(_opad, 0, BLOCK_SIZE);
delete [] _ipad;
delete [] _opad;
}
std::size_t digestLength() const
{
return DIGEST_SIZE;
}
void reset()
{
_engine.reset();
_engine.update(_ipad, BLOCK_SIZE);
}
const DigestEngine::Digest& digest()
{
const DigestEngine::Digest& d = _engine.digest();
char db[DIGEST_SIZE];
char* pdb = db;
for (DigestEngine::Digest::const_iterator it = d.begin(); it != d.end(); ++it)
*pdb++ = *it;
_engine.reset();
_engine.update(_opad, BLOCK_SIZE);
_engine.update(db, DIGEST_SIZE);
const DigestEngine::Digest& result = _engine.digest();
reset();
return result;
}
protected:
void init(const char* passphrase, std::size_t length)
{
_ipad = new char[BLOCK_SIZE];
_opad = new char[BLOCK_SIZE];
std::memset(_ipad, 0, BLOCK_SIZE);
std::memset(_opad, 0, BLOCK_SIZE);
if (length > BLOCK_SIZE)
{
_engine.reset();
_engine.update(passphrase, length);
const DigestEngine::Digest& d = _engine.digest();
char* ipad = _ipad;
char* opad = _opad;
int n = BLOCK_SIZE;
for (DigestEngine::Digest::const_iterator it = d.begin(); it != d.end() && n-- > 0; ++it)
{
*ipad++ = *it;
*opad++ = *it;
}
}
else
{
std::memcpy(_ipad, passphrase, length);
std::memcpy(_opad, passphrase, length);
}
for (int i = 0; i < BLOCK_SIZE; ++i)
{
_ipad[i] ^= 0x36;
_opad[i] ^= 0x5c;
}
reset();
}
void updateImpl(const void* data, std::size_t length)
{
_engine.update(data, length);
}
private:
HMACEngine();
HMACEngine(const HMACEngine&);
HMACEngine& operator = (const HMACEngine&);
Engine _engine;
char* _ipad;
char* _opad;
};
} // namespace Poco
#endif // Foundation_HMACEngine_INCLUDED
|