X-Git-Url: http://www.average.org/gitweb/?p=pam_pcsc_cr.git;a=blobdiff_plain;f=ossl_crypto.c;h=837fac0e553f5ecaf512711d6a954abacaa2a8d7;hp=e69de29bb2d1d6434b8b29ae775ad8c2e48c5391;hb=7d93eea67d10d01d129f5434ddc8bc4a4f3060d8;hpb=4f3247d992b2d4152da0ebc0daf828c874e0b1f1 diff --git a/ossl_crypto.c b/ossl_crypto.c index e69de29..837fac0 100644 --- a/ossl_crypto.c +++ b/ossl_crypto.c @@ -0,0 +1,106 @@ +/* +Copyright (c) 2013 Eugene Crosser + +This software is provided 'as-is', without any express or implied +warranty. In no event will the authors be held liable for any damages +arising from the use of this software. + +Permission is granted to anyone to use this software for any purpose, +including commercial applications, and to alter it and redistribute it +freely, subject to the following restrictions: + + 1. The origin of this software must not be misrepresented; you must + not claim that you wrote the original software. If you use this + software in a product, an acknowledgment in the product documentation + would be appreciated but is not required. + + 2. Altered source versions must be plainly marked as such, and must + not be misrepresented as being the original software. + + 3. This notice may not be removed or altered from any source + distribution. +*/ + +#ifdef HAVE_CONFIG_H +# include "config.h" +#endif +#include +#include +#include +#include + +#include "crypto_if.h" + +static const char *ossl_init(void) +{ + ERR_load_crypto_strings(); + return "openssl"; +} + +static unsigned long ossl_encrypt(void *key, int keylen, void *iv, + void *pt, void *ct, int tlen) +{ + AES_KEY akey; + + if (AES_set_encrypt_key(key, keylen*8, &akey)) + return ERR_get_error(); + AES_cbc_encrypt(pt, ct, tlen, &akey, iv, AES_ENCRYPT); + return 0UL; +} + +static unsigned long ossl_decrypt(void *key, int keylen, void *iv, + void *ct, void *pt, int tlen) +{ + AES_KEY akey; + + if (AES_set_decrypt_key(key, keylen*8, &akey)) + return ERR_get_error(); + AES_cbc_encrypt(ct, pt, tlen, &akey, iv, AES_DECRYPT); + return 0UL; +} + +static unsigned long ossl_hash(void *pt, int tlen, void *tag, int *taglen) +{ + SHA_CTX sctx; + + if (!SHA1_Init(&sctx)) return ERR_get_error(); + if (!SHA1_Update(&sctx, pt, tlen)) return ERR_get_error(); + if (!SHA1_Final(tag, &sctx)) return ERR_get_error(); + *taglen = SHA_DIGEST_LENGTH; + return 0UL; +} + +static unsigned long ossl_hmac(void *key, int keylen, void *pt, int tlen, + void *tag, int *taglen) +{ +#if 1 + HMAC_CTX hctx; + + HMAC_CTX_init(&hctx); + if (!HMAC_Init_ex(&hctx, key, keylen, EVP_sha1(), NULL)) + return ERR_get_error(); + if (!HMAC_Update(&hctx, pt, tlen)) return ERR_get_error(); + if (!HMAC_Final(&hctx, tag, (unsigned int *)taglen)) + return ERR_get_error(); + HMAC_CTX_cleanup(&hctx); +#else + if (HMAC(EVP_sha1(), key, keylen, pt, tlen, + tag, (unsigned int *)taglen) != tag) + return ERR_get_error(); +#endif + return 0UL; +} + +static const char *ossl_errstr(unsigned long err) +{ + return ERR_error_string(err, NULL); +} + +struct crypto_interface ossl_crypto_if = { + .init = ossl_init, + .encrypt = ossl_encrypt, + .decrypt = ossl_decrypt, + .hash = ossl_hash, + .hmac = ossl_hmac, + .errstr = ossl_errstr, +};