all: prefer https: URLs
[gnulib.git] / lib / hmac-sha256.c
blobe231d0e011d760e40df4e1e1bd8faa9dc52d48c0
1 /* hmac-sha256.c -- hashed message authentication codes
2 Copyright (C) 2005-2006, 2009-2017 Free Software Foundation, Inc.
4 This program is free software; you can redistribute it and/or modify
5 it under the terms of the GNU General Public License as published by
6 the Free Software Foundation; either version 2, or (at your option)
7 any later version.
9 This program is distributed in the hope that it will be useful,
10 but WITHOUT ANY WARRANTY; without even the implied warranty of
11 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 GNU General Public License for more details.
14 You should have received a copy of the GNU General Public License
15 along with this program; if not, see <https://www.gnu.org/licenses/>. */
17 /* Written by Simon Josefsson. */
19 #include <config.h>
21 #include "hmac.h"
23 #include "memxor.h"
24 #include "sha256.h"
26 #include <string.h>
28 #define IPAD 0x36
29 #define OPAD 0x5c
31 int
32 hmac_sha256 (const void *key, size_t keylen,
33 const void *in, size_t inlen, void *resbuf)
35 struct sha256_ctx inner;
36 struct sha256_ctx outer;
37 char optkeybuf[32];
38 char block[64];
39 char innerhash[32];
41 /* Reduce the key's size, so that it becomes <= 64 bytes large. */
43 if (keylen > 64)
45 struct sha256_ctx keyhash;
47 sha256_init_ctx (&keyhash);
48 sha256_process_bytes (key, keylen, &keyhash);
49 sha256_finish_ctx (&keyhash, optkeybuf);
51 key = optkeybuf;
52 keylen = 32;
55 /* Compute INNERHASH from KEY and IN. */
57 sha256_init_ctx (&inner);
59 memset (block, IPAD, sizeof (block));
60 memxor (block, key, keylen);
62 sha256_process_block (block, 64, &inner);
63 sha256_process_bytes (in, inlen, &inner);
65 sha256_finish_ctx (&inner, innerhash);
67 /* Compute result from KEY and INNERHASH. */
69 sha256_init_ctx (&outer);
71 memset (block, OPAD, sizeof (block));
72 memxor (block, key, keylen);
74 sha256_process_block (block, 64, &outer);
75 sha256_process_bytes (innerhash, 32, &outer);
77 sha256_finish_ctx (&outer, resbuf);
79 return 0;