Home Explore Help
Register Sign In
wareck
/
krackattacks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

OpenSSL: Implement SHA1 HMAC functions using HMAC API

Use the OpenSSL HMAC implementation instead of the internal sha1.c
implementation of HMAC with SHA1.

Signed-hostap: Jouni Malinen <j@w1.fi>
Jouni Malinen 12 years ago
parent
d6150094e0
commit
030d062fac
5 changed files with 47 additions and 0 deletions
Split View Show Diff Stats
  1. 2 0
      hostapd/Android.mk
  2. 2 0
      hostapd/Makefile
  3. 39 0
      src/crypto/crypto_openssl.c
  4. 2 0
      wpa_supplicant/Android.mk
  5. 2 0
      wpa_supplicant/Makefile

+ 2 - 0
hostapd/Android.mk
View File 

@@ -669,7 +669,9 @@ endif
 
 
 SHA1OBJS =
 
 ifdef NEED_SHA1
 
+ifneq ($(CONFIG_TLS), openssl)
 
 SHA1OBJS += src/crypto/sha1.c
 
+endif
 
 SHA1OBJS += src/crypto/sha1-prf.c
 
 ifdef CONFIG_INTERNAL_SHA1
 
 SHA1OBJS += src/crypto/sha1-internal.c

+ 2 - 0
hostapd/Makefile
View File 

@@ -660,7 +660,9 @@ OBJS += $(AESOBJS)
 
 endif
 
 
 ifdef NEED_SHA1
 
+ifneq ($(CONFIG_TLS), openssl)
 
 SHA1OBJS += ../src/crypto/sha1.o
 
+endif
 
 SHA1OBJS += ../src/crypto/sha1-prf.o
 
 ifdef CONFIG_INTERNAL_SHA1
 
 SHA1OBJS += ../src/crypto/sha1-internal.o

+ 39 - 0
src/crypto/crypto_openssl.c
View File 

@@ -698,3 +698,42 @@ int pbkdf2_sha1(const char *passphrase, const u8 *ssid, size_t ssid_len,
 
 		return -1;
 
 	return 0;
 
 }
 
+
 
+
 
+int hmac_sha1_vector(const u8 *key, size_t key_len, size_t num_elem,
 
+		     const u8 *addr[], const size_t *len, u8 *mac)
 
+{
 
+	HMAC_CTX ctx;
 
+	size_t i;
 
+	unsigned int mdlen;
 
+	int res;
 
+
 
+	HMAC_CTX_init(&ctx);
 
+#if OPENSSL_VERSION_NUMBER < 0x00909000
 
+	HMAC_Init_ex(&ctx, key, key_len, EVP_sha1(), NULL);
 
+#else /* openssl < 0.9.9 */
 
+	if (HMAC_Init_ex(&ctx, key, key_len, EVP_sha1(), NULL) != 1)
 
+		return -1;
 
+#endif /* openssl < 0.9.9 */
 
+
 
+	for (i = 0; i < num_elem; i++)
 
+		HMAC_Update(&ctx, addr[i], len[i]);
 
+
 
+	mdlen = 20;
 
+#if OPENSSL_VERSION_NUMBER < 0x00909000
 
+	HMAC_Final(&ctx, mac, &mdlen);
 
+	res = 1;
 
+#else /* openssl < 0.9.9 */
 
+	res = HMAC_Final(&ctx, mac, &mdlen);
 
+#endif /* openssl < 0.9.9 */
 
+	HMAC_CTX_cleanup(&ctx);
 
+
 
+	return res == 1 ? 0 : -1;
 
+}
 
+
 
+
 
+int hmac_sha1(const u8 *key, size_t key_len, const u8 *data, size_t data_len,
 
+	       u8 *mac)
 
+{
 
+	return hmac_sha1_vector(key, key_len, 1, &data, &data_len, mac);
 
+}

+ 2 - 0
wpa_supplicant/Android.mk
View File 

@@ -1054,7 +1054,9 @@ endif
 
 
 SHA1OBJS =
 
 ifdef NEED_SHA1
 
+ifneq ($(CONFIG_TLS), openssl)
 
 SHA1OBJS += src/crypto/sha1.c
 
+endif
 
 SHA1OBJS += src/crypto/sha1-prf.c
 
 ifdef CONFIG_INTERNAL_SHA1
 
 SHA1OBJS += src/crypto/sha1-internal.c

+ 2 - 0
wpa_supplicant/Makefile
View File 

@@ -1081,7 +1081,9 @@ OBJS += $(AESOBJS)
 
 endif
 
 
 ifdef NEED_SHA1
 
+ifneq ($(CONFIG_TLS), openssl)
 
 SHA1OBJS += ../src/crypto/sha1.o
 
+endif
 
 SHA1OBJS += ../src/crypto/sha1-prf.o
 
 ifdef CONFIG_INTERNAL_SHA1
 
 SHA1OBJS += ../src/crypto/sha1-internal.o