1/* $OpenBSD: xform.c,v 1.16 2001/08/28 12:20:43 ben Exp $ */ 2/*- 3 * The authors of this code are John Ioannidis (ji@tla.org), 4 * Angelos D. Keromytis (kermit@csd.uch.gr), 5 * Niels Provos (provos@physnet.uni-hamburg.de) and 6 * Damien Miller (djm@mindrot.org). 7 * 8 * This code was written by John Ioannidis for BSD/OS in Athens, Greece, 9 * in November 1995. 10 * 11 * Ported to OpenBSD and NetBSD, with additional transforms, in December 1996, 12 * by Angelos D. Keromytis. 13 * 14 * Additional transforms and features in 1997 and 1998 by Angelos D. Keromytis 15 * and Niels Provos. 16 * 17 * Additional features in 1999 by Angelos D. Keromytis. 18 * 19 * AES XTS implementation in 2008 by Damien Miller 20 * 21 * Copyright (C) 1995, 1996, 1997, 1998, 1999 by John Ioannidis, 22 * Angelos D. Keromytis and Niels Provos. 23 * 24 * Copyright (C) 2001, Angelos D. Keromytis. 25 * 26 * Copyright (C) 2008, Damien Miller 27 * Copyright (c) 2014 The FreeBSD Foundation 28 * All rights reserved. 29 * 30 * Portions of this software were developed by John-Mark Gurney 31 * under sponsorship of the FreeBSD Foundation and 32 * Rubicon Communications, LLC (Netgate). 33 * 34 * Permission to use, copy, and modify this software with or without fee 35 * is hereby granted, provided that this entire notice is included in 36 * all copies of any software which is or includes a copy or 37 * modification of this software. 38 * You may use this code under the GNU public license if you so wish. Please 39 * contribute changes back to the authors under this freer than GPL license 40 * so that we may further the use of strong encryption without limitations to 41 * all. 42 * 43 * THIS SOFTWARE IS BEING PROVIDED "AS IS", WITHOUT ANY EXPRESS OR 44 * IMPLIED WARRANTY. IN PARTICULAR, NONE OF THE AUTHORS MAKES ANY 45 * REPRESENTATION OR WARRANTY OF ANY KIND CONCERNING THE 46 * MERCHANTABILITY OF THIS SOFTWARE OR ITS FITNESS FOR ANY PARTICULAR 47 * PURPOSE. 48 */ 49 50#include <sys/types.h> 51#include <crypto/sha2/sha224.h> 52#include <crypto/sha2/sha256.h> 53#include <crypto/sha2/sha384.h> 54#include <crypto/sha2/sha512.h> 55#include <opencrypto/xform_auth.h> 56 57static int SHA224Update_int(void *, const void *, u_int); 58static int SHA256Update_int(void *, const void *, u_int); 59static int SHA384Update_int(void *, const void *, u_int); 60static int SHA512Update_int(void *, const void *, u_int); 61 62/* Plain hashes */ 63const struct auth_hash auth_hash_sha2_224 = { 64 .type = CRYPTO_SHA2_224, 65 .name = "SHA2-224", 66 .hashsize = SHA2_224_HASH_LEN, 67 .ctxsize = sizeof(SHA224_CTX), 68 .blocksize = SHA2_224_BLOCK_LEN, 69 .Init = (void (*)(void *)) SHA224_Init, 70 .Update = SHA224Update_int, 71 .Final = (void (*)(uint8_t *, void *)) SHA224_Final, 72}; 73 74const struct auth_hash auth_hash_sha2_256 = { 75 .type = CRYPTO_SHA2_256, 76 .name = "SHA2-256", 77 .keysize = SHA2_256_BLOCK_LEN, 78 .hashsize = SHA2_256_HASH_LEN, 79 .ctxsize = sizeof(SHA256_CTX), 80 .blocksize = SHA2_256_BLOCK_LEN, 81 .Init = (void (*)(void *)) SHA256_Init, 82 .Update = SHA256Update_int, 83 .Final = (void (*)(uint8_t *, void *)) SHA256_Final, 84}; 85 86const struct auth_hash auth_hash_sha2_384 = { 87 .type = CRYPTO_SHA2_384, 88 .name = "SHA2-384", 89 .keysize = SHA2_384_BLOCK_LEN, 90 .hashsize = SHA2_384_HASH_LEN, 91 .ctxsize = sizeof(SHA384_CTX), 92 .blocksize = SHA2_384_BLOCK_LEN, 93 .Init = (void (*)(void *)) SHA384_Init, 94 .Update = SHA384Update_int, 95 .Final = (void (*)(uint8_t *, void *)) SHA384_Final, 96}; 97 98const struct auth_hash auth_hash_sha2_512 = { 99 .type = CRYPTO_SHA2_512, 100 .name = "SHA2-512", 101 .keysize = SHA2_512_BLOCK_LEN, 102 .hashsize = SHA2_512_HASH_LEN, 103 .ctxsize = sizeof(SHA512_CTX), 104 .blocksize = SHA2_512_BLOCK_LEN, 105 .Init = (void (*)(void *)) SHA512_Init, 106 .Update = SHA512Update_int, 107 .Final = (void (*)(uint8_t *, void *)) SHA512_Final, 108}; 109 110/* Authentication instances */ 111const struct auth_hash auth_hash_hmac_sha2_224 = { 112 .type = CRYPTO_SHA2_224_HMAC, 113 .name = "HMAC-SHA2-224", 114 .keysize = SHA2_224_BLOCK_LEN, 115 .hashsize = SHA2_224_HASH_LEN, 116 .ctxsize = sizeof(SHA224_CTX), 117 .blocksize = SHA2_224_BLOCK_LEN, 118 .Init = (void (*)(void *)) SHA224_Init, 119 .Update = SHA224Update_int, 120 .Final = (void (*)(uint8_t *, void *)) SHA224_Final, 121}; 122 123const struct auth_hash auth_hash_hmac_sha2_256 = { 124 .type = CRYPTO_SHA2_256_HMAC, 125 .name = "HMAC-SHA2-256", 126 .keysize = SHA2_256_BLOCK_LEN, 127 .hashsize = SHA2_256_HASH_LEN, 128 .ctxsize = sizeof(SHA256_CTX), 129 .blocksize = SHA2_256_BLOCK_LEN, 130 .Init = (void (*)(void *)) SHA256_Init, 131 .Update = SHA256Update_int, 132 .Final = (void (*)(uint8_t *, void *)) SHA256_Final, 133}; 134 135const struct auth_hash auth_hash_hmac_sha2_384 = { 136 .type = CRYPTO_SHA2_384_HMAC, 137 .name = "HMAC-SHA2-384", 138 .keysize = SHA2_384_BLOCK_LEN, 139 .hashsize = SHA2_384_HASH_LEN, 140 .ctxsize = sizeof(SHA384_CTX), 141 .blocksize = SHA2_384_BLOCK_LEN, 142 .Init = (void (*)(void *)) SHA384_Init, 143 .Update = SHA384Update_int, 144 .Final = (void (*)(uint8_t *, void *)) SHA384_Final, 145}; 146 147const struct auth_hash auth_hash_hmac_sha2_512 = { 148 .type = CRYPTO_SHA2_512_HMAC, 149 .name = "HMAC-SHA2-512", 150 .keysize = SHA2_512_BLOCK_LEN, 151 .hashsize = SHA2_512_HASH_LEN, 152 .ctxsize = sizeof(SHA512_CTX), 153 .blocksize = SHA2_512_BLOCK_LEN, 154 .Init = (void (*)(void *)) SHA512_Init, 155 .Update = SHA512Update_int, 156 .Final = (void (*)(uint8_t *, void *)) SHA512_Final, 157}; 158 159/* 160 * And now for auth. 161 */ 162static int 163SHA224Update_int(void *ctx, const void *buf, u_int len) 164{ 165 SHA224_Update(ctx, buf, len); 166 return 0; 167} 168 169static int 170SHA256Update_int(void *ctx, const void *buf, u_int len) 171{ 172 SHA256_Update(ctx, buf, len); 173 return 0; 174} 175 176static int 177SHA384Update_int(void *ctx, const void *buf, u_int len) 178{ 179 SHA384_Update(ctx, buf, len); 180 return 0; 181} 182 183static int 184SHA512Update_int(void *ctx, const void *buf, u_int len) 185{ 186 SHA512_Update(ctx, buf, len); 187 return 0; 188} 189