4 files changed, 324 insertions, 0 deletions
diff --git a/modules/mac/cmac/cmac.cpp b/modules/mac/cmac/cmac.cpp
new file mode 100644
index 000000000..5a99f93b1
--- /dev/null
+++ b/modules/mac/cmac/cmac.cpp
@@ -0,0 +1,152 @@
+/*************************************************
+* CMAC Source File                               *
+* (C) 1999-2007 Jack Lloyd                       *
+*************************************************/
+
+#include <botan/cmac.h>
+#include <botan/lookup.h>
+#include <botan/xor_buf.h>
+
+namespace Botan {
+
+/*************************************************
+* Perform CMAC's multiplication in GF(2^n)       *
+*************************************************/
+SecureVector<byte> CMAC::poly_double(const MemoryRegion<byte>& in,
+                                     byte polynomial)
+   {
+   const bool do_xor = (in[0] & 0x80) ? true : false;
+
+   SecureVector<byte> out = in;
+
+   byte carry = 0;
+   for(u32bit j = out.size(); j != 0; --j)
+      {
+      byte temp = out[j-1];
+      out[j-1] = (temp << 1) | carry;
+      carry = (temp >> 7);
+      }
+
+   if(do_xor)
+      out[out.size()-1] ^= polynomial;
+
+   return out;
+   }
+
+/*************************************************
+* Update an CMAC Calculation                     *
+*************************************************/
+void CMAC::add_data(const byte input[], u32bit length)
+   {
+   buffer.copy(position, input, length);
+   if(position + length > OUTPUT_LENGTH)
+      {
+      xor_buf(state, buffer, OUTPUT_LENGTH);
+      e->encrypt(state);
+      input += (OUTPUT_LENGTH - position);
+      length -= (OUTPUT_LENGTH - position);
+      while(length > OUTPUT_LENGTH)
+         {
+         xor_buf(state, input, OUTPUT_LENGTH);
+         e->encrypt(state);
+         input += OUTPUT_LENGTH;
+         length -= OUTPUT_LENGTH;
+         }
+      buffer.copy(input, length);
+      position = 0;
+      }
+   position += length;
+   }
+
+/*************************************************
+* Finalize an CMAC Calculation                   *
+*************************************************/
+void CMAC::final_result(byte mac[])
+   {
+   xor_buf(state, buffer, position);
+
+   if(position == OUTPUT_LENGTH)
+      {
+      xor_buf(state, B, OUTPUT_LENGTH);
+      }
+   else
+      {
+      state[position] ^= 0x80;
+      xor_buf(state, P, OUTPUT_LENGTH);
+      }
+
+   e->encrypt(state);
+
+   for(u32bit j = 0; j != OUTPUT_LENGTH; ++j)
+      mac[j] = state[j];
+
+   state.clear();
+   buffer.clear();
+   position = 0;
+   }
+
+/*************************************************
+* CMAC Key Schedule                              *
+*************************************************/
+void CMAC::key(const byte key[], u32bit length)
+   {
+   clear();
+   e->set_key(key, length);
+   e->encrypt(B);
+   B = poly_double(B, polynomial);
+   P = poly_double(B, polynomial);
+   }
+
+/*************************************************
+* Clear memory of sensitive data                 *
+*************************************************/
+void CMAC::clear() throw()
+   {
+   e->clear();
+   state.clear();
+   buffer.clear();
+   B.clear();
+   P.clear();
+   position = 0;
+   }
+
+/*************************************************
+* Return the name of this type                   *
+*************************************************/
+std::string CMAC::name() const
+   {
+   return "CMAC(" + e->name() + ")";
+   }
+
+/*************************************************
+* Return a clone of this object                  *
+*************************************************/
+MessageAuthenticationCode* CMAC::clone() const
+   {
+   return new CMAC(e->name());
+   }
+
+/*************************************************
+* CMAC Constructor                               *
+*************************************************/
+CMAC::CMAC(const std::string& bc_name) :
+   MessageAuthenticationCode(block_size_of(bc_name),
+                             min_keylength_of(bc_name),
+                             max_keylength_of(bc_name),
+                             keylength_multiple_of(bc_name))
+   {
+   e = get_block_cipher(bc_name);
+
+   if(e->BLOCK_SIZE == 16)     polynomial = 0x87;
+   else if(e->BLOCK_SIZE == 8) polynomial = 0x1B;
+   else
+      throw Invalid_Argument("CMAC cannot use the cipher " + e->name());
+
+   state.create(OUTPUT_LENGTH);
+   buffer.create(OUTPUT_LENGTH);
+   B.create(OUTPUT_LENGTH);
+   P.create(OUTPUT_LENGTH);
+   position = 0;
+   }
+
+}
diff --git a/modules/mac/cmac/cmac.h b/modules/mac/cmac/cmac.h
new file mode 100644
index 000000000..c7f107258
--- /dev/null
+++ b/modules/mac/cmac/cmac.h
@@ -0,0 +1,41 @@
+/*************************************************
+* CMAC Header File                               *
+* (C) 1999-2007 Jack Lloyd                       *
+*************************************************/
+
+#ifndef BOTAN_CMAC_H__
+#define BOTAN_CMAC_H__
+
+#include <botan/base.h>
+
+namespace Botan {
+
+/*************************************************
+* CMAC                                           *
+*************************************************/
+class BOTAN_DLL CMAC : public MessageAuthenticationCode
+   {
+   public:
+      void clear() throw();
+      std::string name() const;
+      MessageAuthenticationCode* clone() const;
+
+      static SecureVector<byte> poly_double(const MemoryRegion<byte>& in,
+                                            byte polynomial);
+
+      CMAC(const std::string&);
+      ~CMAC() { delete e; }
+   private:
+      void add_data(const byte[], u32bit);
+      void final_result(byte[]);
+      void key(const byte[], u32bit);
+
+      BlockCipher* e;
+      SecureVector<byte> buffer, state, B, P;
+      u32bit position;
+      byte polynomial;
+   };
+
+}
+
+#endif
diff --git a/modules/mac/hmac/hmac.cpp b/modules/mac/hmac/hmac.cpp
new file mode 100644
index 000000000..b8c76e8f6
--- /dev/null
+++ b/modules/mac/hmac/hmac.cpp
@@ -0,0 +1,97 @@
+/*************************************************
+* HMAC Source File                               *
+* (C) 1999-2007 Jack Lloyd                       *
+*     2007 Yves Jerschow                         *
+*************************************************/
+
+#include <botan/hmac.h>
+#include <botan/lookup.h>
+#include <botan/xor_buf.h>
+
+namespace Botan {
+
+/*************************************************
+* Update a HMAC Calculation                      *
+*************************************************/
+void HMAC::add_data(const byte input[], u32bit length)
+   {
+   hash->update(input, length);
+   }
+
+/*************************************************
+* Finalize a HMAC Calculation                    *
+*************************************************/
+void HMAC::final_result(byte mac[])
+   {
+   hash->final(mac);
+   hash->update(o_key);
+   hash->update(mac, OUTPUT_LENGTH);
+   hash->final(mac);
+   hash->update(i_key);
+   }
+
+/*************************************************
+* HMAC Key Schedule                              *
+*************************************************/
+void HMAC::key(const byte key[], u32bit length)
+   {
+   hash->clear();
+   std::fill(i_key.begin(), i_key.end(), 0x36);
+   std::fill(o_key.begin(), o_key.end(), 0x5C);
+
+   if(length > hash->HASH_BLOCK_SIZE)
+      {
+      SecureVector<byte> hmac_key = hash->process(key, length);
+      xor_buf(i_key, hmac_key, hmac_key.size());
+      xor_buf(o_key, hmac_key, hmac_key.size());
+      }
+   else
+      {
+      xor_buf(i_key, key, length);
+      xor_buf(o_key, key, length);
+      }
+
+   hash->update(i_key);
+   }
+
+/*************************************************
+* Clear memory of sensitive data                 *
+*************************************************/
+void HMAC::clear() throw()
+   {
+   hash->clear();
+   i_key.clear();
+   o_key.clear();
+   }
+
+/*************************************************
+* Return the name of this type                   *
+*************************************************/
+std::string HMAC::name() const
+   {
+   return "HMAC(" + hash->name() + ")";
+   }
+
+/*************************************************
+* Return a clone of this object                  *
+*************************************************/
+MessageAuthenticationCode* HMAC::clone() const
+   {
+   return new HMAC(hash->name());
+   }
+
+/*************************************************
+* HMAC Constructor                               *
+*************************************************/
+HMAC::HMAC(const std::string& hash_name) :
+   MessageAuthenticationCode(output_length_of(hash_name),
+                             1, 2*block_size_of(hash_name)),
+   hash(get_hash(hash_name))
+   {
+   if(hash->HASH_BLOCK_SIZE == 0)
+      throw Invalid_Argument("HMAC cannot be used with " + hash->name());
+   i_key.create(hash->HASH_BLOCK_SIZE);
+   o_key.create(hash->HASH_BLOCK_SIZE);
+   }
+
+}
diff --git a/modules/mac/hmac/hmac.h b/modules/mac/hmac/hmac.h
new file mode 100644
index 000000000..62529cf13
--- /dev/null
+++ b/modules/mac/hmac/hmac.h
@@ -0,0 +1,34 @@
+/*************************************************
+* HMAC Header File                               *
+* (C) 1999-2007 Jack Lloyd                       *
+*************************************************/
+
+#ifndef BOTAN_HMAC_H__
+#define BOTAN_HMAC_H__
+
+#include <botan/base.h>
+
+namespace Botan {
+
+/*************************************************
+* HMAC                                           *
+*************************************************/
+class BOTAN_DLL HMAC : public MessageAuthenticationCode
+   {
+   public:
+      void clear() throw();
+      std::string name() const;
+      MessageAuthenticationCode* clone() const;
+      HMAC(const std::string&);
+      ~HMAC() { delete hash; }
+   private:
+      void add_data(const byte[], u32bit);
+      void final_result(byte[]);
+      void key(const byte[], u32bit);
+      HashFunction* hash;
+      SecureVector<byte> i_key, o_key;
+   };
+
+}
+
+#endif