# HMAC SHA256

In [7]:
from Crypto.Hash import MD5, SHA, SHA256
import hashlib, hmac

## Helper Functions

In [8]:
def intToList(number):
    """Converts an integer (int or Integer) of 
       any length into a list of 8-bit integers (int)"""
    L1 = log(number,256)
    L2 = ceil(L1)
    if L1 == L2:
        L2 += 1
    return [(number&(0xff<<8*i))>>8*i for i in reversed(range(L2))] 

def intToListOfLenght(number,length):
    """Convert a number into a byte list
       with specified length"""
    return [(number >> i) & 0xff
            for i in reversed(range(0,length*8,8))]
 
def listToInt(lst):
    """Convert a byte list into a number"""
    return reduce(lambda x,y:(x<<8)+y,lst)

def strToList(s):
    """Converts string of any lenght into a list 
       of its decimal ASCII representation """
    return list(map(ord,s))

def listToString(lst):
    """Convert a byte list into a string """
    return "".join(map(chr,lst))

def listToHexString(lst):
    """Convert a byte list into a hex string """
    return "0x" + "".join(map(lambda x:format(x,"x"),lst))

def list_xor(x,y):
    """Computes the pairwise XOR of two integer lists"""
    return list(i^^j for i,j in zip(x,y))

## SHA256 Wrapper

In [9]:
def sha256(m):
    """Return the SHA-256 digest of input. 
       Simply a wrapper around the hashmap function
       in order to support not only strings but also 
       integers (int, Integer), and lists of integers"""
    if type(m) is str:
        return int(SHA256.new(m).hexdigest(),16)
    if type(m) is int or type(m) is sage.rings.integer.Integer:
        return int(SHA256.new(listToString(intToList(m))).hexdigest(),16)
    if not(type(m) is list):
        raise TypeError
    """ return value is (large) integer """
    return int(SHA256.new(listToString(m)).hexdigest(),16)

## HMAC (using SHA256) 

In [11]:
def hmac_sha256(k,m):
    opad = list((0x5c) for _ in range(64))
    ipad = list((0x36) for _ in range(64))
    
    if type(k) is int or type(k) is Integer:
        key_l = intToList(k)
        if(len(key_l)>64):
            key_l = intToList(sha256(key_l))
            zeros = intToListOfLenght(0,32)
            key_l = key_l+zeros
        else:
            zeros = intToListOfLenght(0,64-len(key_l))
            key_l = key_l+zeros
    else:
        if type(k) is str:
            key_l = strToList(k)
            if(len(key_l)>64):
                key_l = intToList(sha256(key_l))
                zeros = intToListOfLenght(0,32)
                key_l = key_l+zeros
            else:
                zeros = intToListOfLenght(0,64-len(k))
                key_l = key_l+zeros           
    if type(m) is int or type(m) is Integer:
        m_list = intToList(m)
    else:
        print(m)
        m_list = strToList(m)
    
    r1 = list_xor(key_l,opad)
    r2 = list_xor(key_l,ipad)
    
    m1 = r2+m_list
    m2 = intToList(sha256(m1))
    m3 = r1 + m2
    m4 = sha256(m3)

    return int(m4)

## Testing 

First a quick check that our hmac_sha256 yields the same as the built-in hmac function.

In [12]:
hex(hmac_sha256("key", "The quick brown fox jumps over the lazy dog"))

The quick brown fox jumps over the lazy dog


'0xf7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8L'

In [13]:
hmac.new("key", "The quick brown fox jumps over the lazy dog", hashlib.sha256).hexdigest()

'f7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8'

### Test Suite

Here's a complete set of test cases...

In [15]:
    # Wikipedia's test case #1
    assert hmac_sha256("","") == 0xb613679a0814d9ec772f95d778c35fc5ff1697c493715653c6c712144292c5ad
     
    # Wikipedia's test case #2
    assert hmac_sha256("key", "The quick brown fox jumps over the lazy dog") == \
           0xf7bc83f430538424b13298e6aa6fb143ef4d59a14946175997479dbc2d1a3cd8
     
    # RFC 4231 - Identifiers and Test Vectors for HMAC-SHA-224, HMAC-SHA-256,
    # HMAC-SHA-384, and HMAC-SHA-512
     
    # RFC 4231 Test case 1
    Key1 = 0x0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b0b
    Data1 = 0x4869205468657265
    HMAC1 = 0xb0344c61d8db38535ca8afceaf0bf12b881dc200c9833da726e9376c2e32cff7  
    assert hmac_sha256(Key1,Data1) == HMAC1      
 
    # RFC 4231 Test case 2
    Key2 = 0x4a656665
    Data2 = 0x7768617420646f2079612077616e7420666f72206e6f7468696e673f
    HMAC2 = 0x5bdcc146bf60754e6a042426089575c75a003f089d2739839dec58b964ec3843
    assert hmac_sha256(Key2,Data2) == HMAC2
     
    # RFC 4231 Test case 3    
    Key3 = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
    Data3 = 0xdddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddddd
    HMAC3 = 0x773ea91e36800e46854db8ebd09181a72959098b3ef8c122d9635514ced565fe
    assert hmac_sha256(Key3,Data3) == HMAC3
 
    # RFC 4231 Test case 4
    Key4 = 0x0102030405060708090a0b0c0d0e0f10111213141516171819
    Data4 = 0xcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcdcd
    HMAC4 = 0x82558a389a443c0ea4cc819899f2083a85f0faa3e578f8077a2e3ff46729665b
    assert hmac_sha256(Key4,Data4) == HMAC4
 
    # RFC 4231 Test case 5
    Key5 = 0x0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c0c
    Data5 = 0x546573742057697468205472756e636174696f6e
    HMAC5 = 0xa3b6167473100ee06e0c796c2955552b
    assert hmac_sha256(Key5,Data5)>>128 == HMAC5
 
    # RFC 4231 Test case 6
    Key6 = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
    Data6 = 0x54657374205573696e67204c6172676572205468616e20426c6f636b2d53697a65204b6579202d2048617368204b6579204669727374
    HMAC6 = 0x60e431591ee0b67f0d8a26aacbf5b77f8e0bc6213728c5140546040f0ee37f54
    assert hmac_sha256(Key6,Data6) == HMAC6
 
    # RFC 4231 Test case 7    
    Key7 = 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
    Data7 = 0x5468697320697320612074657374207573696e672061206c6172676572207468616e20626c6f636b2d73697a65206b657920616e642061206c6172676572207468616e20626c6f636b2d73697a6520646174612e20546865206b6579206e6565647320746f20626520686173686564206265666f7265206265696e6720757365642062792074686520484d414320616c676f726974686d2e
    HMAC7 = 0x9b09ffa71b942fcb27635fbcd5b0e944bfdc63644f0713938a7f51535c3a35e2
    assert hmac_sha256(Key7,Data7) == HMAC7
 
    print("Ok!")


The quick brown fox jumps over the lazy dog
Ok!
