/
kms_crypto_libcrypto.c
94 lines (79 loc) · 2.08 KB
/
kms_crypto_libcrypto.c
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
/*
* Copyright 2018-present MongoDB, Inc.
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include "kms_crypto.h"
#ifdef KMS_MESSAGE_ENABLE_CRYPTO_LIBCRYPTO
#include <openssl/sha.h>
#include <openssl/evp.h>
#include <openssl/hmac.h>
#if OPENSSL_VERSION_NUMBER < 0x10100000L || \
(defined(LIBRESSL_VERSION_NUMBER) && LIBRESSL_VERSION_NUMBER < 0x20700000L)
static EVP_MD_CTX *
EVP_MD_CTX_new (void)
{
return calloc (sizeof (EVP_MD_CTX), 1);
}
static void
EVP_MD_CTX_free (EVP_MD_CTX *ctx)
{
EVP_MD_CTX_cleanup (ctx);
free (ctx);
}
#endif
int
kms_crypto_init ()
{
return 0;
}
void
kms_crypto_cleanup ()
{
}
bool
kms_sha256 (void *unused_ctx,
const char *input,
size_t len,
unsigned char *hash_out)
{
EVP_MD_CTX *digest_ctxp = EVP_MD_CTX_new ();
bool rval = false;
if (1 != EVP_DigestInit_ex (digest_ctxp, EVP_sha256 (), NULL)) {
goto cleanup;
}
if (1 != EVP_DigestUpdate (digest_ctxp, input, len)) {
goto cleanup;
}
rval = (1 == EVP_DigestFinal_ex (digest_ctxp, hash_out, NULL));
cleanup:
EVP_MD_CTX_free (digest_ctxp);
return rval;
}
bool
kms_sha256_hmac (void *unused_ctx,
const char *key_input,
size_t key_len,
const char *input,
size_t len,
unsigned char *hash_out)
{
return HMAC (EVP_sha256 (),
key_input,
key_len,
(unsigned char *) input,
len,
hash_out,
NULL) != NULL;
}
#endif /* KMS_MESSAGE_ENABLE_CRYPTO_LIBCRYPTO */