CryptHmacSha256.c

Timestamp:

Aug 12, 2020 4:09:12 PM (4 years ago)

Author:

vboxsync

Message:

Devices/EFI: Merge edk-stable202005 and make it build, bugref:4643

Location:

trunk/src/VBox/Devices/EFI/FirmwareNew

Files:

: 2 edited

. (modified) (1 prop)
CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c (modified) (6 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/src/VBox/Devices/EFI/FirmwareNew
- Property svn:mergeinfo changed from (toggle deleted branches)
  /vendor/edk2/current 103735-103757,103769-103776,129194-133213
  to (toggle deleted branches)
  /vendor/edk2/current 103735-103757,103769-103776,129194-139864

trunk/src/VBox/Devices/EFI/FirmwareNew/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c

-              r80721
+              r85718
   HMAC-SHA256 Wrapper Implementation over OpenSSL.
 Copyright (c) 2016 - 2017, Intel Corporation. All rights reserved.<BR>
+Copyright (c) 2016 - 2020, Intel Corporation. All rights reserved.<BR>
 SPDX-License-Identifier: BSD-2-Clause-Patent
 …
 #include <openssl/hmac.h>
-//
-// NOTE: OpenSSL redefines the size of HMAC_CTX at crypto/hmac/hmac_lcl.h
-//       #define HMAC_MAX_MD_CBLOCK_SIZE     144
-//
-#define HMAC_SHA256_CTX_SIZE    (sizeof(void *) * 4 + sizeof(unsigned int) + \
-                             sizeof(unsigned char) * 144)
-/**
-  Retrieves the size, in bytes, of the context buffer required for HMAC-SHA256 operations.
-  (NOTE: This API is deprecated.
-         Use HmacSha256New() / HmacSha256Free() for HMAC-SHA256 Context operations.)
-  @return  The size, in bytes, of the context buffer required for HMAC-SHA256 operations.
-**/
-UINTN
-EFIAPI
-HmacSha256GetContextSize (
-  VOID
+  )
+{
-  //
-  // Retrieves the OpenSSL HMAC-SHA256 Context Size
-  // NOTE: HMAC_CTX object was made opaque in openssl-1.1.x, here we just use the
-  //       fixed size as a workaround to make this API work for compatibility.
-  //       We should retire HmacSha256GetContextSize() in future, and use HmacSha256New()
-  //       and HmacSha256Free() for context allocation and release.
-  //
-  return (UINTN)HMAC_SHA256_CTX_SIZE;
+}
 /**
   Allocates and initializes one HMAC_CTX context for subsequent HMAC-SHA256 use.
 …
 /**
   Initializes user-supplied memory pointed by HmacSha256Context as HMAC-SHA256 context for
   subsequent use.
   If HmacSha256Context is NULL, then return FALSE.
   @param[out]  HmacSha256Context  Pointer to HMAC-SHA256 context being initialized.
+  Set user-supplied key for subsequent use. It must be done before any
+  calling to HmacSha256Update().
+  If HmacSha256Context is NULL, then return FALSE.
+  @param[out]  HmacSha256Context  Pointer to HMAC-SHA256 context.
   @param[in]   Key                Pointer to the user-supplied key.
   @param[in]   KeySize            Key size in bytes.
   @retval TRUE   HMAC-SHA256 context initialization succeeded.
   @retval FALSE  HMAC-SHA256 context initialization failed.
 **/
 BOOLEAN
 EFIAPI
 HmacSha256Init (
+  @retval TRUE   The Key is set successfully.
+  @retval FALSE  The Key is set unsuccessfully.
+**/
+BOOLEAN
+EFIAPI
+HmacSha256SetKey (
   OUT  VOID         *HmacSha256Context,
   IN   CONST UINT8  *Key,
 …
+  }
-  //
-  // OpenSSL HMAC-SHA256 Context Initialization
-  //
-  memset(HmacSha256Context, 0, HMAC_SHA256_CTX_SIZE);
-  if (HMAC_CTX_reset ((HMAC_CTX *)HmacSha256Context) != 1) {
-    return FALSE;
+  }
   if (HMAC_Init_ex ((HMAC_CTX *)HmacSha256Context, Key, (UINT32) KeySize, EVP_sha256(), NULL) != 1) {
     return FALSE;
 …
   This function performs HMAC-SHA256 digest on a data buffer of the specified size.
   It can be called multiple times to compute the digest of long or discontinuous data streams.
   HMAC-SHA256 context should be already correctly initialized by HmacSha256Init(), and should not
   be finalized by HmacSha256Final(). Behavior with invalid context is undefined.
+  HMAC-SHA256 context should be initialized by HmacSha256New(), and should not be finalized
+  by HmacSha256Final(). Behavior with invalid context is undefined.
   If HmacSha256Context is NULL, then return FALSE.
 …
   the specified memory. After this function has been called, the HMAC-SHA256 context cannot
   be used again.
   HMAC-SHA256 context should be already correctly initialized by HmacSha256Init(), and should
   not be finalized by HmacSha256Final(). Behavior with invalid HMAC-SHA256 context is undefined.
+  HMAC-SHA256 context should be initialized by HmacSha256New(), and should not be finalized
+  by HmacSha256Final(). Behavior with invalid HMAC-SHA256 context is undefined.
   If HmacSha256Context is NULL, then return FALSE.

Note: See TracChangeset for help on using the changeset viewer.

Changeset 85718 in vbox for trunk/src/VBox/Devices/EFI/FirmwareNew/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c

Legend:

trunk/src/VBox/Devices/EFI/FirmwareNew

trunk/src/VBox/Devices/EFI/FirmwareNew/CryptoPkg/Library/BaseCryptLib/Hmac/CryptHmacSha256.c

Download in other formats: