Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / phosphor-net-ipmid / 7b98c0725eec2a09bf65ee1e78839fc2c4a3da03 / . / integrity_algo.cpp
blob: bac87d70e07961779ffd23b80c9f94d298e4ccac [file] [log] [blame]
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]1#include "integrity_algo.hpp"
2
3#include "message_parsers.hpp"
4
Vernon Mauery9b307be2017-11-22 09:28:16 -0800[diff] [blame]5#include <openssl/evp.h>
Tom Joseph77531db2017-01-10 15:44:44 +0530[diff] [blame]6#include <openssl/hmac.h>
7#include <openssl/sha.h>
Tom Joseph77531db2017-01-10 15:44:44 +0530[diff] [blame]8
9namespace cipher
10{
11
12namespace integrity
13{
14
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]15AlgoSHA1::AlgoSHA1(const std::vector<uint8_t>& sik) :
16 Interface(SHA1_96_AUTHCODE_LENGTH)
Tom Joseph77531db2017-01-10 15:44:44 +0530[diff] [blame]17{
Vernon Mauery9b307be2017-11-22 09:28:16 -0800[diff] [blame]18 k1 = generateKn(sik, rmcp::const_1);
Tom Joseph77531db2017-01-10 15:44:44 +0530[diff] [blame]19}
20
Vernon Mauery70fd29c2017-11-30 13:11:43 -0800[diff] [blame]21std::vector<uint8_t> AlgoSHA1::generateHMAC(const uint8_t* input,
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]22 const size_t len) const
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]23{
Vernon Mauery70fd29c2017-11-30 13:11:43 -0800[diff] [blame]24 std::vector<uint8_t> output(SHA_DIGEST_LENGTH);
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]25 unsigned int mdLen = 0;
26
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]27 if (HMAC(EVP_sha1(), k1.data(), k1.size(), input, len, output.data(),
28 &mdLen) == NULL)
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]29 {
30 throw std::runtime_error("Generating integrity data failed");
31 }
32
33 // HMAC generates Message Digest to the size of SHA_DIGEST_LENGTH, the
34 // AuthCode field length is based on the integrity algorithm. So we are
35 // interested only in the AuthCode field length of the generated Message
36 // digest.
37 output.resize(authCodeLength);
38
39 return output;
40}
41
Vernon Mauery70fd29c2017-11-30 13:11:43 -0800[diff] [blame]42bool AlgoSHA1::verifyIntegrityData(
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]43 const std::vector<uint8_t>& packet, const size_t length,
44 std::vector<uint8_t>::const_iterator integrityData) const
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]45{
46
47 auto output = generateHMAC(
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]48 packet.data() + message::parser::RMCP_SESSION_HEADER_SIZE, length);
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]49
50 // Verify if the generated integrity data for the packet and the received
51 // integrity data matches.
52 return (std::equal(output.begin(), output.end(), integrityData));
53}
54
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]55std::vector<uint8_t>
56 AlgoSHA1::generateIntegrityData(const std::vector<uint8_t>& packet) const
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]57{
58 return generateHMAC(
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]59 packet.data() + message::parser::RMCP_SESSION_HEADER_SIZE,
60 packet.size() - message::parser::RMCP_SESSION_HEADER_SIZE);
Tom Josephd212a6d2017-01-10 15:48:40 +0530[diff] [blame]61}
62
Vernon Mauery9b307be2017-11-22 09:28:16 -0800[diff] [blame]63std::vector<uint8_t> AlgoSHA1::generateKn(const std::vector<uint8_t>& sik,
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]64 const rmcp::Const_n& const_n) const
Vernon Mauery9b307be2017-11-22 09:28:16 -0800[diff] [blame]65{
66 unsigned int mdLen = 0;
67 std::vector<uint8_t> Kn(sik.size());
68
69 // Generated Kn for the integrity algorithm with the additional key keyed
70 // with SIK.
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]71 if (HMAC(EVP_sha1(), sik.data(), sik.size(), const_n.data(), const_n.size(),
72 Kn.data(), &mdLen) == NULL)
Vernon Mauery9b307be2017-11-22 09:28:16 -0800[diff] [blame]73 {
74 throw std::runtime_error("Generating KeyN for integrity "
75 "algorithm failed");
76 }
77 return Kn;
78}
79
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]80AlgoSHA256::AlgoSHA256(const std::vector<uint8_t>& sik) :
81 Interface(SHA256_128_AUTHCODE_LENGTH)
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]82{
83 k1 = generateKn(sik, rmcp::const_1);
84}
85
86std::vector<uint8_t> AlgoSHA256::generateHMAC(const uint8_t* input,
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]87 const size_t len) const
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]88{
89 std::vector<uint8_t> output(SHA256_DIGEST_LENGTH);
90 unsigned int mdLen = 0;
91
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]92 if (HMAC(EVP_sha256(), k1.data(), k1.size(), input, len, output.data(),
93 &mdLen) == NULL)
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]94 {
95 throw std::runtime_error("Generating HMAC_SHA256_128 failed");
96 }
97
98 // HMAC generates Message Digest to the size of SHA256_DIGEST_LENGTH, the
99 // AuthCode field length is based on the integrity algorithm. So we are
100 // interested only in the AuthCode field length of the generated Message
101 // digest.
102 output.resize(authCodeLength);
103
104 return output;
105}
106
107bool AlgoSHA256::verifyIntegrityData(
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]108 const std::vector<uint8_t>& packet, const size_t length,
109 std::vector<uint8_t>::const_iterator integrityData) const
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]110{
111
112 auto output = generateHMAC(
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]113 packet.data() + message::parser::RMCP_SESSION_HEADER_SIZE, length);
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]114
115 // Verify if the generated integrity data for the packet and the received
116 // integrity data matches.
117 return (std::equal(output.begin(), output.end(), integrityData));
118}
119
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]120std::vector<uint8_t>
121 AlgoSHA256::generateIntegrityData(const std::vector<uint8_t>& packet) const
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]122{
123 return generateHMAC(
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]124 packet.data() + message::parser::RMCP_SESSION_HEADER_SIZE,
125 packet.size() - message::parser::RMCP_SESSION_HEADER_SIZE);
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]126}
127
128std::vector<uint8_t> AlgoSHA256::generateKn(const std::vector<uint8_t>& sik,
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]129 const rmcp::Const_n& const_n) const
Vernon Mauery7e9e2ef2017-11-29 08:36:29 -0800[diff] [blame]130{
131 unsigned int mdLen = 0;
132 std::vector<uint8_t> Kn(sik.size());
133
134 // Generated Kn for the integrity algorithm with the additional key keyed
135 // with SIK.
136 if (HMAC(EVP_sha256(), sik.data(), sik.size(), const_n.data(),
137 const_n.size(), Kn.data(), &mdLen) == NULL)
138 {
139 throw std::runtime_error("Generating KeyN for integrity "
140 "algorithm HMAC_SHA256 failed");
141 }
142 return Kn;
143}
144
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]145} // namespace integrity
Tom Joseph77531db2017-01-10 15:44:44 +0530[diff] [blame]146
Vernon Mauery9e801a22018-10-12 13:20:49 -0700[diff] [blame]147} // namespace cipher