/**************************************************************************** ** ** Copyright (C) 2013 Ruslan Nigmatullin ** Contact: http://www.qt-project.org/legal ** ** This file is part of the QtCore module of the Qt Toolkit. ** ** $QT_BEGIN_LICENSE:LGPL$ ** Commercial License Usage ** Licensees holding valid commercial Qt licenses may use this file in ** accordance with the commercial license agreement provided with the ** Software or, alternatively, in accordance with the terms contained in ** a written agreement between you and Digia. For licensing terms and ** conditions see http://qt.digia.com/licensing. For further information ** use the contact form at http://qt.digia.com/contact-us. ** ** GNU Lesser General Public License Usage ** Alternatively, this file may be used under the terms of the GNU Lesser ** General Public License version 2.1 as published by the Free Software ** Foundation and appearing in the file LICENSE.LGPL included in the ** packaging of this file. Please review the following information to ** ensure the GNU Lesser General Public License version 2.1 requirements ** will be met: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html. ** ** In addition, as a special exception, Digia gives you certain additional ** rights. These rights are described in the Digia Qt LGPL Exception ** version 1.1, included in the file LGPL_EXCEPTION.txt in this package. ** ** GNU General Public License Usage ** Alternatively, this file may be used under the terms of the GNU ** General Public License version 3.0 as published by the Free Software ** Foundation and appearing in the file LICENSE.GPL included in the ** packaging of this file. Please review the following information to ** ensure the GNU General Public License version 3.0 requirements will be ** met: http://www.gnu.org/copyleft/gpl.html. ** ** ** $QT_END_LICENSE$ ** ****************************************************************************/ #include "qmessageauthenticationcode.h" #include "qvarlengtharray.h" /* These #defines replace the typedefs needed by the RFC6234 code. Normally the typedefs would come from from stdint.h, but since this header is not available on all platforms (MSVC 2008, for example), we #define them to the Qt equivalents. */ #define uint64_t QT_PREPEND_NAMESPACE(quint64) #define uint32_t QT_PREPEND_NAMESPACE(quint32) #define uint8_t QT_PREPEND_NAMESPACE(quint8) #define int_least16_t QT_PREPEND_NAMESPACE(qint16) // Header from rfc6234 with 1 modification: // sha1.h - commented out '#include ' on line 74 #include "../../3rdparty/rfc6234/sha.h" #undef uint64_t #undef uint32_t #undef uint68_t #undef int_least16_t QT_BEGIN_NAMESPACE static int qt_hash_block_size(QCryptographicHash::Algorithm method) { switch (method) { case QCryptographicHash::Md4: return 64; case QCryptographicHash::Md5: return 64; case QCryptographicHash::Sha1: return SHA1_Message_Block_Size; case QCryptographicHash::Sha224: return SHA224_Message_Block_Size; case QCryptographicHash::Sha256: return SHA256_Message_Block_Size; case QCryptographicHash::Sha384: return SHA384_Message_Block_Size; case QCryptographicHash::Sha512: return SHA512_Message_Block_Size; case QCryptographicHash::Sha3_224: return 144; case QCryptographicHash::Sha3_256: return 136; case QCryptographicHash::Sha3_384: return 104; case QCryptographicHash::Sha3_512: return 72; } return 0; } class QMessageAuthenticationCodePrivate { public: QMessageAuthenticationCodePrivate(QCryptographicHash::Algorithm m) : messageHash(m), method(m), messageHashInited(false) { } QByteArray key; QByteArray result; QCryptographicHash messageHash; QCryptographicHash::Algorithm method; bool messageHashInited; void initMessageHash(); }; void QMessageAuthenticationCodePrivate::initMessageHash() { if (messageHashInited) return; messageHashInited = true; const int blockSize = qt_hash_block_size(method); if (key.size() > blockSize) { QCryptographicHash hash(method); hash.addData(key); key = hash.result(); hash.reset(); } if (key.size() < blockSize) { const int size = key.size(); key.resize(blockSize); memset(key.data() + size, 0, blockSize - size); } QVarLengthArray iKeyPad(blockSize); const char * const keyData = key.constData(); for (int i = 0; i < blockSize; ++i) iKeyPad[i] = keyData[i] ^ 0x36; messageHash.addData(iKeyPad.data(), iKeyPad.size()); } /*! \class QMessageAuthenticationCode \inmodule QtCore \brief The QMessageAuthenticationCode class provides a way to generate hash-based message authentication codes. \since 5.1 \ingroup tools \reentrant QMessageAuthenticationCode supports all cryptographic hashes which are supported by QCryptographicHash. To generate message authentication code, pass hash algorithm QCryptographicHash::Algorithm to constructor, then set key and message by setKey() and addData() functions. Result can be acquired by result() function. \snippet qmessageauthenticationcode/main.cpp 0 \dots \snippet qmessageauthenticationcode/main.cpp 1 Alternatively, this effect can be achieved by providing message, key and method to hash() method. \snippet qmessageauthenticationcode/main.cpp 2 \sa QCryptographicHash */ /*! Constructs an object that can be used to create a cryptographic hash from data using method \a method and key \a key. */ QMessageAuthenticationCode::QMessageAuthenticationCode(QCryptographicHash::Algorithm method, const QByteArray &key) : d(new QMessageAuthenticationCodePrivate(method)) { d->key = key; } /*! Destroys the object. */ QMessageAuthenticationCode::~QMessageAuthenticationCode() { delete d; } /*! Resets message data. Calling this method doesn't affect the key. */ void QMessageAuthenticationCode::reset() { d->result.clear(); d->messageHash.reset(); d->messageHashInited = false; } /*! Sets secret \a key. Calling this method automatically resets the object state. */ void QMessageAuthenticationCode::setKey(const QByteArray &key) { reset(); d->key = key; } /*! Adds the first \a length chars of \a data to the message. */ void QMessageAuthenticationCode::addData(const char *data, int length) { d->initMessageHash(); d->messageHash.addData(data, length); } /*! \overload addData() */ void QMessageAuthenticationCode::addData(const QByteArray &data) { d->initMessageHash(); d->messageHash.addData(data); } /*! Reads the data from the open QIODevice \a device until it ends and adds it to message. Returns true if reading was successful. \note \a device must be already opened. */ bool QMessageAuthenticationCode::addData(QIODevice *device) { d->initMessageHash(); return d->messageHash.addData(device); } /*! Returns the final authentication code. \sa QByteArray::toHex() */ QByteArray QMessageAuthenticationCode::result() const { if (!d->result.isEmpty()) return d->result; d->initMessageHash(); const int blockSize = qt_hash_block_size(d->method); QByteArray hashedMessage = d->messageHash.result(); QVarLengthArray oKeyPad(blockSize); const char * const keyData = d->key.constData(); for (int i = 0; i < blockSize; ++i) oKeyPad[i] = keyData[i] ^ 0x5c; QCryptographicHash hash(d->method); hash.addData(oKeyPad.data(), oKeyPad.size()); hash.addData(hashedMessage); d->result = hash.result(); return d->result; } /*! Returns the authentication code for the message \a message using the key \a key and the method \a method. */ QByteArray QMessageAuthenticationCode::hash(const QByteArray &message, const QByteArray &key, QCryptographicHash::Algorithm method) { QMessageAuthenticationCode mac(method); mac.setKey(key); mac.addData(message); return mac.result(); } QT_END_NAMESPACE