SHA-1 algorithm. More...

#include <stdint.h>
#include <ipxe/crypto.h>

Data Structures
struct	sha1_digest
	An SHA-1 digest. More...
union	sha1_block
	An SHA-1 data block. More...
struct	sha1_digest_data
	SHA-1 digest and data block. More...
union	sha1_digest_data_dwords
	SHA-1 digest and data block. More...
struct	sha1_context
	An SHA-1 context. More...

Macros
#define	SHA1_CTX_SIZE sizeof ( struct sha1_context )
	SHA-1 context size.
#define	SHA1_BLOCK_SIZE sizeof ( union sha1_block )
	SHA-1 block size.
#define	SHA1_DIGEST_SIZE sizeof ( struct sha1_digest )
	SHA-1 digest size.

Functions
	FILE_LICENCE (GPL2_OR_LATER)
	FILE_SECBOOT (PERMITTED)
void	prf_sha1 (const void key, size_t key_len, const char label, const void data, size_t data_len, void prf, size_t prf_len)
	SHA1 pseudorandom function for creating derived keys.
void	pbkdf2_sha1 (const void passphrase, size_t pass_len, const void salt, size_t salt_len, int iterations, void *key, size_t key_len)
	PBKDF2 key derivation function using SHA1.

Variables
struct digest_algorithm	sha1_algorithm
	SHA-1 algorithm.

Detailed Description

SHA-1 algorithm.

Definition in file sha1.h.

Macro Definition Documentation

◆ SHA1_CTX_SIZE

#define SHA1_CTX_SIZE sizeof ( struct sha1_context )

SHA-1 context size.

Definition at line 67 of file sha1.h.

Referenced by ccmp_kie_mic(), ocsp_compare_responder_key_hash(), pbkdf2_sha1_f(), and prf_sha1().

◆ SHA1_BLOCK_SIZE

#define SHA1_BLOCK_SIZE sizeof ( union sha1_block )

SHA-1 block size.

Definition at line 70 of file sha1.h.

◆ SHA1_DIGEST_SIZE

#define SHA1_DIGEST_SIZE sizeof ( struct sha1_digest )

SHA-1 digest size.

Definition at line 73 of file sha1.h.

Function Documentation

◆ FILE_LICENCE()

FILE_LICENCE ( GPL2_OR_LATER )

◆ FILE_SECBOOT()

FILE_SECBOOT ( PERMITTED )

◆ prf_sha1()

void prf_sha1	(	const void *	key,
		size_t	key_len,
		const char *	label,
		const void *	data,
		size_t	data_len,
		void *	prf,
		size_t	prf_len )

extern

SHA1 pseudorandom function for creating derived keys.

Parameters

key	Master key with which this call is associated
key_len	Length of key
label	NUL-terminated ASCII string describing purpose of PRF data
data	Further data that should be included in the PRF
data_len	Length of further PRF data
prf_len	Bytes of PRF to generate

Return values

prf	Pseudorandom function bytes

This is the PRF variant used by 802.11, defined in IEEE 802.11-2007 8.5.5.1. EAP-FAST uses a different SHA1-based PRF, and TLS uses an MD5-based PRF.

Definition at line 44 of file sha1extra.c.

{
        u32 blk;
        u8 keym[key_len];     /* modifiable copy of key */
        u8 in[strlen ( label ) + 1 + data_len + 1]; /* message to HMAC */
        u8 *in_blknr;         /* pointer to last byte of in, block number */
        u8 out[SHA1_DIGEST_SIZE]; /* HMAC-SHA1 result */
        u8 ctx[SHA1_CTX_SIZE + SHA1_BLOCK_SIZE]; /* HMAC-SHA1 context */
        const size_t label_len = strlen ( label );
 
        /* The HMAC-SHA-1 is calculated using the given key on the
           message text `label', followed by a NUL, followed by one
           byte indicating the block number (0 for first). */
 
        memcpy ( keym, key, key_len );
 
        memcpy ( in, label, strlen ( label ) + 1 );
        memcpy ( in + label_len + 1, data, data_len );
        in_blknr = in + label_len + 1 + data_len;
 
        for ( blk = 0 ;; blk++ ) {
                *in_blknr = blk;
 
                hmac_init ( &sha1_algorithm, ctx, keym, key_len );
                hmac_update ( &sha1_algorithm, ctx, in, sizeof ( in ) );
                hmac_final ( &sha1_algorithm, ctx, out );
 
                if ( prf_len <= sizeof ( out ) ) {
                        memcpy ( prf, out, prf_len );
                        break;
                }
 
                memcpy ( prf, out, sizeof ( out ) );
                prf_len -= sizeof ( out );
                prf += sizeof ( out );
        }
}

References ctx, data, data_len, hmac_final(), hmac_init(), hmac_update(), in, key, memcpy(), out, sha1_algorithm, SHA1_BLOCK_SIZE, SHA1_CTX_SIZE, SHA1_DIGEST_SIZE, strlen(), u32, and u8.

Referenced by wpa_derive_ptk().

◆ pbkdf2_sha1()

void pbkdf2_sha1	(	const void *	passphrase,
		size_t	pass_len,
		const void *	salt,
		size_t	salt_len,
		int	iterations,
		void *	key,
		size_t	key_len )

extern

PBKDF2 key derivation function using SHA1.

Parameters

passphrase	Passphrase from which to derive key
pass_len	Length of passphrase
salt	Salt to include in key
salt_len	Length of salt
iterations	Number of iterations of SHA1 to perform
key_len	Length of key to generate

Return values

key	Generated key bytes

This is used most notably in 802.11 WPA passphrase hashing, in which case the salt is the SSID, 4096 iterations are used, and a 32-byte key is generated that serves as the Pairwise Master Key for EAPOL authentication.

The operation of this function is further described in RFC 2898.

Definition at line 148 of file sha1extra.c.

{
        u32 blocks = ( key_len + SHA1_DIGEST_SIZE - 1 ) / SHA1_DIGEST_SIZE;
        u32 blk;
        u8 buf[SHA1_DIGEST_SIZE];
 
        for ( blk = 1; blk <= blocks; blk++ ) {
                pbkdf2_sha1_f ( passphrase, pass_len, salt, salt_len,
                                iterations, blk, buf );
                if ( key_len <= sizeof ( buf ) ) {
                        memcpy ( key, buf, key_len );
                        break;
                }
 
                memcpy ( key, buf, sizeof ( buf ) );
                key_len -= sizeof ( buf );
                key += sizeof ( buf );
        }
}

References key, memcpy(), pbkdf2_sha1_f(), SHA1_DIGEST_SIZE, u32, and u8.

Referenced by wpa_psk_start().

Variable Documentation

◆ sha1_algorithm

struct digest_algorithm sha1_algorithm

extern

SHA-1 algorithm.

Definition at line 258 of file sha1.c.

                                         {
        .name           = "sha1",
        .ctxsize        = sizeof ( struct sha1_context ),
        .blocksize      = sizeof ( union sha1_block ),
        .digestsize   = sizeof ( struct sha1_digest ),
        .init           = sha1_init,
        .update         = sha1_update,
        .final          = sha1_final,
};

Data Structures

Macros

Functions

Variables

Detailed Description

Macro Definition Documentation

◆ SHA1_CTX_SIZE

◆ SHA1_BLOCK_SIZE

◆ SHA1_DIGEST_SIZE

Function Documentation

◆ FILE_LICENCE()

◆ FILE_SECBOOT()

◆ prf_sha1()

◆ pbkdf2_sha1()

Variable Documentation

◆ sha1_algorithm