Mercurial > 510Connectbot

view app/src/main/java/ch/ethz/ssh2/crypto/digest/MAC.java @ 510:7953570e5210

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
update to ganymed-ssh2 tag 263 and fix hmac-sha2-512
author Carl Byington <carl@five-ten-sg.com>
date Wed, 01 Feb 2023 17:55:29 -0700
parents d29cce60f393
children
line wrap: on
line source

/*
 * Copyright (c) 2006-2011 Christian Plattner. All rights reserved.
 * Please refer to the LICENSE.txt for licensing details.
 */
package ch.ethz.ssh2.crypto.digest;

import java.io.IOException;
import java.security.DigestException;

/**
 * MAC.
 *
 * @author Christian Plattner
 * @version 2.50, 03/15/10
 */
public final class MAC {
    private Digest mac;
    private int size;

    public static String[] getMacList() {
        // Higher priority (stronger) first. Added SHA-2 algorithms as in RFC 6668
        return new String[] {
                             "hmac-sha2-512",
                             "hmac-sha2-256",
                             "hmac-sha1",
                             "hmac-sha1-96",
                             "hmac-md5",
                             "hmac-md5-96"
                             };
    }

    public static void checkMacList(final String[] macs) {
        for (String m : macs) {
            getKeyLen(m);
        }
    }

    public static int getKeyLen(final String type) {
        if (type.equals("hmac-sha2-512")) return 64;
        if (type.equals("hmac-sha2-256")) return 32;
        if (type.equals("hmac-sha1"))     return 20;
        if (type.equals("hmac-sha1-96"))  return 20;
        if (type.equals("hmac-md5"))      return 16;
        if (type.equals("hmac-md5-96"))   return 16;
        throw new IllegalArgumentException(String.format("Unknown algorithm %s", type));
    }

    public MAC(final String type, final byte[] key) throws DigestException {
        if (type.equals("hmac-sha2-512")) {
            mac = new HMAC(new SHA512(), key, 64, 128);
        }
        else if (type.equals("hmac-sha2-256")) {
            mac = new HMAC(new SHA256(), key, 32, 64);
        }
        else if (type.equals("hmac-sha1")) {
            mac = new HMAC(new SHA1(), key, 20, 64);
        }
        else if (type.equals("hmac-sha1-96")) {
            mac = new HMAC(new SHA1(), key, 12, 64);
        }
        else if (type.equals("hmac-md5")) {
            mac = new HMAC(new MD5(), key, 16, 64);
        }
        else if (type.equals("hmac-md5-96")) {
            mac = new HMAC(new MD5(), key, 12, 64);
        }
        else {
            throw new IllegalArgumentException(String.format("Unknown algorithm %s", type));
        }

        size = mac.getDigestLength();
    }

    public final void initMac(final int seq) {
        mac.reset();
        mac.update((byte)(seq >> 24));
        mac.update((byte)(seq >> 16));
        mac.update((byte)(seq >> 8));
        mac.update((byte)(seq));
    }

    public final void update(byte[] packetdata, int off, int len) {
        mac.update(packetdata, off, len);
    }

    public final void getMac(byte[] out, int off) throws IOException {
        try {
            mac.digest(out, off);
        }
        catch (DigestException e) {
            throw new IOException(e);
        }
    }

    public final int size() {
        return size;
    }
}