*
* @param data chunk of data to authenticate
* @param out pointer where the generated bytes will be written
+ * @return TRUE if mac generated successfully
*/
- void (*get_mac)(mac_t *this, chunk_t data, u_int8_t *out);
+ __attribute__((warn_unused_result))
+ bool (*get_mac)(mac_t *this, chunk_t data, u_int8_t *out);
/**
* Get the size of the resulting MAC.
METHOD(prf_t, get_bytes, bool,
private_prf_t *this, chunk_t seed, u_int8_t *buffer)
{
- this->mac->get_mac(this->mac, seed, buffer);
- return TRUE;
+ return this->mac->get_mac(this->mac, seed, buffer);
}
METHOD(prf_t, allocate_bytes, bool,
private_prf_t *this, chunk_t seed, chunk_t *chunk)
{
- if (!chunk)
- {
- this->mac->get_mac(this->mac, seed, NULL);
- }
- else
+ if (chunk)
{
*chunk = chunk_alloc(this->mac->get_mac_size(this->mac));
- this->mac->get_mac(this->mac, seed, chunk->ptr);
+ return this->mac->get_mac(this->mac, seed, chunk->ptr);
}
- return TRUE;
+ return this->mac->get_mac(this->mac, seed, NULL);
}
METHOD(prf_t, get_block_size, size_t,
METHOD(signer_t, get_signature, bool,
private_signer_t *this, chunk_t data, u_int8_t *buffer)
{
- if (buffer == NULL)
- {
- this->mac->get_mac(this->mac, data, NULL);
- }
- else
+ if (buffer)
{
u_int8_t mac[this->mac->get_mac_size(this->mac)];
- this->mac->get_mac(this->mac, data, mac);
+ if (!this->mac->get_mac(this->mac, data, mac))
+ {
+ return FALSE;
+ }
memcpy(buffer, mac, this->truncation);
+ return TRUE;
}
- return TRUE;
+ return this->mac->get_mac(this->mac, data, NULL);
}
METHOD(signer_t, allocate_signature, bool,
private_signer_t *this, chunk_t data, chunk_t *chunk)
{
- if (chunk == NULL)
- {
- this->mac->get_mac(this->mac, data, NULL);
- }
- else
+ if (chunk)
{
u_int8_t mac[this->mac->get_mac_size(this->mac)];
- this->mac->get_mac(this->mac, data, mac);
-
+ if (!this->mac->get_mac(this->mac, data, mac))
+ {
+ return FALSE;
+ }
*chunk = chunk_alloc(this->truncation);
memcpy(chunk->ptr, mac, this->truncation);
+ return TRUE;
}
- return TRUE;
+ return this->mac->get_mac(this->mac, data, NULL);
}
METHOD(signer_t, verify_signature, bool,
{
return FALSE;
}
- this->mac->get_mac(this->mac, data, mac);
- return memeq(signature.ptr, mac, this->truncation);
+ return this->mac->get_mac(this->mac, data, mac) &&
+ memeq(signature.ptr, mac, this->truncation);
}
METHOD(signer_t, get_key_size, size_t,
this->remaining_bytes = 0;
}
-METHOD(mac_t, get_mac, void,
+METHOD(mac_t, get_mac, bool,
private_mac_t *this, chunk_t data, u_int8_t *out)
{
/* update T, do not process last block */
{ /* if not in append mode, process last block and output result */
final(this, out);
}
+ return TRUE;
}
METHOD(mac_t, get_mac_size, size_t,
chunk_t ipaded_key;
};
-METHOD(mac_t, get_mac, void,
+METHOD(mac_t, get_mac, bool,
private_mac_t *this, chunk_t data, u_int8_t *out)
{
/* H(K XOR opad, H(K XOR ipad, text))
/* reinit for next call */
this->h->get_hash(this->h, this->ipaded_key, NULL);
}
+ return TRUE;
}
METHOD(mac_t, get_mac_size, size_t,
/**
* Resets HMAC context
*/
-static void reset(private_mac_t *this)
+static bool reset(private_mac_t *this)
{
- HMAC_Init_ex(&this->hmac, this->key.ptr, this->key.len, this->hasher, NULL);
+ return HMAC_Init_ex(&this->hmac, this->key.ptr, this->key.len,
+ this->hasher, NULL);
}
-METHOD(mac_t, get_mac, void,
+METHOD(mac_t, get_mac, bool,
private_mac_t *this, chunk_t data, u_int8_t *out)
{
if (out == NULL)
{
- HMAC_Update(&this->hmac, data.ptr, data.len);
- }
- else
- {
- HMAC_Update(&this->hmac, data.ptr, data.len);
- HMAC_Final(&this->hmac, out, NULL);
- reset(this);
+ return HMAC_Update(&this->hmac, data.ptr, data.len);
}
+ return HMAC_Update(&this->hmac, data.ptr, data.len) &&
+ HMAC_Final(&this->hmac, out, NULL) &&
+ reset(this);
}
METHOD(mac_t, get_mac_size, size_t,
this->zero = TRUE;
}
-METHOD(mac_t, get_mac, void,
+METHOD(mac_t, get_mac, bool,
private_mac_t *this, chunk_t data, u_int8_t *out)
{
/* update E, do not process last block */
{ /* if not in append mode, process last block and output result */
final(this, out);
}
+ return TRUE;
}
METHOD(mac_t, get_mac_size, size_t,
return mac_signer_create(xcbc, trunc);
}
return NULL;
-}
\ No newline at end of file
+}
projects / thirdparty / strongswan.git / commitdiff
