lib: sha256: add feature sha256_hmac

Adds the support of the hmac based on sha256. This implementation is based on rfc2104. Signed-off-by: Philippe Reynes <philippe.reynes@softathome.com> Reviewed-by: Raymond Mao <raymond.mao@linaro.org>
author: Philippe Reynes <philippe.reynes@softathome.com> 2024-12-19 14:05:50 +0100
committer: Tom Rini <trini@konsulko.com> 2025-01-18 17:12:47 -0600
commit: e364a9148f0adecf32628c16b1571dd729b45358 (patch)
tree: a218968fa263d5d460a9700a195066c029c0e2df /lib/mbedtls/sha256.c
parent: ccc5e166836c2fa204a58fe9ac87c5fce72b5e7b (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/lib/mbedtls/sha256.c b/lib/mbedtls/sha256.c
index 2128e598834..7d456a82017 100644
--- a/lib/mbedtls/sha256.c
+++ b/lib/mbedtls/sha256.c
@@ -10,6 +10,8 @@
 #endif /* USE_HOSTCC */
 #include <u-boot/sha256.h>
 
+#include <mbedtls/md.h>
+
 const u8 sha256_der_prefix[SHA256_DER_LEN] = {
 	0x30, 0x31, 0x30, 0x0d, 0x06, 0x09, 0x60, 0x86,
 	0x48, 0x01, 0x65, 0x03, 0x04, 0x02, 0x01, 0x05,
@@ -33,3 +35,16 @@ void sha256_finish(sha256_context *ctx, uint8_t digest[SHA256_SUM_LEN])
 	mbedtls_sha256_finish(ctx, digest);
 	mbedtls_sha256_free(ctx);
 }
+
+int sha256_hmac(const unsigned char *key, int keylen,
+		const unsigned char *input, unsigned int ilen,
+		unsigned char *output)
+{
+	const mbedtls_md_info_t *md;
+
+	md = mbedtls_md_info_from_type(MBEDTLS_MD_SHA256);
+	if (!md)
+		return MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE;
+
+	return mbedtls_md_hmac(md, key, keylen, input, ilen, output);
+}
author	Philippe Reynes <philippe.reynes@softathome.com>	2024-12-19 14:05:50 +0100
committer	Tom Rini <trini@konsulko.com>	2025-01-18 17:12:47 -0600
commit	e364a9148f0adecf32628c16b1571dd729b45358 (patch)
tree	a218968fa263d5d460a9700a195066c029c0e2df /lib/mbedtls/sha256.c
parent	ccc5e166836c2fa204a58fe9ac87c5fce72b5e7b (diff)