Merge pull request #228 from hanumantmk/fips

ajdavis · ajdavis · commit e63a531f8c94 · 2015-05-08T14:08:50.000-04:00
Avoid use of SHA1 for scram for FIPS
diff --git a/src/mongoc/mongoc-scram.c b/src/mongoc/mongoc-scram.c
@@ -303,6 +303,33 @@ _mongoc_scram_salt_password (mongoc_scram_t *scram,
 }
 
 
+static bool
+_mongoc_scram_sha1 (const unsigned char *input,
+                    const size_t         input_len,
+                    unsigned char       *output)
+{
+   EVP_MD_CTX digest_ctx;
+   bool rval = false;
+
+   EVP_MD_CTX_init (&digest_ctx);
+
+   if (1 != EVP_DigestInit_ex (&digest_ctx, EVP_sha1 (), NULL)) {
+      goto cleanup;
+   }
+
+   if (1 != EVP_DigestUpdate (&digest_ctx, input, input_len)) {
+      goto cleanup;
+   }
+
+   rval = (1 == EVP_DigestFinal_ex (&digest_ctx, output, NULL));
+
+cleanup:
+   EVP_MD_CTX_cleanup (&digest_ctx);
+
+   return rval;
+}
+
+
 static bool
 _mongoc_scram_generate_client_proof (mongoc_scram_t *scram,
                                      uint8_t        *outbuf,
@@ -327,7 +354,7 @@ _mongoc_scram_generate_client_proof (mongoc_scram_t *scram,
          &hash_len);
 
    /* StoredKey := H(client_key) */
-   SHA1 (client_key, MONGOC_SCRAM_HASH_SIZE, stored_key);
+   _mongoc_scram_sha1 (client_key, MONGOC_SCRAM_HASH_SIZE, stored_key);
 
    /* ClientSignature := HMAC(StoredKey, AuthMessage) */
    HMAC (EVP_sha1 (),
