ccfelius · ccfelius · Nov 19, 2024 · Nov 19, 2024
diff --git a/src/core/crypto/CMakeLists.txt b/src/core/crypto/CMakeLists.txt
@@ -2,4 +2,4 @@ set(EXTENSION_SOURCES
         ${EXTENSION_SOURCES}
         ${CMAKE_CURRENT_SOURCE_DIR}/crypto_primitives.cpp
         PARENT_SCOPE
-)
+)
diff --git a/src/core/crypto/crypto_primitives.cpp b/src/core/crypto/crypto_primitives.cpp
@@ -4,10 +4,15 @@
 #include "duckdb/common/common.hpp"
 #include <stdio.h>
 
+// todo; use httplib for windows compatibility
+//#define CPPHTTPLIB_OPENSSL_SUPPORT
+//#include "duckdb/third_party/httplib/httplib.hpp"
+
 // OpenSSL functions
 #include <openssl/err.h>
 #include <openssl/evp.h>
 #include <openssl/rand.h>
+#include <openssl/hmac.h>
 
 namespace duckdb {
 
@@ -51,7 +56,7 @@
      throw InternalException("Invalid AES key length");
    }
  }
 }

 AESStateSSL::AESStateSSL() : context(EVP_CIPHER_CTX_new()) {
  if (!(context)) {
@@ -180,7 +185,7 @@
    throw InvalidInputException("Computed AES tag differs from read AES tag, "
                                "are you using the right key?");
  }
 }

 } // namespace duckdb

@@ -190,4 +195,34 @@
 DUCKDB_EXTENSION_API AESStateSSLFactory *CreateSSLFactory() {
   return new AESStateSSLFactory();
 };
+}
+
+namespace simple_encryption {
+
+namespace core {
+
+std::string CalculateHMAC(const std::string &secret, const std::string &message, const uint32_t length) {
+  const EVP_MD *algorithm = EVP_sha256(); // Replace with EVP_sha1(), EVP_md5(), etc., if needed.
+  unsigned char key_buffer[32];
+
+  // Output buffer and length
+  unsigned char hmacResult[EVP_MAX_MD_SIZE];
+  unsigned int hmacLength = 0;
+
+  // Compute the HMAC
+  HMAC(algorithm,
+       secret.data(), secret.size(),                // Key
+       reinterpret_cast<const unsigned char*>(message.data()), message.size(), // Message
+       hmacResult, &hmacLength);
+
+  // Copy the desired number of bytes
+  memcpy(key_buffer, hmacResult, length);
+
+  // convert to string
+  std::string result_key(reinterpret_cast<const char*>(key_buffer), length);
+
+  return result_key;
+}
+
+}
 }
diff --git a/src/core/functions/function_data/encrypt_function_data.cpp b/src/core/functions/function_data/encrypt_function_data.cpp
@@ -23,7 +23,6 @@ EncryptFunctionData::EncryptBind(ClientContext &context,
                                  vector<unique_ptr<Expression>> &arguments) {
   // here, implement bound statements?
 
-  // do something
   return make_uniq<EncryptFunctionData>(context);
 }
 } // namespace core