ext-cryptopp/iterhash.cpp

// iterhash.cpp - written and placed in the public domain by Wei Dai

#ifndef __GNUC__
#define CRYPTOPP_MANUALLY_INSTANTIATE_TEMPLATES
#endif

#include "iterhash.h"
#include "misc.h"

NAMESPACE_BEGIN(CryptoPP)

template <class T, class BASE> void IteratedHashBase<T, BASE>::Update(const byte *input, size_t len)
{
	HashWordType oldCountLo = m_countLo, oldCountHi = m_countHi;
	if ((m_countLo = oldCountLo + HashWordType(len)) < oldCountLo)
		m_countHi++;             // carry from low to high
	m_countHi += (HashWordType)SafeRightShift<8*sizeof(HashWordType)>(len);
	if (m_countHi < oldCountHi || SafeRightShift<2*8*sizeof(HashWordType)>(len) != 0)
		throw HashInputTooLong(this->AlgorithmName());

	unsigned int blockSize = this->BlockSize();
	unsigned int num = ModPowerOf2(oldCountLo, blockSize);
	T* dataBuf = this->DataBuf();
	byte* data = (byte *)dataBuf;

	if (num != 0)	// process left over data
	{
		if (num+len >= blockSize)
		{
			if(data && input)
				memcpy(data+num, input, blockSize-num);

			HashBlock(dataBuf);
			input += (blockSize-num);
			len -= (blockSize-num);
			num = 0;
			// drop through and do the rest
		}
		else
		{
			if(data && input)
				memcpy(data+num, input, len);

			return;
		}
	}

	// now process the input data in blocks of blockSize bytes and save the leftovers to m_data
	if (len >= blockSize)
	{
		if (input == data)
		{
			assert(len == blockSize);
			HashBlock(dataBuf);
			return;
		}
		else if (IsAligned<T>(input))
		{
			size_t leftOver = HashMultipleBlocks((T *)input, len);
			input += (len - leftOver);
			len = leftOver;
		}
		else
			do
			{   // copy input first if it's not aligned correctly
				if(data && input)
					memcpy(data, input, blockSize);

				HashBlock(dataBuf);
				input+=blockSize;
				len-=blockSize;
			} while (len >= blockSize);
	}

	if (len && data != input)
		memcpy(data, input, len);
}

template <class T, class BASE> byte * IteratedHashBase<T, BASE>::CreateUpdateSpace(size_t &size)
{
	unsigned int blockSize = this->BlockSize();
	unsigned int num = ModPowerOf2(m_countLo, blockSize);
	size = blockSize - num;
	return (byte *)DataBuf() + num;
}

template <class T, class BASE> size_t IteratedHashBase<T, BASE>::HashMultipleBlocks(const T *input, size_t length)
{
	unsigned int blockSize = this->BlockSize();
	bool noReverse = NativeByteOrderIs(this->GetByteOrder());
	T* dataBuf = this->DataBuf();
	do
	{
		if (noReverse)
			this->HashEndianCorrectedBlock(input);
		else
		{
			ByteReverse(dataBuf, input, this->BlockSize());
			this->HashEndianCorrectedBlock(dataBuf);
		}

		input += blockSize/sizeof(T);
		length -= blockSize;
	}
	while (length >= blockSize);
	return length;
}

template <class T, class BASE> void IteratedHashBase<T, BASE>::PadLastBlock(unsigned int lastBlockSize, byte padFirst)
{
	unsigned int blockSize = this->BlockSize();
	unsigned int num = ModPowerOf2(m_countLo, blockSize);
	T* dataBuf = this->DataBuf();
	byte* data = (byte *)dataBuf;
	data[num++] = padFirst;
	if (num <= lastBlockSize)
		memset(data+num, 0, lastBlockSize-num);
	else
	{
		memset(data+num, 0, blockSize-num);
		HashBlock(dataBuf);
		memset(data, 0, lastBlockSize);
	}
}

template <class T, class BASE> void IteratedHashBase<T, BASE>::Restart()
{
	m_countLo = m_countHi = 0;
	Init();
}

template <class T, class BASE> void IteratedHashBase<T, BASE>::TruncatedFinal(byte *digest, size_t size)
{
	this->ThrowIfInvalidTruncatedSize(size);

	T* dataBuf = this->DataBuf();
	T* stateBuf = this->StateBuf();
	unsigned int blockSize = this->BlockSize();
	ByteOrder order = this->GetByteOrder();

	PadLastBlock(blockSize - 2*sizeof(HashWordType));
	dataBuf[blockSize/sizeof(T)-2+order] = ConditionalByteReverse(order, this->GetBitCountLo());
	dataBuf[blockSize/sizeof(T)-1-order] = ConditionalByteReverse(order, this->GetBitCountHi());

	HashBlock(dataBuf);

	if (IsAligned<HashWordType>(digest) && size%sizeof(HashWordType)==0)
		ConditionalByteReverse<HashWordType>(order, (HashWordType *)digest, stateBuf, size);
	else
	{
		ConditionalByteReverse<HashWordType>(order, stateBuf, stateBuf, this->DigestSize());
		memcpy(digest, stateBuf, size);
	}

	this->Restart();		// reinit for next use
}

#ifdef __GNUC__
	template class IteratedHashBase<word64, HashTransformation>;
	template class IteratedHashBase<word64, MessageAuthenticationCode>;

	template class IteratedHashBase<word32, HashTransformation>;
	template class IteratedHashBase<word32, MessageAuthenticationCode>;
#endif

NAMESPACE_END
Initial revision 2002-10-04 17:31:41 +00:00			`// iterhash.cpp - written and placed in the public domain by Wei Dai`

fix compile with GCC 4.0.1 on MacOS X 64-bit 2008-12-22 06:55:08 +00:00			`#ifndef __GNUC__`
reduce executable size when only hash functions are used 2007-10-02 00:21:52 +00:00			`#define CRYPTOPP_MANUALLY_INSTANTIATE_TEMPLATES`
fix compile with GCC 4.0.1 on MacOS X 64-bit 2008-12-22 06:55:08 +00:00			`#endif`
update version number, port to Sun C++ 5.8 2006-12-18 02:34:33 +00:00
Initial revision 2002-10-04 17:31:41 +00:00			`#include "iterhash.h"`
			`#include "misc.h"`

			`NAMESPACE_BEGIN(CryptoPP)`

port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`template <class T, class BASE> void IteratedHashBase<T, BASE>::Update(const byte *input, size_t len)`
Initial revision 2002-10-04 17:31:41 +00:00			`{`
add SHA-224 2004-07-23 09:57:11 +00:00			`HashWordType oldCountLo = m_countLo, oldCountHi = m_countHi;`
port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`if ((m_countLo = oldCountLo + HashWordType(len)) < oldCountLo)`
various changes for 5.1 2003-03-20 01:24:12 +00:00			`m_countHi++; // carry from low to high`
port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`m_countHi += (HashWordType)SafeRightShift<8*sizeof(HashWordType)>(len);`
			`if (m_countHi < oldCountHi \|\| SafeRightShift<28sizeof(HashWordType)>(len) != 0)`
fix gcc 3.4.2 compile 2004-10-17 22:39:30 +00:00			`throw HashInputTooLong(this->AlgorithmName());`
Initial revision 2002-10-04 17:31:41 +00:00
optimizations 2007-04-16 00:33:09 +00:00			`unsigned int blockSize = this->BlockSize();`
add SHA-224 2004-07-23 09:57:11 +00:00			`unsigned int num = ModPowerOf2(oldCountLo, blockSize);`
optimizations 2007-04-16 00:33:09 +00:00			`T* dataBuf = this->DataBuf();`
			`byte* data = (byte *)dataBuf;`
Initial revision 2002-10-04 17:31:41 +00:00
various changes for 5.1 2003-03-20 01:24:12 +00:00			`if (num != 0) // process left over data`
Initial revision 2002-10-04 17:31:41 +00:00			`{`
changes for 5.6: - added AuthenticatedSymmetricCipher interface class and Filter wrappers - added CCM, GCM (with SSE2 assembly), CMAC, and SEED - improved AES speed on x86 and x64 - removed WORD64_AVAILABLE; compiler 64-bit int support is now required 2009-03-02 02:39:17 +00:00			`if (num+len >= blockSize)`
Initial revision 2002-10-04 17:31:41 +00:00			`{`
Cleared UBsan warnings under GCC 5.1 2015-07-17 11:13:23 +00:00			`if(data && input)`
			`memcpy(data+num, input, blockSize-num);`

optimizations 2007-04-16 00:33:09 +00:00			`HashBlock(dataBuf);`
Initial revision 2002-10-04 17:31:41 +00:00			`input += (blockSize-num);`
changes for 5.6: - added AuthenticatedSymmetricCipher interface class and Filter wrappers - added CCM, GCM (with SSE2 assembly), CMAC, and SEED - improved AES speed on x86 and x64 - removed WORD64_AVAILABLE; compiler 64-bit int support is now required 2009-03-02 02:39:17 +00:00			`len -= (blockSize-num);`
			`num = 0;`
Initial revision 2002-10-04 17:31:41 +00:00			`// drop through and do the rest`
			`}`
			`else`
			`{`
Cleared UBsan warnings under GCC 5.1 2015-07-17 11:13:23 +00:00			`if(data && input)`
			`memcpy(data+num, input, len);`

Initial revision 2002-10-04 17:31:41 +00:00			`return;`
			`}`
			`}`

various changes for 5.1 2003-03-20 01:24:12 +00:00			`// now process the input data in blocks of blockSize bytes and save the leftovers to m_data`
Initial revision 2002-10-04 17:31:41 +00:00			`if (len >= blockSize)`
			`{`
optimizations 2007-04-16 00:33:09 +00:00			`if (input == data)`
Initial revision 2002-10-04 17:31:41 +00:00			`{`
			`assert(len == blockSize);`
optimizations 2007-04-16 00:33:09 +00:00			`HashBlock(dataBuf);`
Initial revision 2002-10-04 17:31:41 +00:00			`return;`
			`}`
			`else if (IsAligned<T>(input))`
			`{`
port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`size_t leftOver = HashMultipleBlocks((T *)input, len);`
Initial revision 2002-10-04 17:31:41 +00:00			`input += (len - leftOver);`
			`len = leftOver;`
			`}`
			`else`
			`do`
			`{ // copy input first if it's not aligned correctly`
Cleared UBsan warnings under GCC 5.1 2015-07-17 11:13:23 +00:00			`if(data && input)`
			`memcpy(data, input, blockSize);`

optimizations 2007-04-16 00:33:09 +00:00			`HashBlock(dataBuf);`
Initial revision 2002-10-04 17:31:41 +00:00			`input+=blockSize;`
			`len-=blockSize;`
			`} while (len >= blockSize);`
			`}`

fix memcpy with same src and dest (Peter Klotz) 2010-08-03 20:28:10 +00:00			`if (len && data != input)`
			`memcpy(data, input, len);`
Initial revision 2002-10-04 17:31:41 +00:00			`}`

port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`template <class T, class BASE> byte * IteratedHashBase<T, BASE>::CreateUpdateSpace(size_t &size)`
Initial revision 2002-10-04 17:31:41 +00:00			`{`
optimizations 2007-04-16 00:33:09 +00:00			`unsigned int blockSize = this->BlockSize();`
Initial revision 2002-10-04 17:31:41 +00:00			`unsigned int num = ModPowerOf2(m_countLo, blockSize);`
			`size = blockSize - num;`
optimizations 2007-04-16 00:33:09 +00:00			`return (byte *)DataBuf() + num;`
Initial revision 2002-10-04 17:31:41 +00:00			`}`

port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`template <class T, class BASE> size_t IteratedHashBase<T, BASE>::HashMultipleBlocks(const T *input, size_t length)`
Initial revision 2002-10-04 17:31:41 +00:00			`{`
optimizations 2007-04-16 00:33:09 +00:00			`unsigned int blockSize = this->BlockSize();`
			`bool noReverse = NativeByteOrderIs(this->GetByteOrder());`
			`T* dataBuf = this->DataBuf();`
Initial revision 2002-10-04 17:31:41 +00:00			`do`
			`{`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00			`if (noReverse)`
optimizations 2007-04-16 00:33:09 +00:00			`this->HashEndianCorrectedBlock(input);`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00			`else`
			`{`
optimizations 2007-04-16 00:33:09 +00:00			`ByteReverse(dataBuf, input, this->BlockSize());`
			`this->HashEndianCorrectedBlock(dataBuf);`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00			`}`

Initial revision 2002-10-04 17:31:41 +00:00			`input += blockSize/sizeof(T);`
			`length -= blockSize;`
			`}`
			`while (length >= blockSize);`
			`return length;`
			`}`

			`template <class T, class BASE> void IteratedHashBase<T, BASE>::PadLastBlock(unsigned int lastBlockSize, byte padFirst)`
			`{`
optimizations 2007-04-16 00:33:09 +00:00			`unsigned int blockSize = this->BlockSize();`
Initial revision 2002-10-04 17:31:41 +00:00			`unsigned int num = ModPowerOf2(m_countLo, blockSize);`
optimizations 2007-04-16 00:33:09 +00:00			`T* dataBuf = this->DataBuf();`
			`byte* data = (byte *)dataBuf;`
			`data[num++] = padFirst;`
Initial revision 2002-10-04 17:31:41 +00:00			`if (num <= lastBlockSize)`
optimizations 2007-04-16 00:33:09 +00:00			`memset(data+num, 0, lastBlockSize-num);`
Initial revision 2002-10-04 17:31:41 +00:00			`else`
			`{`
optimizations 2007-04-16 00:33:09 +00:00			`memset(data+num, 0, blockSize-num);`
			`HashBlock(dataBuf);`
			`memset(data, 0, lastBlockSize);`
Initial revision 2002-10-04 17:31:41 +00:00			`}`
			`}`

			`template <class T, class BASE> void IteratedHashBase<T, BASE>::Restart()`
			`{`
			`m_countLo = m_countHi = 0;`
			`Init();`
			`}`

port to MSVC .NET 2005 beta 2 2005-07-12 04:23:32 +00:00			`template <class T, class BASE> void IteratedHashBase<T, BASE>::TruncatedFinal(byte *digest, size_t size)`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00			`{`
			`this->ThrowIfInvalidTruncatedSize(size);`

optimizations 2007-04-16 00:33:09 +00:00			`T* dataBuf = this->DataBuf();`
			`T* stateBuf = this->StateBuf();`
			`unsigned int blockSize = this->BlockSize();`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00			`ByteOrder order = this->GetByteOrder();`

optimizations 2007-04-16 00:33:09 +00:00			`PadLastBlock(blockSize - 2*sizeof(HashWordType));`
add x86/x64 assembly for SHA-256, add DEFAULT_CHANNEL and AAD_CHANNEL, fix macChannel for AuthenticatedEncryptionFilter 2009-03-10 02:56:19 +00:00			`dataBuf[blockSize/sizeof(T)-2+order] = ConditionalByteReverse(order, this->GetBitCountLo());`
			`dataBuf[blockSize/sizeof(T)-1-order] = ConditionalByteReverse(order, this->GetBitCountHi());`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00
add x86/x64 assembly for SHA-256, add DEFAULT_CHANNEL and AAD_CHANNEL, fix macChannel for AuthenticatedEncryptionFilter 2009-03-10 02:56:19 +00:00			`HashBlock(dataBuf);`
optimizations 2007-04-16 00:33:09 +00:00
add x86/x64 assembly for SHA-256, add DEFAULT_CHANNEL and AAD_CHANNEL, fix macChannel for AuthenticatedEncryptionFilter 2009-03-10 02:56:19 +00:00			`if (IsAligned<HashWordType>(digest) && size%sizeof(HashWordType)==0)`
			`ConditionalByteReverse<HashWordType>(order, (HashWordType *)digest, stateBuf, size);`
			`else`
			`{`
			`ConditionalByteReverse<HashWordType>(order, stateBuf, stateBuf, this->DigestSize());`
			`memcpy(digest, stateBuf, size);`
			`}`
changes related to the next FIPS validation 2004-09-03 10:57:31 +00:00
			`this->Restart(); // reinit for next use`
			`}`

fix compile with GCC 4.0.1 on MacOS X 64-bit 2008-12-22 06:55:08 +00:00			`#ifdef __GNUC__`
			`template class IteratedHashBase<word64, HashTransformation>;`
			`template class IteratedHashBase<word64, MessageAuthenticationCode>;`

			`template class IteratedHashBase<word32, HashTransformation>;`
			`template class IteratedHashBase<word32, MessageAuthenticationCode>;`
			`#endif`

Initial revision 2002-10-04 17:31:41 +00:00			`NAMESPACE_END`