/tmp/beast/boost/beast/core/detail/sha1.hpp

https://gitlab.com/amyasnikov/xgame · C++ Header · 313 lines · 266 code · 28 blank · 19 comment · 8 complexity · fd2b50d73e0038a3ee09e9c11840c2a7 MD5 · raw file 

    

  1. //
    2. 

  2. // Copyright (c) 2016-2017 Vinnie Falco (vinnie dot falco at gmail dot com)
    3. 

  3. //
    4. 

  4. // Distributed under the Boost Software License, Version 1.0. (See accompanying
    5. 

  5. // file LICENSE_1_0.txt or copy at http://www.boost.org/LICENSE_1_0.txt)
    6. 

  6. //
    7. 

  7. // Official repository: https://github.com/boostorg/beast
    8. 

  8. //
    9. 

  9. 

  10. #ifndef BOOST_BEAST_DETAIL_SHA1_HPP
    11. 

  11. #define BOOST_BEAST_DETAIL_SHA1_HPP
    12. 

  12. 

  13. #include <algorithm>
    14. 

  14. #include <cstdint>
    15. 

  15. #include <cstring>
    16. 

  16. 

  17. // Based on https://github.com/vog/sha1
    18. 

  18. /*
    19. 

  19.     Original authors:
    20. 

  20.         Steve Reid (Original C Code)
    21. 

  21.         Bruce Guenter (Small changes to fit into bglibs)
    22. 

  22.         Volker Grabsch (Translation to simpler C++ Code)
    23. 

  23.         Eugene Hopkinson (Safety improvements)
    24. 

  24.         Vincent Falco (beast adaptation)
    25. 

  25. */
    26. 

  26. 

  27. namespace boost {
    28. 

  28. namespace beast {
    29. 

  29. namespace detail {
    30. 

  30. 

  31. namespace sha1 {
    32. 

  32. 

  33. static std::size_t constexpr BLOCK_INTS = 16;
    34. 

  34. static std::size_t constexpr BLOCK_BYTES = 64;
    35. 

  35. static std::size_t constexpr DIGEST_BYTES = 20;
    36. 

  36. 

  37. inline
    38. 

  38. std::uint32_t
    39. 

  39. rol(std::uint32_t value, std::size_t bits)
    40. 

  40. {
    41. 

  41.     return (value << bits) | (value >> (32 - bits));
    42. 

  42. }
    43. 

  43. 

  44. inline
    45. 

  45. std::uint32_t
    46. 

  46. blk(std::uint32_t block[BLOCK_INTS], std::size_t i)
    47. 

  47. {
    48. 

  48.     return rol(
    49. 

  49.         block[(i+13)&15] ^ block[(i+8)&15] ^
    50. 

  50.         block[(i+2)&15]  ^ block[i], 1);
    51. 

  51. }
    52. 

  52. 

  53. inline
    54. 

  54. void
    55. 

  55. R0(std::uint32_t block[BLOCK_INTS], std::uint32_t v,
    56. 

  56.     std::uint32_t &w, std::uint32_t x, std::uint32_t y,
    57. 

  57.         std::uint32_t &z, std::size_t i)
    58. 

  58. {
    59. 

  59.     z += ((w&(x^y))^y) + block[i] + 0x5a827999 + rol(v, 5);
    60. 

  60.     w = rol(w, 30);
    61. 

  61. }
    62. 

  62. 

  63. 

  64. inline
    65. 

  65. void
    66. 

  66. R1(std::uint32_t block[BLOCK_INTS], std::uint32_t v,
    67. 

  67.     std::uint32_t &w, std::uint32_t x, std::uint32_t y,
    68. 

  68.         std::uint32_t &z, std::size_t i)
    69. 

  69. {
    70. 

  70.     block[i] = blk(block, i);
    71. 

  71.     z += ((w&(x^y))^y) + block[i] + 0x5a827999 + rol(v, 5);
    72. 

  72.     w = rol(w, 30);
    73. 

  73. }
    74. 

  74. 

  75. inline
    76. 

  76. void
    77. 

  77. R2(std::uint32_t block[BLOCK_INTS], std::uint32_t v,
    78. 

  78.     std::uint32_t &w, std::uint32_t x, std::uint32_t y,
    79. 

  79.         std::uint32_t &z, std::size_t i)
    80. 

  80. {
    81. 

  81.     block[i] = blk(block, i);
    82. 

  82.     z += (w^x^y) + block[i] + 0x6ed9eba1 + rol(v, 5);
    83. 

  83.     w = rol(w, 30);
    84. 

  84. }
    85. 

  85. 

  86. inline
    87. 

  87. void
    88. 

  88. R3(std::uint32_t block[BLOCK_INTS], std::uint32_t v,
    89. 

  89.     std::uint32_t &w, std::uint32_t x, std::uint32_t y,
    90. 

  90.         std::uint32_t &z, std::size_t i)
    91. 

  91. {
    92. 

  92.     block[i] = blk(block, i);
    93. 

  93.     z += (((w|x)&y)|(w&x)) + block[i] + 0x8f1bbcdc + rol(v, 5);
    94. 

  94.     w = rol(w, 30);
    95. 

  95. }
    96. 

  96. 

  97. inline
    98. 

  98. void
    99. 

  99. R4(std::uint32_t block[BLOCK_INTS], std::uint32_t v,
    100. 

  100.     std::uint32_t &w, std::uint32_t x, std::uint32_t y,
    101. 

  101.         std::uint32_t &z, std::size_t i)
    102. 

  102. {
    103. 

  103.     block[i] = blk(block, i);
    104. 

  104.     z += (w^x^y) + block[i] + 0xca62c1d6 + rol(v, 5);
    105. 

  105.     w = rol(w, 30);
    106. 

  106. }
    107. 

  107. 

  108. inline
    109. 

  109. void
    110. 

  110. make_block(std::uint8_t const* p,
    111. 

  111.     std::uint32_t block[BLOCK_INTS])
    112. 

  112. {
    113. 

  113.     for(std::size_t i = 0; i < BLOCK_INTS; i++)
    114. 

  114.         block[i] =
    115. 

  115.             (static_cast<std::uint32_t>(p[4*i+3]))     |
    116. 

  116.             (static_cast<std::uint32_t>(p[4*i+2]))<< 8 |
    117. 

  117.             (static_cast<std::uint32_t>(p[4*i+1]))<<16 |
    118. 

  118.             (static_cast<std::uint32_t>(p[4*i+0]))<<24;
    119. 

  119. }
    120. 

  120. 

  121. template<class = void>
    122. 

  122. void
    123. 

  123. transform(
    124. 

  124.     std::uint32_t digest[], std::uint32_t block[BLOCK_INTS])
    125. 

  125. {
    126. 

  126.     std::uint32_t a = digest[0];
    127. 

  127.     std::uint32_t b = digest[1];
    128. 

  128.     std::uint32_t c = digest[2];
    129. 

  129.     std::uint32_t d = digest[3];
    130. 

  130.     std::uint32_t e = digest[4];
    131. 

  131. 

  132.     R0(block, a, b, c, d, e,  0);
    133. 

  133.     R0(block, e, a, b, c, d,  1);
    134. 

  134.     R0(block, d, e, a, b, c,  2);
    135. 

  135.     R0(block, c, d, e, a, b,  3);
    136. 

  136.     R0(block, b, c, d, e, a,  4);
    137. 

  137.     R0(block, a, b, c, d, e,  5);
    138. 

  138.     R0(block, e, a, b, c, d,  6);
    139. 

  139.     R0(block, d, e, a, b, c,  7);
    140. 

  140.     R0(block, c, d, e, a, b,  8);
    141. 

  141.     R0(block, b, c, d, e, a,  9);
    142. 

  142.     R0(block, a, b, c, d, e, 10);
    143. 

  143.     R0(block, e, a, b, c, d, 11);
    144. 

  144.     R0(block, d, e, a, b, c, 12);
    145. 

  145.     R0(block, c, d, e, a, b, 13);
    146. 

  146.     R0(block, b, c, d, e, a, 14);
    147. 

  147.     R0(block, a, b, c, d, e, 15);
    148. 

  148.     R1(block, e, a, b, c, d,  0);
    149. 

  149.     R1(block, d, e, a, b, c,  1);
    150. 

  150.     R1(block, c, d, e, a, b,  2);
    151. 

  151.     R1(block, b, c, d, e, a,  3);
    152. 

  152.     R2(block, a, b, c, d, e,  4);
    153. 

  153.     R2(block, e, a, b, c, d,  5);
    154. 

  154.     R2(block, d, e, a, b, c,  6);
    155. 

  155.     R2(block, c, d, e, a, b,  7);
    156. 

  156.     R2(block, b, c, d, e, a,  8);
    157. 

  157.     R2(block, a, b, c, d, e,  9);
    158. 

  158.     R2(block, e, a, b, c, d, 10);
    159. 

  159.     R2(block, d, e, a, b, c, 11);
    160. 

  160.     R2(block, c, d, e, a, b, 12);
    161. 

  161.     R2(block, b, c, d, e, a, 13);
    162. 

  162.     R2(block, a, b, c, d, e, 14);
    163. 

  163.     R2(block, e, a, b, c, d, 15);
    164. 

  164.     R2(block, d, e, a, b, c,  0);
    165. 

  165.     R2(block, c, d, e, a, b,  1);
    166. 

  166.     R2(block, b, c, d, e, a,  2);
    167. 

  167.     R2(block, a, b, c, d, e,  3);
    168. 

  168.     R2(block, e, a, b, c, d,  4);
    169. 

  169.     R2(block, d, e, a, b, c,  5);
    170. 

  170.     R2(block, c, d, e, a, b,  6);
    171. 

  171.     R2(block, b, c, d, e, a,  7);
    172. 

  172.     R3(block, a, b, c, d, e,  8);
    173. 

  173.     R3(block, e, a, b, c, d,  9);
    174. 

  174.     R3(block, d, e, a, b, c, 10);
    175. 

  175.     R3(block, c, d, e, a, b, 11);
    176. 

  176.     R3(block, b, c, d, e, a, 12);
    177. 

  177.     R3(block, a, b, c, d, e, 13);
    178. 

  178.     R3(block, e, a, b, c, d, 14);
    179. 

  179.     R3(block, d, e, a, b, c, 15);
    180. 

  180.     R3(block, c, d, e, a, b,  0);
    181. 

  181.     R3(block, b, c, d, e, a,  1);
    182. 

  182.     R3(block, a, b, c, d, e,  2);
    183. 

  183.     R3(block, e, a, b, c, d,  3);
    184. 

  184.     R3(block, d, e, a, b, c,  4);
    185. 

  185.     R3(block, c, d, e, a, b,  5);
    186. 

  186.     R3(block, b, c, d, e, a,  6);
    187. 

  187.     R3(block, a, b, c, d, e,  7);
    188. 

  188.     R3(block, e, a, b, c, d,  8);
    189. 

  189.     R3(block, d, e, a, b, c,  9);
    190. 

  190.     R3(block, c, d, e, a, b, 10);
    191. 

  191.     R3(block, b, c, d, e, a, 11);
    192. 

  192.     R4(block, a, b, c, d, e, 12);
    193. 

  193.     R4(block, e, a, b, c, d, 13);
    194. 

  194.     R4(block, d, e, a, b, c, 14);
    195. 

  195.     R4(block, c, d, e, a, b, 15);
    196. 

  196.     R4(block, b, c, d, e, a,  0);
    197. 

  197.     R4(block, a, b, c, d, e,  1);
    198. 

  198.     R4(block, e, a, b, c, d,  2);
    199. 

  199.     R4(block, d, e, a, b, c,  3);
    200. 

  200.     R4(block, c, d, e, a, b,  4);
    201. 

  201.     R4(block, b, c, d, e, a,  5);
    202. 

  202.     R4(block, a, b, c, d, e,  6);
    203. 

  203.     R4(block, e, a, b, c, d,  7);
    204. 

  204.     R4(block, d, e, a, b, c,  8);
    205. 

  205.     R4(block, c, d, e, a, b,  9);
    206. 

  206.     R4(block, b, c, d, e, a, 10);
    207. 

  207.     R4(block, a, b, c, d, e, 11);
    208. 

  208.     R4(block, e, a, b, c, d, 12);
    209. 

  209.     R4(block, d, e, a, b, c, 13);
    210. 

  210.     R4(block, c, d, e, a, b, 14);
    211. 

  211.     R4(block, b, c, d, e, a, 15);
    212. 

  212. 

  213.     digest[0] += a;
    214. 

  214.     digest[1] += b;
    215. 

  215.     digest[2] += c;
    216. 

  216.     digest[3] += d;
    217. 

  217.     digest[4] += e;
    218. 

  218. }
    219. 

  219. 

  220. } // sha1
    221. 

  221. 

  222. struct sha1_context
    223. 

  223. {
    224. 

  224.     static unsigned int constexpr block_size = sha1::BLOCK_BYTES;
    225. 

  225.     static unsigned int constexpr digest_size = 20;
    226. 

  226. 

  227.     std::size_t buflen;
    228. 

  228.     std::size_t blocks;
    229. 

  229.     std::uint32_t digest[5];
    230. 

  230.     std::uint8_t buf[block_size];
    231. 

  231. };
    232. 

  232. 

  233. template<class = void>
    234. 

  234. void
    235. 

  235. init(sha1_context& ctx) noexcept
    236. 

  236. {
    237. 

  237.     ctx.buflen = 0;
    238. 

  238.     ctx.blocks = 0;
    239. 

  239.     ctx.digest[0] = 0x67452301;
    240. 

  240.     ctx.digest[1] = 0xefcdab89;
    241. 

  241.     ctx.digest[2] = 0x98badcfe;
    242. 

  242.     ctx.digest[3] = 0x10325476;
    243. 

  243.     ctx.digest[4] = 0xc3d2e1f0;
    244. 

  244. }
    245. 

  245. 

  246. template<class = void>
    247. 

  247. void
    248. 

  248. update(sha1_context& ctx,
    249. 

  249.     void const* message, std::size_t size) noexcept
    250. 

  250. {
    251. 

  251.     auto p = reinterpret_cast<
    252. 

  252.         std::uint8_t const*>(message);
    253. 

  253.     for(;;)
    254. 

  254.     {
    255. 

  255.         auto const n = (std::min)(
    256. 

  256.             size, sizeof(ctx.buf) - ctx.buflen);
    257. 

  257.         std::memcpy(ctx.buf + ctx.buflen, p, n);
    258. 

  258.         ctx.buflen += n;
    259. 

  259.         if(ctx.buflen != 64)
    260. 

  260.             return;
    261. 

  261.         p += n;
    262. 

  262.         size -= n;
    263. 

  263.         ctx.buflen = 0;
    264. 

  264.         std::uint32_t block[sha1::BLOCK_INTS];
    265. 

  265.         sha1::make_block(ctx.buf, block);
    266. 

  266.         sha1::transform(ctx.digest, block);
    267. 

  267.         ++ctx.blocks;
    268. 

  268.     }
    269. 

  269. }
    270. 

  270. 

  271. template<class = void>
    272. 

  272. void
    273. 

  273. finish(sha1_context& ctx, void* digest) noexcept
    274. 

  274. {
    275. 

  275.     using sha1::BLOCK_INTS;
    276. 

  276.     using sha1::BLOCK_BYTES;
    277. 

  277. 

  278.     std::uint64_t total_bits =
    279. 

  279.         (ctx.blocks*64 + ctx.buflen) * 8;
    280. 

  280.     // pad
    281. 

  281.     ctx.buf[ctx.buflen++] = 0x80;
    282. 

  282.     auto const buflen = ctx.buflen;
    283. 

  283.     while(ctx.buflen < 64)
    284. 

  284.         ctx.buf[ctx.buflen++] = 0x00;
    285. 

  285.     std::uint32_t block[BLOCK_INTS];
    286. 

  286.     sha1::make_block(ctx.buf, block);
    287. 

  287.     if(buflen > BLOCK_BYTES - 8)
    288. 

  288.     {
    289. 

  289.         sha1::transform(ctx.digest, block);
    290. 

  290.         for(size_t i = 0; i < BLOCK_INTS - 2; i++)
    291. 

  291.             block[i] = 0;
    292. 

  292.     }
    293. 

  293. 

  294.     /* Append total_bits, split this uint64_t into two uint32_t */
    295. 

  295.     block[BLOCK_INTS - 1] = total_bits & 0xffffffff;
    296. 

  296.     block[BLOCK_INTS - 2] = (total_bits >> 32);
    297. 

  297.     sha1::transform(ctx.digest, block);
    298. 

  298.     for(std::size_t i = 0; i < sha1::DIGEST_BYTES/4; i++)
    299. 

  299.     {
    300. 

  300.         std::uint8_t* d =
    301. 

  301.             reinterpret_cast<std::uint8_t*>(digest) + 4 * i;
    302. 

  302.         d[3] =  ctx.digest[i]        & 0xff;
    303. 

  303.         d[2] = (ctx.digest[i] >>  8) & 0xff;
    304. 

  304.         d[1] = (ctx.digest[i] >> 16) & 0xff;
    305. 

  305.         d[0] = (ctx.digest[i] >> 24) & 0xff;
    306. 

  306.     }
    307. 

  307. }
    308. 

  308. 

  309. } // detail
    310. 

  310. } // beast
    311. 

  311. } // boost
    312. 

  312. 

  313. #endif
    314.