1 // -*- mode: cpp; mode: fold -*-
3 // $Id: sha1.cc,v 1.3 2001/05/13 05:15:03 jgg Exp $
4 /* ######################################################################
6 SHA1 - SHA-1 Secure Hash Algorithm.
8 This file is a Public Domain wrapper for the Public Domain SHA1
9 calculation code that is at it's end.
11 The algorithm was originally implemented by
12 Steve Reid <sreid@sea-to-sky.net> and later modified by
13 James H. Brown <jbrown@burgoyne.com>.
15 Modifications for APT were done by Alfredo K. Kojima and Jason
18 Still in the public domain.
20 Test Vectors (from FIPS PUB 180-1)
22 A9993E36 4706816A BA3E2571 7850C26C 9CD0D89D
23 "abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq"
24 84983E44 1C3BD26E BAAE4AA1 F95129E5 E54670F1
25 A million repetitions of "a"
26 34AA973C D4C4DAA4 F61EEB2B DBAD2731 6534016F
28 #####################################################################
31 // Include Files /*{{{*/
34 #include <apt-pkg/sha1.h>
40 // SHA1Transform - Alters an existing SHA-1 hash /*{{{*/
41 // ---------------------------------------------------------------------
42 /* The core of the SHA-1 algorithm. This alters an existing SHA-1 hash to
43 reflect the addition of 16 longwords of new data. Other routines convert
44 incoming stream data into 16 long word chunks for this routine */
46 #define rol(value,bits) (((value) << (bits)) | ((value) >> (32 - (bits))))
48 /* blk0() and blk() perform the initial expand. */
49 /* I got the idea of expanding during the round function from SSLeay */
50 #ifndef WORDS_BIGENDIAN
51 #define blk0(i) (block->l[i] = (rol(block->l[i],24)&0xFF00FF00) \
52 |(rol(block->l[i],8)&0x00FF00FF))
54 #define blk0(i) block->l[i]
56 #define blk(i) (block->l[i&15] = rol(block->l[(i+13)&15]^block->l[(i+8)&15] \
57 ^block->l[(i+2)&15]^block->l[i&15],1))
59 /* (R0+R1),R2,R3,R4 are the different operations used in SHA1 */
60 #define R0(v,w,x,y,z,i) z+=((w&(x^y))^y)+blk0(i)+0x5A827999+rol(v,5);w=rol(w,30);
61 #define R1(v,w,x,y,z,i) z+=((w&(x^y))^y)+blk(i)+0x5A827999+rol(v,5);w=rol(w,30);
62 #define R2(v,w,x,y,z,i) z+=(w^x^y)+blk(i)+0x6ED9EBA1+rol(v,5);w=rol(w,30);
63 #define R3(v,w,x,y,z,i) z+=(((w|x)&y)|(w&x))+blk(i)+0x8F1BBCDC+rol(v,5);w=rol(w,30);
64 #define R4(v,w,x,y,z,i) z+=(w^x^y)+blk(i)+0xCA62C1D6+rol(v,5);w=rol(w,30);
66 static void SHA1Transform(uint32_t state
[5],uint8_t const buffer
[64])
75 CHAR64LONG16 workspace
, *block
;
78 memcpy(block
,buffer
,sizeof(workspace
));
80 /* Copy context->state[] to working vars */
87 /* 4 rounds of 20 operations each. Loop unrolled. */
169 /* Add the working vars back into context.state[] */
178 // SHA1Summation::SHA1Summation - Constructor /*{{{*/
179 // ---------------------------------------------------------------------
181 SHA1Summation::SHA1Summation()
183 uint32_t *state
= (uint32_t *)State
;
184 uint32_t *count
= (uint32_t *)Count
;
186 /* SHA1 initialization constants */
187 state
[0] = 0x67452301;
188 state
[1] = 0xEFCDAB89;
189 state
[2] = 0x98BADCFE;
190 state
[3] = 0x10325476;
191 state
[4] = 0xC3D2E1F0;
197 // SHA1Summation::Result - Return checksum value /*{{{*/
198 // ---------------------------------------------------------------------
199 /* Add() may not be called after this */
200 SHA1SumValue
SHA1Summation::Result()
202 uint32_t *state
= (uint32_t *)State
;
203 uint32_t *count
= (uint32_t *)Count
;
208 unsigned char finalcount
[8];
210 for (unsigned i
= 0; i
< 8; i
++)
212 // Endian independent
213 finalcount
[i
] = (unsigned char) ((count
[(i
>= 4 ? 0 : 1)]
214 >> ((3 - (i
& 3)) * 8)) & 255);
217 Add((unsigned char *) "\200",1);
218 while ((count
[0] & 504) != 448)
219 Add((unsigned char *) "\0",1);
221 Add(finalcount
,8); /* Should cause a SHA1Transform() */
227 // Transfer over the result
229 unsigned char res
[20];
230 for (unsigned i
= 0; i
< 20; i
++)
232 res
[i
] = (unsigned char)
233 ((state
[i
>> 2] >> ((3 - (i
& 3)) * 8)) & 255);
239 // SHA1Summation::Add - Adds content of buffer into the checksum /*{{{*/
240 // ---------------------------------------------------------------------
241 /* May not be called after Result() is called */
242 bool SHA1Summation::Add(const unsigned char *data
,unsigned long long len
)
247 uint32_t *state
= (uint32_t *)State
;
248 uint32_t *count
= (uint32_t *)Count
;
249 uint8_t *buffer
= (uint8_t *)Buffer
;
252 j
= (count
[0] >> 3) & 63;
253 if ((count
[0] += len
<< 3) < (len
<< 3))
255 count
[1] += (len
>> 29);
258 memcpy(&buffer
[j
],data
,(i
= 64 - j
));
259 SHA1Transform(state
,buffer
);
260 for (; i
+ 63 < len
; i
+= 64)
262 SHA1Transform(state
,&data
[i
]);
268 memcpy(&buffer
[j
],&data
[i
],len
- i
);