#include "lib9.h" #include static void encode(uchar*, ulong*, ulong); static void decode(ulong*, uchar*, ulong); static void shablock(uchar *p, ulong len, SHAstate *s) { ulong a, b, c, d, e, tmp; uchar *end; ulong *wp, *wend; ulong w[80]; /* at this point, we have a multple of 64 bytes */ for(end = p+len; p < end;){ /* pack message */ decode(w, p, 64); p += 64; /* expand */ wend = w + 80; for(wp = w + 16; wp < wend; wp++){ a = *(wp-3) ^ *(wp-8) ^ *(wp-14) ^ *(wp-16); *wp = (a<<1) | (a>>31); } a = s->state[0]; b = s->state[1]; c = s->state[2]; d = s->state[3]; e = s->state[4]; /* 4 rounds */ wend = w + 20; for(wp = w; wp < wend; wp++){ tmp = ((a<<5) | (a>>27)) + e + *wp; tmp += 0x5a827999 + ((b&c)|(d&~b)); e = d; d = c; c = (b<<30)|(b>>2); b = a; a = tmp; } wend = w + 40; for(; wp < wend; wp++){ tmp = ((a<<5) | (a>>27)) + e + *wp; tmp += 0x6ed9eba1 + (b^c^d); e = d; d = c; c = (b<<30)|(b>>2); b = a; a = tmp; } wend = w + 60; for(; wp < wend; wp++){ tmp = ((a<<5) | (a>>27)) + e + *wp; tmp += 0x8f1bbcdc + ((b&c)|(b&d)|(c&d)); e = d; d = c; c = (b<<30)|(b>>2); b = a; a = tmp; } wend = w + 80; for(; wp < wend; wp++){ tmp = ((a<<5) | (a>>27)) + e + *wp; tmp += 0xca62c1d6 + (b^c^d); e = d; d = c; c = (b<<30)|(b>>2); b = a; a = tmp; } /* save state */ s->state[0] += a; s->state[1] += b; s->state[2] += c; s->state[3] += d; s->state[4] += e; s->len += 64; } } /* * we require len to be a multiple of 64 for all but * the last call. There must be room in the input buffer * to pad. * * we assume ulong is 32 bits */ SHAstate* sha(uchar *p, ulong len, uchar *digest, SHAstate *s) { uchar buf[128]; ulong x[16]; int i; uchar *e; if(s == nil){ s = crypt_malloc(sizeof(*s)); if(s == nil) return nil; s->malloced = 1; } if(s->seeded == 0){ /* seed the state, these constants would look nicer big-endian */ s->state[0] = 0x67452301; s->state[1] = 0xefcdab89; s->state[2] = 0x98badcfe; s->state[3] = 0x10325476; s->state[4] = 0xc3d2e1f0; s->seeded = 1; } /* fill out the partial 64 byte block from previous calls */ if(s->blen){ i = 64 - s->blen; if(len < i) i = len; memmove(s->buf + s->blen, p, i); len -= i; s->blen += i; p += i; if(s->blen == 64){ shablock(s->buf, s->blen, s); s->blen = 0; } } /* do 64 byte blocks */ i = len & ~0x3f; if(i){ shablock(p, i, s); len -= i; p += i; } /* save the left overs if not last call */ if(digest == 0){ if(len){ memmove(s->buf, p, len); s->blen += len; } return s; } /* * this is the last time through, pad what's left with 0x80, * 0's, and the input count to create a multiple of 64 bytes */ if(s->blen){ p = s->buf; len = s->blen; } else { memmove(buf, p, len); p = buf; } s->len += len; e = p + len; if(len < 56) i = 56 - len; else i = 120 - len; memset(e, 0, i); *e = 0x80; len += i; /* append the count */ x[0] = s->len>>29; x[1] = s->len<<3; encode(p+len, x, 8); /* digest the last part */ shablock(p, len+8, s); /* return result and free state */ encode(digest, s->state, SHAdlen); if(s->malloced == 1) crypt_free(s); return nil; } /* * encodes input (ulong) into output (uchar). Assumes len is * a multiple of 4. */ static void encode(uchar *output, ulong *input, ulong len) { ulong x; uchar *e; for(e = output + len; output < e;) { x = *input++; *output++ = x >> 24; *output++ = x >> 16; *output++ = x >> 8; *output++ = x; } } /* * decodes input (uchar) into output (ulong). Assumes len is * a multiple of 4. */ static void decode(ulong *output, uchar *input, ulong len) { uchar *e; for(e = input+len; input < e; input += 4) *output++ = input[3] | (input[2] << 8) | (input[1] << 16) | (input[0] << 24); }