We use cookies to ensure you get the best experience on our website
Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
0ct0pu5
/
ladybird
1
0
Fork 0
Tiedostot Ongelmat 0 Pull-pyynnöt 0 Wiki
Puu: 83f1775f15
Haarat Tagit
ladybird
/
Userland
/
Libraries
/
LibCrypto
/
Hash
/
BLAKE2b.cpp

BLAKE2b.cpp 4.6 KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126 
  1. /*
    2. 

  2.  * Copyright (c) 2023, the SerenityOS developers
    3. 

  3.  *
    4. 

  4.  * SPDX-License-Identifier: BSD-2-Clause
    5. 

  5.  */
    6. 

  6. 

  7. #include <AK/ByteReader.h>
    8. 

  8. #include <LibCrypto/Hash/BLAKE2b.h>
    9. 

  9. 

  10. namespace Crypto::Hash {
    11. 

  11. constexpr static auto ROTRIGHT(u64 a, size_t b) { return (a >> b) | (a << (64 - b)); }
    12. 

  12. 

  13. void BLAKE2b::update(u8 const* in, size_t inlen)
    14. 

  14. {
    15. 

  15.     if (inlen > 0) {
    16. 

  16.         size_t left = m_internal_state.buffer_length;
    17. 

  17.         size_t fill = BLAKE2bConstants::blockbytes - left;
    18. 

  18.         if (inlen > fill) {
    19. 

  19.             m_internal_state.buffer_length = 0;
    20. 

  20.             // Fill the buffer.
    21. 

  21.             __builtin_memcpy(m_internal_state.buffer + left, in, fill);
    22. 

  22. 

  23.             increment_counter_by(BLAKE2bConstants::blockbytes);
    24. 

  24.             transform(m_internal_state.buffer);
    25. 

  25.             in += fill;
    26. 

  26.             inlen -= fill;
    27. 

  27.             while (inlen > BLAKE2bConstants::blockbytes) {
    28. 

  28.                 increment_counter_by(BLAKE2bConstants::blockbytes);
    29. 

  29.                 transform(in);
    30. 

  30.                 in += BLAKE2bConstants::blockbytes;
    31. 

  31.                 inlen -= BLAKE2bConstants::blockbytes;
    32. 

  32.             }
    33. 

  33.         }
    34. 

  34.         __builtin_memcpy(m_internal_state.buffer + m_internal_state.buffer_length, in, inlen);
    35. 

  35.         m_internal_state.buffer_length += inlen;
    36. 

  36.     }
    37. 

  37. }
    38. 

  38. 

  39. BLAKE2b::DigestType BLAKE2b::peek()
    40. 

  40. {
    41. 

  41.     DigestType digest;
    42. 

  42.     increment_counter_by(m_internal_state.buffer_length);
    43. 

  43. 

  44.     // Set this as the last block
    45. 

  45.     m_internal_state.is_at_last_block = UINT64_MAX;
    46. 

  46. 

  47.     // Pad the buffer with zeros
    48. 

  48.     __builtin_memset(m_internal_state.buffer + m_internal_state.buffer_length, 0, BLAKE2bConstants::blockbytes - m_internal_state.buffer_length);
    49. 

  49.     transform(m_internal_state.buffer);
    50. 

  50. 

  51.     for (size_t i = 0; i < 8; ++i)
    52. 

  52.         __builtin_memcpy(&digest.data[0] + sizeof(m_internal_state.hash_state[i]) * i, &m_internal_state.hash_state[i], sizeof(m_internal_state.hash_state[i]));
    53. 

  53. 

  54.     return digest;
    55. 

  55. }
    56. 

  56. 

  57. BLAKE2b::DigestType BLAKE2b::digest()
    58. 

  58. {
    59. 

  59.     auto digest = peek();
    60. 

  60.     reset();
    61. 

  61.     return digest;
    62. 

  62. }
    63. 

  63. 

  64. void BLAKE2b::increment_counter_by(const u64 amount)
    65. 

  65. {
    66. 

  66.     m_internal_state.message_byte_offset[0] += amount;
    67. 

  67.     m_internal_state.message_byte_offset[1] += (m_internal_state.message_byte_offset[0] < amount);
    68. 

  68. }
    69. 

  69. 

  70. void BLAKE2b::mix(u64* work_array, u64 a, u64 b, u64 c, u64 d, u64 x, u64 y)
    71. 

  71. {
    72. 

  72.     constexpr auto rotation_constant_1 = 32;
    73. 

  73.     constexpr auto rotation_constant_2 = 24;
    74. 

  74.     constexpr auto rotation_constant_3 = 16;
    75. 

  75.     constexpr auto rotation_constant_4 = 63;
    76. 

  76. 

  77.     work_array[a] = work_array[a] + work_array[b] + x;
    78. 

  78.     work_array[d] = ROTRIGHT(work_array[d] ^ work_array[a], rotation_constant_1);
    79. 

  79.     work_array[c] = work_array[c] + work_array[d];
    80. 

  80.     work_array[b] = ROTRIGHT(work_array[b] ^ work_array[c], rotation_constant_2);
    81. 

  81.     work_array[a] = work_array[a] + work_array[b] + y;
    82. 

  82.     work_array[d] = ROTRIGHT(work_array[d] ^ work_array[a], rotation_constant_3);
    83. 

  83.     work_array[c] = work_array[c] + work_array[d];
    84. 

  84.     work_array[b] = ROTRIGHT(work_array[b] ^ work_array[c], rotation_constant_4);
    85. 

  85. }
    86. 

  86. 

  87. void BLAKE2b::transform(u8 const* block)
    88. 

  88. {
    89. 

  89.     u64 m[16];
    90. 

  90.     u64 v[16];
    91. 

  91. 

  92.     for (size_t i = 0; i < 16; ++i)
    93. 

  93.         m[i] = ByteReader::load64(block + i * sizeof(m[i]));
    94. 

  94. 

  95.     for (size_t i = 0; i < 8; ++i)
    96. 

  96.         v[i] = m_internal_state.hash_state[i];
    97. 

  97. 

  98.     v[8] = SHA512Constants::InitializationHashes[0];
    99. 

  99.     v[9] = SHA512Constants::InitializationHashes[1];
    100. 

  100.     v[10] = SHA512Constants::InitializationHashes[2];
    101. 

  101.     v[11] = SHA512Constants::InitializationHashes[3];
    102. 

  102.     v[12] = SHA512Constants::InitializationHashes[4] ^ m_internal_state.message_byte_offset[0];
    103. 

  103.     v[13] = SHA512Constants::InitializationHashes[5] ^ m_internal_state.message_byte_offset[1];
    104. 

  104.     v[14] = SHA512Constants::InitializationHashes[6] ^ m_internal_state.is_at_last_block;
    105. 

  105.     v[15] = SHA512Constants::InitializationHashes[7];
    106. 

  106. 

  107.     for (size_t i = 0; i < 12; ++i) {
    108. 

  108.         u64 sigma_selection[16];
    109. 

  109.         for (size_t j = 0; j < 16; ++j)
    110. 

  110.             sigma_selection[j] = BLAKE2bSigma[i % 10][j];
    111. 

  111.         mix(v, 0, 4, 8, 12, m[sigma_selection[0]], m[sigma_selection[1]]);
    112. 

  112.         mix(v, 1, 5, 9, 13, m[sigma_selection[2]], m[sigma_selection[3]]);
    113. 

  113.         mix(v, 2, 6, 10, 14, m[sigma_selection[4]], m[sigma_selection[5]]);
    114. 

  114.         mix(v, 3, 7, 11, 15, m[sigma_selection[6]], m[sigma_selection[7]]);
    115. 

  115. 

  116.         mix(v, 0, 5, 10, 15, m[sigma_selection[8]], m[sigma_selection[9]]);
    117. 

  117.         mix(v, 1, 6, 11, 12, m[sigma_selection[10]], m[sigma_selection[11]]);
    118. 

  118.         mix(v, 2, 7, 8, 13, m[sigma_selection[12]], m[sigma_selection[13]]);
    119. 

  119.         mix(v, 3, 4, 9, 14, m[sigma_selection[14]], m[sigma_selection[15]]);
    120. 

  120.     }
    121. 

  121. 

  122.     for (size_t i = 0; i < 8; ++i)
    123. 

  123.         m_internal_state.hash_state[i] = m_internal_state.hash_state[i] ^ v[i] ^ v[i + 8];
    124. 

  124. }
    125. 

  125. 

  126. }
    127.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5