robin.thoni
/
roehling-postsrsd
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 5 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
116 Commits
2 Branches
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
roehling-postsrsd/sha1.c

sha1.c 11KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386 
  1. /* This file is copied from the libsrs2 sources */

  2. /* Modified by Timo Röhling <timo.roehling@gmx.de> */

  3. 

  4. /* NIST Secure Hash Algorithm */

  5. /* Borrowed from SHA1.xs by Gisle Ass */

  6. /* heavily modified by Uwe Hollerbach <uh@alumni.caltech edu> */

  7. /* from Peter C. Gutmann's implementation as found in */

  8. /* Applied Cryptography by Bruce Schneier */

  9. /* Further modifications to include the "UNRAVEL" stuff, below */

  10. /* HMAC functions by Shevek <srs@anarres.org> for inclusion in

  11.  * libsrs2, under GPL-2 or BSD license. Combine this lot in any way

  12.  * you think will stand up in court. I hope my intent is clear. */

  13. 

  14. /* This code is in the public domain */

  15. 

  16. /* Useful defines & typedefs */

  17. 

  18. #include <stdarg.h>

  19. #include <time.h>       /* time */

  20. #include <sys/types.h>  /* tyepdefs */

  21. #include <sys/time.h>   /* timeval / timezone struct */

  22. #include <string.h>		/* memcpy, strcpy, memset */

  23. 

  24. #include "srs2.h"

  25. 

  26. #ifdef SIZEOF_UNSIGNED_LONG

  27. #if SIZEOF_UNSIGNED_LONG < 4

  28. #error "SHA1 requires an unsigned long of at least 32 bits"

  29. #endif

  30. #endif

  31. 

  32. #ifdef WORDS_BIGENDIAN

  33. #define BYTEORDER 0x4321

  34. #else

  35. #define BYTEORDER 0x1234

  36. #endif

  37. 

  38. 

  39. /* UNRAVEL should be fastest & biggest */

  40. /* UNROLL_LOOPS should be just as big, but slightly slower */

  41. /* both undefined should be smallest and slowest */

  42. 

  43. #define SHA_VERSION 1

  44. #define UNRAVEL

  45. /* #define UNROLL_LOOPS */

  46. 

  47. /* SHA f()-functions */

  48. #define f1(x,y,z)		((x & y) | (~x & z))

  49. #define f2(x,y,z)		(x ^ y ^ z)

  50. #define f3(x,y,z)		((x & y) | (x & z) | (y & z))

  51. #define f4(x,y,z)		(x ^ y ^ z)

  52. 

  53. /* SHA constants */

  54. #define CONST1				0x5a827999L

  55. #define CONST2				0x6ed9eba1L

  56. #define CONST3				0x8f1bbcdcL

  57. #define CONST4				0xca62c1d6L

  58. 

  59. /* truncate to 32 bits -- should be a null op on 32-bit machines */

  60. #define T32(x)		((x) & 0xffffffffL)

  61. 

  62. /* 32-bit rotate */

  63. #define R32(x,n)		T32(((x << n) | (x >> (32 - n))))

  64. 

  65. /* the generic case, for when the overall rotation is not unraveled */

  66. #define FG(n)		\

  67. 	T = T32(R32(A,5) + f##n(B,C,D) + E + *WP++ + CONST##n);		\

  68. 	E = D; D = C; C = R32(B,30); B = A; A = T

  69. 

  70. /* specific cases, for when the overall rotation is unraveled */

  71. #define FA(n)		\

  72. 	T = T32(R32(A,5) + f##n(B,C,D) + E + *WP++ + CONST##n); B = R32(B,30)

  73. 

  74. #define FB(n)		\

  75. 	E = T32(R32(T,5) + f##n(A,B,C) + D + *WP++ + CONST##n); A = R32(A,30)

  76. 

  77. #define FC(n)		\

  78. 	D = T32(R32(E,5) + f##n(T,A,B) + C + *WP++ + CONST##n); T = R32(T,30)

  79. 

  80. #define FD(n)		\

  81. 	C = T32(R32(D,5) + f##n(E,T,A) + B + *WP++ + CONST##n); E = R32(E,30)

  82. 

  83. #define FE(n)		\

  84. 	B = T32(R32(C,5) + f##n(D,E,T) + A + *WP++ + CONST##n); D = R32(D,30)

  85. 

  86. #define FT(n)		\

  87. 	A = T32(R32(B,5) + f##n(C,D,E) + T + *WP++ + CONST##n); C = R32(C,30)

  88. 

  89. 

  90. static void sha_transform(SHA_INFO *sha_info)

  91. {

  92. 	int i;

  93. 	sha_byte *dp;

  94. 	ULONG T, A, B, C, D, E, W[80], *WP;

  95. 

  96. 	dp = sha_info->data;

  97. 

  98. /*

  99. the following makes sure that at least one code block below is

  100. traversed or an error is reported, without the necessity for nested

  101. preprocessor if/else/endif blocks, which are a great pain in the

  102. nether regions of the anatomy...

  103. */

  104. #undef SWAP_DONE

  105. 

  106. #if BYTEORDER == 0x1234

  107. #define SWAP_DONE

  108. 	/* assert(sizeof(ULONG) == 4); */

  109. 	for (i = 0; i < 16; ++i) {

  110. 		T = *((ULONG *) dp);

  111. 		dp += 4;

  112. 		W[i] =  ((T << 24) & 0xff000000) | ((T <<  8) & 0x00ff0000) |

  113. 				((T >>  8) & 0x0000ff00) | ((T >> 24) & 0x000000ff);

  114. 	}

  115. #endif

  116. 

  117. #if BYTEORDER == 0x4321

  118. #define SWAP_DONE

  119. 	/* assert(sizeof(ULONG) == 4); */

  120. 	for (i = 0; i < 16; ++i) {

  121. 		T = *((ULONG *) dp);

  122. 		dp += 4;

  123. 		W[i] = T32(T);

  124. 	}

  125. #endif

  126. 

  127. #if BYTEORDER == 0x12345678

  128. #define SWAP_DONE

  129. 	/* assert(sizeof(ULONG) == 8); */

  130. 	for (i = 0; i < 16; i += 2) {

  131. 		T = *((ULONG *) dp);

  132. 		dp += 8;

  133. 		W[i] =  ((T << 24) & 0xff000000) | ((T <<  8) & 0x00ff0000) |

  134. 				((T >>  8) & 0x0000ff00) | ((T >> 24) & 0x000000ff);

  135. 		T >>= 32;

  136. 		W[i+1] = ((T << 24) & 0xff000000) | ((T <<  8) & 0x00ff0000) |

  137. 				 ((T >>  8) & 0x0000ff00) | ((T >> 24) & 0x000000ff);

  138. 	}

  139. #endif

  140. 

  141. #if BYTEORDER == 0x87654321

  142. #define SWAP_DONE

  143. 	/* assert(sizeof(ULONG) == 8); */

  144. 	for (i = 0; i < 16; i += 2) {

  145. 		T = *((ULONG *) dp);

  146. 		dp += 8;

  147. 		W[i] = T32(T >> 32);

  148. 		W[i+1] = T32(T);

  149. 	}

  150. #endif

  151. 

  152. #ifndef SWAP_DONE

  153. #error Unknown byte order -- you need to add code here

  154. #endif /* SWAP_DONE */

  155. 

  156. 	for (i = 16; i < 80; ++i) {

  157. 		W[i] = W[i-3] ^ W[i-8] ^ W[i-14] ^ W[i-16];

  158. #if (SHA_VERSION == 1)

  159. 		W[i] = R32(W[i], 1);

  160. #endif /* SHA_VERSION */

  161. 	}

  162. 	A = sha_info->digest[0];

  163. 	B = sha_info->digest[1];

  164. 	C = sha_info->digest[2];

  165. 	D = sha_info->digest[3];

  166. 	E = sha_info->digest[4];

  167. 	WP = W;

  168. #ifdef UNRAVEL

  169. 	FA(1); FB(1); FC(1); FD(1); FE(1); FT(1); FA(1); FB(1); FC(1); FD(1);

  170. 	FE(1); FT(1); FA(1); FB(1); FC(1); FD(1); FE(1); FT(1); FA(1); FB(1);

  171. 	FC(2); FD(2); FE(2); FT(2); FA(2); FB(2); FC(2); FD(2); FE(2); FT(2);

  172. 	FA(2); FB(2); FC(2); FD(2); FE(2); FT(2); FA(2); FB(2); FC(2); FD(2);

  173. 	FE(3); FT(3); FA(3); FB(3); FC(3); FD(3); FE(3); FT(3); FA(3); FB(3);

  174. 	FC(3); FD(3); FE(3); FT(3); FA(3); FB(3); FC(3); FD(3); FE(3); FT(3);

  175. 	FA(4); FB(4); FC(4); FD(4); FE(4); FT(4); FA(4); FB(4); FC(4); FD(4);

  176. 	FE(4); FT(4); FA(4); FB(4); FC(4); FD(4); FE(4); FT(4); FA(4); FB(4);

  177. 	sha_info->digest[0] = T32(sha_info->digest[0] + E);

  178. 	sha_info->digest[1] = T32(sha_info->digest[1] + T);

  179. 	sha_info->digest[2] = T32(sha_info->digest[2] + A);

  180. 	sha_info->digest[3] = T32(sha_info->digest[3] + B);

  181. 	sha_info->digest[4] = T32(sha_info->digest[4] + C);

  182. #else /* !UNRAVEL */

  183. #ifdef UNROLL_LOOPS

  184. 	FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1);

  185. 	FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1); FG(1);

  186. 	FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2);

  187. 	FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2); FG(2);

  188. 	FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3);

  189. 	FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3); FG(3);

  190. 	FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4);

  191. 	FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4); FG(4);

  192. #else /* !UNROLL_LOOPS */

  193. 	for (i =  0; i < 20; ++i) { FG(1); }

  194. 	for (i = 20; i < 40; ++i) { FG(2); }

  195. 	for (i = 40; i < 60; ++i) { FG(3); }

  196. 	for (i = 60; i < 80; ++i) { FG(4); }

  197. #endif /* !UNROLL_LOOPS */

  198. 	sha_info->digest[0] = T32(sha_info->digest[0] + A);

  199. 	sha_info->digest[1] = T32(sha_info->digest[1] + B);

  200. 	sha_info->digest[2] = T32(sha_info->digest[2] + C);

  201. 	sha_info->digest[3] = T32(sha_info->digest[3] + D);

  202. 	sha_info->digest[4] = T32(sha_info->digest[4] + E);

  203. #endif /* !UNRAVEL */

  204. }

  205. 

  206. /* initialize the SHA digest */

  207. 

  208. static void

  209. sha_init(SHA_INFO *sha_info)

  210. {

  211. 	sha_info->digest[0] = 0x67452301L;

  212. 	sha_info->digest[1] = 0xefcdab89L;

  213. 	sha_info->digest[2] = 0x98badcfeL;

  214. 	sha_info->digest[3] = 0x10325476L;

  215. 	sha_info->digest[4] = 0xc3d2e1f0L;

  216. 	sha_info->count_lo = 0L;

  217. 	sha_info->count_hi = 0L;

  218. 	sha_info->local = 0;

  219. }

  220. 

  221. /* update the SHA digest */

  222. 

  223. static void

  224. sha_update(SHA_INFO *sha_info, sha_byte *buffer, int count)

  225. {

  226. 	int i;

  227. 	ULONG clo;

  228. 

  229. 	clo = T32(sha_info->count_lo + ((ULONG) count << 3));

  230. 	if (clo < sha_info->count_lo) {

  231. 		++sha_info->count_hi;

  232. 	}

  233. 	sha_info->count_lo = clo;

  234. 	sha_info->count_hi += (ULONG) count >> 29;

  235. 	if (sha_info->local) {

  236. 		i = SHA_BLOCKSIZE - sha_info->local;

  237. 		if (i > count) {

  238. 			i = count;

  239. 		}

  240. 		memcpy(((sha_byte *) sha_info->data) + sha_info->local, buffer, i);

  241. 		count -= i;

  242. 		buffer += i;

  243. 		sha_info->local += i;

  244. 		if (sha_info->local == SHA_BLOCKSIZE) {

  245. 			sha_transform(sha_info);

  246. 		} else {

  247. 			return;

  248. 		}

  249. 	}

  250. 	while (count >= SHA_BLOCKSIZE) {

  251. 		memcpy(sha_info->data, buffer, SHA_BLOCKSIZE);

  252. 		buffer += SHA_BLOCKSIZE;

  253. 		count -= SHA_BLOCKSIZE;

  254. 		sha_transform(sha_info);

  255. 	}

  256. 	memcpy(sha_info->data, buffer, count);

  257. 	sha_info->local = count;

  258. }

  259. 

  260. 

  261. static void

  262. sha_transform_and_copy(unsigned char digest[20], SHA_INFO *sha_info)

  263. {

  264. 	sha_transform(sha_info);

  265. 	digest[ 0] = (unsigned char) ((sha_info->digest[0] >> 24) & 0xff);

  266. 	digest[ 1] = (unsigned char) ((sha_info->digest[0] >> 16) & 0xff);

  267. 	digest[ 2] = (unsigned char) ((sha_info->digest[0] >>  8) & 0xff);

  268. 	digest[ 3] = (unsigned char) ((sha_info->digest[0]      ) & 0xff);

  269. 	digest[ 4] = (unsigned char) ((sha_info->digest[1] >> 24) & 0xff);

  270. 	digest[ 5] = (unsigned char) ((sha_info->digest[1] >> 16) & 0xff);

  271. 	digest[ 6] = (unsigned char) ((sha_info->digest[1] >>  8) & 0xff);

  272. 	digest[ 7] = (unsigned char) ((sha_info->digest[1]      ) & 0xff);

  273. 	digest[ 8] = (unsigned char) ((sha_info->digest[2] >> 24) & 0xff);

  274. 	digest[ 9] = (unsigned char) ((sha_info->digest[2] >> 16) & 0xff);

  275. 	digest[10] = (unsigned char) ((sha_info->digest[2] >>  8) & 0xff);

  276. 	digest[11] = (unsigned char) ((sha_info->digest[2]      ) & 0xff);

  277. 	digest[12] = (unsigned char) ((sha_info->digest[3] >> 24) & 0xff);

  278. 	digest[13] = (unsigned char) ((sha_info->digest[3] >> 16) & 0xff);

  279. 	digest[14] = (unsigned char) ((sha_info->digest[3] >>  8) & 0xff);

  280. 	digest[15] = (unsigned char) ((sha_info->digest[3]      ) & 0xff);

  281. 	digest[16] = (unsigned char) ((sha_info->digest[4] >> 24) & 0xff);

  282. 	digest[17] = (unsigned char) ((sha_info->digest[4] >> 16) & 0xff);

  283. 	digest[18] = (unsigned char) ((sha_info->digest[4] >>  8) & 0xff);

  284. 	digest[19] = (unsigned char) ((sha_info->digest[4]      ) & 0xff);

  285. }

  286. 

  287. /* finish computing the SHA digest */

  288. static void

  289. sha_final(unsigned char digest[20], SHA_INFO *sha_info)

  290. {

  291. 	int count;

  292. 	ULONG lo_bit_count, hi_bit_count;

  293. 

  294. 	lo_bit_count = sha_info->count_lo;

  295. 	hi_bit_count = sha_info->count_hi;

  296. 	count = (int) ((lo_bit_count >> 3) & 0x3f);

  297. 	((sha_byte *) sha_info->data)[count++] = 0x80;

  298. 	if (count > SHA_BLOCKSIZE - 8) {

  299. 		memset(((sha_byte *) sha_info->data) + count, 0, SHA_BLOCKSIZE - count);

  300. 		sha_transform(sha_info);

  301. 		memset((sha_byte *) sha_info->data, 0, SHA_BLOCKSIZE - 8);

  302. 	} else {

  303. 		memset(((sha_byte *) sha_info->data) + count, 0,

  304. 			SHA_BLOCKSIZE - 8 - count);

  305. 	}

  306. 	sha_info->data[56] = (hi_bit_count >> 24) & 0xff;

  307. 	sha_info->data[57] = (hi_bit_count >> 16) & 0xff;

  308. 	sha_info->data[58] = (hi_bit_count >>  8) & 0xff;

  309. 	sha_info->data[59] = (hi_bit_count >>  0) & 0xff;

  310. 	sha_info->data[60] = (lo_bit_count >> 24) & 0xff;

  311. 	sha_info->data[61] = (lo_bit_count >> 16) & 0xff;

  312. 	sha_info->data[62] = (lo_bit_count >>  8) & 0xff;

  313. 	sha_info->data[63] = (lo_bit_count >>  0) & 0xff;

  314. 	sha_transform_and_copy(digest, sha_info);

  315. }

  316. 

  317. 

  318. 

  319. /********************************************************************/

  320. 

  321. /*

  322. 		SHA_INFO ctx;

  323. 		unsigned char *data;

  324. 	STRLEN len;

  325. 		unsigned char digeststr[20];

  326. 

  327. 		sha_init(&ctx);

  328. 

  329. 		for (i = 0; i < items; i++) {

  330. 			data = (unsigned char *)(SvPVbyte(ST(i), len));

  331. 			sha_update(&ctx, data, len);

  332. 		}

  333. 		sha_final(digeststr, &ctx);

  334. */

  335. 

  336. static void

  337. sha_digest(char *out, char *data, unsigned len)

  338. {

  339. 	SHA_INFO ctx;

  340. 	sha_init(&ctx);

  341. 	sha_update(&ctx, (sha_byte*)data, len);

  342. 	sha_final((sha_byte*)out, &ctx);

  343. }

  344. 

  345. void

  346. srs_hmac_init(srs_hmac_ctx_t *ctx, char *secret, unsigned len)

  347. {

  348. 	char	 sbuf[SHA_BLOCKSIZE];

  349. 	unsigned		 i;

  350. 

  351. 	if (len > SHA_BLOCKSIZE) {

  352. 		sha_digest(sbuf, secret, len);

  353. 		secret = sbuf;

  354. 		len = strlen(sbuf);	/* SHA_BLOCKSIZE? */

  355. 	}

  356. 

  357. 	memset(ctx->ipad, 0x36, SHA_BLOCKSIZE);

  358. 	memset(ctx->opad, 0x5c, SHA_BLOCKSIZE);

  359. 	for (i = 0; i < len; i++) {

  360. 		ctx->ipad[i] ^= secret[i];

  361. 		ctx->opad[i] ^= secret[i];

  362. 	}

  363. 

  364. 	memset(sbuf, 0, SHA_BLOCKSIZE);

  365. 

  366. 	sha_init(&ctx->sctx);

  367. 	sha_update(&ctx->sctx, (sha_byte*)ctx->ipad, SHA_BLOCKSIZE);

  368. }

  369. 

  370. void

  371. srs_hmac_update(srs_hmac_ctx_t *ctx, char *data, unsigned len)

  372. {

  373. 	sha_update(&ctx->sctx, (sha_byte*)data, len);

  374. }

  375. 

  376. void

  377. srs_hmac_fini(srs_hmac_ctx_t *ctx, char *out)

  378. {

  379. 	sha_byte buf[SHA_DIGESTSIZE + 1];

  380. 

  381. 	sha_final(buf, &ctx->sctx);

  382. 	sha_init(&ctx->sctx);

  383. 	sha_update(&ctx->sctx, (sha_byte*)ctx->opad, SHA_BLOCKSIZE);

  384. 	sha_update(&ctx->sctx, buf, SHA_DIGESTSIZE);

  385. 	sha_final((sha_byte*)out, &ctx->sctx);

  386. }