Kezdőlap Felfedezés Súgó
Regisztráció Bejelentkezés
Apq
/
winscp
tükrözi: https://github.com/winscp/winscp.git
1
0
Másolás 0
Fájlok Problémák 0 Wiki
Branch: dev
Branch-ok Tag-ek
winscp
/
source
/
putty
/
crypto
/
sha256-sw.c

sha256-sw.c 4.3 KB
Állandó hivatkozás Előzmények Nyers

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170 
  1. /*
    2. 

  2.  * Software implementation of SHA-256.
    3. 

  3.  */
    4. 

  4. 

  5. #include "ssh.h"
    6. 

  6. #include "sha256.h"
    7. 

  7. 

  8. #ifndef WINSCP_VS
    9. 

  9. 

  10. static bool sha256_sw_available(void)
    11. 

  11. {
    12. 

  12.     /* Software SHA-256 is always available */
    13. 

  13.     return true;
    14. 

  14. }
    15. 

  15. 

  16. #endif // WINSCP_VS
    17. 

  17. 

  18. #ifdef WINSCP_VS
    19. 

  19. 

  20. static inline uint32_t ror(uint32_t x, unsigned y)
    21. 

  21. {
    22. 

  22.     return (x << (31 & /*WINSCP*/(uint32_t)(-(int32_t)y))) | (x >> (31 & y));
    23. 

  23. }
    24. 

  24. 

  25. static inline uint32_t Ch(uint32_t ctrl, uint32_t if1, uint32_t if0)
    26. 

  26. {
    27. 

  27.     return if0 ^ (ctrl & (if1 ^ if0));
    28. 

  28. }
    29. 

  29. 

  30. static inline uint32_t Maj(uint32_t x, uint32_t y, uint32_t z)
    31. 

  31. {
    32. 

  32.     return (x & y) | (z & (x | y));
    33. 

  33. }
    34. 

  34. 

  35. static inline uint32_t Sigma_0(uint32_t x)
    36. 

  36. {
    37. 

  37.     return ror(x,2) ^ ror(x,13) ^ ror(x,22);
    38. 

  38. }
    39. 

  39. 

  40. static inline uint32_t Sigma_1(uint32_t x)
    41. 

  41. {
    42. 

  42.     return ror(x,6) ^ ror(x,11) ^ ror(x,25);
    43. 

  43. }
    44. 

  44. 

  45. static inline uint32_t sigma_0(uint32_t x)
    46. 

  46. {
    47. 

  47.     return ror(x,7) ^ ror(x,18) ^ (x >> 3);
    48. 

  48. }
    49. 

  49. 

  50. static inline uint32_t sigma_1(uint32_t x)
    51. 

  51. {
    52. 

  52.     return ror(x,17) ^ ror(x,19) ^ (x >> 10);
    53. 

  53. }
    54. 

  54. 

  55. static inline void sha256_sw_round(
    56. 

  56.     unsigned round_index, const uint32_t *schedule,
    57. 

  57.     uint32_t *a, uint32_t *b, uint32_t *c, uint32_t *d,
    58. 

  58.     uint32_t *e, uint32_t *f, uint32_t *g, uint32_t *h)
    59. 

  59. {
    60. 

  60.     uint32_t t1 = *h + Sigma_1(*e) + Ch(*e,*f,*g) +
    61. 

  61.         sha256_round_constants[round_index] + schedule[round_index];
    62. 

  62. 

  63.     uint32_t t2 = Sigma_0(*a) + Maj(*a,*b,*c);
    64. 

  64. 

  65.     *d += t1;
    66. 

  66.     *h = t1 + t2;
    67. 

  67. }
    68. 

  68. 

  69. /*WINSCP static*/ void sha256_sw_block(uint32_t *core, const uint8_t *block)
    70. 

  70. {
    71. 

  71.     uint32_t w[SHA256_ROUNDS];
    72. 

  72.     uint32_t a,b,c,d,e,f,g,h;
    73. 

  73. 

  74.     for (size_t t = 0; t < 16; t++)
    75. 

  75.         w[t] = GET_32BIT_MSB_FIRST(block + 4*t);
    76. 

  76. 

  77.     for (size_t t = 16; t < SHA256_ROUNDS; t++)
    78. 

  78.         w[t] = sigma_1(w[t-2]) + w[t-7] + sigma_0(w[t-15]) + w[t-16];
    79. 

  79. 

  80.     a = core[0]; b = core[1]; c = core[2]; d = core[3];
    81. 

  81.     e = core[4]; f = core[5]; g = core[6]; h = core[7];
    82. 

  82. 

  83.     for (size_t t = 0; t < SHA256_ROUNDS; t += 8) {
    84. 

  84.         sha256_sw_round(t+0, w, &a,&b,&c,&d,&e,&f,&g,&h);
    85. 

  85.         sha256_sw_round(t+1, w, &h,&a,&b,&c,&d,&e,&f,&g);
    86. 

  86.         sha256_sw_round(t+2, w, &g,&h,&a,&b,&c,&d,&e,&f);
    87. 

  87.         sha256_sw_round(t+3, w, &f,&g,&h,&a,&b,&c,&d,&e);
    88. 

  88.         sha256_sw_round(t+4, w, &e,&f,&g,&h,&a,&b,&c,&d);
    89. 

  89.         sha256_sw_round(t+5, w, &d,&e,&f,&g,&h,&a,&b,&c);
    90. 

  90.         sha256_sw_round(t+6, w, &c,&d,&e,&f,&g,&h,&a,&b);
    91. 

  91.         sha256_sw_round(t+7, w, &b,&c,&d,&e,&f,&g,&h,&a);
    92. 

  92.     }
    93. 

  93. 

  94.     core[0] += a; core[1] += b; core[2] += c; core[3] += d;
    95. 

  95.     core[4] += e; core[5] += f; core[6] += g; core[7] += h;
    96. 

  96. 

  97.     smemclr(w, sizeof(w));
    98. 

  98. }
    99. 

  99. 

  100. #else // WINSCP_VS
    101. 

  101. 

  102. typedef struct sha256_sw {
    103. 

  103.     uint32_t core[8];
    104. 

  104.     sha256_block blk;
    105. 

  105.     BinarySink_IMPLEMENTATION;
    106. 

  106.     ssh_hash hash;
    107. 

  107. } sha256_sw;
    108. 

  108. 

  109. static void sha256_sw_write(BinarySink *bs, const void *vp, size_t len);
    110. 

  110. 

  111. static ssh_hash *sha256_sw_new(const ssh_hashalg *alg)
    112. 

  112. {
    113. 

  113.     sha256_sw *s = snew(sha256_sw);
    114. 

  114. 

  115.     s->hash.vt = alg;
    116. 

  116.     BinarySink_INIT(s, sha256_sw_write);
    117. 

  117.     BinarySink_DELEGATE_INIT(&s->hash, s);
    118. 

  118.     return &s->hash;
    119. 

  119. }
    120. 

  120. 

  121. static void sha256_sw_reset(ssh_hash *hash)
    122. 

  122. {
    123. 

  123.     sha256_sw *s = container_of(hash, sha256_sw, hash);
    124. 

  124. 

  125.     memcpy(s->core, sha256_initial_state, sizeof(s->core));
    126. 

  126.     sha256_block_setup(&s->blk);
    127. 

  127. }
    128. 

  128. 

  129. static void sha256_sw_copyfrom(ssh_hash *hcopy, ssh_hash *horig)
    130. 

  130. {
    131. 

  131.     sha256_sw *copy = container_of(hcopy, sha256_sw, hash);
    132. 

  132.     sha256_sw *orig = container_of(horig, sha256_sw, hash);
    133. 

  133. 

  134.     memcpy(copy, orig, sizeof(*copy));
    135. 

  135.     BinarySink_COPIED(copy);
    136. 

  136.     BinarySink_DELEGATE_INIT(&copy->hash, copy);
    137. 

  137. }
    138. 

  138. 

  139. static void sha256_sw_free(ssh_hash *hash)
    140. 

  140. {
    141. 

  141.     sha256_sw *s = container_of(hash, sha256_sw, hash);
    142. 

  142. 

  143.     smemclr(s, sizeof(*s));
    144. 

  144.     sfree(s);
    145. 

  145. }
    146. 

  146. 

  147. static void sha256_sw_write(BinarySink *bs, const void *vp, size_t len)
    148. 

  148. {
    149. 

  149.     sha256_sw *s = BinarySink_DOWNCAST(bs, sha256_sw);
    150. 

  150. 

  151.     while (len > 0)
    152. 

  152.         if (sha256_block_write(&s->blk, &vp, &len))
    153. 

  153.             sha256_sw_block(s->core, s->blk.block);
    154. 

  154. }
    155. 

  155. 

  156. static void sha256_sw_digest(ssh_hash *hash, uint8_t *digest)
    157. 

  157. {
    158. 

  158.     sha256_sw *s = container_of(hash, sha256_sw, hash);
    159. 

  159. 

  160.     sha256_block_pad(&s->blk, BinarySink_UPCAST(s));
    161. 

  161.     { // WINSCP
    162. 

  162.     size_t i;
    163. 

  163.     for (i = 0; i < 8; i++)
    164. 

  164.         PUT_32BIT_MSB_FIRST(digest + 4*i, s->core[i]);
    165. 

  165.     } // WINSCP
    166. 

  166. }
    167. 

  167. 

  168. SHA256_VTABLE(sw, "unaccelerated");
    169. 

  169. 

  170. #endif // WINSCP_VS
    171.