Francois Berder / Crypto

This library implements some hash and cryptographic algorithms.

Dependents:   mBuinoBlinky PB_Emma_Ethernet SLOTrashHTTP Garagem ... more

This library implements the following algorithms :

  • RC4
  • AES (AES-128, AES-192, AES-256)
  • DES
  • Triple DES (EDE)
  • MD2
  • MD4
  • MD5
  • SHA-1
  • SHA-2 (SHA-224, SHA-256, SHA-384, SHA-512)

The hash algorithms have been optimized for the mbed and you should get decent performance. However, I did not optimize the ciphers. Also, I did not test extensively these algorithms : it should work but you may find some bugs. Block ciphers support two modes : ECB and CBC.

Warning

If you are using SHA-384 or SHA-512, be aware that it produces large binary files and the compilation (using the online compiler) takes much longer to execute. It may happen that the compiler stops because it timed-out. In this case, just compile again and it should work.

Computing hash

You can compute the hash of some data in two different ways. The first one is the easiest, each hash algorithm has a static method that takes some data and compute the hash from it.

Computing hash using method 1

#include "Crypto.h"
#include "mbed.h"

static const char msg[] = "mbed is great !";

int main()
{
    uint8_t hash[16];
    MD2::computeHash(hash, (uint8_t*)msg, strlen(msg));
    printf("hash: ");
    for(int i = 0; i < 16; ++i)
        printf("%02x", hash[i]);
    printf("\n");
    
    return 0;
}

The second one is slightly slower (around 2-3% slower) but it allows you to compute the hash of some data in several steps (by calling update method). This is the method you should use if you need to compute the hash from a large source and you don't have enough memory to store it in a single buffer.

Computing hash using method 2

#include "Crypto.h"
#include "mbed.h"

static const char msg[] = "mbed is great !";

int main()
{
    uint8_t hash[16];
    MD2 h;
    h.update((uint8_t*)msg, strlen(msg));
    h.finalize(hash);
    printf("hash: ");
    for(int i = 0; i < 16; ++i)
        printf("%02x", hash[i]);
    printf("\n");
    
    return 0;
}

TODO

  • optimize ciphers
  • add doc

SHA2_64.cpp@4:0da19393bd57, 2013-09-12 (annotated)

Committer:
feb11
Date:
Thu Sep 12 10:18:57 2013 +0000
Revision:
4:0da19393bd57
Parent:
3:85c6ee25cf3e
Child:
5:06cd9c8afa0b
improved performance of SHA-2 (32 & 64bits)

Who changed what in which revision?

UserRevisionLine numberNew contents of line
feb11 0:7a1237bd2d13 1 #include "SHA2_64.h"
feb11 0:7a1237bd2d13 2 #include <string.h>
feb11 0:7a1237bd2d13 3
feb11 0:7a1237bd2d13 4
feb11 0:7a1237bd2d13 5 static const uint64_t H[] =
feb11 0:7a1237bd2d13 6 {
feb11 0:7a1237bd2d13 7 // SHA-384
feb11 0:7a1237bd2d13 8 0xcbbb9d5dc1059ed8, 0x629a292a367cd507, 0x9159015a3070dd17, 0x152fecd8f70e5939,
feb11 0:7a1237bd2d13 9 0x67332667ffc00b31, 0x8eb44a8768581511, 0xdb0c2e0d64f98fa7, 0x47b5481dbefa4fa4,
feb11 0:7a1237bd2d13 10
feb11 0:7a1237bd2d13 11 // SHA-512
feb11 0:7a1237bd2d13 12 0x6a09e667f3bcc908, 0xbb67ae8584caa73b, 0x3c6ef372fe94f82b, 0xa54ff53a5f1d36f1,
feb11 0:7a1237bd2d13 13 0x510e527fade682d1, 0x9b05688c2b3e6c1f, 0x1f83d9abfb41bd6b, 0x5be0cd19137e2179
feb11 0:7a1237bd2d13 14 };
feb11 0:7a1237bd2d13 15
feb11 0:7a1237bd2d13 16 static uint64_t revWord(uint64_t w)
feb11 0:7a1237bd2d13 17 {
feb11 4:0da19393bd57 18 return __rev((w & 0xFFFFFFFF00000000) >> 32)
feb11 4:0da19393bd57 19 | ((uint64_t)(__rev(w & 0x00000000FFFFFFFF)) << 32);
feb11 0:7a1237bd2d13 20 }
feb11 0:7a1237bd2d13 21
feb11 3:85c6ee25cf3e 22 #define ROTL(W,N) (((W) << (N)) | ((W) >> (64-(N))))
feb11 3:85c6ee25cf3e 23 #define ROTR(W,N) (((W) >> (N)) | ((W) << (64-(N))))
feb11 3:85c6ee25cf3e 24 #define CH(X,Y,Z) (((X) & (Y)) ^ ((~(X)) & (Z)))
feb11 3:85c6ee25cf3e 25 #define MAJ(X,Y,Z) (((X) & (Y)) ^ ((X) & (Z)) ^ ((Y) & (Z)))
feb11 3:85c6ee25cf3e 26 #define BSIG0(X) (ROTR(X,28) ^ ROTR(X,34) ^ ROTR(X,39))
feb11 3:85c6ee25cf3e 27 #define BSIG1(X) (ROTR(X,14) ^ ROTR(X,18) ^ ROTR(X,41))
feb11 3:85c6ee25cf3e 28 #define SSIG0(X) (ROTR((X),1) ^ ROTR((X),8) ^ ((X) >> 7))
feb11 3:85c6ee25cf3e 29 #define SSIG1(X) (ROTR((X),19) ^ ROTR((X),61) ^ ((X) >> 6))
feb11 0:7a1237bd2d13 30
feb11 4:0da19393bd57 31 #define R(A,B,C,D,E,F,G,H,K,T) T1 = H + BSIG1(E) + CH(E,F,G) + K + w[T]; \
feb11 4:0da19393bd57 32 T2 = BSIG0(A) + MAJ(A,B,C); \
feb11 4:0da19393bd57 33 D += T1; \
feb11 4:0da19393bd57 34 H = T1 + T2;
feb11 4:0da19393bd57 35
feb11 0:7a1237bd2d13 36
feb11 0:7a1237bd2d13 37 SHA2_64::SHA2_64(SHA2_64_TYPE t):
feb11 0:7a1237bd2d13 38 type(t),
feb11 0:7a1237bd2d13 39 totalBufferLength(0),
feb11 0:7a1237bd2d13 40 bufferLength(0)
feb11 0:7a1237bd2d13 41 {
feb11 0:7a1237bd2d13 42 switch(type)
feb11 0:7a1237bd2d13 43 {
feb11 0:7a1237bd2d13 44 case SHA_384:
feb11 0:7a1237bd2d13 45 h0 = H[0];
feb11 0:7a1237bd2d13 46 h1 = H[1];
feb11 0:7a1237bd2d13 47 h2 = H[2];
feb11 0:7a1237bd2d13 48 h3 = H[3];
feb11 0:7a1237bd2d13 49 h4 = H[4];
feb11 0:7a1237bd2d13 50 h5 = H[5];
feb11 0:7a1237bd2d13 51 h6 = H[6];
feb11 0:7a1237bd2d13 52 h7 = H[7];
feb11 0:7a1237bd2d13 53 break;
feb11 0:7a1237bd2d13 54
feb11 0:7a1237bd2d13 55 case SHA_512:
feb11 0:7a1237bd2d13 56 h0 = H[8];
feb11 0:7a1237bd2d13 57 h1 = H[9];
feb11 0:7a1237bd2d13 58 h2 = H[10];
feb11 0:7a1237bd2d13 59 h3 = H[11];
feb11 0:7a1237bd2d13 60 h4 = H[12];
feb11 0:7a1237bd2d13 61 h5 = H[13];
feb11 0:7a1237bd2d13 62 h6 = H[14];
feb11 0:7a1237bd2d13 63 h7 = H[15];
feb11 0:7a1237bd2d13 64 break;
feb11 0:7a1237bd2d13 65 }
feb11 0:7a1237bd2d13 66 }
feb11 0:7a1237bd2d13 67
feb11 0:7a1237bd2d13 68 void SHA2_64::add(uint8_t *in, uint32_t length)
feb11 0:7a1237bd2d13 69 {
feb11 0:7a1237bd2d13 70 if(length < 128-bufferLength)
feb11 0:7a1237bd2d13 71 {
feb11 0:7a1237bd2d13 72 memcpy(&buffer[bufferLength], in, length);
feb11 0:7a1237bd2d13 73 bufferLength += length;
feb11 0:7a1237bd2d13 74 totalBufferLength += length;
feb11 0:7a1237bd2d13 75 return;
feb11 0:7a1237bd2d13 76 }
feb11 0:7a1237bd2d13 77 int offset = 128-bufferLength;
feb11 0:7a1237bd2d13 78 memcpy(&buffer[bufferLength], in, offset);
feb11 0:7a1237bd2d13 79 computeBlock(&h0,&h1,&h2,&h3,&h4,&h5,&h6,&h7,buffer);
feb11 0:7a1237bd2d13 80 while(length-offset > 128)
feb11 0:7a1237bd2d13 81 {
feb11 0:7a1237bd2d13 82 memcpy(buffer, &in[offset], 128);
feb11 0:7a1237bd2d13 83 computeBlock(&h0,&h1,&h2,&h3,&h4,&h5,&h6,&h7,buffer);
feb11 0:7a1237bd2d13 84 offset += 128;
feb11 0:7a1237bd2d13 85 }
feb11 0:7a1237bd2d13 86 if(offset > length)
feb11 0:7a1237bd2d13 87 offset -= 128;
feb11 0:7a1237bd2d13 88 bufferLength = length - offset;
feb11 0:7a1237bd2d13 89 memcpy(buffer, &in[offset], bufferLength);
feb11 0:7a1237bd2d13 90 totalBufferLength += length;
feb11 0:7a1237bd2d13 91 }
feb11 0:7a1237bd2d13 92
feb11 0:7a1237bd2d13 93 void SHA2_64::computeDigest(uint8_t *digest)
feb11 0:7a1237bd2d13 94 {
feb11 0:7a1237bd2d13 95 uint16_t padding;
feb11 0:7a1237bd2d13 96 if(totalBufferLength % 128 < 112)
feb11 0:7a1237bd2d13 97 padding = 112 - (totalBufferLength % 128);
feb11 0:7a1237bd2d13 98 else
feb11 0:7a1237bd2d13 99 padding = 112 + (128 - (totalBufferLength % 128));
feb11 0:7a1237bd2d13 100 uint8_t val = 0x80;
feb11 0:7a1237bd2d13 101 add(&val, 1);
feb11 0:7a1237bd2d13 102 val = 0;
feb11 0:7a1237bd2d13 103 for(int i = 0; i < padding-1; ++i)
feb11 0:7a1237bd2d13 104 add(&val,1);
feb11 0:7a1237bd2d13 105 totalBufferLength -= padding;
feb11 0:7a1237bd2d13 106 uint64_t lengthBit = 0;
feb11 0:7a1237bd2d13 107 add((uint8_t*)&lengthBit, 8);
feb11 0:7a1237bd2d13 108 lengthBit = (totalBufferLength - 8) * 8;
feb11 0:7a1237bd2d13 109 lengthBit = revWord(lengthBit);
feb11 0:7a1237bd2d13 110 add((uint8_t*)&lengthBit, 8);
feb11 0:7a1237bd2d13 111
feb11 0:7a1237bd2d13 112 h0 = revWord(h0);
feb11 0:7a1237bd2d13 113 h1 = revWord(h1);
feb11 0:7a1237bd2d13 114 h2 = revWord(h2);
feb11 0:7a1237bd2d13 115 h3 = revWord(h3);
feb11 0:7a1237bd2d13 116 h4 = revWord(h4);
feb11 0:7a1237bd2d13 117 h5 = revWord(h5);
feb11 0:7a1237bd2d13 118
feb11 0:7a1237bd2d13 119
feb11 0:7a1237bd2d13 120 memcpy(digest, &h0, 8);
feb11 0:7a1237bd2d13 121 memcpy(&digest[8], &h1, 8);
feb11 0:7a1237bd2d13 122 memcpy(&digest[16], &h2, 8);
feb11 0:7a1237bd2d13 123 memcpy(&digest[24], &h3, 8);
feb11 0:7a1237bd2d13 124 memcpy(&digest[32], &h4, 8);
feb11 0:7a1237bd2d13 125 memcpy(&digest[40], &h5, 8);
feb11 0:7a1237bd2d13 126
feb11 0:7a1237bd2d13 127 if(type == SHA_512)
feb11 0:7a1237bd2d13 128 {
feb11 0:7a1237bd2d13 129 h6 = revWord(h6);
feb11 0:7a1237bd2d13 130 h7 = revWord(h7);
feb11 0:7a1237bd2d13 131 memcpy(&digest[48], &h6, 8);
feb11 0:7a1237bd2d13 132 memcpy(&digest[56], &h7, 8);
feb11 0:7a1237bd2d13 133 }
feb11 0:7a1237bd2d13 134
feb11 0:7a1237bd2d13 135 // reset state
feb11 0:7a1237bd2d13 136 switch(type)
feb11 0:7a1237bd2d13 137 {
feb11 0:7a1237bd2d13 138 case SHA_384:
feb11 0:7a1237bd2d13 139 h0 = H[0];
feb11 0:7a1237bd2d13 140 h1 = H[1];
feb11 0:7a1237bd2d13 141 h2 = H[2];
feb11 0:7a1237bd2d13 142 h3 = H[3];
feb11 0:7a1237bd2d13 143 h4 = H[4];
feb11 0:7a1237bd2d13 144 h5 = H[5];
feb11 0:7a1237bd2d13 145 h6 = H[6];
feb11 0:7a1237bd2d13 146 h7 = H[7];
feb11 0:7a1237bd2d13 147 break;
feb11 0:7a1237bd2d13 148
feb11 0:7a1237bd2d13 149 case SHA_512:
feb11 0:7a1237bd2d13 150 h0 = H[8];
feb11 0:7a1237bd2d13 151 h1 = H[9];
feb11 0:7a1237bd2d13 152 h2 = H[10];
feb11 0:7a1237bd2d13 153 h3 = H[11];
feb11 0:7a1237bd2d13 154 h4 = H[12];
feb11 0:7a1237bd2d13 155 h5 = H[13];
feb11 0:7a1237bd2d13 156 h6 = H[14];
feb11 0:7a1237bd2d13 157 h7 = H[15];
feb11 0:7a1237bd2d13 158 break;
feb11 0:7a1237bd2d13 159 }
feb11 0:7a1237bd2d13 160 totalBufferLength = 0;
feb11 0:7a1237bd2d13 161 bufferLength = 0;
feb11 0:7a1237bd2d13 162 }
feb11 0:7a1237bd2d13 163
feb11 0:7a1237bd2d13 164 void SHA2_64::computeBlock(uint64_t *h02,
feb11 0:7a1237bd2d13 165 uint64_t *h12,
feb11 0:7a1237bd2d13 166 uint64_t *h22,
feb11 0:7a1237bd2d13 167 uint64_t *h32,
feb11 0:7a1237bd2d13 168 uint64_t *h42,
feb11 0:7a1237bd2d13 169 uint64_t *h52,
feb11 0:7a1237bd2d13 170 uint64_t *h62,
feb11 0:7a1237bd2d13 171 uint64_t *h72,
feb11 0:7a1237bd2d13 172 uint8_t *buffer)
feb11 0:7a1237bd2d13 173 {
feb11 0:7a1237bd2d13 174 uint64_t w[80];
feb11 4:0da19393bd57 175 uint64_t *buffer2 = (uint64_t*)buffer;
feb11 4:0da19393bd57 176
feb11 4:0da19393bd57 177 w[0] = revWord(buffer2[0]);
feb11 4:0da19393bd57 178 w[1] = revWord(buffer2[1]);
feb11 4:0da19393bd57 179 w[2] = revWord(buffer2[2]);
feb11 4:0da19393bd57 180 w[3] = revWord(buffer2[3]);
feb11 4:0da19393bd57 181 w[4] = revWord(buffer2[4]);
feb11 4:0da19393bd57 182 w[5] = revWord(buffer2[5]);
feb11 4:0da19393bd57 183 w[6] = revWord(buffer2[6]);
feb11 4:0da19393bd57 184 w[7] = revWord(buffer2[7]);
feb11 4:0da19393bd57 185 w[8] = revWord(buffer2[8]);
feb11 4:0da19393bd57 186 w[9] = revWord(buffer2[9]);
feb11 4:0da19393bd57 187 w[10] = revWord(buffer2[10]);
feb11 4:0da19393bd57 188 w[11] = revWord(buffer2[11]);
feb11 4:0da19393bd57 189 w[12] = revWord(buffer2[12]);
feb11 4:0da19393bd57 190 w[13] = revWord(buffer2[13]);
feb11 4:0da19393bd57 191 w[14] = revWord(buffer2[14]);
feb11 4:0da19393bd57 192 w[15] = revWord(buffer2[15]);
feb11 4:0da19393bd57 193
feb11 0:7a1237bd2d13 194 for(int t = 16; t < 80; ++t)
feb11 0:7a1237bd2d13 195 w[t] = SSIG1(w[t-2]) + w[t-7] + SSIG0(w[t-15]) + w[t-16];
feb11 0:7a1237bd2d13 196
feb11 0:7a1237bd2d13 197 uint64_t a = *h02, b = *h12, c = *h22, d = *h32, e = *h42, f = *h52, g = *h62, h = *h72;
feb11 4:0da19393bd57 198 uint64_t T1, T2;
feb11 4:0da19393bd57 199
feb11 4:0da19393bd57 200
feb11 4:0da19393bd57 201 R(a,b,c,d,e,f,g,h,0x428a2f98d728ae22,0)
feb11 4:0da19393bd57 202 R(h,a,b,c,d,e,f,g,0x7137449123ef65cd,1)
feb11 4:0da19393bd57 203 R(g,h,a,b,c,d,e,f,0xb5c0fbcfec4d3b2f,2)
feb11 4:0da19393bd57 204 R(f,g,h,a,b,c,d,e,0xe9b5dba58189dbbc,3)
feb11 4:0da19393bd57 205 R(e,f,g,h,a,b,c,d,0x3956c25bf348b538,4)
feb11 4:0da19393bd57 206 R(d,e,f,g,h,a,b,c,0x59f111f1b605d019,5)
feb11 4:0da19393bd57 207 R(c,d,e,f,g,h,a,b,0x923f82a4af194f9b,6)
feb11 4:0da19393bd57 208 R(b,c,d,e,f,g,h,a,0xab1c5ed5da6d8118,7)
feb11 4:0da19393bd57 209
feb11 4:0da19393bd57 210 R(a,b,c,d,e,f,g,h,0xd807aa98a3030242,8)
feb11 4:0da19393bd57 211 R(h,a,b,c,d,e,f,g,0x12835b0145706fbe,9)
feb11 4:0da19393bd57 212 R(g,h,a,b,c,d,e,f,0x243185be4ee4b28c,10)
feb11 4:0da19393bd57 213 R(f,g,h,a,b,c,d,e,0x550c7dc3d5ffb4e2,11)
feb11 4:0da19393bd57 214 R(e,f,g,h,a,b,c,d,0x72be5d74f27b896f,12)
feb11 4:0da19393bd57 215 R(d,e,f,g,h,a,b,c,0x80deb1fe3b1696b1,13)
feb11 4:0da19393bd57 216 R(c,d,e,f,g,h,a,b,0x9bdc06a725c71235,14)
feb11 4:0da19393bd57 217 R(b,c,d,e,f,g,h,a,0xc19bf174cf692694,15)
feb11 4:0da19393bd57 218
feb11 4:0da19393bd57 219
feb11 4:0da19393bd57 220 R(a,b,c,d,e,f,g,h,0xe49b69c19ef14ad2,16)
feb11 4:0da19393bd57 221 R(h,a,b,c,d,e,f,g,0xefbe4786384f25e3,17)
feb11 4:0da19393bd57 222 R(g,h,a,b,c,d,e,f,0x0fc19dc68b8cd5b5,18)
feb11 4:0da19393bd57 223 R(f,g,h,a,b,c,d,e,0x240ca1cc77ac9c65,19)
feb11 4:0da19393bd57 224 R(e,f,g,h,a,b,c,d,0x2de92c6f592b0275,20)
feb11 4:0da19393bd57 225 R(d,e,f,g,h,a,b,c,0x4a7484aa6ea6e483,21)
feb11 4:0da19393bd57 226 R(c,d,e,f,g,h,a,b,0x5cb0a9dcbd41fbd4,22)
feb11 4:0da19393bd57 227 R(b,c,d,e,f,g,h,a,0x76f988da831153b5,23)
feb11 4:0da19393bd57 228
feb11 4:0da19393bd57 229 R(a,b,c,d,e,f,g,h,0x983e5152ee66dfab,24)
feb11 4:0da19393bd57 230 R(h,a,b,c,d,e,f,g,0xa831c66d2db43210,25)
feb11 4:0da19393bd57 231 R(g,h,a,b,c,d,e,f,0xb00327c898fb213f,26)
feb11 4:0da19393bd57 232 R(f,g,h,a,b,c,d,e,0xbf597fc7beef0ee4,27)
feb11 4:0da19393bd57 233 R(e,f,g,h,a,b,c,d,0xc6e00bf33da88fc2,28)
feb11 4:0da19393bd57 234 R(d,e,f,g,h,a,b,c,0xd5a79147930aa725,29)
feb11 4:0da19393bd57 235 R(c,d,e,f,g,h,a,b,0x06ca6351e003826f,30)
feb11 4:0da19393bd57 236 R(b,c,d,e,f,g,h,a,0x142929670a0e6e70,31)
feb11 4:0da19393bd57 237
feb11 4:0da19393bd57 238
feb11 4:0da19393bd57 239 R(a,b,c,d,e,f,g,h,0x27b70a8546d22ffc,32)
feb11 4:0da19393bd57 240 R(h,a,b,c,d,e,f,g,0x2e1b21385c26c926,33)
feb11 4:0da19393bd57 241 R(g,h,a,b,c,d,e,f,0x4d2c6dfc5ac42aed,34)
feb11 4:0da19393bd57 242 R(f,g,h,a,b,c,d,e,0x53380d139d95b3df,35)
feb11 4:0da19393bd57 243 R(e,f,g,h,a,b,c,d,0x650a73548baf63de,36)
feb11 4:0da19393bd57 244 R(d,e,f,g,h,a,b,c,0x766a0abb3c77b2a8,37)
feb11 4:0da19393bd57 245 R(c,d,e,f,g,h,a,b,0x81c2c92e47edaee6,38)
feb11 4:0da19393bd57 246 R(b,c,d,e,f,g,h,a,0x92722c851482353b,39)
feb11 4:0da19393bd57 247
feb11 4:0da19393bd57 248 R(a,b,c,d,e,f,g,h,0xa2bfe8a14cf10364,40)
feb11 4:0da19393bd57 249 R(h,a,b,c,d,e,f,g,0xa81a664bbc423001,41)
feb11 4:0da19393bd57 250 R(g,h,a,b,c,d,e,f,0xc24b8b70d0f89791,42)
feb11 4:0da19393bd57 251 R(f,g,h,a,b,c,d,e,0xc76c51a30654be30,43)
feb11 4:0da19393bd57 252 R(e,f,g,h,a,b,c,d,0xd192e819d6ef5218,44)
feb11 4:0da19393bd57 253 R(d,e,f,g,h,a,b,c,0xd69906245565a910,45)
feb11 4:0da19393bd57 254 R(c,d,e,f,g,h,a,b,0xf40e35855771202a,46)
feb11 4:0da19393bd57 255 R(b,c,d,e,f,g,h,a,0x106aa07032bbd1b8,47)
feb11 4:0da19393bd57 256
feb11 4:0da19393bd57 257 R(a,b,c,d,e,f,g,h,0x19a4c116b8d2d0c8,48)
feb11 4:0da19393bd57 258 R(h,a,b,c,d,e,f,g,0x1e376c085141ab53,49)
feb11 4:0da19393bd57 259 R(g,h,a,b,c,d,e,f,0x2748774cdf8eeb99,50)
feb11 4:0da19393bd57 260 R(f,g,h,a,b,c,d,e,0x34b0bcb5e19b48a8,51)
feb11 4:0da19393bd57 261 R(e,f,g,h,a,b,c,d,0x391c0cb3c5c95a63,52)
feb11 4:0da19393bd57 262 R(d,e,f,g,h,a,b,c,0x4ed8aa4ae3418acb,53)
feb11 4:0da19393bd57 263 R(c,d,e,f,g,h,a,b,0x5b9cca4f7763e373,54)
feb11 4:0da19393bd57 264 R(b,c,d,e,f,g,h,a,0x682e6ff3d6b2b8a3,55)
feb11 4:0da19393bd57 265
feb11 4:0da19393bd57 266 R(a,b,c,d,e,f,g,h,0x748f82ee5defb2fc,56)
feb11 4:0da19393bd57 267 R(h,a,b,c,d,e,f,g,0x78a5636f43172f60,57)
feb11 4:0da19393bd57 268 R(g,h,a,b,c,d,e,f,0x84c87814a1f0ab72,58)
feb11 4:0da19393bd57 269 R(f,g,h,a,b,c,d,e,0x8cc702081a6439ec,59)
feb11 4:0da19393bd57 270 R(e,f,g,h,a,b,c,d,0x90befffa23631e28,60)
feb11 4:0da19393bd57 271 R(d,e,f,g,h,a,b,c,0xa4506cebde82bde9,61)
feb11 4:0da19393bd57 272 R(c,d,e,f,g,h,a,b,0xbef9a3f7b2c67915,62)
feb11 4:0da19393bd57 273 R(b,c,d,e,f,g,h,a,0xc67178f2e372532b,63)
feb11 4:0da19393bd57 274
feb11 4:0da19393bd57 275 R(a,b,c,d,e,f,g,h,0xca273eceea26619c,64)
feb11 4:0da19393bd57 276 R(h,a,b,c,d,e,f,g,0xd186b8c721c0c207,65)
feb11 4:0da19393bd57 277 R(g,h,a,b,c,d,e,f,0xeada7dd6cde0eb1e,66)
feb11 4:0da19393bd57 278 R(f,g,h,a,b,c,d,e,0xf57d4f7fee6ed178,67)
feb11 4:0da19393bd57 279 R(e,f,g,h,a,b,c,d,0x06f067aa72176fba,68)
feb11 4:0da19393bd57 280 R(d,e,f,g,h,a,b,c,0x0a637dc5a2c898a6,69)
feb11 4:0da19393bd57 281 R(c,d,e,f,g,h,a,b,0x113f9804bef90dae,70)
feb11 4:0da19393bd57 282 R(b,c,d,e,f,g,h,a,0x1b710b35131c471b,71)
feb11 4:0da19393bd57 283
feb11 4:0da19393bd57 284 R(a,b,c,d,e,f,g,h,0x28db77f523047d84,72)
feb11 4:0da19393bd57 285 R(h,a,b,c,d,e,f,g,0x32caab7b40c72493,73)
feb11 4:0da19393bd57 286 R(g,h,a,b,c,d,e,f,0x3c9ebe0a15c9bebc,74)
feb11 4:0da19393bd57 287 R(f,g,h,a,b,c,d,e,0x431d67c49c100d4c,75)
feb11 4:0da19393bd57 288 R(e,f,g,h,a,b,c,d,0x4cc5d4becb3e42b6,76)
feb11 4:0da19393bd57 289 R(d,e,f,g,h,a,b,c,0x597f299cfc657e2a,77)
feb11 4:0da19393bd57 290 R(c,d,e,f,g,h,a,b,0x5fcb6fab3ad6faec,78)
feb11 4:0da19393bd57 291 R(b,c,d,e,f,g,h,a,0x6c44198c4a475817,79)
feb11 4:0da19393bd57 292
feb11 0:7a1237bd2d13 293 *h02 += a;
feb11 0:7a1237bd2d13 294 *h12 += b;
feb11 0:7a1237bd2d13 295 *h22 += c;
feb11 0:7a1237bd2d13 296 *h32 += d;
feb11 0:7a1237bd2d13 297 *h42 += e;
feb11 0:7a1237bd2d13 298 *h52 += f;
feb11 0:7a1237bd2d13 299 *h62 += g;
feb11 0:7a1237bd2d13 300 *h72 += h;
feb11 0:7a1237bd2d13 301 }
feb11 0:7a1237bd2d13 302
feb11 0:7a1237bd2d13 303 void SHA2_64::computeDigest(SHA2_64_TYPE type, uint8_t *digest, uint8_t *in, uint32_t length)
feb11 0:7a1237bd2d13 304 {
feb11 3:85c6ee25cf3e 305 uint64_t lengthBit = length * 8;
feb11 0:7a1237bd2d13 306 uint64_t h0 = H[type*8], h1 = H[type*8+1], h2 = H[type*8+2], h3 = H[type*8+3];
feb11 0:7a1237bd2d13 307 uint64_t h4 = H[type*8+4], h5 = H[type*8+5], h6 = H[type*8+6], h7 = H[type*8+7];
feb11 3:85c6ee25cf3e 308
feb11 3:85c6ee25cf3e 309 int padding;
feb11 0:7a1237bd2d13 310 if(length % 128 < 112)
feb11 0:7a1237bd2d13 311 padding = 112 - (length % 128);
feb11 0:7a1237bd2d13 312 else
feb11 0:7a1237bd2d13 313 padding = 112 + (128 - (length % 128));
feb11 3:85c6ee25cf3e 314
feb11 3:85c6ee25cf3e 315 while(length >= 128)
feb11 0:7a1237bd2d13 316 {
feb11 3:85c6ee25cf3e 317 computeBlock(&h0, &h1, &h2, &h3, &h4, &h5, &h6, &h7, in);
feb11 3:85c6ee25cf3e 318 in += 128;
feb11 3:85c6ee25cf3e 319 length -= 128;
feb11 0:7a1237bd2d13 320 }
feb11 3:85c6ee25cf3e 321 uint8_t buffer[128];
feb11 3:85c6ee25cf3e 322 memcpy(buffer, in,length);
feb11 3:85c6ee25cf3e 323 buffer[length] = 0x80;
feb11 3:85c6ee25cf3e 324 length++;
feb11 3:85c6ee25cf3e 325 padding--;
feb11 3:85c6ee25cf3e 326
feb11 3:85c6ee25cf3e 327 if(padding+length == 112)
feb11 3:85c6ee25cf3e 328 memset(&buffer[length], 0, padding);
feb11 3:85c6ee25cf3e 329 else
feb11 3:85c6ee25cf3e 330 {
feb11 3:85c6ee25cf3e 331 memset(&buffer[length], 0, 128-length);
feb11 3:85c6ee25cf3e 332 computeBlock(&h0, &h1, &h2, &h3, &h4, &h5, &h6, &h7, buffer);
feb11 3:85c6ee25cf3e 333 memset(buffer, 0, length);
feb11 3:85c6ee25cf3e 334 }
feb11 3:85c6ee25cf3e 335
feb11 0:7a1237bd2d13 336 lengthBit = revWord(lengthBit);
feb11 0:7a1237bd2d13 337 memset(&buffer[112], 0, 8);
feb11 0:7a1237bd2d13 338 memcpy(&buffer[120], &lengthBit, 8);
feb11 0:7a1237bd2d13 339 computeBlock(&h0, &h1, &h2, &h3, &h4, &h5, &h6, &h7, buffer);
feb11 0:7a1237bd2d13 340
feb11 0:7a1237bd2d13 341 h0 = revWord(h0);
feb11 0:7a1237bd2d13 342 h1 = revWord(h1);
feb11 0:7a1237bd2d13 343 h2 = revWord(h2);
feb11 0:7a1237bd2d13 344 h3 = revWord(h3);
feb11 0:7a1237bd2d13 345 h4 = revWord(h4);
feb11 0:7a1237bd2d13 346 h5 = revWord(h5);
feb11 0:7a1237bd2d13 347
feb11 0:7a1237bd2d13 348
feb11 0:7a1237bd2d13 349 memcpy(digest, &h0, 8);
feb11 0:7a1237bd2d13 350 memcpy(&digest[8], &h1, 8);
feb11 0:7a1237bd2d13 351 memcpy(&digest[16], &h2, 8);
feb11 0:7a1237bd2d13 352 memcpy(&digest[24], &h3, 8);
feb11 0:7a1237bd2d13 353 memcpy(&digest[32], &h4, 8);
feb11 0:7a1237bd2d13 354 memcpy(&digest[40], &h5, 8);
feb11 0:7a1237bd2d13 355
feb11 0:7a1237bd2d13 356 if(type == SHA_512)
feb11 0:7a1237bd2d13 357 {
feb11 0:7a1237bd2d13 358 h6 = revWord(h6);
feb11 0:7a1237bd2d13 359 h7 = revWord(h7);
feb11 0:7a1237bd2d13 360 memcpy(&digest[48], &h6, 8);
feb11 0:7a1237bd2d13 361 memcpy(&digest[56], &h7, 8);
feb11 0:7a1237bd2d13 362 }
feb11 0:7a1237bd2d13 363 }
feb11 0:7a1237bd2d13 364