diff options
-rw-r--r-- | src/lib/hash/mdx_hash/mdx_hash.cpp | 67 | ||||
-rw-r--r-- | src/lib/hash/mdx_hash/mdx_hash.h | 15 |
2 files changed, 49 insertions, 33 deletions
diff --git a/src/lib/hash/mdx_hash/mdx_hash.cpp b/src/lib/hash/mdx_hash/mdx_hash.cpp index 7d163dbfb..64ae516a8 100644 --- a/src/lib/hash/mdx_hash/mdx_hash.cpp +++ b/src/lib/hash/mdx_hash/mdx_hash.cpp @@ -1,6 +1,6 @@ /* * Merkle-Damgard Hash Function -* (C) 1999-2008 Jack Lloyd +* (C) 1999-2008,2018 Jack Lloyd * * Botan is released under the Simplified BSD License (see license.txt) */ @@ -8,6 +8,7 @@ #include <botan/mdx_hash.h> #include <botan/exceptn.h> #include <botan/loadstor.h> +#include <botan/internal/bit_ops.h> namespace Botan { @@ -15,16 +16,23 @@ namespace Botan { * MDx_HashFunction Constructor */ MDx_HashFunction::MDx_HashFunction(size_t block_len, - bool byte_end, - bool bit_end, - size_t cnt_size) : - m_buffer(block_len), + bool byte_big_endian, + bool bit_big_endian, + uint8_t cnt_size) : + m_pad_char(bit_big_endian == true ? 0x80 : 0x01), + m_counter_size(cnt_size), + m_block_bits(ceil_log2(block_len)), + m_count_big_endian(byte_big_endian), m_count(0), - m_position(0), - BIG_BYTE_ENDIAN(byte_end), - BIG_BIT_ENDIAN(bit_end), - COUNT_SIZE(cnt_size) + m_buffer(block_len), + m_position(0) { + if(!is_power_of_2(block_len)) + throw Invalid_Argument("MDx_HashFunction block length must be a power of 2"); + if(m_block_bits < 3 || m_block_bits > 16) + throw Invalid_Argument("MDx_HashFunction block size too large or too small"); + if(m_counter_size < 8 || m_counter_size > block_len) + throw Invalid_State("MDx_HashFunction invalid counter length"); } /* @@ -41,28 +49,33 @@ void MDx_HashFunction::clear() */ void MDx_HashFunction::add_data(const uint8_t input[], size_t length) { + const size_t block_len = static_cast<size_t>(1) << m_block_bits; + m_count += length; if(m_position) { buffer_insert(m_buffer, m_position, input, length); - if(m_position + length >= m_buffer.size()) + if(m_position + length >= block_len) { compress_n(m_buffer.data(), 1); - input += (m_buffer.size() - m_position); - length -= (m_buffer.size() - m_position); + input += (block_len - m_position); + length -= (block_len - m_position); m_position = 0; } } - const size_t full_blocks = length / m_buffer.size(); - const size_t remaining = length % m_buffer.size(); + // Just in case the compiler can't figure out block_len is a power of 2 + const size_t full_blocks = length >> m_block_bits; + const size_t remaining = length & (block_len - 1); - if(full_blocks) + if(full_blocks > 0) + { compress_n(input, full_blocks); + } - buffer_insert(m_buffer, m_position, input + full_blocks * m_buffer.size(), remaining); + buffer_insert(m_buffer, m_position, input + full_blocks * block_len, remaining); m_position += remaining; } @@ -71,16 +84,18 @@ void MDx_HashFunction::add_data(const uint8_t input[], size_t length) */ void MDx_HashFunction::final_result(uint8_t output[]) { - clear_mem(&m_buffer[m_position], m_buffer.size() - m_position); - m_buffer[m_position] = (BIG_BIT_ENDIAN ? 0x80 : 0x01); + const size_t block_len = static_cast<size_t>(1) << m_block_bits; + + clear_mem(&m_buffer[m_position], block_len - m_position); + m_buffer[m_position] = m_pad_char; - if(m_position >= m_buffer.size() - COUNT_SIZE) + if(m_position >= block_len - m_counter_size) { compress_n(m_buffer.data(), 1); zeroise(m_buffer); } - write_count(&m_buffer[m_buffer.size() - COUNT_SIZE]); + write_count(&m_buffer[block_len - m_counter_size]); compress_n(m_buffer.data(), 1); copy_out(output); @@ -92,17 +107,15 @@ void MDx_HashFunction::final_result(uint8_t output[]) */ void MDx_HashFunction::write_count(uint8_t out[]) { - if(COUNT_SIZE < 8) - throw Invalid_State("MDx_HashFunction::write_count: COUNT_SIZE < 8"); - if(COUNT_SIZE >= output_length() || COUNT_SIZE >= hash_block_size()) - throw Invalid_Argument("MDx_HashFunction: COUNT_SIZE is too big"); + BOTAN_ASSERT_NOMSG(m_counter_size <= output_length()); + BOTAN_ASSERT_NOMSG(m_counter_size >= 8); const uint64_t bit_count = m_count * 8; - if(BIG_BYTE_ENDIAN) - store_be(bit_count, out + COUNT_SIZE - 8); + if(m_count_big_endian) + store_be(bit_count, out + m_counter_size - 8); else - store_le(bit_count, out + COUNT_SIZE - 8); + store_le(bit_count, out + m_counter_size - 8); } } diff --git a/src/lib/hash/mdx_hash/mdx_hash.h b/src/lib/hash/mdx_hash/mdx_hash.h index f958e9fb7..b18c2e270 100644 --- a/src/lib/hash/mdx_hash/mdx_hash.h +++ b/src/lib/hash/mdx_hash/mdx_hash.h @@ -19,7 +19,8 @@ class BOTAN_PUBLIC_API(2,0) MDx_HashFunction : public HashFunction { public: /** - * @param block_length is the number of bytes per block + * @param block_length is the number of bytes per block, which must + * be a power of 2 and at least 8. * @param big_byte_endian specifies if the hash uses big-endian bytes * @param big_bit_endian specifies if the hash uses big-endian bits * @param counter_size specifies the size of the counter var in bytes @@ -27,7 +28,7 @@ class BOTAN_PUBLIC_API(2,0) MDx_HashFunction : public HashFunction MDx_HashFunction(size_t block_length, bool big_byte_endian, bool big_bit_endian, - size_t counter_size = 8); + uint8_t counter_size = 8); size_t hash_block_size() const override final { return m_buffer.size(); } protected: @@ -55,12 +56,14 @@ class BOTAN_PUBLIC_API(2,0) MDx_HashFunction : public HashFunction */ virtual void write_count(uint8_t out[]); private: - secure_vector<uint8_t> m_buffer; + const uint8_t m_pad_char; + const uint8_t m_counter_size; + const uint8_t m_block_bits; + const bool m_count_big_endian; + uint64_t m_count; + secure_vector<uint8_t> m_buffer; size_t m_position; - - const bool BIG_BYTE_ENDIAN, BIG_BIT_ENDIAN; - const size_t COUNT_SIZE; }; } |