首頁 探索 說明
登入
8516
/
Test
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
分支: master
分支列表 標籤列表
Test
/
EVSE
/
GPL
/
php-7.3.28
/
ext
/
hash
/
hash_sha3.c

hash_sha3.c 8.4 KB
永久連結 文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291 
  1. /*
    2. 

  2.    +----------------------------------------------------------------------+
    3. 

  3.    | PHP Version 7                                                        |
    4. 

  4.    +----------------------------------------------------------------------+
    5. 

  5.    | Copyright (c) 1997-2018 The PHP Group                                |
    6. 

  6.    +----------------------------------------------------------------------+
    7. 

  7.    | This source file is subject to version 3.01 of the PHP license,      |
    8. 

  8.    | that is bundled with this package in the file LICENSE, and is        |
    9. 

  9.    | available through the world-wide-web at the following url:           |
    10. 

  10.    | http://www.php.net/license/3_01.txt                                  |
    11. 

  11.    | If you did not receive a copy of the PHP license and are unable to   |
    12. 

  12.    | obtain it through the world-wide-web, please send a note to          |
    13. 

  13.    | license@php.net so we can mail you a copy immediately.               |
    14. 

  14.    +----------------------------------------------------------------------+
    15. 

  15.    | Author: Sara Golemon <pollita@php.net>                               |
    16. 

  16.    +----------------------------------------------------------------------+
    17. 

  17. */
    18. 

  18. 

  19. #include "php_hash.h"
    20. 

  20. #include "php_hash_sha3.h"
    21. 

  21. 

  22. #ifdef HAVE_SLOW_HASH3
    23. 

  23. // ================= slow algo ==============================================
    24. 

  24. 

  25. #if (defined(__APPLE__) || defined(__APPLE_CC__)) && \
    26. 

  26.     (defined(__BIG_ENDIAN__) || defined(__LITTLE_ENDIAN__))
    27. 

  27. # if defined(__LITTLE_ENDIAN__)
    28. 

  28. #  undef WORDS_BIGENDIAN
    29. 

  29. # else
    30. 

  30. #  if defined(__BIG_ENDIAN__)
    31. 

  31. #   define WORDS_BIGENDIAN
    32. 

  32. #  endif
    33. 

  33. # endif
    34. 

  34. #endif
    35. 

  35. 

  36. static inline uint64_t rol64(uint64_t v, unsigned char b) {
    37. 

  37. 	return (v << b) | (v >> (64 - b));
    38. 

  38. }
    39. 

  39. static inline unsigned char idx(unsigned char x, unsigned char y) {
    40. 

  40. 	return x + (5 * y);
    41. 

  41. }
    42. 

  42. 

  43. #ifdef WORDS_BIGENDIAN
    44. 

  44. static inline uint64_t load64(const unsigned char* x) {
    45. 

  45. 	signed char i;
    46. 

  46. 	uint64_t ret = 0;
    47. 

  47. 	for (i = 7; i >= 0; --i) {
    48. 

  48. 		ret <<= 8;
    49. 

  49. 		ret |= x[i];
    50. 

  50. 	}
    51. 

  51. 	return ret;
    52. 

  52. }
    53. 

  53. static inline void store64(unsigned char* x, uint64_t val) {
    54. 

  54. 	char i;
    55. 

  55. 	for (i = 0; i < 8; ++i) {
    56. 

  56. 		x[i] = val & 0xFF;
    57. 

  57. 		val >>= 8;
    58. 

  58. 	}
    59. 

  59. }
    60. 

  60. static inline void xor64(unsigned char* x, uint64_t val) {
    61. 

  61. 	char i;
    62. 

  62. 	for (i = 0; i < 8; ++i) {
    63. 

  63. 		x[i] ^= val & 0xFF;
    64. 

  64. 		val >>= 8;
    65. 

  65. 	}
    66. 

  66. }
    67. 

  67. # define readLane(x, y)     load64(ctx->state+sizeof(uint64_t)*idx(x, y))
    68. 

  68. # define writeLane(x, y, v) store64(ctx->state+sizeof(uint64_t)*idx(x, y), v)
    69. 

  69. # define XORLane(x, y, v)   xor64(ctx->state+sizeof(uint64_t)*idx(x, y), v)
    70. 

  70. #else
    71. 

  71. # define readLane(x, y)     (((uint64_t*)ctx->state)[idx(x,y)])
    72. 

  72. # define writeLane(x, y, v) (((uint64_t*)ctx->state)[idx(x,y)] = v)
    73. 

  73. # define XORLane(x, y, v)   (((uint64_t*)ctx->state)[idx(x,y)] ^= v)
    74. 

  74. #endif
    75. 

  75. 

  76. static inline char LFSR86540(unsigned char* pLFSR)
    77. 

  77. {
    78. 

  78. 	unsigned char LFSR = *pLFSR;
    79. 

  79. 	char result = LFSR & 0x01;
    80. 

  80. 	if (LFSR & 0x80) {
    81. 

  81. 		// Primitive polynomial over GF(2): x^8+x^6+x^5+x^4+1
    82. 

  82. 		LFSR = (LFSR << 1) ^ 0x71;
    83. 

  83. 	} else {
    84. 

  84. 		LFSR <<= 1;
    85. 

  85. 	}
    86. 

  86. 	*pLFSR = LFSR;
    87. 

  87. 	return result;
    88. 

  88. }
    89. 

  89. 

  90. static void permute(PHP_SHA3_CTX* ctx) {
    91. 

  91. 	unsigned char LFSRstate = 0x01;
    92. 

  92. 	unsigned char round;
    93. 

  93. 

  94. 	for (round = 0; round < 24; ++round) {
    95. 

  95. 		{ // Theta step (see [Keccak Reference, Section 2.3.2])
    96. 

  96. 			uint64_t C[5], D;
    97. 

  97. 			unsigned char x, y;
    98. 

  98. 			for (x = 0; x < 5; ++x) {
    99. 

  99. 				C[x] = readLane(x, 0) ^ readLane(x, 1) ^
    100. 

  100. 				readLane(x, 2) ^ readLane(x, 3) ^ readLane(x, 4);
    101. 

  101. 			}
    102. 

  102. 			for (x = 0; x < 5; ++x) {
    103. 

  103. 				D = C[(x+4)%5] ^ rol64(C[(x+1)%5], 1);
    104. 

  104. 				for (y = 0; y < 5; ++y) {
    105. 

  105. 					XORLane(x, y, D);
    106. 

  106. 				}
    107. 

  107. 			}
    108. 

  108. 		}
    109. 

  109. 

  110. 		{ // p and Pi steps (see [Keccak Reference, Sections 2.3.3 and 2.3.4])
    111. 

  111. 			unsigned char x = 1, y = 0, t;
    112. 

  112. 			uint64_t current = readLane(x, y);
    113. 

  113. 			for (t = 0; t < 24; ++t) {
    114. 

  114. 				unsigned char r = ((t + 1) * (t + 2) / 2) % 64;
    115. 

  115. 				unsigned char Y = (2*x + 3*y) % 5;
    116. 

  116. 				uint64_t temp;
    117. 

  117. 				x = y;
    118. 

  118. 				y = Y;
    119. 

  119. 				temp = readLane(x, y);
    120. 

  120. 				writeLane(x, y, rol64(current, r));
    121. 

  121. 				current = temp;
    122. 

  122. 			}
    123. 

  123. 		}
    124. 

  124. 

  125. 		{ // X step (see [Keccak Reference, Section 2.3.1])
    126. 

  126. 			unsigned char x, y;
    127. 

  127. 			for (y = 0; y < 5; ++y) {
    128. 

  128. 				uint64_t temp[5];
    129. 

  129. 				for (x = 0; x < 5; ++x) {
    130. 

  130. 					temp[x] = readLane(x, y);
    131. 

  131. 				}
    132. 

  132. 				for (x = 0; x < 5; ++x) {
    133. 

  133. 					writeLane(x, y, temp[x] ^((~temp[(x+1)%5]) & temp[(x+2)%5]));
    134. 

  134. 				}
    135. 

  135. 			}
    136. 

  136. 		}
    137. 

  137. 

  138. 		{ // i step (see [Keccak Reference, Section 2.3.5])
    139. 

  139. 			unsigned char j;
    140. 

  140. 			for (j = 0; j < 7; ++j) {
    141. 

  141. 				if (LFSR86540(&LFSRstate)) {
    142. 

  142. 					uint64_t bitPos = (1<<j) - 1;
    143. 

  143. 					XORLane(0, 0, (uint64_t)1 << bitPos);
    144. 

  144. 				}
    145. 

  145. 			}
    146. 

  146. 		}
    147. 

  147. 	}
    148. 

  148. }
    149. 

  149. 

  150. // ==========================================================================
    151. 

  151. 

  152. static void PHP_SHA3_Init(PHP_SHA3_CTX* ctx,
    153. 

  153.                           int bits) {
    154. 

  154. 	memset(ctx, 0, sizeof(PHP_SHA3_CTX));
    155. 

  155. }
    156. 

  156. 

  157. static void PHP_SHA3_Update(PHP_SHA3_CTX* ctx,
    158. 

  158.                             const unsigned char* buf,
    159. 

  159.                             unsigned int count,
    160. 

  160.                             size_t block_size) {
    161. 

  161. 	while (count > 0) {
    162. 

  162. 		unsigned int len = block_size - ctx->pos;
    163. 

  163. 		if (len > count) len = count;
    164. 

  164. 		count -= len;
    165. 

  165. 		while (len-- > 0) {
    166. 

  166. 			ctx->state[ctx->pos++] ^= *(buf++);
    167. 

  167. 		}
    168. 

  168. 		if (ctx->pos >= block_size) {
    169. 

  169. 			permute(ctx);
    170. 

  170. 			ctx->pos = 0;
    171. 

  171. 		}
    172. 

  172. 	}
    173. 

  173. }
    174. 

  174. 

  175. static void PHP_SHA3_Final(unsigned char* digest,
    176. 

  176.                            PHP_SHA3_CTX* ctx,
    177. 

  177.                            int block_size,
    178. 

  178.                            int digest_size) {
    179. 

  179. 	int len = digest_size;
    180. 

  180. 

  181. 	// Pad state to finalize
    182. 

  182. 	ctx->state[ctx->pos++] ^= 0x06;
    183. 

  183. 	ctx->state[block_size-1] ^= 0x80;
    184. 

  184. 	permute(ctx);
    185. 

  185. 

  186. 	// Square output for digest
    187. 

  187. 	for(;;) {
    188. 

  188. 		int bs = (len < block_size) ? len : block_size;
    189. 

  189. 		memcpy(digest, ctx->state, bs);
    190. 

  190. 		digest += bs;
    191. 

  191. 		len -= bs;
    192. 

  192. 		if (!len) break;
    193. 

  193. 		permute(ctx);
    194. 

  194. 	}
    195. 

  195. 

  196. 	// Zero out context
    197. 

  197. 	ZEND_SECURE_ZERO(ctx, sizeof(PHP_SHA3_CTX));
    198. 

  198. }
    199. 

  199. 

  200. // ==========================================================================
    201. 

  201. 

  202. #define DECLARE_SHA3_OPS(bits) \
    203. 

  203. void PHP_SHA3##bits##Init(PHP_SHA3_##bits##_CTX* ctx) { \
    204. 

  204. 	PHP_SHA3_Init(ctx, bits); \
    205. 

  205. } \
    206. 

  206. void PHP_SHA3##bits##Update(PHP_SHA3_##bits##_CTX* ctx, \
    207. 

  207.                             const unsigned char* input, \
    208. 

  208.                             unsigned int inputLen) { \
    209. 

  209. 	PHP_SHA3_Update(ctx, input, inputLen, \
    210. 

  210.                     (1600 - (2 * bits)) >> 3); \
    211. 

  211. } \
    212. 

  212. void PHP_SHA3##bits##Final(unsigned char* digest, \
    213. 

  213.                            PHP_SHA3_##bits##_CTX* ctx) { \
    214. 

  214. 	PHP_SHA3_Final(digest, ctx, \
    215. 

  215.                    (1600 - (2 * bits)) >> 3, \
    216. 

  216.                    bits >> 3); \
    217. 

  217. } \
    218. 

  218. const php_hash_ops php_hash_sha3_##bits##_ops = { \
    219. 

  219. 	(php_hash_init_func_t) PHP_SHA3##bits##Init, \
    220. 

  220. 	(php_hash_update_func_t) PHP_SHA3##bits##Update, \
    221. 

  221. 	(php_hash_final_func_t) PHP_SHA3##bits##Final, \
    222. 

  222. 	php_hash_copy, \
    223. 

  223. 	bits >> 3, \
    224. 

  224. 	(1600 - (2 * bits)) >> 3, \
    225. 

  225. 	sizeof(PHP_SHA3_##bits##_CTX), \
    226. 

  226. 	1 \
    227. 

  227. }
    228. 

  228. 

  229. #else
    230. 

  230. 

  231. // ================= fast algo ==============================================
    232. 

  232. 

  233. #define SUCCESS SHA3_SUCCESS /* Avoid conflict between KeccacHash.h and zend_types.h */
    234. 

  234. #include "KeccakHash.h"
    235. 

  235. 

  236. 

  237. // ==========================================================================
    238. 

  238. 

  239. static int hash_sha3_copy(const void *ops, void *orig_context, void *dest_context)
    240. 

  240. {
    241. 

  241. 	PHP_SHA3_CTX* orig = (PHP_SHA3_CTX*)orig_context;
    242. 

  242. 	PHP_SHA3_CTX* dest = (PHP_SHA3_CTX*)dest_context;
    243. 

  243. 	memcpy(dest->hashinstance, orig->hashinstance, sizeof(Keccak_HashInstance));
    244. 

  244. 	return SUCCESS;
    245. 

  245. }
    246. 

  246. 

  247. #define DECLARE_SHA3_OPS(bits) \
    248. 

  248. void PHP_SHA3##bits##Init(PHP_SHA3_##bits##_CTX* ctx) { \
    249. 

  249. 	ctx->hashinstance = emalloc(sizeof(Keccak_HashInstance)); \
    250. 

  250. 	Keccak_HashInitialize_SHA3_##bits((Keccak_HashInstance *)ctx->hashinstance); \
    251. 

  251. } \
    252. 

  252. void PHP_SHA3##bits##Update(PHP_SHA3_##bits##_CTX* ctx, \
    253. 

  253.                             const unsigned char* input, \
    254. 

  254.                             unsigned int inputLen) { \
    255. 

  255. 	Keccak_HashUpdate((Keccak_HashInstance *)ctx->hashinstance, input, inputLen * 8); \
    256. 

  256. } \
    257. 

  257. void PHP_SHA3##bits##Final(unsigned char* digest, \
    258. 

  258.                            PHP_SHA3_##bits##_CTX* ctx) { \
    259. 

  259. 	Keccak_HashFinal((Keccak_HashInstance *)ctx->hashinstance, digest); \
    260. 

  260. 	efree(ctx->hashinstance); \
    261. 

  261. 	ctx->hashinstance = NULL; \
    262. 

  262. } \
    263. 

  263. const php_hash_ops php_hash_sha3_##bits##_ops = { \
    264. 

  264. 	(php_hash_init_func_t) PHP_SHA3##bits##Init, \
    265. 

  265. 	(php_hash_update_func_t) PHP_SHA3##bits##Update, \
    266. 

  266. 	(php_hash_final_func_t) PHP_SHA3##bits##Final, \
    267. 

  267. 	hash_sha3_copy, \
    268. 

  268. 	bits >> 3, \
    269. 

  269. 	(1600 - (2 * bits)) >> 3, \
    270. 

  270. 	sizeof(PHP_SHA3_##bits##_CTX), \
    271. 

  271. 	1 \
    272. 

  272. }
    273. 

  273. 

  274. #endif
    275. 

  275. // ================= both algo ==============================================
    276. 

  276. 

  277. DECLARE_SHA3_OPS(224);
    278. 

  278. DECLARE_SHA3_OPS(256);
    279. 

  279. DECLARE_SHA3_OPS(384);
    280. 

  280. DECLARE_SHA3_OPS(512);
    281. 

  281. 

  282. #undef DECLARE_SHA3_OPS
    283. 

  283. 

  284. /*
    285. 

  285.  * Local variables:
    286. 

  286.  * tab-width: 4
    287. 

  287.  * c-basic-offset: 4
    288. 

  288.  * End:
    289. 

  289.  * vim600: sw=4 ts=4 fdm=marker
    290. 

  290.  * vim<600: sw=4 ts=4
    291. 

  291.  */
    292.