sha3 1.0.3 → 1.0.5

data/ext/sha3/KeccakSponge.c

@@ -1,192 +0,0 @@
-/*
-Implementation by the Keccak, Keyak and Ketje Teams, namely, Guido Bertoni,
-Joan Daemen, Michaël Peeters, Gilles Van Assche and Ronny Van Keer, hereby
-denoted as "the implementer".
-
-For more information, feedback or questions, please refer to our websites:
-http://keccak.noekeon.org/
-http://keyak.noekeon.org/
-http://ketje.noekeon.org/
-
-To the extent possible under law, the implementer has waived all copyright
-and related or neighboring rights to the source code in this file.
-http://creativecommons.org/publicdomain/zero/1.0/
-*/
-
-#include <string.h>
-#include "KeccakSponge.h"
-#include "SnP-interface.h"
-#ifdef KeccakReference
-#include "displayIntermediateValues.h"
-#endif
-
-/* ---------------------------------------------------------------- */
-
-int Keccak_SpongeInitialize(Keccak_SpongeInstance *instance, unsigned int rate, unsigned int capacity)
-{
-    if (rate+capacity != SnP_width)
-        return 1;
-    if ((rate <= 0) || (rate > SnP_width) || ((rate % 8) != 0))
-        return 1;
-    SnP_StaticInitialize();
-    SnP_Initialize(instance->state);
-    instance->rate = rate;
-    instance->byteIOIndex = 0;
-    instance->squeezing = 0;
-
-    return 0;
-}
-
-/* ---------------------------------------------------------------- */
-
-int Keccak_SpongeAbsorb(Keccak_SpongeInstance *instance, const unsigned char *data, size_t dataByteLen)
-{
-    size_t i, j;
-    unsigned int partialBlock;
-    const unsigned char *curData;
-    unsigned int rateInBytes = instance->rate/8;
-
-    if (instance->squeezing)
-        return 1; // Too late for additional input
-
-    i = 0;
-    curData = data;
-    while(i < dataByteLen) {
-        if ((instance->byteIOIndex == 0) && (dataByteLen >= (i + rateInBytes))) {
-            // processing full blocks first
-            if ((rateInBytes % SnP_laneLengthInBytes) == 0) {
-                // fast lane: whole lane rate
-                j = SnP_FBWL_Absorb(instance->state, rateInBytes/SnP_laneLengthInBytes, curData, dataByteLen - i, 0);
-                i += j;
-                curData += j;
-            }
-            else {
-                for(j=dataByteLen-i; j>=rateInBytes; j-=rateInBytes) {
-                    #ifdef KeccakReference
-                    displayBytes(1, "Block to be absorbed", curData, rateInBytes);
-                    #endif
-                    SnP_XORBytes(instance->state, curData, 0, rateInBytes);
-                    SnP_Permute(instance->state);
-                    curData+=rateInBytes;
-                }
-                i = dataByteLen - j;
-            }
-        }
-        else {
-            // normal lane: using the message queue
-            partialBlock = (unsigned int)(dataByteLen - i);
-            if (partialBlock+instance->byteIOIndex > rateInBytes)
-                partialBlock = rateInBytes-instance->byteIOIndex;
-            #ifdef KeccakReference
-            displayBytes(1, "Block to be absorbed (part)", curData, partialBlock);
-            #endif
-            i += partialBlock;
-
-            SnP_XORBytes(instance->state, curData, instance->byteIOIndex, partialBlock);
-            curData += partialBlock;
-            instance->byteIOIndex += partialBlock;
-            if (instance->byteIOIndex == rateInBytes) {
-                SnP_Permute(instance->state);
-                instance->byteIOIndex = 0;
-            }
-        }
-    }
-    return 0;
-}
-
-/* ---------------------------------------------------------------- */
-
-int Keccak_SpongeAbsorbLastFewBits(Keccak_SpongeInstance *instance, unsigned char delimitedData)
-{
-    unsigned char delimitedData1[1];
-    unsigned int rateInBytes = instance->rate/8;
-
-    if (delimitedData == 0)
-        return 1;
-    if (instance->squeezing)
-        return 1; // Too late for additional input
-
-    delimitedData1[0] = delimitedData;
-    #ifdef KeccakReference
-    displayBytes(1, "Block to be absorbed (last few bits + first bit of padding)", delimitedData1, 1);
-    #endif
-    // Last few bits, whose delimiter coincides with first bit of padding
-    SnP_XORBytes(instance->state, delimitedData1, instance->byteIOIndex, 1);
-    // If the first bit of padding is at position rate-1, we need a whole new block for the second bit of padding
-    if ((delimitedData >= 0x80) && (instance->byteIOIndex == (rateInBytes-1)))
-        SnP_Permute(instance->state);
-    // Second bit of padding
-    SnP_ComplementBit(instance->state, rateInBytes*8-1);
-    #ifdef KeccakReference
-    {
-        unsigned char block[SnP_width/8];
-        memset(block, 0, SnP_width/8);
-        block[rateInBytes-1] = 0x80;
-        displayBytes(1, "Second bit of padding", block, rateInBytes);
-    }
-    #endif
-    SnP_Permute(instance->state);
-    instance->byteIOIndex = 0;
-    instance->squeezing = 1;
-    #ifdef KeccakReference
-    displayText(1, "--- Switching to squeezing phase ---");
-    #endif
-    return 0;
-}
-
-/* ---------------------------------------------------------------- */
-
-int Keccak_SpongeSqueeze(Keccak_SpongeInstance *instance, unsigned char *data, size_t dataByteLen)
-{
-    size_t i, j;
-    unsigned int partialBlock;
-    unsigned int rateInBytes = instance->rate/8;
-    unsigned char *curData;
-
-    if (!instance->squeezing)
-        Keccak_SpongeAbsorbLastFewBits(instance, 0x01);
-
-    i = 0;
-    curData = data;
-    while(i < dataByteLen) {
-        if ((instance->byteIOIndex == rateInBytes) && (dataByteLen >= (i + rateInBytes))) {
-            // processing full blocks first
-            if ((rateInBytes % SnP_laneLengthInBytes) == 0) {
-                // fast lane: whole lane rate
-                j = SnP_FBWL_Squeeze(instance->state, rateInBytes/SnP_laneLengthInBytes, curData, dataByteLen - i);
-                i += j;
-                curData += j;
-            }
-            else {
-                for(j=dataByteLen-i; j>=rateInBytes; j-=rateInBytes) {
-                    SnP_Permute(instance->state);
-                    SnP_ExtractBytes(instance->state, curData, 0, rateInBytes);
-                    #ifdef KeccakReference
-                    displayBytes(1, "Squeezed block", curData, rateInBytes);
-                    #endif
-                    curData+=rateInBytes;
-                }
-                i = dataByteLen - j;
-            }
-        }
-        else {
-            // normal lane: using the message queue
-            if (instance->byteIOIndex == rateInBytes) {
-                SnP_Permute(instance->state);
-                instance->byteIOIndex = 0;
-            }
-            partialBlock = (unsigned int)(dataByteLen - i);
-            if (partialBlock+instance->byteIOIndex > rateInBytes)
-                partialBlock = rateInBytes-instance->byteIOIndex;
-            i += partialBlock;
-
-            SnP_ExtractBytes(instance->state, curData, instance->byteIOIndex, partialBlock);
-            #ifdef KeccakReference
-            displayBytes(1, "Squeezed block (part)", curData, partialBlock);
-            #endif
-            curData += partialBlock;
-            instance->byteIOIndex += partialBlock;
-        }
-    }
-    return 0;
-}

data/ext/sha3/KeccakSponge.h

@@ -1,113 +0,0 @@
-/*
-Implementation by the Keccak, Keyak and Ketje Teams, namely, Guido Bertoni,
-Joan Daemen, Michaël Peeters, Gilles Van Assche and Ronny Van Keer, hereby
-denoted as "the implementer".
-
-For more information, feedback or questions, please refer to our websites:
-http://keccak.noekeon.org/
-http://keyak.noekeon.org/
-http://ketje.noekeon.org/
-
-To the extent possible under law, the implementer has waived all copyright
-and related or neighboring rights to the source code in this file.
-http://creativecommons.org/publicdomain/zero/1.0/
-*/
-
-#ifndef _KeccakSponge_h_
-#define _KeccakSponge_h_
-
-#include "SnP-interface.h"
-#include <string.h>
-
-// on Mac OS-X and possibly others, ALIGN(x) is defined in param.h, and -Werror chokes on the redef.
-#ifdef ALIGN
-#undef ALIGN
-#endif
-
-#if defined(__GNUC__)
-#define ALIGN __attribute__ ((aligned(32)))
-#elif defined(_MSC_VER)
-#define ALIGN __declspec(align(32))
-#else
-#define ALIGN
-#endif
-
-/**
-  * Structure that contains the sponge instance attributes for use with the
-  * Keccak_Sponge* functions.
-  * It gathers the state processed by the permutation as well as the rate,
-  * the position of input/output bytes in the state and the phase
-  * (absorbing or squeezing).
-  */
-ALIGN typedef struct Keccak_SpongeInstanceStruct {
-    /** The state processed by the permutation. */
-    ALIGN unsigned char state[SnP_stateSizeInBytes];
-    /** The value of the rate in bits.*/
-    unsigned int rate;
-    /** The position in the state of the next byte to be input (when absorbing) or output (when squeezing). */
-    unsigned int byteIOIndex;
-    /** If set to 0, in the absorbing phase; otherwise, in the squeezing phase. */
-    int squeezing;
-} Keccak_SpongeInstance;
-
-/**
-  * Function to initialize the state of the Keccak[r, c] sponge function.
-  * The phase of the sponge function is set to absorbing.
-  * @param  spongeInstance  Pointer to the sponge instance to be initialized.
-  * @param  rate        The value of the rate r.
-  * @param  capacity    The value of the capacity c.
-  * @pre    One must have r+c equal to the supported width of this implementation
-  *         and the rate a multiple of 8 bits (one byte) in this implementation.
-  * @return Zero if successful, 1 otherwise.
-  */
-int Keccak_SpongeInitialize(Keccak_SpongeInstance *spongeInstance, unsigned int rate, unsigned int capacity);
-
-/**
-  * Function to give input data bytes for the sponge function to absorb.
-  * @param  spongeInstance  Pointer to the sponge instance initialized by Keccak_SpongeInitialize().
-  * @param  data        Pointer to the input data.
-  * @param  dataByteLen  The number of input bytes provided in the input data.
-  * @pre    The sponge function must be in the absorbing phase,
-  *         i.e., Keccak_SpongeSqueeze() or Keccak_SpongeAbsorbLastFewBits()
-  *         must not have been called before.
-  * @return Zero if successful, 1 otherwise.
-  */
-int Keccak_SpongeAbsorb(Keccak_SpongeInstance *spongeInstance, const unsigned char *data, size_t dataByteLen);
-
-/**
-  * Function to give input data bits for the sponge function to absorb
-  * and then to switch to the squeezing phase.
-  * @param  spongeInstance  Pointer to the sponge instance initialized by Keccak_SpongeInitialize().
-  * @param  delimitedData   Byte containing from 0 to 7 trailing bits
-  *                     that must be absorbed.
-  *                     These <i>n</i> bits must be in the least significant bit positions.
-  *                     These bits must be delimited with a bit 1 at position <i>n</i>
-  *                     (counting from 0=LSB to 7=MSB) and followed by bits 0
-  *                     from position <i>n</i>+1 to position 7.
-  *                     Some examples:
-  *                         - If no bits are to be absorbed, then @a delimitedData must be 0x01.
-  *                         - If the 2-bit sequence 0,0 is to be absorbed, @a delimitedData must be 0x04.
-  *                         - If the 5-bit sequence 0,1,0,0,1 is to be absorbed, @a delimitedData must be 0x32.
-  *                         - If the 7-bit sequence 1,1,0,1,0,0,0 is to be absorbed, @a delimitedData must be 0x8B.
-  *                     .
-  * @pre    The sponge function must be in the absorbing phase,
-  *         i.e., Keccak_SpongeSqueeze() or Keccak_SpongeAbsorbLastFewBits()
-  *         must not have been called before.
-  * @pre    @a delimitedData ≠ 0x00
-  * @return Zero if successful, 1 otherwise.
-  */
-int Keccak_SpongeAbsorbLastFewBits(Keccak_SpongeInstance *spongeInstance, unsigned char delimitedData);
-
-/**
-  * Function to squeeze output data from the sponge function.
-  * If the sponge function was in the absorbing phase, this function
-  * switches it to the squeezing phase
-  * as if Keccak_SpongeAbsorbLastFewBits(spongeInstance, 0x01) was called.
-  * @param  spongeInstance  Pointer to the sponge instance initialized by Keccak_SpongeInitialize().
-  * @param  data        Pointer to the buffer where to store the output data.
-  * @param  dataByteLen The number of output bytes desired.
-  * @return Zero if successful, 1 otherwise.
-  */
-int Keccak_SpongeSqueeze(Keccak_SpongeInstance *spongeInstance, unsigned char *data, size_t dataByteLen);
-
-#endif