178acc472SPeter Tyser /* 278acc472SPeter Tyser * Heiko Schocher, DENX Software Engineering, hs@denx.de. 378acc472SPeter Tyser * based on: 478acc472SPeter Tyser * FIPS-180-1 compliant SHA-1 implementation 578acc472SPeter Tyser * 678acc472SPeter Tyser * Copyright (C) 2003-2006 Christophe Devine 778acc472SPeter Tyser * 85b8031ccSTom Rini * SPDX-License-Identifier: LGPL-2.1 978acc472SPeter Tyser */ 1078acc472SPeter Tyser /* 1178acc472SPeter Tyser * The SHA-1 standard was published by NIST in 1993. 1278acc472SPeter Tyser * 1378acc472SPeter Tyser * http://www.itl.nist.gov/fipspubs/fip180-1.htm 1478acc472SPeter Tyser */ 1578acc472SPeter Tyser 1678acc472SPeter Tyser #ifndef _CRT_SECURE_NO_DEPRECATE 1778acc472SPeter Tyser #define _CRT_SECURE_NO_DEPRECATE 1 1878acc472SPeter Tyser #endif 1978acc472SPeter Tyser 2078acc472SPeter Tyser #ifndef USE_HOSTCC 2178acc472SPeter Tyser #include <common.h> 2278acc472SPeter Tyser #include <linux/string.h> 2378acc472SPeter Tyser #else 2478acc472SPeter Tyser #include <string.h> 2578acc472SPeter Tyser #endif /* USE_HOSTCC */ 2678acc472SPeter Tyser #include <watchdog.h> 272b9912e6SJeroen Hofstee #include <u-boot/sha1.h> 2878acc472SPeter Tyser 29*da29f299SAndrew Duda const uint8_t sha1_der_prefix[SHA1_DER_LEN] = { 30*da29f299SAndrew Duda 0x30, 0x21, 0x30, 0x09, 0x06, 0x05, 0x2b, 0x0e, 31*da29f299SAndrew Duda 0x03, 0x02, 0x1a, 0x05, 0x00, 0x04, 0x14 32*da29f299SAndrew Duda }; 33*da29f299SAndrew Duda 3478acc472SPeter Tyser /* 3578acc472SPeter Tyser * 32-bit integer manipulation macros (big endian) 3678acc472SPeter Tyser */ 3778acc472SPeter Tyser #ifndef GET_UINT32_BE 3878acc472SPeter Tyser #define GET_UINT32_BE(n,b,i) { \ 3978acc472SPeter Tyser (n) = ( (unsigned long) (b)[(i) ] << 24 ) \ 4078acc472SPeter Tyser | ( (unsigned long) (b)[(i) + 1] << 16 ) \ 4178acc472SPeter Tyser | ( (unsigned long) (b)[(i) + 2] << 8 ) \ 4278acc472SPeter Tyser | ( (unsigned long) (b)[(i) + 3] ); \ 4378acc472SPeter Tyser } 4478acc472SPeter Tyser #endif 4578acc472SPeter Tyser #ifndef PUT_UINT32_BE 4678acc472SPeter Tyser #define PUT_UINT32_BE(n,b,i) { \ 4778acc472SPeter Tyser (b)[(i) ] = (unsigned char) ( (n) >> 24 ); \ 4878acc472SPeter Tyser (b)[(i) + 1] = (unsigned char) ( (n) >> 16 ); \ 4978acc472SPeter Tyser (b)[(i) + 2] = (unsigned char) ( (n) >> 8 ); \ 5078acc472SPeter Tyser (b)[(i) + 3] = (unsigned char) ( (n) ); \ 5178acc472SPeter Tyser } 5278acc472SPeter Tyser #endif 5378acc472SPeter Tyser 5478acc472SPeter Tyser /* 5578acc472SPeter Tyser * SHA-1 context setup 5678acc472SPeter Tyser */ 5778acc472SPeter Tyser void sha1_starts (sha1_context * ctx) 5878acc472SPeter Tyser { 5978acc472SPeter Tyser ctx->total[0] = 0; 6078acc472SPeter Tyser ctx->total[1] = 0; 6178acc472SPeter Tyser 6278acc472SPeter Tyser ctx->state[0] = 0x67452301; 6378acc472SPeter Tyser ctx->state[1] = 0xEFCDAB89; 6478acc472SPeter Tyser ctx->state[2] = 0x98BADCFE; 6578acc472SPeter Tyser ctx->state[3] = 0x10325476; 6678acc472SPeter Tyser ctx->state[4] = 0xC3D2E1F0; 6778acc472SPeter Tyser } 6878acc472SPeter Tyser 69a7d1d765SSimon Glass static void sha1_process(sha1_context *ctx, const unsigned char data[64]) 7078acc472SPeter Tyser { 7178acc472SPeter Tyser unsigned long temp, W[16], A, B, C, D, E; 7278acc472SPeter Tyser 7378acc472SPeter Tyser GET_UINT32_BE (W[0], data, 0); 7478acc472SPeter Tyser GET_UINT32_BE (W[1], data, 4); 7578acc472SPeter Tyser GET_UINT32_BE (W[2], data, 8); 7678acc472SPeter Tyser GET_UINT32_BE (W[3], data, 12); 7778acc472SPeter Tyser GET_UINT32_BE (W[4], data, 16); 7878acc472SPeter Tyser GET_UINT32_BE (W[5], data, 20); 7978acc472SPeter Tyser GET_UINT32_BE (W[6], data, 24); 8078acc472SPeter Tyser GET_UINT32_BE (W[7], data, 28); 8178acc472SPeter Tyser GET_UINT32_BE (W[8], data, 32); 8278acc472SPeter Tyser GET_UINT32_BE (W[9], data, 36); 8378acc472SPeter Tyser GET_UINT32_BE (W[10], data, 40); 8478acc472SPeter Tyser GET_UINT32_BE (W[11], data, 44); 8578acc472SPeter Tyser GET_UINT32_BE (W[12], data, 48); 8678acc472SPeter Tyser GET_UINT32_BE (W[13], data, 52); 8778acc472SPeter Tyser GET_UINT32_BE (W[14], data, 56); 8878acc472SPeter Tyser GET_UINT32_BE (W[15], data, 60); 8978acc472SPeter Tyser 9078acc472SPeter Tyser #define S(x,n) ((x << n) | ((x & 0xFFFFFFFF) >> (32 - n))) 9178acc472SPeter Tyser 9278acc472SPeter Tyser #define R(t) ( \ 9378acc472SPeter Tyser temp = W[(t - 3) & 0x0F] ^ W[(t - 8) & 0x0F] ^ \ 9478acc472SPeter Tyser W[(t - 14) & 0x0F] ^ W[ t & 0x0F], \ 9578acc472SPeter Tyser ( W[t & 0x0F] = S(temp,1) ) \ 9678acc472SPeter Tyser ) 9778acc472SPeter Tyser 9878acc472SPeter Tyser #define P(a,b,c,d,e,x) { \ 9978acc472SPeter Tyser e += S(a,5) + F(b,c,d) + K + x; b = S(b,30); \ 10078acc472SPeter Tyser } 10178acc472SPeter Tyser 10278acc472SPeter Tyser A = ctx->state[0]; 10378acc472SPeter Tyser B = ctx->state[1]; 10478acc472SPeter Tyser C = ctx->state[2]; 10578acc472SPeter Tyser D = ctx->state[3]; 10678acc472SPeter Tyser E = ctx->state[4]; 10778acc472SPeter Tyser 10878acc472SPeter Tyser #define F(x,y,z) (z ^ (x & (y ^ z))) 10978acc472SPeter Tyser #define K 0x5A827999 11078acc472SPeter Tyser 11178acc472SPeter Tyser P (A, B, C, D, E, W[0]); 11278acc472SPeter Tyser P (E, A, B, C, D, W[1]); 11378acc472SPeter Tyser P (D, E, A, B, C, W[2]); 11478acc472SPeter Tyser P (C, D, E, A, B, W[3]); 11578acc472SPeter Tyser P (B, C, D, E, A, W[4]); 11678acc472SPeter Tyser P (A, B, C, D, E, W[5]); 11778acc472SPeter Tyser P (E, A, B, C, D, W[6]); 11878acc472SPeter Tyser P (D, E, A, B, C, W[7]); 11978acc472SPeter Tyser P (C, D, E, A, B, W[8]); 12078acc472SPeter Tyser P (B, C, D, E, A, W[9]); 12178acc472SPeter Tyser P (A, B, C, D, E, W[10]); 12278acc472SPeter Tyser P (E, A, B, C, D, W[11]); 12378acc472SPeter Tyser P (D, E, A, B, C, W[12]); 12478acc472SPeter Tyser P (C, D, E, A, B, W[13]); 12578acc472SPeter Tyser P (B, C, D, E, A, W[14]); 12678acc472SPeter Tyser P (A, B, C, D, E, W[15]); 12778acc472SPeter Tyser P (E, A, B, C, D, R (16)); 12878acc472SPeter Tyser P (D, E, A, B, C, R (17)); 12978acc472SPeter Tyser P (C, D, E, A, B, R (18)); 13078acc472SPeter Tyser P (B, C, D, E, A, R (19)); 13178acc472SPeter Tyser 13278acc472SPeter Tyser #undef K 13378acc472SPeter Tyser #undef F 13478acc472SPeter Tyser 13578acc472SPeter Tyser #define F(x,y,z) (x ^ y ^ z) 13678acc472SPeter Tyser #define K 0x6ED9EBA1 13778acc472SPeter Tyser 13878acc472SPeter Tyser P (A, B, C, D, E, R (20)); 13978acc472SPeter Tyser P (E, A, B, C, D, R (21)); 14078acc472SPeter Tyser P (D, E, A, B, C, R (22)); 14178acc472SPeter Tyser P (C, D, E, A, B, R (23)); 14278acc472SPeter Tyser P (B, C, D, E, A, R (24)); 14378acc472SPeter Tyser P (A, B, C, D, E, R (25)); 14478acc472SPeter Tyser P (E, A, B, C, D, R (26)); 14578acc472SPeter Tyser P (D, E, A, B, C, R (27)); 14678acc472SPeter Tyser P (C, D, E, A, B, R (28)); 14778acc472SPeter Tyser P (B, C, D, E, A, R (29)); 14878acc472SPeter Tyser P (A, B, C, D, E, R (30)); 14978acc472SPeter Tyser P (E, A, B, C, D, R (31)); 15078acc472SPeter Tyser P (D, E, A, B, C, R (32)); 15178acc472SPeter Tyser P (C, D, E, A, B, R (33)); 15278acc472SPeter Tyser P (B, C, D, E, A, R (34)); 15378acc472SPeter Tyser P (A, B, C, D, E, R (35)); 15478acc472SPeter Tyser P (E, A, B, C, D, R (36)); 15578acc472SPeter Tyser P (D, E, A, B, C, R (37)); 15678acc472SPeter Tyser P (C, D, E, A, B, R (38)); 15778acc472SPeter Tyser P (B, C, D, E, A, R (39)); 15878acc472SPeter Tyser 15978acc472SPeter Tyser #undef K 16078acc472SPeter Tyser #undef F 16178acc472SPeter Tyser 16278acc472SPeter Tyser #define F(x,y,z) ((x & y) | (z & (x | y))) 16378acc472SPeter Tyser #define K 0x8F1BBCDC 16478acc472SPeter Tyser 16578acc472SPeter Tyser P (A, B, C, D, E, R (40)); 16678acc472SPeter Tyser P (E, A, B, C, D, R (41)); 16778acc472SPeter Tyser P (D, E, A, B, C, R (42)); 16878acc472SPeter Tyser P (C, D, E, A, B, R (43)); 16978acc472SPeter Tyser P (B, C, D, E, A, R (44)); 17078acc472SPeter Tyser P (A, B, C, D, E, R (45)); 17178acc472SPeter Tyser P (E, A, B, C, D, R (46)); 17278acc472SPeter Tyser P (D, E, A, B, C, R (47)); 17378acc472SPeter Tyser P (C, D, E, A, B, R (48)); 17478acc472SPeter Tyser P (B, C, D, E, A, R (49)); 17578acc472SPeter Tyser P (A, B, C, D, E, R (50)); 17678acc472SPeter Tyser P (E, A, B, C, D, R (51)); 17778acc472SPeter Tyser P (D, E, A, B, C, R (52)); 17878acc472SPeter Tyser P (C, D, E, A, B, R (53)); 17978acc472SPeter Tyser P (B, C, D, E, A, R (54)); 18078acc472SPeter Tyser P (A, B, C, D, E, R (55)); 18178acc472SPeter Tyser P (E, A, B, C, D, R (56)); 18278acc472SPeter Tyser P (D, E, A, B, C, R (57)); 18378acc472SPeter Tyser P (C, D, E, A, B, R (58)); 18478acc472SPeter Tyser P (B, C, D, E, A, R (59)); 18578acc472SPeter Tyser 18678acc472SPeter Tyser #undef K 18778acc472SPeter Tyser #undef F 18878acc472SPeter Tyser 18978acc472SPeter Tyser #define F(x,y,z) (x ^ y ^ z) 19078acc472SPeter Tyser #define K 0xCA62C1D6 19178acc472SPeter Tyser 19278acc472SPeter Tyser P (A, B, C, D, E, R (60)); 19378acc472SPeter Tyser P (E, A, B, C, D, R (61)); 19478acc472SPeter Tyser P (D, E, A, B, C, R (62)); 19578acc472SPeter Tyser P (C, D, E, A, B, R (63)); 19678acc472SPeter Tyser P (B, C, D, E, A, R (64)); 19778acc472SPeter Tyser P (A, B, C, D, E, R (65)); 19878acc472SPeter Tyser P (E, A, B, C, D, R (66)); 19978acc472SPeter Tyser P (D, E, A, B, C, R (67)); 20078acc472SPeter Tyser P (C, D, E, A, B, R (68)); 20178acc472SPeter Tyser P (B, C, D, E, A, R (69)); 20278acc472SPeter Tyser P (A, B, C, D, E, R (70)); 20378acc472SPeter Tyser P (E, A, B, C, D, R (71)); 20478acc472SPeter Tyser P (D, E, A, B, C, R (72)); 20578acc472SPeter Tyser P (C, D, E, A, B, R (73)); 20678acc472SPeter Tyser P (B, C, D, E, A, R (74)); 20778acc472SPeter Tyser P (A, B, C, D, E, R (75)); 20878acc472SPeter Tyser P (E, A, B, C, D, R (76)); 20978acc472SPeter Tyser P (D, E, A, B, C, R (77)); 21078acc472SPeter Tyser P (C, D, E, A, B, R (78)); 21178acc472SPeter Tyser P (B, C, D, E, A, R (79)); 21278acc472SPeter Tyser 21378acc472SPeter Tyser #undef K 21478acc472SPeter Tyser #undef F 21578acc472SPeter Tyser 21678acc472SPeter Tyser ctx->state[0] += A; 21778acc472SPeter Tyser ctx->state[1] += B; 21878acc472SPeter Tyser ctx->state[2] += C; 21978acc472SPeter Tyser ctx->state[3] += D; 22078acc472SPeter Tyser ctx->state[4] += E; 22178acc472SPeter Tyser } 22278acc472SPeter Tyser 22378acc472SPeter Tyser /* 22478acc472SPeter Tyser * SHA-1 process buffer 22578acc472SPeter Tyser */ 226a7d1d765SSimon Glass void sha1_update(sha1_context *ctx, const unsigned char *input, 227a7d1d765SSimon Glass unsigned int ilen) 22878acc472SPeter Tyser { 22978acc472SPeter Tyser int fill; 23078acc472SPeter Tyser unsigned long left; 23178acc472SPeter Tyser 23278acc472SPeter Tyser if (ilen <= 0) 23378acc472SPeter Tyser return; 23478acc472SPeter Tyser 23578acc472SPeter Tyser left = ctx->total[0] & 0x3F; 23678acc472SPeter Tyser fill = 64 - left; 23778acc472SPeter Tyser 23878acc472SPeter Tyser ctx->total[0] += ilen; 23978acc472SPeter Tyser ctx->total[0] &= 0xFFFFFFFF; 24078acc472SPeter Tyser 24178acc472SPeter Tyser if (ctx->total[0] < (unsigned long) ilen) 24278acc472SPeter Tyser ctx->total[1]++; 24378acc472SPeter Tyser 24478acc472SPeter Tyser if (left && ilen >= fill) { 24578acc472SPeter Tyser memcpy ((void *) (ctx->buffer + left), (void *) input, fill); 24678acc472SPeter Tyser sha1_process (ctx, ctx->buffer); 24778acc472SPeter Tyser input += fill; 24878acc472SPeter Tyser ilen -= fill; 24978acc472SPeter Tyser left = 0; 25078acc472SPeter Tyser } 25178acc472SPeter Tyser 25278acc472SPeter Tyser while (ilen >= 64) { 25378acc472SPeter Tyser sha1_process (ctx, input); 25478acc472SPeter Tyser input += 64; 25578acc472SPeter Tyser ilen -= 64; 25678acc472SPeter Tyser } 25778acc472SPeter Tyser 25878acc472SPeter Tyser if (ilen > 0) { 25978acc472SPeter Tyser memcpy ((void *) (ctx->buffer + left), (void *) input, ilen); 26078acc472SPeter Tyser } 26178acc472SPeter Tyser } 26278acc472SPeter Tyser 26378acc472SPeter Tyser static const unsigned char sha1_padding[64] = { 26478acc472SPeter Tyser 0x80, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 26578acc472SPeter Tyser 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 26678acc472SPeter Tyser 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 26778acc472SPeter Tyser 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0 26878acc472SPeter Tyser }; 26978acc472SPeter Tyser 27078acc472SPeter Tyser /* 27178acc472SPeter Tyser * SHA-1 final digest 27278acc472SPeter Tyser */ 27378acc472SPeter Tyser void sha1_finish (sha1_context * ctx, unsigned char output[20]) 27478acc472SPeter Tyser { 27578acc472SPeter Tyser unsigned long last, padn; 27678acc472SPeter Tyser unsigned long high, low; 27778acc472SPeter Tyser unsigned char msglen[8]; 27878acc472SPeter Tyser 27978acc472SPeter Tyser high = (ctx->total[0] >> 29) 28078acc472SPeter Tyser | (ctx->total[1] << 3); 28178acc472SPeter Tyser low = (ctx->total[0] << 3); 28278acc472SPeter Tyser 28378acc472SPeter Tyser PUT_UINT32_BE (high, msglen, 0); 28478acc472SPeter Tyser PUT_UINT32_BE (low, msglen, 4); 28578acc472SPeter Tyser 28678acc472SPeter Tyser last = ctx->total[0] & 0x3F; 28778acc472SPeter Tyser padn = (last < 56) ? (56 - last) : (120 - last); 28878acc472SPeter Tyser 28978acc472SPeter Tyser sha1_update (ctx, (unsigned char *) sha1_padding, padn); 29078acc472SPeter Tyser sha1_update (ctx, msglen, 8); 29178acc472SPeter Tyser 29278acc472SPeter Tyser PUT_UINT32_BE (ctx->state[0], output, 0); 29378acc472SPeter Tyser PUT_UINT32_BE (ctx->state[1], output, 4); 29478acc472SPeter Tyser PUT_UINT32_BE (ctx->state[2], output, 8); 29578acc472SPeter Tyser PUT_UINT32_BE (ctx->state[3], output, 12); 29678acc472SPeter Tyser PUT_UINT32_BE (ctx->state[4], output, 16); 29778acc472SPeter Tyser } 29878acc472SPeter Tyser 29978acc472SPeter Tyser /* 30078acc472SPeter Tyser * Output = SHA-1( input buffer ) 30178acc472SPeter Tyser */ 302a7d1d765SSimon Glass void sha1_csum(const unsigned char *input, unsigned int ilen, 303a7d1d765SSimon Glass unsigned char *output) 30478acc472SPeter Tyser { 30578acc472SPeter Tyser sha1_context ctx; 30678acc472SPeter Tyser 30778acc472SPeter Tyser sha1_starts (&ctx); 30878acc472SPeter Tyser sha1_update (&ctx, input, ilen); 30978acc472SPeter Tyser sha1_finish (&ctx, output); 31078acc472SPeter Tyser } 31178acc472SPeter Tyser 31278acc472SPeter Tyser /* 31378acc472SPeter Tyser * Output = SHA-1( input buffer ). Trigger the watchdog every 'chunk_sz' 31478acc472SPeter Tyser * bytes of input processed. 31578acc472SPeter Tyser */ 316a7d1d765SSimon Glass void sha1_csum_wd(const unsigned char *input, unsigned int ilen, 317a7d1d765SSimon Glass unsigned char *output, unsigned int chunk_sz) 31878acc472SPeter Tyser { 31978acc472SPeter Tyser sha1_context ctx; 32078acc472SPeter Tyser #if defined(CONFIG_HW_WATCHDOG) || defined(CONFIG_WATCHDOG) 321a7d1d765SSimon Glass const unsigned char *end, *curr; 32278acc472SPeter Tyser int chunk; 32378acc472SPeter Tyser #endif 32478acc472SPeter Tyser 32578acc472SPeter Tyser sha1_starts (&ctx); 32678acc472SPeter Tyser 32778acc472SPeter Tyser #if defined(CONFIG_HW_WATCHDOG) || defined(CONFIG_WATCHDOG) 32878acc472SPeter Tyser curr = input; 32978acc472SPeter Tyser end = input + ilen; 33078acc472SPeter Tyser while (curr < end) { 33178acc472SPeter Tyser chunk = end - curr; 33278acc472SPeter Tyser if (chunk > chunk_sz) 33378acc472SPeter Tyser chunk = chunk_sz; 33478acc472SPeter Tyser sha1_update (&ctx, curr, chunk); 33578acc472SPeter Tyser curr += chunk; 33678acc472SPeter Tyser WATCHDOG_RESET (); 33778acc472SPeter Tyser } 33878acc472SPeter Tyser #else 33978acc472SPeter Tyser sha1_update (&ctx, input, ilen); 34078acc472SPeter Tyser #endif 34178acc472SPeter Tyser 34278acc472SPeter Tyser sha1_finish (&ctx, output); 34378acc472SPeter Tyser } 34478acc472SPeter Tyser 34578acc472SPeter Tyser /* 34678acc472SPeter Tyser * Output = HMAC-SHA-1( input buffer, hmac key ) 34778acc472SPeter Tyser */ 348a7d1d765SSimon Glass void sha1_hmac(const unsigned char *key, int keylen, 349a7d1d765SSimon Glass const unsigned char *input, unsigned int ilen, 350a7d1d765SSimon Glass unsigned char *output) 35178acc472SPeter Tyser { 35278acc472SPeter Tyser int i; 35378acc472SPeter Tyser sha1_context ctx; 35478acc472SPeter Tyser unsigned char k_ipad[64]; 35578acc472SPeter Tyser unsigned char k_opad[64]; 35678acc472SPeter Tyser unsigned char tmpbuf[20]; 35778acc472SPeter Tyser 35878acc472SPeter Tyser memset (k_ipad, 0x36, 64); 35978acc472SPeter Tyser memset (k_opad, 0x5C, 64); 36078acc472SPeter Tyser 36178acc472SPeter Tyser for (i = 0; i < keylen; i++) { 36278acc472SPeter Tyser if (i >= 64) 36378acc472SPeter Tyser break; 36478acc472SPeter Tyser 36578acc472SPeter Tyser k_ipad[i] ^= key[i]; 36678acc472SPeter Tyser k_opad[i] ^= key[i]; 36778acc472SPeter Tyser } 36878acc472SPeter Tyser 36978acc472SPeter Tyser sha1_starts (&ctx); 37078acc472SPeter Tyser sha1_update (&ctx, k_ipad, 64); 37178acc472SPeter Tyser sha1_update (&ctx, input, ilen); 37278acc472SPeter Tyser sha1_finish (&ctx, tmpbuf); 37378acc472SPeter Tyser 37478acc472SPeter Tyser sha1_starts (&ctx); 37578acc472SPeter Tyser sha1_update (&ctx, k_opad, 64); 37678acc472SPeter Tyser sha1_update (&ctx, tmpbuf, 20); 37778acc472SPeter Tyser sha1_finish (&ctx, output); 37878acc472SPeter Tyser 37978acc472SPeter Tyser memset (k_ipad, 0, 64); 38078acc472SPeter Tyser memset (k_opad, 0, 64); 38178acc472SPeter Tyser memset (tmpbuf, 0, 20); 38278acc472SPeter Tyser memset (&ctx, 0, sizeof (sha1_context)); 38378acc472SPeter Tyser } 38478acc472SPeter Tyser 38578acc472SPeter Tyser #ifdef SELF_TEST 38678acc472SPeter Tyser /* 38778acc472SPeter Tyser * FIPS-180-1 test vectors 38878acc472SPeter Tyser */ 38978acc472SPeter Tyser static const char sha1_test_str[3][57] = { 39078acc472SPeter Tyser {"abc"}, 39178acc472SPeter Tyser {"abcdbcdecdefdefgefghfghighijhijkijkljklmklmnlmnomnopnopq"}, 39278acc472SPeter Tyser {""} 39378acc472SPeter Tyser }; 39478acc472SPeter Tyser 39578acc472SPeter Tyser static const unsigned char sha1_test_sum[3][20] = { 39678acc472SPeter Tyser {0xA9, 0x99, 0x3E, 0x36, 0x47, 0x06, 0x81, 0x6A, 0xBA, 0x3E, 39778acc472SPeter Tyser 0x25, 0x71, 0x78, 0x50, 0xC2, 0x6C, 0x9C, 0xD0, 0xD8, 0x9D}, 39878acc472SPeter Tyser {0x84, 0x98, 0x3E, 0x44, 0x1C, 0x3B, 0xD2, 0x6E, 0xBA, 0xAE, 39978acc472SPeter Tyser 0x4A, 0xA1, 0xF9, 0x51, 0x29, 0xE5, 0xE5, 0x46, 0x70, 0xF1}, 40078acc472SPeter Tyser {0x34, 0xAA, 0x97, 0x3C, 0xD4, 0xC4, 0xDA, 0xA4, 0xF6, 0x1E, 40178acc472SPeter Tyser 0xEB, 0x2B, 0xDB, 0xAD, 0x27, 0x31, 0x65, 0x34, 0x01, 0x6F} 40278acc472SPeter Tyser }; 40378acc472SPeter Tyser 40478acc472SPeter Tyser /* 40578acc472SPeter Tyser * Checkup routine 40678acc472SPeter Tyser */ 40778acc472SPeter Tyser int sha1_self_test (void) 40878acc472SPeter Tyser { 40978acc472SPeter Tyser int i, j; 41078acc472SPeter Tyser unsigned char buf[1000]; 41178acc472SPeter Tyser unsigned char sha1sum[20]; 41278acc472SPeter Tyser sha1_context ctx; 41378acc472SPeter Tyser 41478acc472SPeter Tyser for (i = 0; i < 3; i++) { 41578acc472SPeter Tyser printf (" SHA-1 test #%d: ", i + 1); 41678acc472SPeter Tyser 41778acc472SPeter Tyser sha1_starts (&ctx); 41878acc472SPeter Tyser 41978acc472SPeter Tyser if (i < 2) 42078acc472SPeter Tyser sha1_update (&ctx, (unsigned char *) sha1_test_str[i], 42178acc472SPeter Tyser strlen (sha1_test_str[i])); 42278acc472SPeter Tyser else { 42378acc472SPeter Tyser memset (buf, 'a', 1000); 42478acc472SPeter Tyser for (j = 0; j < 1000; j++) 42578acc472SPeter Tyser sha1_update (&ctx, buf, 1000); 42678acc472SPeter Tyser } 42778acc472SPeter Tyser 42878acc472SPeter Tyser sha1_finish (&ctx, sha1sum); 42978acc472SPeter Tyser 43078acc472SPeter Tyser if (memcmp (sha1sum, sha1_test_sum[i], 20) != 0) { 43178acc472SPeter Tyser printf ("failed\n"); 43278acc472SPeter Tyser return (1); 43378acc472SPeter Tyser } 43478acc472SPeter Tyser 43578acc472SPeter Tyser printf ("passed\n"); 43678acc472SPeter Tyser } 43778acc472SPeter Tyser 43878acc472SPeter Tyser printf ("\n"); 43978acc472SPeter Tyser return (0); 44078acc472SPeter Tyser } 44178acc472SPeter Tyser #else 44278acc472SPeter Tyser int sha1_self_test (void) 44378acc472SPeter Tyser { 44478acc472SPeter Tyser return (0); 44578acc472SPeter Tyser } 44678acc472SPeter Tyser #endif 447