|
|
@@ -8,95 +8,129 @@
|
|
|
|
|
|
final class SHA1: DigestType {
|
|
|
static let digestLength:Int = 20 // 160 / 8
|
|
|
- private let message: Array<UInt8>
|
|
|
-
|
|
|
- init(_ message: Array<UInt8>) {
|
|
|
- self.message = message
|
|
|
+ static var blockSize: Int = 64
|
|
|
+ fileprivate static let hashInitialValue: Array<UInt32> = [0x67452301, 0xEFCDAB89, 0x98BADCFE, 0x10325476, 0xC3D2E1F0]
|
|
|
+
|
|
|
+ fileprivate var accumulated = Array<UInt8>()
|
|
|
+ fileprivate var accumulatedLength: Int = 0
|
|
|
+ fileprivate var accumulatedHash: Array<UInt32> = SHA1.hashInitialValue
|
|
|
+
|
|
|
+ public init() {
|
|
|
+
|
|
|
}
|
|
|
-
|
|
|
+
|
|
|
private let h:Array<UInt32> = [0x67452301, 0xEFCDAB89, 0x98BADCFE, 0x10325476, 0xC3D2E1F0]
|
|
|
-
|
|
|
- func calculate() -> Array<UInt8> {
|
|
|
- var tmpMessage = bitPadding(to: self.message, blockSize: 64, allowance: 64 / 8)
|
|
|
-
|
|
|
- // hash values
|
|
|
- var hh = h
|
|
|
-
|
|
|
- // append message length, in a 64-bit big-endian integer. So now the message length is a multiple of 512 bits.
|
|
|
- tmpMessage += (self.message.count * 8).bytes(totalBytes: 64 / 8)
|
|
|
|
|
|
- // Process the message in successive 512-bit chunks:
|
|
|
- let chunkSizeBytes = 512 / 8 // 64
|
|
|
- for chunk in BytesSequence(chunkSize: chunkSizeBytes, data: tmpMessage) {
|
|
|
- // break chunk into sixteen 32-bit words M[j], 0 ≤ j ≤ 15, big-endian
|
|
|
- // Extend the sixteen 32-bit words into eighty 32-bit words:
|
|
|
- var M:Array<UInt32> = Array<UInt32>(repeating: 0, count: 80)
|
|
|
- for x in 0..<M.count {
|
|
|
- switch (x) {
|
|
|
- case 0...15:
|
|
|
- let start = chunk.startIndex.advanced(by: x * 4) // * MemoryLayout<UInt32>.size
|
|
|
- M[x] = UInt32(bytes: chunk, fromIndex: start)
|
|
|
- break
|
|
|
- default:
|
|
|
- M[x] = rotateLeft(M[x-3] ^ M[x-8] ^ M[x-14] ^ M[x-16], by: 1)
|
|
|
- break
|
|
|
- }
|
|
|
+ func calculate(for bytes: Array<UInt8>) -> Array<UInt8> {
|
|
|
+ do {
|
|
|
+ return try self.update(withBytes: bytes, isLast: true)
|
|
|
+ } catch {
|
|
|
+ return []
|
|
|
+ }
|
|
|
+ }
|
|
|
+
|
|
|
+ fileprivate func process<C: Collection>(block chunk: C, currentHash hh: inout Array<UInt32>) where C.Iterator.Element == UInt8, C.Index == Int {
|
|
|
+ // break chunk into sixteen 32-bit words M[j], 0 ≤ j ≤ 15, big-endian
|
|
|
+ // Extend the sixteen 32-bit words into eighty 32-bit words:
|
|
|
+ var M:Array<UInt32> = Array<UInt32>(repeating: 0, count: 80)
|
|
|
+ for x in 0..<M.count {
|
|
|
+ switch (x) {
|
|
|
+ case 0...15:
|
|
|
+ let start = chunk.startIndex.advanced(by: x * 4) // * MemoryLayout<UInt32>.size
|
|
|
+ M[x] = UInt32(bytes: chunk, fromIndex: start)
|
|
|
+ break
|
|
|
+ default:
|
|
|
+ M[x] = rotateLeft(M[x-3] ^ M[x-8] ^ M[x-14] ^ M[x-16], by: 1)
|
|
|
+ break
|
|
|
}
|
|
|
+ }
|
|
|
+
|
|
|
+ var A = hh[0]
|
|
|
+ var B = hh[1]
|
|
|
+ var C = hh[2]
|
|
|
+ var D = hh[3]
|
|
|
+ var E = hh[4]
|
|
|
+
|
|
|
+ // Main loop
|
|
|
+ for j in 0...79 {
|
|
|
+ var f: UInt32 = 0;
|
|
|
+ var k: UInt32 = 0
|
|
|
|
|
|
- var A = hh[0]
|
|
|
- var B = hh[1]
|
|
|
- var C = hh[2]
|
|
|
- var D = hh[3]
|
|
|
- var E = hh[4]
|
|
|
-
|
|
|
- // Main loop
|
|
|
- for j in 0...79 {
|
|
|
- var f: UInt32 = 0;
|
|
|
- var k: UInt32 = 0
|
|
|
-
|
|
|
- switch (j) {
|
|
|
- case 0...19:
|
|
|
- f = (B & C) | ((~B) & D)
|
|
|
- k = 0x5A827999
|
|
|
- break
|
|
|
- case 20...39:
|
|
|
- f = B ^ C ^ D
|
|
|
- k = 0x6ED9EBA1
|
|
|
- break
|
|
|
- case 40...59:
|
|
|
- f = (B & C) | (B & D) | (C & D)
|
|
|
- k = 0x8F1BBCDC
|
|
|
- break
|
|
|
- case 60...79:
|
|
|
- f = B ^ C ^ D
|
|
|
- k = 0xCA62C1D6
|
|
|
- break
|
|
|
- default:
|
|
|
- break
|
|
|
- }
|
|
|
-
|
|
|
- let temp = (rotateLeft(A, by: 5) &+ f &+ E &+ M[j] &+ k) & 0xffffffff
|
|
|
- E = D
|
|
|
- D = C
|
|
|
- C = rotateLeft(B, by: 30)
|
|
|
- B = A
|
|
|
- A = temp
|
|
|
+ switch (j) {
|
|
|
+ case 0...19:
|
|
|
+ f = (B & C) | ((~B) & D)
|
|
|
+ k = 0x5A827999
|
|
|
+ break
|
|
|
+ case 20...39:
|
|
|
+ f = B ^ C ^ D
|
|
|
+ k = 0x6ED9EBA1
|
|
|
+ break
|
|
|
+ case 40...59:
|
|
|
+ f = (B & C) | (B & D) | (C & D)
|
|
|
+ k = 0x8F1BBCDC
|
|
|
+ break
|
|
|
+ case 60...79:
|
|
|
+ f = B ^ C ^ D
|
|
|
+ k = 0xCA62C1D6
|
|
|
+ break
|
|
|
+ default:
|
|
|
+ break
|
|
|
}
|
|
|
|
|
|
- hh[0] = (hh[0] &+ A) & 0xffffffff
|
|
|
- hh[1] = (hh[1] &+ B) & 0xffffffff
|
|
|
- hh[2] = (hh[2] &+ C) & 0xffffffff
|
|
|
- hh[3] = (hh[3] &+ D) & 0xffffffff
|
|
|
- hh[4] = (hh[4] &+ E) & 0xffffffff
|
|
|
+ let temp = (rotateLeft(A, by: 5) &+ f &+ E &+ M[j] &+ k) & 0xffffffff
|
|
|
+ E = D
|
|
|
+ D = C
|
|
|
+ C = rotateLeft(B, by: 30)
|
|
|
+ B = A
|
|
|
+ A = temp
|
|
|
}
|
|
|
|
|
|
- // Produce the final hash value (big-endian) as a 160 bit number:
|
|
|
+ hh[0] = (hh[0] &+ A) & 0xffffffff
|
|
|
+ hh[1] = (hh[1] &+ B) & 0xffffffff
|
|
|
+ hh[2] = (hh[2] &+ C) & 0xffffffff
|
|
|
+ hh[3] = (hh[3] &+ D) & 0xffffffff
|
|
|
+ hh[4] = (hh[4] &+ E) & 0xffffffff
|
|
|
+ }
|
|
|
+}
|
|
|
+
|
|
|
+extension SHA1: Updatable {
|
|
|
+ public func update<T: Sequence>(withBytes bytes: T, isLast: Bool = false) throws -> Array<UInt8> where T.Iterator.Element == UInt8 {
|
|
|
+ let prevAccumulatedLength = self.accumulated.count
|
|
|
+ self.accumulated += bytes
|
|
|
+ self.accumulatedLength += self.accumulated.count - prevAccumulatedLength //avoid Array(bytes).count
|
|
|
+
|
|
|
+ if isLast {
|
|
|
+ // Step 1. Append padding
|
|
|
+ self.accumulated = bitPadding(to: self.accumulated, blockSize: SHA1.blockSize, allowance: 64 / 8)
|
|
|
+
|
|
|
+ // Step 2. Append Length a 64-bit representation of lengthInBits
|
|
|
+ let lengthInBits = self.accumulatedLength * 8
|
|
|
+ let lengthBytes = lengthInBits.bytes(totalBytes: 64 / 8) // A 64-bit representation of b
|
|
|
+ self.accumulated += lengthBytes
|
|
|
+ }
|
|
|
+
|
|
|
+ for chunk in BytesSequence(chunkSize: SHA1.blockSize, data: self.accumulated) {
|
|
|
+ if (isLast || self.accumulated.count >= SHA1.blockSize) {
|
|
|
+ self.process(block: chunk, currentHash: &self.accumulatedHash)
|
|
|
+ self.accumulated.removeFirst(chunk.count)
|
|
|
+ }
|
|
|
+ }
|
|
|
+
|
|
|
+ // output current hash
|
|
|
var result = Array<UInt8>()
|
|
|
- result.reserveCapacity(hh.count / 4)
|
|
|
- hh.forEach {
|
|
|
- let item = $0.bigEndian
|
|
|
- result += [UInt8(item & 0xff), UInt8((item >> 8) & 0xff), UInt8((item >> 16) & 0xff), UInt8((item >> 24) & 0xff)]
|
|
|
+ result.reserveCapacity(SHA1.digestLength)
|
|
|
+
|
|
|
+ for hElement in self.accumulatedHash {
|
|
|
+ let h = hElement.bigEndian
|
|
|
+ result += [UInt8(h & 0xff), UInt8((h >> 8) & 0xff), UInt8((h >> 16) & 0xff), UInt8((h >> 24) & 0xff)]
|
|
|
}
|
|
|
+
|
|
|
+ // reset hash value for instance
|
|
|
+ if isLast {
|
|
|
+ self.accumulatedHash = SHA1.hashInitialValue
|
|
|
+ }
|
|
|
+
|
|
|
return result
|
|
|
}
|
|
|
}
|
|
|
+
|
Marcin Krzyżanowski