Startsida Utforska Hjälp
Registrera dig Logga in
chengnan
/
s202226701001
1
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: d46a2532a3
Grenar Taggar
s202226701001
/
sever-test
/
node_modules
/
@noble
/
hashes
/
src
/
_md.ts

_md.ts 4.5 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127 
  1. import { exists, output } from './_assert.js';
    2. 

  2. import { Hash, createView, Input, toBytes } from './utils.js';
    3. 

  3. 

  4. // Polyfill for Safari 14
    5. 

  5. function setBigUint64(view: DataView, byteOffset: number, value: bigint, isLE: boolean): void {
    6. 

  6.   if (typeof view.setBigUint64 === 'function') return view.setBigUint64(byteOffset, value, isLE);
    7. 

  7.   const _32n = BigInt(32);
    8. 

  8.   const _u32_max = BigInt(0xffffffff);
    9. 

  9.   const wh = Number((value >> _32n) & _u32_max);
    10. 

  10.   const wl = Number(value & _u32_max);
    11. 

  11.   const h = isLE ? 4 : 0;
    12. 

  12.   const l = isLE ? 0 : 4;
    13. 

  13.   view.setUint32(byteOffset + h, wh, isLE);
    14. 

  14.   view.setUint32(byteOffset + l, wl, isLE);
    15. 

  15. }
    16. 

  16. 

  17. // Choice: a ? b : c
    18. 

  18. export const Chi = (a: number, b: number, c: number) => (a & b) ^ (~a & c);
    19. 

  19. // Majority function, true if any two inpust is true
    20. 

  20. export const Maj = (a: number, b: number, c: number) => (a & b) ^ (a & c) ^ (b & c);
    21. 

  21. 

  22. /**
    23. 

  23.  * Merkle-Damgard hash construction base class.
    24. 

  24.  * Could be used to create MD5, RIPEMD, SHA1, SHA2.
    25. 

  25.  */
    26. 

  26. export abstract class HashMD<T extends HashMD<T>> extends Hash<T> {
    27. 

  27.   protected abstract process(buf: DataView, offset: number): void;
    28. 

  28.   protected abstract get(): number[];
    29. 

  29.   protected abstract set(...args: number[]): void;
    30. 

  30.   abstract destroy(): void;
    31. 

  31.   protected abstract roundClean(): void;
    32. 

  32.   // For partial updates less than block size
    33. 

  33.   protected buffer: Uint8Array;
    34. 

  34.   protected view: DataView;
    35. 

  35.   protected finished = false;
    36. 

  36.   protected length = 0;
    37. 

  37.   protected pos = 0;
    38. 

  38.   protected destroyed = false;
    39. 

  39. 

  40.   constructor(
    41. 

  41.     readonly blockLen: number,
    42. 

  42.     public outputLen: number,
    43. 

  43.     readonly padOffset: number,
    44. 

  44.     readonly isLE: boolean
    45. 

  45.   ) {
    46. 

  46.     super();
    47. 

  47.     this.buffer = new Uint8Array(blockLen);
    48. 

  48.     this.view = createView(this.buffer);
    49. 

  49.   }
    50. 

  50.   update(data: Input): this {
    51. 

  51.     exists(this);
    52. 

  52.     const { view, buffer, blockLen } = this;
    53. 

  53.     data = toBytes(data);
    54. 

  54.     const len = data.length;
    55. 

  55.     for (let pos = 0; pos < len; ) {
    56. 

  56.       const take = Math.min(blockLen - this.pos, len - pos);
    57. 

  57.       // Fast path: we have at least one block in input, cast it to view and process
    58. 

  58.       if (take === blockLen) {
    59. 

  59.         const dataView = createView(data);
    60. 

  60.         for (; blockLen <= len - pos; pos += blockLen) this.process(dataView, pos);
    61. 

  61.         continue;
    62. 

  62.       }
    63. 

  63.       buffer.set(data.subarray(pos, pos + take), this.pos);
    64. 

  64.       this.pos += take;
    65. 

  65.       pos += take;
    66. 

  66.       if (this.pos === blockLen) {
    67. 

  67.         this.process(view, 0);
    68. 

  68.         this.pos = 0;
    69. 

  69.       }
    70. 

  70.     }
    71. 

  71.     this.length += data.length;
    72. 

  72.     this.roundClean();
    73. 

  73.     return this;
    74. 

  74.   }
    75. 

  75.   digestInto(out: Uint8Array) {
    76. 

  76.     exists(this);
    77. 

  77.     output(out, this);
    78. 

  78.     this.finished = true;
    79. 

  79.     // Padding
    80. 

  80.     // We can avoid allocation of buffer for padding completely if it
    81. 

  81.     // was previously not allocated here. But it won't change performance.
    82. 

  82.     const { buffer, view, blockLen, isLE } = this;
    83. 

  83.     let { pos } = this;
    84. 

  84.     // append the bit '1' to the message
    85. 

  85.     buffer[pos++] = 0b10000000;
    86. 

  86.     this.buffer.subarray(pos).fill(0);
    87. 

  87.     // we have less than padOffset left in buffer, so we cannot put length in
    88. 

  88.     // current block, need process it and pad again
    89. 

  89.     if (this.padOffset > blockLen - pos) {
    90. 

  90.       this.process(view, 0);
    91. 

  91.       pos = 0;
    92. 

  92.     }
    93. 

  93.     // Pad until full block byte with zeros
    94. 

  94.     for (let i = pos; i < blockLen; i++) buffer[i] = 0;
    95. 

  95.     // Note: sha512 requires length to be 128bit integer, but length in JS will overflow before that
    96. 

  96.     // You need to write around 2 exabytes (u64_max / 8 / (1024**6)) for this to happen.
    97. 

  97.     // So we just write lowest 64 bits of that value.
    98. 

  98.     setBigUint64(view, blockLen - 8, BigInt(this.length * 8), isLE);
    99. 

  99.     this.process(view, 0);
    100. 

  100.     const oview = createView(out);
    101. 

  101.     const len = this.outputLen;
    102. 

  102.     // NOTE: we do division by 4 later, which should be fused in single op with modulo by JIT
    103. 

  103.     if (len % 4) throw new Error('_sha2: outputLen should be aligned to 32bit');
    104. 

  104.     const outLen = len / 4;
    105. 

  105.     const state = this.get();
    106. 

  106.     if (outLen > state.length) throw new Error('_sha2: outputLen bigger than state');
    107. 

  107.     for (let i = 0; i < outLen; i++) oview.setUint32(4 * i, state[i], isLE);
    108. 

  108.   }
    109. 

  109.   digest() {
    110. 

  110.     const { buffer, outputLen } = this;
    111. 

  111.     this.digestInto(buffer);
    112. 

  112.     const res = buffer.slice(0, outputLen);
    113. 

  113.     this.destroy();
    114. 

  114.     return res;
    115. 

  115.   }
    116. 

  116.   _cloneInto(to?: T): T {
    117. 

  117.     to ||= new (this.constructor as any)() as T;
    118. 

  118.     to.set(...this.get());
    119. 

  119.     const { blockLen, buffer, length, finished, destroyed, pos } = this;
    120. 

  120.     to.length = length;
    121. 

  121.     to.pos = pos;
    122. 

  122.     to.finished = finished;
    123. 

  123.     to.destroyed = destroyed;
    124. 

  124.     if (length % blockLen) to.buffer.set(buffer);
    125. 

  125.     return to;
    126. 

  126.   }
    127. 

  127. }
    128.