firmware/lib/cryptolib/sha2.c - Issue 6750016: Make SHA256_update and SHA512_update if the passed in length is greater than UINT32_MAX

Unified Diff: firmware/lib/cryptolib/sha2.c

Issue 6750016: Make SHA256_update and SHA512_update if the passed in length is greater than UINT32_MAX (Closed) Base URL: ssh://git@gitrw.chromium.org:9222/vboot_reference.git@master

Patch Set: . Created 9 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: firmware/lib/cryptolib/sha2.c

diff --git a/firmware/lib/cryptolib/sha2.c b/firmware/lib/cryptolib/sha2.c

index aa2691766d08c834db81c6f461a8196fea70a1db..0d40ca97a74fb10e07ad4c488b0c673e54ed9ec7 100644

--- a/firmware/lib/cryptolib/sha2.c

+++ b/firmware/lib/cryptolib/sha2.c

@@ -332,22 +332,22 @@ static void SHA256_transform(SHA256_CTX* ctx, const uint8_t* message,

-void SHA256_update(SHA256_CTX* ctx, const uint8_t* data, uint64_t len) {

+void SHA256_update(SHA256_CTX* ctx, const uint8_t* data, uint32_t len) {

unsigned int block_nb;

unsigned int new_len, rem_len, tmp_len;

const uint8_t *shifted_data;

tmp_len = SHA256_BLOCK_SIZE - ctx->len;

- rem_len = len < tmp_len ? (unsigned int)len : tmp_len;

+ rem_len = len < tmp_len ? len : tmp_len;

Memcpy(&ctx->block[ctx->len], data, rem_len);

if (ctx->len + len < SHA256_BLOCK_SIZE) {

- ctx->len += (uint32_t)len;

+ ctx->len += len;

return;

}

- new_len = (unsigned int)len - rem_len;

+ new_len = len - rem_len;

block_nb = new_len / SHA256_BLOCK_SIZE;

shifted_data = data + rem_len;

@@ -424,8 +424,7 @@ void SHA512_init(SHA512_CTX *ctx) {

static void SHA512_transform(SHA512_CTX* ctx, const uint8_t* message,

- unsigned int block_nb)

+ unsigned int block_nb) {

uint64_t w[80];

uint64_t wv[8];

uint64_t t1, t2;

@@ -520,22 +519,22 @@ static void SHA512_transform(SHA512_CTX* ctx, const uint8_t* message,

void SHA512_update(SHA512_CTX* ctx, const uint8_t* data,

- uint64_t len) {

+ uint32_t len) {

unsigned int block_nb;

unsigned int new_len, rem_len, tmp_len;

const uint8_t* shifted_data;

tmp_len = SHA512_BLOCK_SIZE - ctx->len;

- rem_len = len < tmp_len ? (unsigned int)len : tmp_len;

+ rem_len = len < tmp_len ? len : tmp_len;

Memcpy(&ctx->block[ctx->len], data, rem_len);

if (ctx->len + len < SHA512_BLOCK_SIZE) {

- ctx->len += (uint32_t)len;

+ ctx->len += len;

return;

}

- new_len = (unsigned int)len - rem_len;

+ new_len = len - rem_len;

block_nb = new_len / SHA512_BLOCK_SIZE;

shifted_data = data + rem_len;

@@ -593,31 +592,60 @@ uint8_t* SHA512_final(SHA512_CTX* ctx)

}

-/* Convenient functions. */

uint8_t* SHA256(const uint8_t* data, uint64_t len, uint8_t* digest) {

- const uint8_t* p;

+ const uint8_t* input_ptr;

+ const uint8_t* result;

+ uint64_t remaining_len;

int i;

SHA256_CTX ctx;

SHA256_init(&ctx);

- SHA256_update(&ctx, data, len);

- p = SHA256_final(&ctx);

+ input_ptr = data;

+ remaining_len = len;

+ /* Process data in at most UINT32_MAX byte chunks at a time. */

+ while (remaining_len) {

+ uint32_t block_size;

+ block_size = (remaining_len >= (uint32_t) UINT32_MAX) ?

Randall Spangler 2011/03/28 21:18:54 Actually, I meant block_size = (uint32_t)((remain

gauravsh 2011/03/29 17:44:45 DOne.

+ ((uint32_t) UINT32_MAX) : (remaining_len);

+ SHA256_update(&ctx, input_ptr, block_size);

+ remaining_len -= block_size;

+ input_ptr += block_size;

+ }

+ result = SHA256_final(&ctx);

for (i = 0; i < SHA256_DIGEST_SIZE; ++i) {

- digest[i] = *p++;

+ digest[i] = *result++;

}

return digest;

}

uint8_t* SHA512(const uint8_t* data, uint64_t len, uint8_t* digest) {

- const uint8_t* p;

+ const uint8_t* input_ptr;

+ const uint8_t* result;

+ uint64_t remaining_len;

int i;

SHA512_CTX ctx;

SHA512_init(&ctx);

- SHA512_update(&ctx, data, len);

- p = SHA512_final(&ctx);