firmware/lib/cryptolib/sha2.c - Issue 6760017: Make SHA256 and SHA512 handle >UINT32_MAX data correctly (now with fix for ARM compilation)

Unified Diff: firmware/lib/cryptolib/sha2.c

Issue 6760017: Make SHA256 and SHA512 handle >UINT32_MAX data correctly (now with fix for ARM compilation) (Closed) Base URL: ssh://git@gitrw.chromium.org:9222/vboot_reference.git@master

Patch Set: arm firmware compilation fix Created 9 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: firmware/lib/cryptolib/sha2.c

diff --git a/firmware/lib/cryptolib/sha2.c b/firmware/lib/cryptolib/sha2.c

index aa2691766d08c834db81c6f461a8196fea70a1db..d8dce069dc61ee55b8f23518245abd431ddb8d01 100644

--- a/firmware/lib/cryptolib/sha2.c

+++ b/firmware/lib/cryptolib/sha2.c

@@ -332,22 +332,22 @@ static void SHA256_transform(SHA256_CTX* ctx, const uint8_t* message,

-void SHA256_update(SHA256_CTX* ctx, const uint8_t* data, uint64_t len) {

+void SHA256_update(SHA256_CTX* ctx, const uint8_t* data, uint32_t len) {

unsigned int block_nb;

unsigned int new_len, rem_len, tmp_len;

const uint8_t *shifted_data;

tmp_len = SHA256_BLOCK_SIZE - ctx->len;

- rem_len = len < tmp_len ? (unsigned int)len : tmp_len;

+ rem_len = len < tmp_len ? len : tmp_len;

Memcpy(&ctx->block[ctx->len], data, rem_len);

if (ctx->len + len < SHA256_BLOCK_SIZE) {

- ctx->len += (uint32_t)len;

+ ctx->len += len;

return;

}

- new_len = (unsigned int)len - rem_len;

+ new_len = len - rem_len;

block_nb = new_len / SHA256_BLOCK_SIZE;

shifted_data = data + rem_len;

@@ -424,8 +424,7 @@ void SHA512_init(SHA512_CTX *ctx) {

static void SHA512_transform(SHA512_CTX* ctx, const uint8_t* message,

- unsigned int block_nb)

+ unsigned int block_nb) {

uint64_t w[80];

uint64_t wv[8];

uint64_t t1, t2;

@@ -520,22 +519,22 @@ static void SHA512_transform(SHA512_CTX* ctx, const uint8_t* message,

void SHA512_update(SHA512_CTX* ctx, const uint8_t* data,

- uint64_t len) {

+ uint32_t len) {

unsigned int block_nb;

unsigned int new_len, rem_len, tmp_len;

const uint8_t* shifted_data;

tmp_len = SHA512_BLOCK_SIZE - ctx->len;

- rem_len = len < tmp_len ? (unsigned int)len : tmp_len;

+ rem_len = len < tmp_len ? len : tmp_len;

Memcpy(&ctx->block[ctx->len], data, rem_len);

if (ctx->len + len < SHA512_BLOCK_SIZE) {

- ctx->len += (uint32_t)len;

+ ctx->len += len;

return;

}

- new_len = (unsigned int)len - rem_len;

+ new_len = len - rem_len;

block_nb = new_len / SHA512_BLOCK_SIZE;

shifted_data = data + rem_len;

@@ -593,31 +592,60 @@ uint8_t* SHA512_final(SHA512_CTX* ctx)

}

-/* Convenient functions. */

uint8_t* SHA256(const uint8_t* data, uint64_t len, uint8_t* digest) {

- const uint8_t* p;

+ const uint8_t* input_ptr;

+ const uint8_t* result;

+ uint64_t remaining_len;

int i;

SHA256_CTX ctx;

SHA256_init(&ctx);

- SHA256_update(&ctx, data, len);

- p = SHA256_final(&ctx);

+ input_ptr = data;

+ remaining_len = len;

+ /* Process data in at most UINT32_MAX byte chunks at a time. */

+ while (remaining_len) {

+ uint32_t block_size;

+ block_size = (uint32_t) ((remaining_len >= UINT32_MAX) ?

+ UINT32_MAX : remaining_len);

+ SHA256_update(&ctx, input_ptr, block_size);

+ remaining_len -= block_size;

+ input_ptr += block_size;

+ }

+ result = SHA256_final(&ctx);

for (i = 0; i < SHA256_DIGEST_SIZE; ++i) {

- digest[i] = *p++;

+ digest[i] = *result++;

}

return digest;

}

uint8_t* SHA512(const uint8_t* data, uint64_t len, uint8_t* digest) {

- const uint8_t* p;

+ const uint8_t* input_ptr;

+ const uint8_t* result;

+ uint64_t remaining_len;

int i;

SHA512_CTX ctx;

SHA512_init(&ctx);

- SHA512_update(&ctx, data, len);

- p = SHA512_final(&ctx);