X-Git-Url: http://mj.ucw.cz/gitweb/?a=blobdiff_plain;ds=sidebyside;f=ucw%2Fsha1.h;h=4b17da548c97c6eaf98b158dddd2a28f7e6a43b4;hb=5959916922193dea72ec0f74fa0a5211ca68f9c4;hp=05dc485350a70fe9892de0f829c1fb96feeb2386;hpb=031256ad2e123eec58521f8e3eb9496c197641d2;p=libucw.git diff --git a/ucw/sha1.h b/ucw/sha1.h index 05dc4853..4b17da54 100644 --- a/ucw/sha1.h +++ b/ucw/sha1.h @@ -1,7 +1,7 @@ /* * SHA-1 Hash Function (FIPS 180-1, RFC 3174) * - * (c) 2008 Martin Mares + * (c) 2008--2009 Martin Mares * * Based on the code from libgcrypt-1.2.3, which was: * @@ -14,6 +14,10 @@ #ifndef _UCW_SHA1_H #define _UCW_SHA1_H +/** + * Internal SHA1 state. + * You should use it just as an opaque handle only. + */ typedef struct { u32 h0,h1,h2,h3,h4; u32 nblocks; @@ -21,18 +25,59 @@ typedef struct { int count; } sha1_context; -void sha1_init(sha1_context *hd); +void sha1_init(sha1_context *hd); /** Initialize new algorithm run in the @hd context. **/ +/** + * Push another @inlen bytes of data pointed to by @inbuf onto the + * SHA1 hash currently in @hd. You can call this any times you want on + * the same hash (and you do not need to reinitialize it by + * @sha1_init()). It has the same effect as concatenating all the data + * together and passing them at once. + */ void sha1_update(sha1_context *hd, const byte *inbuf, uns inlen); +/** + * No more @sha1_update() calls will be done. This terminates the hash + * and returns a pointer to it. + * + * Note that the pointer points into data in the @hd context. If it ceases + * to exist, the pointer becomes invalid. + * + * To convert the hash to its usual hexadecimal representation, see + * <>. + */ byte *sha1_final(sha1_context *hd); -/* One-shot interface */ +/** + * A convenience one-shot function for SHA1 hash. + * It is equivalent to this snippet of code: + * + * sha1_context hd; + * sha1_init(&hd); + * sha1_update(&hd, buffer, length); + * memcpy(outbuf, sha1_final(&hd), SHA1_SIZE); + */ void sha1_hash_buffer(byte *outbuf, const byte *buffer, uns length); -/* HMAC */ +/** + * SHA1 HMAC message authentication. If you provide @key and @data, + * the result will be stored in @outbuf. + */ void sha1_hmac(byte *outbuf, const byte *key, uns keylen, const byte *data, uns datalen); -#define SHA1_SIZE 20 -#define SHA1_HEX_SIZE 41 -#define SHA1_BLOCK_SIZE 64 +/** + * The HMAC also exists in a stream version in a way analogous to the + * plain SHA1. Pass this as a context. + */ +typedef struct { + sha1_context ictx; + sha1_context octx; +} sha1_hmac_context; + +void sha1_hmac_init(sha1_hmac_context *hd, const byte *key, uns keylen); /** Initialize HMAC with context @hd and the given key. See sha1_init(). */ +void sha1_hmac_update(sha1_hmac_context *hd, const byte *data, uns datalen); /** Hash another @datalen bytes of data. See sha1_update(). */ +byte *sha1_hmac_final(sha1_hmac_context *hd); /** Terminate the HMAC and return a pointer to the allocated hash. See sha1_final(). */ + +#define SHA1_SIZE 20 /** Size of the SHA1 hash in its binary representation **/ +#define SHA1_HEX_SIZE 41 /** Buffer length for a string containing SHA1 in hexadecimal format. **/ +#define SHA1_BLOCK_SIZE 64 /** SHA1 splits input to blocks of this size. **/ #endif