Add SHA256 compress methods for 30 and 22 bytes + tests

Coding-Enthusiast · Coding-Enthusiast · commit 9c7ae2092b36 · 2020-05-28T09:21:50.000+04:30
diff --git a/Src/FinderOuter/Backend/Cryptography/Hashing/Sha256.cs b/Src/FinderOuter/Backend/Cryptography/Hashing/Sha256.cs
@@ -337,6 +337,69 @@ public unsafe void Compress20(uint* hPt, uint* wPt)
             CompressBlockWithWSet(hPt, wPt);
         }
 
+        /// <summary>
+        /// Computes _single_ SHA256 hash for
+        /// (data.Length == 22) and (wPt[0] to wPt[15] is set) and (Init() is called)
+        /// </summary>
+        /// <param name="hPt">HashState pointer</param>
+        /// <param name="wPt">Working vector pointer</param>
+        public unsafe void Compress22(uint* hPt, uint* wPt)
+        {
+            // w5 = extra values | 0b00000000_00000000_10000000_00000000U
+            // w6 to w14 = 0
+            // w15 = 176
+            wPt[16] = SSIG0(wPt[1]) + wPt[0];
+            wPt[17] = 5111808 + SSIG0(wPt[2]) + wPt[1];
+            wPt[18] = SSIG1(wPt[16]) + SSIG0(wPt[3]) + wPt[2];
+            wPt[19] = SSIG1(wPt[17]) + SSIG0(wPt[4]) + wPt[3];
+            wPt[20] = SSIG1(wPt[18]) + SSIG0(wPt[5]) + wPt[4];
+            wPt[21] = SSIG1(wPt[19]) + wPt[5];
+            wPt[22] = SSIG1(wPt[20]) + 176;
+            wPt[23] = SSIG1(wPt[21]) + wPt[16];
+            wPt[24] = SSIG1(wPt[22]) + wPt[17];
+            wPt[25] = SSIG1(wPt[23]) + wPt[18];
+            wPt[26] = SSIG1(wPt[24]) + wPt[19];
+            wPt[27] = SSIG1(wPt[25]) + wPt[20];
+            wPt[28] = SSIG1(wPt[26]) + wPt[21];
+            wPt[29] = SSIG1(wPt[27]) + wPt[22];
+            wPt[30] = SSIG1(wPt[28]) + wPt[23] + 1613496343;
+            wPt[31] = SSIG1(wPt[29]) + wPt[24] + SSIG0(wPt[16]) + 176;
+            wPt[32] = SSIG1(wPt[30]) + wPt[25] + SSIG0(wPt[17]) + wPt[16];
+            wPt[33] = SSIG1(wPt[31]) + wPt[26] + SSIG0(wPt[18]) + wPt[17];
+            wPt[34] = SSIG1(wPt[32]) + wPt[27] + SSIG0(wPt[19]) + wPt[18];
+            wPt[35] = SSIG1(wPt[33]) + wPt[28] + SSIG0(wPt[20]) + wPt[19];
+            wPt[36] = SSIG1(wPt[34]) + wPt[29] + SSIG0(wPt[21]) + wPt[20];
+            wPt[37] = SSIG1(wPt[35]) + wPt[30] + SSIG0(wPt[22]) + wPt[21];
+            wPt[38] = SSIG1(wPt[36]) + wPt[31] + SSIG0(wPt[23]) + wPt[22];
+            wPt[39] = SSIG1(wPt[37]) + wPt[32] + SSIG0(wPt[24]) + wPt[23];
+            wPt[40] = SSIG1(wPt[38]) + wPt[33] + SSIG0(wPt[25]) + wPt[24];
+            wPt[41] = SSIG1(wPt[39]) + wPt[34] + SSIG0(wPt[26]) + wPt[25];
+            wPt[42] = SSIG1(wPt[40]) + wPt[35] + SSIG0(wPt[27]) + wPt[26];
+            wPt[43] = SSIG1(wPt[41]) + wPt[36] + SSIG0(wPt[28]) + wPt[27];
+            wPt[44] = SSIG1(wPt[42]) + wPt[37] + SSIG0(wPt[29]) + wPt[28];
+            wPt[45] = SSIG1(wPt[43]) + wPt[38] + SSIG0(wPt[30]) + wPt[29];
+            wPt[46] = SSIG1(wPt[44]) + wPt[39] + SSIG0(wPt[31]) + wPt[30];
+            wPt[47] = SSIG1(wPt[45]) + wPt[40] + SSIG0(wPt[32]) + wPt[31];
+            wPt[48] = SSIG1(wPt[46]) + wPt[41] + SSIG0(wPt[33]) + wPt[32];
+            wPt[49] = SSIG1(wPt[47]) + wPt[42] + SSIG0(wPt[34]) + wPt[33];
+            wPt[50] = SSIG1(wPt[48]) + wPt[43] + SSIG0(wPt[35]) + wPt[34];
+            wPt[51] = SSIG1(wPt[49]) + wPt[44] + SSIG0(wPt[36]) + wPt[35];
+            wPt[52] = SSIG1(wPt[50]) + wPt[45] + SSIG0(wPt[37]) + wPt[36];
+            wPt[53] = SSIG1(wPt[51]) + wPt[46] + SSIG0(wPt[38]) + wPt[37];
+            wPt[54] = SSIG1(wPt[52]) + wPt[47] + SSIG0(wPt[39]) + wPt[38];
+            wPt[55] = SSIG1(wPt[53]) + wPt[48] + SSIG0(wPt[40]) + wPt[39];
+            wPt[56] = SSIG1(wPt[54]) + wPt[49] + SSIG0(wPt[41]) + wPt[40];
+            wPt[57] = SSIG1(wPt[55]) + wPt[50] + SSIG0(wPt[42]) + wPt[41];
+            wPt[58] = SSIG1(wPt[56]) + wPt[51] + SSIG0(wPt[43]) + wPt[42];
+            wPt[59] = SSIG1(wPt[57]) + wPt[52] + SSIG0(wPt[44]) + wPt[43];
+            wPt[60] = SSIG1(wPt[58]) + wPt[53] + SSIG0(wPt[45]) + wPt[44];
+            wPt[61] = SSIG1(wPt[59]) + wPt[54] + SSIG0(wPt[46]) + wPt[45];
+            wPt[62] = SSIG1(wPt[60]) + wPt[55] + SSIG0(wPt[47]) + wPt[46];
+            wPt[63] = SSIG1(wPt[61]) + wPt[56] + SSIG0(wPt[48]) + wPt[47];
+
+            CompressBlockWithWSet(hPt, wPt);
+        }
+
         /// <summary>
         /// Computes _single_ SHA256 hash for
         /// (data.Length == 23) and (wPt[0] to wPt[15] is set) and (Init() is called)
@@ -526,6 +589,69 @@ public unsafe void Compress28(uint* hPt, uint* wPt)
             CompressBlockWithWSet(hPt, wPt);
         }
 
+        /// <summary>
+        /// Computes _single_ SHA256 hash for
+        /// (data.Length == 31) and (wPt[0] to wPt[15] is set) and (Init() is called)
+        /// </summary>
+        /// <param name="hPt">HashState pointer</param>
+        /// <param name="wPt">Working vector pointer</param>
+        public unsafe void Compress30(uint* hPt, uint* wPt)
+        {
+            // w7 = extra value | 0b00000000_00000000_10000000_00000000U 
+            // w8 to w14 = 0
+            // w15 = 240
+            wPt[16] = SSIG0(wPt[1]) + wPt[0];
+            wPt[17] = 6684672 + 0 + SSIG0(wPt[2]) + wPt[1];
+            wPt[18] = SSIG1(wPt[16]) + SSIG0(wPt[3]) + wPt[2];
+            wPt[19] = SSIG1(wPt[17]) + SSIG0(wPt[4]) + wPt[3];
+            wPt[20] = SSIG1(wPt[18]) + SSIG0(wPt[5]) + wPt[4];
+            wPt[21] = SSIG1(wPt[19]) + SSIG0(wPt[6]) + wPt[5];
+            wPt[22] = SSIG1(wPt[20]) + 240 + SSIG0(wPt[7]) + wPt[6];
+            wPt[23] = SSIG1(wPt[21]) + wPt[16] + wPt[7];
+            wPt[24] = SSIG1(wPt[22]) + wPt[17];
+            wPt[25] = SSIG1(wPt[23]) + wPt[18];
+            wPt[26] = SSIG1(wPt[24]) + wPt[19];
+            wPt[27] = SSIG1(wPt[25]) + wPt[20];
+            wPt[28] = SSIG1(wPt[26]) + wPt[21];
+            wPt[29] = SSIG1(wPt[27]) + wPt[22];
+            wPt[30] = SSIG1(wPt[28]) + wPt[23] + 3762028575;
+            wPt[31] = SSIG1(wPt[29]) + wPt[24] + SSIG0(wPt[16]) + 240;
+            wPt[32] = SSIG1(wPt[30]) + wPt[25] + SSIG0(wPt[17]) + wPt[16];
+            wPt[33] = SSIG1(wPt[31]) + wPt[26] + SSIG0(wPt[18]) + wPt[17];
+            wPt[34] = SSIG1(wPt[32]) + wPt[27] + SSIG0(wPt[19]) + wPt[18];
+            wPt[35] = SSIG1(wPt[33]) + wPt[28] + SSIG0(wPt[20]) + wPt[19];
+            wPt[36] = SSIG1(wPt[34]) + wPt[29] + SSIG0(wPt[21]) + wPt[20];
+            wPt[37] = SSIG1(wPt[35]) + wPt[30] + SSIG0(wPt[22]) + wPt[21];
+            wPt[38] = SSIG1(wPt[36]) + wPt[31] + SSIG0(wPt[23]) + wPt[22];
+            wPt[39] = SSIG1(wPt[37]) + wPt[32] + SSIG0(wPt[24]) + wPt[23];
+            wPt[40] = SSIG1(wPt[38]) + wPt[33] + SSIG0(wPt[25]) + wPt[24];
+            wPt[41] = SSIG1(wPt[39]) + wPt[34] + SSIG0(wPt[26]) + wPt[25];
+            wPt[42] = SSIG1(wPt[40]) + wPt[35] + SSIG0(wPt[27]) + wPt[26];
+            wPt[43] = SSIG1(wPt[41]) + wPt[36] + SSIG0(wPt[28]) + wPt[27];
+            wPt[44] = SSIG1(wPt[42]) + wPt[37] + SSIG0(wPt[29]) + wPt[28];
+            wPt[45] = SSIG1(wPt[43]) + wPt[38] + SSIG0(wPt[30]) + wPt[29];
+            wPt[46] = SSIG1(wPt[44]) + wPt[39] + SSIG0(wPt[31]) + wPt[30];
+            wPt[47] = SSIG1(wPt[45]) + wPt[40] + SSIG0(wPt[32]) + wPt[31];
+            wPt[48] = SSIG1(wPt[46]) + wPt[41] + SSIG0(wPt[33]) + wPt[32];
+            wPt[49] = SSIG1(wPt[47]) + wPt[42] + SSIG0(wPt[34]) + wPt[33];
+            wPt[50] = SSIG1(wPt[48]) + wPt[43] + SSIG0(wPt[35]) + wPt[34];
+            wPt[51] = SSIG1(wPt[49]) + wPt[44] + SSIG0(wPt[36]) + wPt[35];
+            wPt[52] = SSIG1(wPt[50]) + wPt[45] + SSIG0(wPt[37]) + wPt[36];
+            wPt[53] = SSIG1(wPt[51]) + wPt[46] + SSIG0(wPt[38]) + wPt[37];
+            wPt[54] = SSIG1(wPt[52]) + wPt[47] + SSIG0(wPt[39]) + wPt[38];
+            wPt[55] = SSIG1(wPt[53]) + wPt[48] + SSIG0(wPt[40]) + wPt[39];
+            wPt[56] = SSIG1(wPt[54]) + wPt[49] + SSIG0(wPt[41]) + wPt[40];
+            wPt[57] = SSIG1(wPt[55]) + wPt[50] + SSIG0(wPt[42]) + wPt[41];
+            wPt[58] = SSIG1(wPt[56]) + wPt[51] + SSIG0(wPt[43]) + wPt[42];
+            wPt[59] = SSIG1(wPt[57]) + wPt[52] + SSIG0(wPt[44]) + wPt[43];
+            wPt[60] = SSIG1(wPt[58]) + wPt[53] + SSIG0(wPt[45]) + wPt[44];
+            wPt[61] = SSIG1(wPt[59]) + wPt[54] + SSIG0(wPt[46]) + wPt[45];
+            wPt[62] = SSIG1(wPt[60]) + wPt[55] + SSIG0(wPt[47]) + wPt[46];
+            wPt[63] = SSIG1(wPt[61]) + wPt[56] + SSIG0(wPt[48]) + wPt[47];
+
+            CompressBlockWithWSet(hPt, wPt);
+        }
+
         /// <summary>
         /// Computes _single_ SHA256 hash for
         /// (data.Length == 31) and (wPt[0] to wPt[15] is set) and (Init() is called)
@@ -539,19 +665,19 @@ public unsafe void Compress31(uint* hPt, uint* wPt)
             // w15 = 248
             wPt[16] = 0 + 0 + SSIG0(wPt[1]) + wPt[0];
             wPt[17] = 6488064 + 0 + SSIG0(wPt[2]) + wPt[1];
-            wPt[18] = SSIG1(wPt[16]) + 0 + SSIG0(wPt[3]) + wPt[2];
-            wPt[19] = SSIG1(wPt[17]) + 0 + SSIG0(wPt[4]) + wPt[3];
-            wPt[20] = SSIG1(wPt[18]) + 0 + SSIG0(wPt[5]) + wPt[4];
-            wPt[21] = SSIG1(wPt[19]) + 0 + SSIG0(wPt[6]) + wPt[5];
+            wPt[18] = SSIG1(wPt[16]) + SSIG0(wPt[3]) + wPt[2];
+            wPt[19] = SSIG1(wPt[17]) + SSIG0(wPt[4]) + wPt[3];
+            wPt[20] = SSIG1(wPt[18]) + SSIG0(wPt[5]) + wPt[4];
+            wPt[21] = SSIG1(wPt[19]) + SSIG0(wPt[6]) + wPt[5];
             wPt[22] = SSIG1(wPt[20]) + 248 + SSIG0(wPt[7]) + wPt[6];
-            wPt[23] = SSIG1(wPt[21]) + wPt[16] + 0 + wPt[7];
-            wPt[24] = SSIG1(wPt[22]) + wPt[17] + 0 + 0;
-            wPt[25] = SSIG1(wPt[23]) + wPt[18] + 0 + 0;
-            wPt[26] = SSIG1(wPt[24]) + wPt[19] + 0 + 0;
-            wPt[27] = SSIG1(wPt[25]) + wPt[20] + 0 + 0;
-            wPt[28] = SSIG1(wPt[26]) + wPt[21] + 0 + 0;
-            wPt[29] = SSIG1(wPt[27]) + wPt[22] + 0 + 0;
-            wPt[30] = SSIG1(wPt[28]) + wPt[23] + 4030595102 + 0;
+            wPt[23] = SSIG1(wPt[21]) + wPt[16] + wPt[7];
+            wPt[24] = SSIG1(wPt[22]) + wPt[17];
+            wPt[25] = SSIG1(wPt[23]) + wPt[18];
+            wPt[26] = SSIG1(wPt[24]) + wPt[19];
+            wPt[27] = SSIG1(wPt[25]) + wPt[20];
+            wPt[28] = SSIG1(wPt[26]) + wPt[21];
+            wPt[29] = SSIG1(wPt[27]) + wPt[22];
+            wPt[30] = SSIG1(wPt[28]) + wPt[23] + 4030595102;
             wPt[31] = SSIG1(wPt[29]) + wPt[24] + SSIG0(wPt[16]) + 248;
             wPt[32] = SSIG1(wPt[30]) + wPt[25] + SSIG0(wPt[17]) + wPt[16];
             wPt[33] = SSIG1(wPt[31]) + wPt[26] + SSIG0(wPt[18]) + wPt[17];
diff --git a/Src/Tests/Backend/Cryptography/Hashing/Sha256Tests.cs b/Src/Tests/Backend/Cryptography/Hashing/Sha256Tests.cs
@@ -296,6 +296,32 @@ public unsafe void Compress20Test()
             }
         }
 
+        [Fact]
+        public unsafe void Compress22Test()
+        {
+            int dataLen = 22;
+            byte[] data = GetRandomBytes(dataLen);
+            byte[] expected = ComputeSingleSha(data);
+
+            using Sha256 sha = new Sha256();
+            fixed (uint* hPt = &sha.hashState[0], wPt = &sha.w[0])
+            {
+                int dIndex = 0;
+                for (int i = 0; i < 5; i++, dIndex += 4)
+                {
+                    wPt[i] = (uint)((data[dIndex] << 24) | (data[dIndex + 1] << 16) | (data[dIndex + 2] << 8) | data[dIndex + 3]);
+                }
+                wPt[5] = (uint)((data[20] << 24) | (data[21] << 16) | 0b00000000_00000000_10000000_00000000U);
+
+                wPt[15] = (uint)dataLen * 8;
+                sha.Init(hPt);
+                sha.Compress22(hPt, wPt);
+                byte[] actual = sha.GetBytes(hPt);
+
+                Assert.Equal(expected, actual);
+            }
+        }
+
         [Fact]
         public unsafe void Compress23Test()
         {
@@ -374,6 +400,32 @@ public unsafe void Compress28Test()
             }
         }
 
+        [Fact]
+        public unsafe void Compress30Test()
+        {
+            int dataLen = 30;
+            byte[] data = GetRandomBytes(dataLen);
+            byte[] expected = ComputeSingleSha(data);
+
+            using Sha256 sha = new Sha256();
+            fixed (uint* hPt = &sha.hashState[0], wPt = &sha.w[0])
+            {
+                int dIndex = 0;
+                for (int i = 0; i < 7; i++, dIndex += 4)
+                {
+                    wPt[i] = (uint)((data[dIndex] << 24) | (data[dIndex + 1] << 16) | (data[dIndex + 2] << 8) | data[dIndex + 3]);
+                }
+                wPt[7] = (uint)((data[28] << 24) | (data[29] << 16) | 0b00000000_00000000_10000000_00000000U);
+
+                wPt[15] = (uint)dataLen * 8;
+                sha.Init(hPt);
+                sha.Compress30(hPt, wPt);
+                byte[] actual = sha.GetBytes(hPt);
+
+                Assert.Equal(expected, actual);
+            }
+        }
+
         [Fact]
         public unsafe void Compress31Test()
         {
