| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156 |
- #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
- #pragma warning disable
- using System;
- using System.Diagnostics;
- using Best.HTTP.SecureProtocol.Org.BouncyCastle.Utilities;
- namespace Best.HTTP.SecureProtocol.Org.BouncyCastle.Crypto.Digests
- {
- /// <summary>
- /// Implementation of SHAKE based on following KeccakNISTInterface.c from http://keccak.noekeon.org/
- /// </summary>
- /// <remarks>
- /// Following the naming conventions used in the C source code to enable easy review of the implementation.
- /// </remarks>
- public class ShakeDigest
- : KeccakDigest, IXof
- {
- private static int CheckBitLength(int bitLength)
- {
- switch (bitLength)
- {
- case 128:
- case 256:
- return bitLength;
- default:
- throw new ArgumentException(bitLength + " not supported for SHAKE", "bitLength");
- }
- }
- public ShakeDigest()
- : this(128)
- {
- }
- public ShakeDigest(int bitLength)
- : base(CheckBitLength(bitLength))
- {
- }
- public ShakeDigest(ShakeDigest source)
- : base(source)
- {
- }
- public override string AlgorithmName
- {
- get { return "SHAKE" + fixedOutputLength; }
- }
- public override int GetDigestSize()
- {
- return fixedOutputLength >> 2;
- }
- public override int DoFinal(byte[] output, int outOff)
- {
- return OutputFinal(output, outOff, GetDigestSize());
- }
- public virtual int OutputFinal(byte[] output, int outOff, int outLen)
- {
- int length = Output(output, outOff, outLen);
- Reset();
- return length;
- }
- public virtual int Output(byte[] output, int outOff, int outLen)
- {
- if (!squeezing)
- {
- AbsorbBits(0x0F, 4);
- }
- Squeeze(output, outOff, (long)outLen << 3);
- return outLen;
- }
- #if NETCOREAPP2_1_OR_GREATER || NETSTANDARD2_1_OR_GREATER || UNITY_2021_2_OR_NEWER
- public override int DoFinal(Span<byte> output)
- {
- return OutputFinal(output[..GetDigestSize()]);
- }
- public virtual int OutputFinal(Span<byte> output)
- {
- int length = Output(output);
- Reset();
- return length;
- }
- public virtual int Output(Span<byte> output)
- {
- if (!squeezing)
- {
- AbsorbBits(0x0F, 4);
- }
- Squeeze(output);
- return output.Length;
- }
- #endif
- /*
- * TODO Possible API change to support partial-byte suffixes.
- */
- protected override int DoFinal(byte[] output, int outOff, byte partialByte, int partialBits)
- {
- return OutputFinal(output, outOff, GetDigestSize(), partialByte, partialBits);
- }
- /*
- * TODO Possible API change to support partial-byte suffixes.
- */
- protected virtual int OutputFinal(byte[] output, int outOff, int outLen, byte partialByte, int partialBits)
- {
- if (partialBits < 0 || partialBits > 7)
- throw new ArgumentException("must be in the range [0,7]", "partialBits");
- int finalInput = (partialByte & ((1 << partialBits) - 1)) | (0x0F << partialBits);
- Debug.Assert(finalInput >= 0);
- int finalBits = partialBits + 4;
- if (finalBits >= 8)
- {
- Absorb((byte)finalInput);
- finalBits -= 8;
- finalInput >>= 8;
- }
- if (finalBits > 0)
- {
- AbsorbBits(finalInput, finalBits);
- }
- Squeeze(output, outOff, (long)outLen << 3);
- Reset();
- return outLen;
- }
- public override IMemoable Copy()
- {
- return new ShakeDigest(this);
- }
- }
- }
- #pragma warning restore
- #endif
|
