doxygen/trunc__hash_8cpp_source.html

/**

 * Wrapper for truncated hashes

 * (C) 2023 Jack Lloyd

 *     2023 René Meusel - Rohde & Schwarz Cybersecurity

 *

 * Botan is released under the Simplified BSD License (see license.txt)

 */


#include <botan/internal/trunc_hash.h>


#include <botan/exceptn.h>

#include <botan/internal/fmt.h>


namespace Botan {


void Truncated_Hash::add_data(std::span<const uint8_t> input) {

   m_hash->update(input);

}


void Truncated_Hash::final_result(std::span<uint8_t> out) {

   BOTAN_ASSERT_NOMSG(m_hash->output_length() * 8 >= m_output_bits);


   m_hash->final(m_buffer);


   // truncate output to a full number of bytes

   const auto bytes = output_length();

   std::copy_n(m_buffer.begin(), bytes, out.data());

   zeroise(m_buffer);


   // mask the unwanted bits in the final byte

   const uint8_t bits_in_last_byte = ((m_output_bits - 1) % 8) + 1;

   const uint8_t bitmask = ~((1 << (8 - bits_in_last_byte)) - 1);


   out.back() &= bitmask;

}


size_t Truncated_Hash::output_length() const {

   return (m_output_bits + 7) / 8;

}


std::string Truncated_Hash::name() const {

   return fmt("Truncated({},{})", m_hash->name(), m_output_bits);

}


std::unique_ptr<HashFunction> Truncated_Hash::new_object() const {

   return std::make_unique<Truncated_Hash>(m_hash->new_object(), m_output_bits);

}


std::unique_ptr<HashFunction> Truncated_Hash::copy_state() const {

   return std::make_unique<Truncated_Hash>(m_hash->copy_state(), m_output_bits);

}


void Truncated_Hash::clear() {

   m_hash->clear();

}


Truncated_Hash::Truncated_Hash(std::unique_ptr<HashFunction> hash, size_t bits) :

      m_hash(std::move(hash)), m_output_bits(bits), m_buffer(m_hash->output_length()) {

   BOTAN_ASSERT_NONNULL(m_hash);


   if(m_output_bits == 0) {

      throw Invalid_Argument("Truncating a hash to 0 does not make sense");

   }


   if(m_hash->output_length() * 8 < m_output_bits) {

      throw Invalid_Argument("Underlying hash function does not produce enough bytes for truncation");

   }

}


}  // namespace Botan

BOTAN_ASSERT_NOMSG
#define BOTAN_ASSERT_NOMSG(expr)
Definition assert.h:59

BOTAN_ASSERT_NONNULL
#define BOTAN_ASSERT_NONNULL(ptr)
Definition assert.h:86

Botan::Invalid_Argument
Definition exceptn.h:131

Botan::Truncated_Hash::Truncated_Hash
Truncated_Hash(std::unique_ptr< HashFunction > hash, size_t length)
Definition trunc_hash.cpp:57

Botan::Truncated_Hash::output_length
size_t output_length() const override
Definition trunc_hash.cpp:37

Botan::Truncated_Hash::name
std::string name() const override
Definition trunc_hash.cpp:41

Botan::Truncated_Hash::new_object
std::unique_ptr< HashFunction > new_object() const override
Definition trunc_hash.cpp:45

Botan::Truncated_Hash::copy_state
std::unique_ptr< HashFunction > copy_state() const override
Definition trunc_hash.cpp:49

Botan::Truncated_Hash::clear
void clear() override
Definition trunc_hash.cpp:53

Botan
Definition alg_id.cpp:13

Botan::zeroise
void zeroise(std::vector< T, Alloc > &vec)
Definition secmem.h:108

Botan::fmt
std::string fmt(std::string_view format, const T &... args)
Definition fmt.h:53