2022-03-09 13:58:21 +00:00
|
|
|
package tz
|
|
|
|
|
|
|
|
import (
|
|
|
|
"github.com/nspcc-dev/tzhash/gf127"
|
|
|
|
)
|
|
|
|
|
|
|
|
const (
|
|
|
|
// Size is the size of a Tillich-Zémor hash sum in bytes.
|
|
|
|
Size = 64
|
|
|
|
hashBlockSize = 128
|
|
|
|
)
|
|
|
|
|
|
|
|
type digest struct {
|
|
|
|
// Stores matrix cells in the following order:
|
|
|
|
// [ 0 2 ]
|
|
|
|
// [ 1 3 ]
|
|
|
|
// This is done to reuse the same digest between generic
|
|
|
|
// and AVX2 implementation.
|
|
|
|
x [4]GF127
|
|
|
|
}
|
|
|
|
|
|
|
|
// New returns a new hash.Hash computing the Tillich-Zémor checksum.
|
|
|
|
func New() *digest {
|
|
|
|
d := new(digest)
|
|
|
|
d.Reset()
|
|
|
|
return d
|
|
|
|
}
|
|
|
|
|
|
|
|
// Sum returns Tillich-Zémor checksum of data.
|
|
|
|
func Sum(data []byte) [Size]byte {
|
|
|
|
d := new(digest)
|
2022-07-06 14:59:52 +00:00
|
|
|
d.Reset()
|
2022-03-09 13:58:21 +00:00
|
|
|
_, _ = d.Write(data) // no errors
|
|
|
|
return d.checkSum()
|
|
|
|
}
|
|
|
|
|
2022-03-09 14:01:58 +00:00
|
|
|
// Sum implements hash.Hash.
|
2022-03-09 13:58:21 +00:00
|
|
|
func (d *digest) Sum(in []byte) []byte {
|
|
|
|
// Make a copy of d so that caller can keep writing and summing.
|
|
|
|
d0 := *d
|
|
|
|
h := d0.checkSum()
|
|
|
|
return append(in, h[:]...)
|
|
|
|
}
|
|
|
|
|
2022-03-09 14:01:50 +00:00
|
|
|
func (d *digest) checkSum() (b [Size]byte) {
|
|
|
|
t := d.x[0].Bytes()
|
2022-03-09 13:58:21 +00:00
|
|
|
copy(b[:], t[:])
|
|
|
|
|
2022-03-09 14:01:50 +00:00
|
|
|
t = d.x[2].Bytes()
|
2022-03-09 13:58:21 +00:00
|
|
|
copy(b[16:], t[:])
|
|
|
|
|
2022-03-09 14:01:50 +00:00
|
|
|
t = d.x[1].Bytes()
|
2022-03-09 13:58:21 +00:00
|
|
|
copy(b[32:], t[:])
|
|
|
|
|
2022-03-09 14:01:50 +00:00
|
|
|
t = d.x[3].Bytes()
|
2022-03-09 13:58:21 +00:00
|
|
|
copy(b[48:], t[:])
|
|
|
|
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-03-09 14:01:58 +00:00
|
|
|
// Reset implements hash.Hash.
|
2022-03-09 13:58:21 +00:00
|
|
|
func (d *digest) Reset() {
|
|
|
|
d.x[0] = GF127{1, 0}
|
|
|
|
d.x[1] = GF127{0, 0}
|
|
|
|
d.x[2] = GF127{0, 0}
|
|
|
|
d.x[3] = GF127{1, 0}
|
|
|
|
}
|
|
|
|
|
2022-03-09 14:01:58 +00:00
|
|
|
// Write implements hash.Hash.
|
2022-03-09 13:58:21 +00:00
|
|
|
func (d *digest) Write(data []byte) (n int, err error) {
|
|
|
|
return write(d, data)
|
|
|
|
}
|
|
|
|
|
|
|
|
func writeGeneric(d *digest, data []byte) (n int, err error) {
|
|
|
|
n = len(data)
|
|
|
|
tmp := new(GF127)
|
|
|
|
for _, b := range data {
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x80 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x40 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x20 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x10 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x08 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x04 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x02 != 0, tmp)
|
|
|
|
mulBitRightGeneric(&d.x[0], &d.x[1], &d.x[2], &d.x[3], b&0x01 != 0, tmp)
|
|
|
|
}
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-03-09 14:01:58 +00:00
|
|
|
// Size implements hash.Hash.
|
2022-03-09 13:58:21 +00:00
|
|
|
func (d *digest) Size() int {
|
|
|
|
return Size
|
|
|
|
}
|
|
|
|
|
2022-03-09 14:01:58 +00:00
|
|
|
// BlockSize implements hash.Hash.
|
2022-03-09 13:58:21 +00:00
|
|
|
func (d *digest) BlockSize() int {
|
|
|
|
return hashBlockSize
|
|
|
|
}
|
|
|
|
|
|
|
|
func mulBitRightGeneric(c00, c10, c01, c11 *GF127, bit bool, tmp *GF127) {
|
|
|
|
if bit {
|
|
|
|
*tmp = *c00
|
|
|
|
gf127.Mul10(c00, c00)
|
|
|
|
gf127.Add(c00, c01, c00)
|
|
|
|
gf127.Mul11(tmp, tmp)
|
|
|
|
gf127.Add(c01, tmp, c01)
|
|
|
|
|
|
|
|
*tmp = *c10
|
|
|
|
gf127.Mul10(c10, c10)
|
|
|
|
gf127.Add(c10, c11, c10)
|
|
|
|
gf127.Mul11(tmp, tmp)
|
|
|
|
gf127.Add(c11, tmp, c11)
|
|
|
|
} else {
|
|
|
|
*tmp = *c00
|
|
|
|
gf127.Mul10(c00, c00)
|
|
|
|
gf127.Add(c00, c01, c00)
|
|
|
|
*c01 = *tmp
|
|
|
|
|
|
|
|
*tmp = *c10
|
|
|
|
gf127.Mul10(c10, c10)
|
|
|
|
gf127.Add(c10, c11, c10)
|
|
|
|
*c11 = *tmp
|
|
|
|
}
|
|
|
|
}
|