mirror of
https://github.com/php/php-src.git
synced 2024-09-22 02:17:32 +00:00
ada776c84c
* Modify php_hash_ops to contain the algorithm name and serialize and unserialize methods. * Implement __serialize and __unserialize magic methods on HashContext. Note that serialized HashContexts are not necessarily portable between PHP versions or from architecture to architecture. (Most are, though Keccak and slow SHA3s are not.) An exception is thrown when an unsupported serialization is attempted. Because of security concerns, HASH_HMAC contexts are not currently serializable; attempting to serialize one throws an exception. Serialization exposes the state of HashContext memory, so ensure that memory is zeroed before use by allocating it with a new php_hash_alloc_context function. Performance impact is negligible. Some hash internal states have logical pointers into a buffer, or sponge, that absorbs input provided in bytes rather than chunks. The unserialize functions for these hash functions must validate that the logical pointers are all within bounds, lest future hash operations cause out-of-bounds memory accesses. * Adler32, CRC32, FNV, joaat: simple state, no buffer positions * Gost, MD2, SHA3, Snefru, Tiger, Whirlpool: buffer positions must be validated * MD4, MD5, SHA1, SHA2, haval, ripemd: buffer positions encoded bitwise, forced to within bounds on use; no need to validate
166 lines
6.2 KiB
C
166 lines
6.2 KiB
C
/*
|
|
+----------------------------------------------------------------------+
|
|
| Copyright (c) The PHP Group |
|
|
+----------------------------------------------------------------------+
|
|
| This source file is subject to version 3.01 of the PHP license, |
|
|
| that is bundled with this package in the file LICENSE, and is |
|
|
| available through the world-wide-web at the following url: |
|
|
| http://www.php.net/license/3_01.txt |
|
|
| If you did not receive a copy of the PHP license and are unable to |
|
|
| obtain it through the world-wide-web, please send a note to |
|
|
| license@php.net so we can mail you a copy immediately. |
|
|
+----------------------------------------------------------------------+
|
|
| Author: Sara Golemon <pollita@php.net> |
|
|
+----------------------------------------------------------------------+
|
|
*/
|
|
|
|
#ifndef PHP_HASH_H
|
|
#define PHP_HASH_H
|
|
|
|
#include "php.h"
|
|
|
|
#define PHP_HASH_EXTNAME "hash"
|
|
#define PHP_HASH_VERSION PHP_VERSION
|
|
#define PHP_MHASH_VERSION PHP_VERSION
|
|
|
|
#define PHP_HASH_HMAC 0x0001
|
|
|
|
#define PHP_HASH_SERIALIZE_MAGIC_SPEC 2
|
|
|
|
#define L64 INT64_C
|
|
|
|
typedef struct _php_hashcontext_object php_hashcontext_object;
|
|
|
|
typedef void (*php_hash_init_func_t)(void *context);
|
|
typedef void (*php_hash_update_func_t)(void *context, const unsigned char *buf, size_t count);
|
|
typedef void (*php_hash_final_func_t)(unsigned char *digest, void *context);
|
|
typedef int (*php_hash_copy_func_t)(const void *ops, void *orig_context, void *dest_context);
|
|
typedef int (*php_hash_serialize_func_t)(const php_hashcontext_object *hash, zend_long *magic, zval *zv);
|
|
typedef int (*php_hash_unserialize_func_t)(php_hashcontext_object *hash, zend_long magic, const zval *zv);
|
|
|
|
typedef struct _php_hash_ops {
|
|
const char *algo;
|
|
php_hash_init_func_t hash_init;
|
|
php_hash_update_func_t hash_update;
|
|
php_hash_final_func_t hash_final;
|
|
php_hash_copy_func_t hash_copy;
|
|
php_hash_serialize_func_t hash_serialize;
|
|
php_hash_unserialize_func_t hash_unserialize;
|
|
const char *serialize_spec;
|
|
|
|
size_t digest_size;
|
|
size_t block_size;
|
|
size_t context_size;
|
|
unsigned is_crypto: 1;
|
|
} php_hash_ops;
|
|
|
|
struct _php_hashcontext_object {
|
|
const php_hash_ops *ops;
|
|
void *context;
|
|
|
|
zend_long options;
|
|
unsigned char *key;
|
|
|
|
zend_object std;
|
|
};
|
|
|
|
static inline php_hashcontext_object *php_hashcontext_from_object(zend_object *obj) {
|
|
return ((php_hashcontext_object*)(obj + 1)) - 1;
|
|
}
|
|
|
|
extern const php_hash_ops php_hash_md2_ops;
|
|
extern const php_hash_ops php_hash_md4_ops;
|
|
extern const php_hash_ops php_hash_md5_ops;
|
|
extern const php_hash_ops php_hash_sha1_ops;
|
|
extern const php_hash_ops php_hash_sha224_ops;
|
|
extern const php_hash_ops php_hash_sha256_ops;
|
|
extern const php_hash_ops php_hash_sha384_ops;
|
|
extern const php_hash_ops php_hash_sha512_ops;
|
|
extern const php_hash_ops php_hash_sha512_256_ops;
|
|
extern const php_hash_ops php_hash_sha512_224_ops;
|
|
extern const php_hash_ops php_hash_sha3_224_ops;
|
|
extern const php_hash_ops php_hash_sha3_256_ops;
|
|
extern const php_hash_ops php_hash_sha3_384_ops;
|
|
extern const php_hash_ops php_hash_sha3_512_ops;
|
|
extern const php_hash_ops php_hash_ripemd128_ops;
|
|
extern const php_hash_ops php_hash_ripemd160_ops;
|
|
extern const php_hash_ops php_hash_ripemd256_ops;
|
|
extern const php_hash_ops php_hash_ripemd320_ops;
|
|
extern const php_hash_ops php_hash_whirlpool_ops;
|
|
extern const php_hash_ops php_hash_3tiger128_ops;
|
|
extern const php_hash_ops php_hash_3tiger160_ops;
|
|
extern const php_hash_ops php_hash_3tiger192_ops;
|
|
extern const php_hash_ops php_hash_4tiger128_ops;
|
|
extern const php_hash_ops php_hash_4tiger160_ops;
|
|
extern const php_hash_ops php_hash_4tiger192_ops;
|
|
extern const php_hash_ops php_hash_snefru_ops;
|
|
extern const php_hash_ops php_hash_gost_ops;
|
|
extern const php_hash_ops php_hash_gost_crypto_ops;
|
|
extern const php_hash_ops php_hash_adler32_ops;
|
|
extern const php_hash_ops php_hash_crc32_ops;
|
|
extern const php_hash_ops php_hash_crc32b_ops;
|
|
extern const php_hash_ops php_hash_crc32c_ops;
|
|
extern const php_hash_ops php_hash_fnv132_ops;
|
|
extern const php_hash_ops php_hash_fnv1a32_ops;
|
|
extern const php_hash_ops php_hash_fnv164_ops;
|
|
extern const php_hash_ops php_hash_fnv1a64_ops;
|
|
extern const php_hash_ops php_hash_joaat_ops;
|
|
|
|
#define PHP_HASH_HAVAL_OPS(p,b) extern const php_hash_ops php_hash_##p##haval##b##_ops;
|
|
|
|
PHP_HASH_HAVAL_OPS(3,128)
|
|
PHP_HASH_HAVAL_OPS(3,160)
|
|
PHP_HASH_HAVAL_OPS(3,192)
|
|
PHP_HASH_HAVAL_OPS(3,224)
|
|
PHP_HASH_HAVAL_OPS(3,256)
|
|
|
|
PHP_HASH_HAVAL_OPS(4,128)
|
|
PHP_HASH_HAVAL_OPS(4,160)
|
|
PHP_HASH_HAVAL_OPS(4,192)
|
|
PHP_HASH_HAVAL_OPS(4,224)
|
|
PHP_HASH_HAVAL_OPS(4,256)
|
|
|
|
PHP_HASH_HAVAL_OPS(5,128)
|
|
PHP_HASH_HAVAL_OPS(5,160)
|
|
PHP_HASH_HAVAL_OPS(5,192)
|
|
PHP_HASH_HAVAL_OPS(5,224)
|
|
PHP_HASH_HAVAL_OPS(5,256)
|
|
|
|
extern zend_module_entry hash_module_entry;
|
|
#define phpext_hash_ptr &hash_module_entry
|
|
|
|
#ifdef PHP_WIN32
|
|
# define PHP_HASH_API __declspec(dllexport)
|
|
#elif defined(__GNUC__) && __GNUC__ >= 4
|
|
# define PHP_HASH_API __attribute__ ((visibility("default")))
|
|
#else
|
|
# define PHP_HASH_API
|
|
#endif
|
|
|
|
extern PHP_HASH_API zend_class_entry *php_hashcontext_ce;
|
|
PHP_HASH_API const php_hash_ops *php_hash_fetch_ops(zend_string *algo);
|
|
PHP_HASH_API void php_hash_register_algo(const char *algo, const php_hash_ops *ops);
|
|
PHP_HASH_API int php_hash_copy(const void *ops, void *orig_context, void *dest_context);
|
|
PHP_HASH_API int php_hash_serialize(const php_hashcontext_object *context, zend_long *magic, zval *zv);
|
|
PHP_HASH_API int php_hash_unserialize(php_hashcontext_object *context, zend_long magic, const zval *zv);
|
|
PHP_HASH_API int php_hash_serialize_spec(const php_hashcontext_object *context, zval *zv, const char *spec);
|
|
PHP_HASH_API int php_hash_unserialize_spec(php_hashcontext_object *hash, const zval *zv, const char *spec);
|
|
|
|
static inline void *php_hash_alloc_context(const php_hash_ops *ops) {
|
|
/* Zero out context memory so serialization doesn't expose internals */
|
|
return ecalloc(1, ops->context_size);
|
|
}
|
|
|
|
static inline void php_hash_bin2hex(char *out, const unsigned char *in, size_t in_len)
|
|
{
|
|
static const char hexits[17] = "0123456789abcdef";
|
|
size_t i;
|
|
|
|
for(i = 0; i < in_len; i++) {
|
|
out[i * 2] = hexits[in[i] >> 4];
|
|
out[(i * 2) + 1] = hexits[in[i] & 0x0F];
|
|
}
|
|
}
|
|
|
|
#endif /* PHP_HASH_H */
|