Skip to content

Commit

Permalink
ripemd: implement RIPEMD-128 (#406)
Browse files Browse the repository at this point in the history
  • Loading branch information
@lumag
lumag authored Sep 16, 2022
1 parent 1731ced commit fc3e726
Show file tree
Hide file tree
Showing 5 changed files with 266 additions and 3 deletions.
10 changes: 9 additions & 1 deletion ripemd/benches/mod.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,9 +2,17 @@
extern crate test;

use digest::bench_update;
use ripemd::{Ripemd160, Ripemd256, Ripemd320};
use ripemd::{Ripemd128, Ripemd160, Ripemd256, Ripemd320};
use test::Bencher;

bench_update!(
Ripemd128::default();
ripemd128_10 10;
ripemd128_100 100;
ripemd128_1000 1000;
ripemd128_10000 10000;
);

bench_update!(
Ripemd160::default();
ripemd160_10 10;
Expand Down
242 changes: 242 additions & 0 deletions ripemd/src/c128.rs
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,242 @@
use core::convert::TryInto;

pub const DIGEST_BUF_LEN: usize = 4;
pub const WORK_BUF_LEN: usize = 16;

pub const H0: [u32; DIGEST_BUF_LEN] = [0x6745_2301, 0xefcd_ab89, 0x98ba_dcfe, 0x1032_5476];

macro_rules! round(
($a:expr, $b:expr, $c:expr, $d:expr,
$x:expr, $bits:expr, $add:expr, $round:expr) => ({
$a = $a.wrapping_add($round).wrapping_add($x).wrapping_add($add);
$a = $a.rotate_left($bits);
});
);

macro_rules! process_block(
($h:ident, $data:expr,
$( round1: h_ordering $f0:expr, $f1:expr, $f2:expr, $f3:expr;
data_index $data_index1:expr; roll_shift $bits1:expr )*;
$( round2: h_ordering $g0:expr, $g1:expr, $g2:expr, $g3:expr;
data_index $data_index2:expr; roll_shift $bits2:expr )*;
$( round3: h_ordering $h0:expr, $h1:expr, $h2:expr, $h3:expr;
data_index $data_index3:expr; roll_shift $bits3:expr )*;
$( round4: h_ordering $i0:expr, $i1:expr, $i2:expr, $i3:expr;
data_index $data_index4:expr; roll_shift $bits4:expr )*;
$( par_round1: h_ordering $pi0:expr, $pi1:expr, $pi2:expr, $pi3:expr;
data_index $pdata_index1:expr; roll_shift $pbits1:expr )*;
$( par_round2: h_ordering $ph0:expr, $ph1:expr, $ph2:expr, $ph3:expr;
data_index $pdata_index2:expr; roll_shift $pbits2:expr )*;
$( par_round3: h_ordering $pg0:expr, $pg1:expr, $pg2:expr, $pg3:expr;
data_index $pdata_index3:expr; roll_shift $pbits3:expr )*;
$( par_round4: h_ordering $pf0:expr, $pf1:expr, $pf2:expr, $pf3:expr;
data_index $pdata_index4:expr; roll_shift $pbits4:expr )*;
) => ({
let mut bb = *$h;
let mut bbb = *$h;

// Round 1
$( round!(bb[$f0], bb[$f1], bb[$f2], bb[$f3],
$data[$data_index1], $bits1, 0x0000_0000,
bb[$f1] ^ bb[$f2] ^ bb[$f3]); )*

// Round 2
$( round!(bb[$g0], bb[$g1], bb[$g2], bb[$g3],
$data[$data_index2], $bits2, 0x5a82_7999,
(bb[$g1] & bb[$g2]) | (!bb[$g1] & bb[$g3])); )*

// Round 3
$( round!(bb[$h0], bb[$h1], bb[$h2], bb[$h3],
$data[$data_index3], $bits3, 0x6ed9_eba1,
(bb[$h1] | !bb[$h2]) ^ bb[$h3]); )*

// Round 4
$( round!(bb[$i0], bb[$i1], bb[$i2], bb[$i3],
$data[$data_index4], $bits4, 0x8f1b_bcdc,
(bb[$i1] & bb[$i3]) | (bb[$i2] & !bb[$i3])); )*

// Parallel rounds: these are the same as the previous five
// rounds except that the constants have changed, we work
// with the other buffer, and they are applied in reverse
// order.

// Parallel Round 1
$( round!(bbb[$pi0], bbb[$pi1], bbb[$pi2], bbb[$pi3],
$data[$pdata_index1], $pbits1, 0x50a2_8be6,
(bbb[$pi1] & bbb[$pi3]) | (bbb[$pi2] & !bbb[$pi3])); )*

// Parallel Round 2
$( round!(bbb[$ph0], bbb[$ph1], bbb[$ph2], bbb[$ph3],
$data[$pdata_index2], $pbits2, 0x5c4d_d124,
(bbb[$ph1] | !bbb[$ph2]) ^ bbb[$ph3]); )*

// Parallel Round 3
$( round!(bbb[$pg0], bbb[$pg1], bbb[$pg2], bbb[$pg3],
$data[$pdata_index3], $pbits3, 0x6d70_3ef3,
(bbb[$pg1] & bbb[$pg2]) | (!bbb[$pg1] & bbb[$pg3])); )*

// Parallel Round 4
$( round!(bbb[$pf0], bbb[$pf1], bbb[$pf2], bbb[$pf3],
$data[$pdata_index4], $pbits4, 0x0000_0000,
bbb[$pf1] ^ bbb[$pf2] ^ bbb[$pf3]); )*

// Combine results
bbb[3] = bbb[3].wrapping_add($h[1]).wrapping_add(bb[2]);
$h[1] = $h[2].wrapping_add(bb[3]).wrapping_add(bbb[0]);
$h[2] = $h[3].wrapping_add(bb[0]).wrapping_add(bbb[1]);
$h[3] = $h[0].wrapping_add(bb[1]).wrapping_add(bbb[2]);
$h[0] = bbb[3];
});
);

pub fn compress(h: &mut [u32; DIGEST_BUF_LEN], data: &[u8; 64]) {
let mut w = [0u32; WORK_BUF_LEN];
for (o, chunk) in w.iter_mut().zip(data.chunks_exact(4)) {
*o = u32::from_le_bytes(chunk.try_into().unwrap());
}
process_block!(h, w[..],
// Round 1
round1: h_ordering 0, 1, 2, 3; data_index 0; roll_shift 11
round1: h_ordering 3, 0, 1, 2; data_index 1; roll_shift 14
round1: h_ordering 2, 3, 0, 1; data_index 2; roll_shift 15
round1: h_ordering 1, 2, 3, 0; data_index 3; roll_shift 12
round1: h_ordering 0, 1, 2, 3; data_index 4; roll_shift 5
round1: h_ordering 3, 0, 1, 2; data_index 5; roll_shift 8
round1: h_ordering 2, 3, 0, 1; data_index 6; roll_shift 7
round1: h_ordering 1, 2, 3, 0; data_index 7; roll_shift 9
round1: h_ordering 0, 1, 2, 3; data_index 8; roll_shift 11
round1: h_ordering 3, 0, 1, 2; data_index 9; roll_shift 13
round1: h_ordering 2, 3, 0, 1; data_index 10; roll_shift 14
round1: h_ordering 1, 2, 3, 0; data_index 11; roll_shift 15
round1: h_ordering 0, 1, 2, 3; data_index 12; roll_shift 6
round1: h_ordering 3, 0, 1, 2; data_index 13; roll_shift 7
round1: h_ordering 2, 3, 0, 1; data_index 14; roll_shift 9
round1: h_ordering 1, 2, 3, 0; data_index 15; roll_shift 8;

// Round 2
round2: h_ordering 0, 1, 2, 3; data_index 7; roll_shift 7
round2: h_ordering 3, 0, 1, 2; data_index 4; roll_shift 6
round2: h_ordering 2, 3, 0, 1; data_index 13; roll_shift 8
round2: h_ordering 1, 2, 3, 0; data_index 1; roll_shift 13
round2: h_ordering 0, 1, 2, 3; data_index 10; roll_shift 11
round2: h_ordering 3, 0, 1, 2; data_index 6; roll_shift 9
round2: h_ordering 2, 3, 0, 1; data_index 15; roll_shift 7
round2: h_ordering 1, 2, 3, 0; data_index 3; roll_shift 15
round2: h_ordering 0, 1, 2, 3; data_index 12; roll_shift 7
round2: h_ordering 3, 0, 1, 2; data_index 0; roll_shift 12
round2: h_ordering 2, 3, 0, 1; data_index 9; roll_shift 15
round2: h_ordering 1, 2, 3, 0; data_index 5; roll_shift 9
round2: h_ordering 0, 1, 2, 3; data_index 2; roll_shift 11
round2: h_ordering 3, 0, 1, 2; data_index 14; roll_shift 7
round2: h_ordering 2, 3, 0, 1; data_index 11; roll_shift 13
round2: h_ordering 1, 2, 3, 0; data_index 8; roll_shift 12;

// Round 3
round3: h_ordering 0, 1, 2, 3; data_index 3; roll_shift 11
round3: h_ordering 3, 0, 1, 2; data_index 10; roll_shift 13
round3: h_ordering 2, 3, 0, 1; data_index 14; roll_shift 6
round3: h_ordering 1, 2, 3, 0; data_index 4; roll_shift 7
round3: h_ordering 0, 1, 2, 3; data_index 9; roll_shift 14
round3: h_ordering 3, 0, 1, 2; data_index 15; roll_shift 9
round3: h_ordering 2, 3, 0, 1; data_index 8; roll_shift 13
round3: h_ordering 1, 2, 3, 0; data_index 1; roll_shift 15
round3: h_ordering 0, 1, 2, 3; data_index 2; roll_shift 14
round3: h_ordering 3, 0, 1, 2; data_index 7; roll_shift 8
round3: h_ordering 2, 3, 0, 1; data_index 0; roll_shift 13
round3: h_ordering 1, 2, 3, 0; data_index 6; roll_shift 6
round3: h_ordering 0, 1, 2, 3; data_index 13; roll_shift 5
round3: h_ordering 3, 0, 1, 2; data_index 11; roll_shift 12
round3: h_ordering 2, 3, 0, 1; data_index 5; roll_shift 7
round3: h_ordering 1, 2, 3, 0; data_index 12; roll_shift 5;

// Round 4
round4: h_ordering 0, 1, 2, 3; data_index 1; roll_shift 11
round4: h_ordering 3, 0, 1, 2; data_index 9; roll_shift 12
round4: h_ordering 2, 3, 0, 1; data_index 11; roll_shift 14
round4: h_ordering 1, 2, 3, 0; data_index 10; roll_shift 15
round4: h_ordering 0, 1, 2, 3; data_index 0; roll_shift 14
round4: h_ordering 3, 0, 1, 2; data_index 8; roll_shift 15
round4: h_ordering 2, 3, 0, 1; data_index 12; roll_shift 9
round4: h_ordering 1, 2, 3, 0; data_index 4; roll_shift 8
round4: h_ordering 0, 1, 2, 3; data_index 13; roll_shift 9
round4: h_ordering 3, 0, 1, 2; data_index 3; roll_shift 14
round4: h_ordering 2, 3, 0, 1; data_index 7; roll_shift 5
round4: h_ordering 1, 2, 3, 0; data_index 15; roll_shift 6
round4: h_ordering 0, 1, 2, 3; data_index 14; roll_shift 8
round4: h_ordering 3, 0, 1, 2; data_index 5; roll_shift 6
round4: h_ordering 2, 3, 0, 1; data_index 6; roll_shift 5
round4: h_ordering 1, 2, 3, 0; data_index 2; roll_shift 12;

// Parallel Round 1
par_round1: h_ordering 0, 1, 2, 3; data_index 5; roll_shift 8
par_round1: h_ordering 3, 0, 1, 2; data_index 14; roll_shift 9
par_round1: h_ordering 2, 3, 0, 1; data_index 7; roll_shift 9
par_round1: h_ordering 1, 2, 3, 0; data_index 0; roll_shift 11
par_round1: h_ordering 0, 1, 2, 3; data_index 9; roll_shift 13
par_round1: h_ordering 3, 0, 1, 2; data_index 2; roll_shift 15
par_round1: h_ordering 2, 3, 0, 1; data_index 11; roll_shift 15
par_round1: h_ordering 1, 2, 3, 0; data_index 4; roll_shift 5
par_round1: h_ordering 0, 1, 2, 3; data_index 13; roll_shift 7
par_round1: h_ordering 3, 0, 1, 2; data_index 6; roll_shift 7
par_round1: h_ordering 2, 3, 0, 1; data_index 15; roll_shift 8
par_round1: h_ordering 1, 2, 3, 0; data_index 8; roll_shift 11
par_round1: h_ordering 0, 1, 2, 3; data_index 1; roll_shift 14
par_round1: h_ordering 3, 0, 1, 2; data_index 10; roll_shift 14
par_round1: h_ordering 2, 3, 0, 1; data_index 3; roll_shift 12
par_round1: h_ordering 1, 2, 3, 0; data_index 12; roll_shift 6;

// Parallel Round 2
par_round2: h_ordering 0, 1, 2, 3; data_index 6; roll_shift 9
par_round2: h_ordering 3, 0, 1, 2; data_index 11; roll_shift 13
par_round2: h_ordering 2, 3, 0, 1; data_index 3; roll_shift 15
par_round2: h_ordering 1, 2, 3, 0; data_index 7; roll_shift 7
par_round2: h_ordering 0, 1, 2, 3; data_index 0; roll_shift 12
par_round2: h_ordering 3, 0, 1, 2; data_index 13; roll_shift 8
par_round2: h_ordering 2, 3, 0, 1; data_index 5; roll_shift 9
par_round2: h_ordering 1, 2, 3, 0; data_index 10; roll_shift 11
par_round2: h_ordering 0, 1, 2, 3; data_index 14; roll_shift 7
par_round2: h_ordering 3, 0, 1, 2; data_index 15; roll_shift 7
par_round2: h_ordering 2, 3, 0, 1; data_index 8; roll_shift 12
par_round2: h_ordering 1, 2, 3, 0; data_index 12; roll_shift 7
par_round2: h_ordering 0, 1, 2, 3; data_index 4; roll_shift 6
par_round2: h_ordering 3, 0, 1, 2; data_index 9; roll_shift 15
par_round2: h_ordering 2, 3, 0, 1; data_index 1; roll_shift 13
par_round2: h_ordering 1, 2, 3, 0; data_index 2; roll_shift 11;

// Parallel Round 3
par_round3: h_ordering 0, 1, 2, 3; data_index 15; roll_shift 9
par_round3: h_ordering 3, 0, 1, 2; data_index 5; roll_shift 7
par_round3: h_ordering 2, 3, 0, 1; data_index 1; roll_shift 15
par_round3: h_ordering 1, 2, 3, 0; data_index 3; roll_shift 11
par_round3: h_ordering 0, 1, 2, 3; data_index 7; roll_shift 8
par_round3: h_ordering 3, 0, 1, 2; data_index 14; roll_shift 6
par_round3: h_ordering 2, 3, 0, 1; data_index 6; roll_shift 6
par_round3: h_ordering 1, 2, 3, 0; data_index 9; roll_shift 14
par_round3: h_ordering 0, 1, 2, 3; data_index 11; roll_shift 12
par_round3: h_ordering 3, 0, 1, 2; data_index 8; roll_shift 13
par_round3: h_ordering 2, 3, 0, 1; data_index 12; roll_shift 5
par_round3: h_ordering 1, 2, 3, 0; data_index 2; roll_shift 14
par_round3: h_ordering 0, 1, 2, 3; data_index 10; roll_shift 13
par_round3: h_ordering 3, 0, 1, 2; data_index 0; roll_shift 13
par_round3: h_ordering 2, 3, 0, 1; data_index 4; roll_shift 7
par_round3: h_ordering 1, 2, 3, 0; data_index 13; roll_shift 5;

// Parallel Round 4
par_round4: h_ordering 0, 1, 2, 3; data_index 8; roll_shift 15
par_round4: h_ordering 3, 0, 1, 2; data_index 6; roll_shift 5
par_round4: h_ordering 2, 3, 0, 1; data_index 4; roll_shift 8
par_round4: h_ordering 1, 2, 3, 0; data_index 1; roll_shift 11
par_round4: h_ordering 0, 1, 2, 3; data_index 3; roll_shift 14
par_round4: h_ordering 3, 0, 1, 2; data_index 11; roll_shift 14
par_round4: h_ordering 2, 3, 0, 1; data_index 15; roll_shift 6
par_round4: h_ordering 1, 2, 3, 0; data_index 0; roll_shift 14
par_round4: h_ordering 0, 1, 2, 3; data_index 5; roll_shift 6
par_round4: h_ordering 3, 0, 1, 2; data_index 12; roll_shift 9
par_round4: h_ordering 2, 3, 0, 1; data_index 2; roll_shift 12
par_round4: h_ordering 1, 2, 3, 0; data_index 13; roll_shift 9
par_round4: h_ordering 0, 1, 2, 3; data_index 9; roll_shift 12
par_round4: h_ordering 3, 0, 1, 2; data_index 7; roll_shift 5
par_round4: h_ordering 2, 3, 0, 1; data_index 10; roll_shift 15
par_round4: h_ordering 1, 2, 3, 0; data_index 14; roll_shift 8;
);
}
4 changes: 3 additions & 1 deletion ripemd/src/lib.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,10 +55,11 @@ use digest::{
AlgorithmName, Block, BlockSizeUser, Buffer, BufferKindUser, CoreWrapper, FixedOutputCore,
OutputSizeUser, Reset, UpdateCore,
},
typenum::{Unsigned, U20, U32, U40, U64},
typenum::{Unsigned, U16, U20, U32, U40, U64},
HashMarker, Output,
};

mod c128;
mod c160;
mod c256;
mod c320;
Expand Down Expand Up @@ -153,6 +154,7 @@ macro_rules! impl_ripemd {
};
}

impl_ripemd!(Ripemd128Core, Ripemd128, c128, "128", "RIPEMD-128", U16);
impl_ripemd!(Ripemd160Core, Ripemd160, c160, "160", "RIPEMD-160", U20);
impl_ripemd!(Ripemd256Core, Ripemd256, c256, "256", "RIPEMD-256", U32);
impl_ripemd!(Ripemd320Core, Ripemd320, c320, "320", "RIPEMD-320", U40);
Binary file added ripemd/tests/data/ripemd128.blb
View file
Binary file not shown.
13 changes: 12 additions & 1 deletion ripemd/tests/mod.rs
View file
Original file line number Diff line number Diff line change
@@ -1,15 +1,26 @@
use digest::dev::{feed_rand_16mib, fixed_reset_test};
use digest::new_test;
use hex_literal::hex;
use ripemd::{Digest, Ripemd160, Ripemd256, Ripemd320};
use ripemd::{Digest, Ripemd128, Ripemd160, Ripemd256, Ripemd320};

// Test vectors from FIPS 180-1 and from the [RIPEMD webpage][1].
//
// [1] https://homes.esat.kuleuven.be/~bosselae/ripemd160.html
new_test!(ripemd128_main, "ripemd128", Ripemd128, fixed_reset_test);
new_test!(ripemd160_main, "ripemd160", Ripemd160, fixed_reset_test);
new_test!(ripemd256_main, "ripemd256", Ripemd256, fixed_reset_test);
new_test!(ripemd320_main, "ripemd320", Ripemd320, fixed_reset_test);

#[test]
fn ripemd128_rand() {
let mut h = Ripemd128::new();
feed_rand_16mib(&mut h);
assert_eq!(
h.finalize()[..],
hex!("01eb52529bcec15bd0cb4040ec998632")[..]
);
}

#[test]
fn ripemd160_rand() {
let mut h = Ripemd160::new();
Expand Down

0 comments on commit fc3e726

Please sign in to comment.