blob: 9b675a046ee699189f54e31cf9a4e8bfc6d304a6 [file] [log] [blame]
Elijah Newrenfc7bd512023-02-24 00:09:34 +00001#include "git-compat-util.h"
2#include "sha1dc_git.h"
Elijah Newren41771fa2023-02-24 00:09:27 +00003#include "hex.h"
Ævar Arnfjörð Bjarmasona0103912017-05-20 11:54:28 +00004
Takashi Iwai3964cbb2017-08-15 14:04:17 +02005#ifdef DC_SHA1_EXTERNAL
6/*
7 * Same as SHA1DCInit, but with default save_hash=0
8 */
9void git_SHA1DCInit(SHA1_CTX *ctx)
10{
11 SHA1DCInit(ctx);
12 SHA1DCSetSafeHash(ctx, 0);
13}
14#endif
15
Takashi Iwai36f048c2017-08-15 14:04:16 +020016/*
17 * Same as SHA1DCFinal, but convert collision attack case into a verbose die().
18 */
Ævar Arnfjörð Bjarmasona0103912017-05-20 11:54:28 +000019void git_SHA1DCFinal(unsigned char hash[20], SHA1_CTX *ctx)
20{
21 if (!SHA1DCFinal(hash, ctx))
22 return;
23 die("SHA-1 appears to be part of a collision attack: %s",
Jeff Kingb19f3fe2019-11-11 04:04:18 -050024 hash_to_hex_algop(hash, &hash_algos[GIT_HASH_SHA1]));
Ævar Arnfjörð Bjarmasona0103912017-05-20 11:54:28 +000025}
26
Takashi Iwai36f048c2017-08-15 14:04:16 +020027/*
28 * Same as SHA1DCUpdate, but adjust types to match git's usual interface.
29 */
Ævar Arnfjörð Bjarmasona0103912017-05-20 11:54:28 +000030void git_SHA1DCUpdate(SHA1_CTX *ctx, const void *vdata, unsigned long len)
31{
32 const char *data = vdata;
33 /* We expect an unsigned long, but sha1dc only takes an int */
34 while (len > INT_MAX) {
35 SHA1DCUpdate(ctx, data, INT_MAX);
36 data += INT_MAX;
37 len -= INT_MAX;
38 }
39 SHA1DCUpdate(ctx, data, len);
40}