Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
zeek/src/digest.cc
Tim Wojtulewicz ee319fc1c5 Fix clang-tidy modernize-use-nullptr findings
2025-06-06 11:43:06 -07:00

107 lines
3.3 KiB
C++
Raw Blame History

// See the file "COPYING" in the main distribution directory for copyright.
/**
* Wrapper and helper functions for MD5/SHA digest algorithms.
*/
#include "zeek/digest.h"
#include <openssl/evp.h>
#include <openssl/md5.h>
#include <openssl/sha.h>
#include "zeek/Reporter.h"
#if ( OPENSSL_VERSION_NUMBER < 0x10100000L ) || defined(LIBRESSL_VERSION_NUMBER)
#define EVP_MD_CTX_new EVP_MD_CTX_create
#define EVP_MD_CTX_free EVP_MD_CTX_destroy
#endif
static_assert(ZEEK_MD5_DIGEST_LENGTH == MD5_DIGEST_LENGTH);
static_assert(ZEEK_SHA_DIGEST_LENGTH == SHA_DIGEST_LENGTH);
static_assert(ZEEK_SHA224_DIGEST_LENGTH == SHA224_DIGEST_LENGTH);
static_assert(ZEEK_SHA256_DIGEST_LENGTH == SHA256_DIGEST_LENGTH);
static_assert(ZEEK_SHA384_DIGEST_LENGTH == SHA384_DIGEST_LENGTH);
static_assert(ZEEK_SHA512_DIGEST_LENGTH == SHA512_DIGEST_LENGTH);
namespace zeek::detail {
namespace {
auto* to_native_ptr(HashDigestState* ptr) { return reinterpret_cast<EVP_MD_CTX*>(ptr); }
auto* to_native_ptr(const HashDigestState* ptr) { return reinterpret_cast<const EVP_MD_CTX*>(ptr); }
auto* to_opaque_ptr(EVP_MD_CTX* ptr) { return reinterpret_cast<HashDigestState*>(ptr); }
} // namespace
HashDigestState* hash_init(HashAlgorithm alg) {
EVP_MD_CTX* c = EVP_MD_CTX_new();
const EVP_MD* md;
switch ( alg ) {
case Hash_MD5:
#ifdef EVP_MD_CTX_FLAG_NON_FIPS_ALLOW
/* Allow this to work even if FIPS disables it */
EVP_MD_CTX_set_flags(c, EVP_MD_CTX_FLAG_NON_FIPS_ALLOW);
#endif
md = EVP_md5();
break;
case Hash_SHA1: md = EVP_sha1(); break;
case Hash_SHA224: md = EVP_sha224(); break;
case Hash_SHA256: md = EVP_sha256(); break;
case Hash_SHA384: md = EVP_sha384(); break;
case Hash_SHA512: md = EVP_sha512(); break;
default: reporter->InternalError("Unknown hash algorithm passed to hash_init");
}
if ( ! EVP_DigestInit_ex(c, md, nullptr) )
reporter->InternalError("EVP_DigestInit failed");
return to_opaque_ptr(c);
}
void hash_update(HashDigestState* c, const void* data, unsigned long len) {
if ( ! EVP_DigestUpdate(to_native_ptr(c), data, len) )
reporter->InternalError("EVP_DigestUpdate failed");
}
void hash_final(HashDigestState* c, u_char* md) {
hash_final_no_free(c, md);
EVP_MD_CTX_free(to_native_ptr(c));
}
void hash_final_no_free(HashDigestState* c, u_char* md) {
if ( ! EVP_DigestFinal(to_native_ptr(c), md, nullptr) )
reporter->InternalError("EVP_DigestFinal failed");
}
void hash_state_free(HashDigestState* c) {
if ( c != nullptr )
EVP_MD_CTX_free(to_native_ptr(c));
}
void hash_copy(HashDigestState* out, const HashDigestState* in) {
EVP_MD_CTX_copy_ex(to_native_ptr(out), to_native_ptr(in));
}
unsigned char* internal_md5(const unsigned char* data, unsigned long len, unsigned char* out) {
return calculate_digest(Hash_MD5, data, len, out);
}
unsigned char* calculate_digest(HashAlgorithm alg, const unsigned char* data, uint64_t len, unsigned char* out) {
// maximum possible length for supported hashes
static unsigned char static_out[SHA512_DIGEST_LENGTH];
if ( ! out )
out = static_out; // use static array for return, see OpenSSL man page
auto* c = hash_init(alg);
hash_update(c, data, len);
hash_final(c, out);
return out;
}
} // namespace zeek::detail
Reference in a new issue View git blame Copy permalink