Coverage Report

Created: 2025-06-10 13:21

next uncovered line (L), next uncovered region (R), next uncovered branch (B)
/bitcoin/src/crypto/ripemd160.cpp
Line
Count
Source
1
// Copyright (c) 2014-2019 The Bitcoin Core developers
2
// Distributed under the MIT software license, see the accompanying
3
// file COPYING or http://www.opensource.org/licenses/mit-license.php.
4
5
#include <crypto/ripemd160.h>
6
7
#include <crypto/common.h>
8
9
#include <string.h>
10
11
// Internal implementation code.
12
namespace
13
{
14
/// Internal RIPEMD-160 implementation.
15
namespace ripemd160
16
{
17
175M
uint32_t inline f1(uint32_t x, uint32_t y, uint32_t z) { return x ^ y ^ z; }
18
175M
uint32_t inline f2(uint32_t x, uint32_t y, uint32_t z) { return (x & y) | (~x & z); }
19
175M
uint32_t inline f3(uint32_t x, uint32_t y, uint32_t z) { return (x | ~y) ^ z; }
20
175M
uint32_t inline f4(uint32_t x, uint32_t y, uint32_t z) { return (x & z) | (y & ~z); }
21
175M
uint32_t inline f5(uint32_t x, uint32_t y, uint32_t z) { return x ^ (y | ~z); }
22
23
/** Initialize RIPEMD-160 state. */
24
void inline Initialize(uint32_t* s)
25
5.47M
{
26
5.47M
    s[0] = 0x67452301ul;
27
5.47M
    s[1] = 0xEFCDAB89ul;
28
5.47M
    s[2] = 0x98BADCFEul;
29
5.47M
    s[3] = 0x10325476ul;
30
5.47M
    s[4] = 0xC3D2E1F0ul;
31
5.47M
}
32
33
1.75G
uint32_t inline rol(uint32_t x, int i) { return (x << i) | (x >> (32 - i)); }
34
35
void inline Round(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t f, uint32_t x, uint32_t k, int r)
36
875M
{
37
875M
    a = rol(a + f + x + k, r) + e;
38
875M
    c = rol(c, 10);
39
875M
}
40
41
87.5M
void inline R11(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f1(b, c, d), x, 0, r); }
42
87.5M
void inline R21(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f2(b, c, d), x, 0x5A827999ul, r); }
43
87.5M
void inline R31(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f3(b, c, d), x, 0x6ED9EBA1ul, r); }
44
87.5M
void inline R41(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f4(b, c, d), x, 0x8F1BBCDCul, r); }
45
87.5M
void inline R51(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f5(b, c, d), x, 0xA953FD4Eul, r); }
46
47
87.5M
void inline R12(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f5(b, c, d), x, 0x50A28BE6ul, r); }
48
87.5M
void inline R22(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f4(b, c, d), x, 0x5C4DD124ul, r); }
49
87.5M
void inline R32(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f3(b, c, d), x, 0x6D703EF3ul, r); }
50
87.5M
void inline R42(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f2(b, c, d), x, 0x7A6D76E9ul, r); }
51
87.5M
void inline R52(uint32_t& a, uint32_t b, uint32_t& c, uint32_t d, uint32_t e, uint32_t x, int r) { Round(a, b, c, d, e, f1(b, c, d), x, 0, r); }
52
53
/** Perform a RIPEMD-160 transformation, processing a 64-byte chunk. */
54
void Transform(uint32_t* s, const unsigned char* chunk)
55
5.47M
{
56
5.47M
    uint32_t a1 = s[0], b1 = s[1], c1 = s[2], d1 = s[3], e1 = s[4];
57
5.47M
    uint32_t a2 = a1, b2 = b1, c2 = c1, d2 = d1, e2 = e1;
58
5.47M
    uint32_t w0 = ReadLE32(chunk + 0), w1 = ReadLE32(chunk + 4), w2 = ReadLE32(chunk + 8), w3 = ReadLE32(chunk + 12);
59
5.47M
    uint32_t w4 = ReadLE32(chunk + 16), w5 = ReadLE32(chunk + 20), w6 = ReadLE32(chunk + 24), w7 = ReadLE32(chunk + 28);
60
5.47M
    uint32_t w8 = ReadLE32(chunk + 32), w9 = ReadLE32(chunk + 36), w10 = ReadLE32(chunk + 40), w11 = ReadLE32(chunk + 44);
61
5.47M
    uint32_t w12 = ReadLE32(chunk + 48), w13 = ReadLE32(chunk + 52), w14 = ReadLE32(chunk + 56), w15 = ReadLE32(chunk + 60);
62
63
5.47M
    R11(a1, b1, c1, d1, e1, w0, 11);
64
5.47M
    R12(a2, b2, c2, d2, e2, w5, 8);
65
5.47M
    R11(e1, a1, b1, c1, d1, w1, 14);
66
5.47M
    R12(e2, a2, b2, c2, d2, w14, 9);
67
5.47M
    R11(d1, e1, a1, b1, c1, w2, 15);
68
5.47M
    R12(d2, e2, a2, b2, c2, w7, 9);
69
5.47M
    R11(c1, d1, e1, a1, b1, w3, 12);
70
5.47M
    R12(c2, d2, e2, a2, b2, w0, 11);
71
5.47M
    R11(b1, c1, d1, e1, a1, w4, 5);
72
5.47M
    R12(b2, c2, d2, e2, a2, w9, 13);
73
5.47M
    R11(a1, b1, c1, d1, e1, w5, 8);
74
5.47M
    R12(a2, b2, c2, d2, e2, w2, 15);
75
5.47M
    R11(e1, a1, b1, c1, d1, w6, 7);
76
5.47M
    R12(e2, a2, b2, c2, d2, w11, 15);
77
5.47M
    R11(d1, e1, a1, b1, c1, w7, 9);
78
5.47M
    R12(d2, e2, a2, b2, c2, w4, 5);
79
5.47M
    R11(c1, d1, e1, a1, b1, w8, 11);
80
5.47M
    R12(c2, d2, e2, a2, b2, w13, 7);
81
5.47M
    R11(b1, c1, d1, e1, a1, w9, 13);
82
5.47M
    R12(b2, c2, d2, e2, a2, w6, 7);
83
5.47M
    R11(a1, b1, c1, d1, e1, w10, 14);
84
5.47M
    R12(a2, b2, c2, d2, e2, w15, 8);
85
5.47M
    R11(e1, a1, b1, c1, d1, w11, 15);
86
5.47M
    R12(e2, a2, b2, c2, d2, w8, 11);
87
5.47M
    R11(d1, e1, a1, b1, c1, w12, 6);
88
5.47M
    R12(d2, e2, a2, b2, c2, w1, 14);
89
5.47M
    R11(c1, d1, e1, a1, b1, w13, 7);
90
5.47M
    R12(c2, d2, e2, a2, b2, w10, 14);
91
5.47M
    R11(b1, c1, d1, e1, a1, w14, 9);
92
5.47M
    R12(b2, c2, d2, e2, a2, w3, 12);
93
5.47M
    R11(a1, b1, c1, d1, e1, w15, 8);
94
5.47M
    R12(a2, b2, c2, d2, e2, w12, 6);
95
96
5.47M
    R21(e1, a1, b1, c1, d1, w7, 7);
97
5.47M
    R22(e2, a2, b2, c2, d2, w6, 9);
98
5.47M
    R21(d1, e1, a1, b1, c1, w4, 6);
99
5.47M
    R22(d2, e2, a2, b2, c2, w11, 13);
100
5.47M
    R21(c1, d1, e1, a1, b1, w13, 8);
101
5.47M
    R22(c2, d2, e2, a2, b2, w3, 15);
102
5.47M
    R21(b1, c1, d1, e1, a1, w1, 13);
103
5.47M
    R22(b2, c2, d2, e2, a2, w7, 7);
104
5.47M
    R21(a1, b1, c1, d1, e1, w10, 11);
105
5.47M
    R22(a2, b2, c2, d2, e2, w0, 12);
106
5.47M
    R21(e1, a1, b1, c1, d1, w6, 9);
107
5.47M
    R22(e2, a2, b2, c2, d2, w13, 8);
108
5.47M
    R21(d1, e1, a1, b1, c1, w15, 7);
109
5.47M
    R22(d2, e2, a2, b2, c2, w5, 9);
110
5.47M
    R21(c1, d1, e1, a1, b1, w3, 15);
111
5.47M
    R22(c2, d2, e2, a2, b2, w10, 11);
112
5.47M
    R21(b1, c1, d1, e1, a1, w12, 7);
113
5.47M
    R22(b2, c2, d2, e2, a2, w14, 7);
114
5.47M
    R21(a1, b1, c1, d1, e1, w0, 12);
115
5.47M
    R22(a2, b2, c2, d2, e2, w15, 7);
116
5.47M
    R21(e1, a1, b1, c1, d1, w9, 15);
117
5.47M
    R22(e2, a2, b2, c2, d2, w8, 12);
118
5.47M
    R21(d1, e1, a1, b1, c1, w5, 9);
119
5.47M
    R22(d2, e2, a2, b2, c2, w12, 7);
120
5.47M
    R21(c1, d1, e1, a1, b1, w2, 11);
121
5.47M
    R22(c2, d2, e2, a2, b2, w4, 6);
122
5.47M
    R21(b1, c1, d1, e1, a1, w14, 7);
123
5.47M
    R22(b2, c2, d2, e2, a2, w9, 15);
124
5.47M
    R21(a1, b1, c1, d1, e1, w11, 13);
125
5.47M
    R22(a2, b2, c2, d2, e2, w1, 13);
126
5.47M
    R21(e1, a1, b1, c1, d1, w8, 12);
127
5.47M
    R22(e2, a2, b2, c2, d2, w2, 11);
128
129
5.47M
    R31(d1, e1, a1, b1, c1, w3, 11);
130
5.47M
    R32(d2, e2, a2, b2, c2, w15, 9);
131
5.47M
    R31(c1, d1, e1, a1, b1, w10, 13);
132
5.47M
    R32(c2, d2, e2, a2, b2, w5, 7);
133
5.47M
    R31(b1, c1, d1, e1, a1, w14, 6);
134
5.47M
    R32(b2, c2, d2, e2, a2, w1, 15);
135
5.47M
    R31(a1, b1, c1, d1, e1, w4, 7);
136
5.47M
    R32(a2, b2, c2, d2, e2, w3, 11);
137
5.47M
    R31(e1, a1, b1, c1, d1, w9, 14);
138
5.47M
    R32(e2, a2, b2, c2, d2, w7, 8);
139
5.47M
    R31(d1, e1, a1, b1, c1, w15, 9);
140
5.47M
    R32(d2, e2, a2, b2, c2, w14, 6);
141
5.47M
    R31(c1, d1, e1, a1, b1, w8, 13);
142
5.47M
    R32(c2, d2, e2, a2, b2, w6, 6);
143
5.47M
    R31(b1, c1, d1, e1, a1, w1, 15);
144
5.47M
    R32(b2, c2, d2, e2, a2, w9, 14);
145
5.47M
    R31(a1, b1, c1, d1, e1, w2, 14);
146
5.47M
    R32(a2, b2, c2, d2, e2, w11, 12);
147
5.47M
    R31(e1, a1, b1, c1, d1, w7, 8);
148
5.47M
    R32(e2, a2, b2, c2, d2, w8, 13);
149
5.47M
    R31(d1, e1, a1, b1, c1, w0, 13);
150
5.47M
    R32(d2, e2, a2, b2, c2, w12, 5);
151
5.47M
    R31(c1, d1, e1, a1, b1, w6, 6);
152
5.47M
    R32(c2, d2, e2, a2, b2, w2, 14);
153
5.47M
    R31(b1, c1, d1, e1, a1, w13, 5);
154
5.47M
    R32(b2, c2, d2, e2, a2, w10, 13);
155
5.47M
    R31(a1, b1, c1, d1, e1, w11, 12);
156
5.47M
    R32(a2, b2, c2, d2, e2, w0, 13);
157
5.47M
    R31(e1, a1, b1, c1, d1, w5, 7);
158
5.47M
    R32(e2, a2, b2, c2, d2, w4, 7);
159
5.47M
    R31(d1, e1, a1, b1, c1, w12, 5);
160
5.47M
    R32(d2, e2, a2, b2, c2, w13, 5);
161
162
5.47M
    R41(c1, d1, e1, a1, b1, w1, 11);
163
5.47M
    R42(c2, d2, e2, a2, b2, w8, 15);
164
5.47M
    R41(b1, c1, d1, e1, a1, w9, 12);
165
5.47M
    R42(b2, c2, d2, e2, a2, w6, 5);
166
5.47M
    R41(a1, b1, c1, d1, e1, w11, 14);
167
5.47M
    R42(a2, b2, c2, d2, e2, w4, 8);
168
5.47M
    R41(e1, a1, b1, c1, d1, w10, 15);
169
5.47M
    R42(e2, a2, b2, c2, d2, w1, 11);
170
5.47M
    R41(d1, e1, a1, b1, c1, w0, 14);
171
5.47M
    R42(d2, e2, a2, b2, c2, w3, 14);
172
5.47M
    R41(c1, d1, e1, a1, b1, w8, 15);
173
5.47M
    R42(c2, d2, e2, a2, b2, w11, 14);
174
5.47M
    R41(b1, c1, d1, e1, a1, w12, 9);
175
5.47M
    R42(b2, c2, d2, e2, a2, w15, 6);
176
5.47M
    R41(a1, b1, c1, d1, e1, w4, 8);
177
5.47M
    R42(a2, b2, c2, d2, e2, w0, 14);
178
5.47M
    R41(e1, a1, b1, c1, d1, w13, 9);
179
5.47M
    R42(e2, a2, b2, c2, d2, w5, 6);
180
5.47M
    R41(d1, e1, a1, b1, c1, w3, 14);
181
5.47M
    R42(d2, e2, a2, b2, c2, w12, 9);
182
5.47M
    R41(c1, d1, e1, a1, b1, w7, 5);
183
5.47M
    R42(c2, d2, e2, a2, b2, w2, 12);
184
5.47M
    R41(b1, c1, d1, e1, a1, w15, 6);
185
5.47M
    R42(b2, c2, d2, e2, a2, w13, 9);
186
5.47M
    R41(a1, b1, c1, d1, e1, w14, 8);
187
5.47M
    R42(a2, b2, c2, d2, e2, w9, 12);
188
5.47M
    R41(e1, a1, b1, c1, d1, w5, 6);
189
5.47M
    R42(e2, a2, b2, c2, d2, w7, 5);
190
5.47M
    R41(d1, e1, a1, b1, c1, w6, 5);
191
5.47M
    R42(d2, e2, a2, b2, c2, w10, 15);
192
5.47M
    R41(c1, d1, e1, a1, b1, w2, 12);
193
5.47M
    R42(c2, d2, e2, a2, b2, w14, 8);
194
195
5.47M
    R51(b1, c1, d1, e1, a1, w4, 9);
196
5.47M
    R52(b2, c2, d2, e2, a2, w12, 8);
197
5.47M
    R51(a1, b1, c1, d1, e1, w0, 15);
198
5.47M
    R52(a2, b2, c2, d2, e2, w15, 5);
199
5.47M
    R51(e1, a1, b1, c1, d1, w5, 5);
200
5.47M
    R52(e2, a2, b2, c2, d2, w10, 12);
201
5.47M
    R51(d1, e1, a1, b1, c1, w9, 11);
202
5.47M
    R52(d2, e2, a2, b2, c2, w4, 9);
203
5.47M
    R51(c1, d1, e1, a1, b1, w7, 6);
204
5.47M
    R52(c2, d2, e2, a2, b2, w1, 12);
205
5.47M
    R51(b1, c1, d1, e1, a1, w12, 8);
206
5.47M
    R52(b2, c2, d2, e2, a2, w5, 5);
207
5.47M
    R51(a1, b1, c1, d1, e1, w2, 13);
208
5.47M
    R52(a2, b2, c2, d2, e2, w8, 14);
209
5.47M
    R51(e1, a1, b1, c1, d1, w10, 12);
210
5.47M
    R52(e2, a2, b2, c2, d2, w7, 6);
211
5.47M
    R51(d1, e1, a1, b1, c1, w14, 5);
212
5.47M
    R52(d2, e2, a2, b2, c2, w6, 8);
213
5.47M
    R51(c1, d1, e1, a1, b1, w1, 12);
214
5.47M
    R52(c2, d2, e2, a2, b2, w2, 13);
215
5.47M
    R51(b1, c1, d1, e1, a1, w3, 13);
216
5.47M
    R52(b2, c2, d2, e2, a2, w13, 6);
217
5.47M
    R51(a1, b1, c1, d1, e1, w8, 14);
218
5.47M
    R52(a2, b2, c2, d2, e2, w14, 5);
219
5.47M
    R51(e1, a1, b1, c1, d1, w11, 11);
220
5.47M
    R52(e2, a2, b2, c2, d2, w0, 15);
221
5.47M
    R51(d1, e1, a1, b1, c1, w6, 8);
222
5.47M
    R52(d2, e2, a2, b2, c2, w3, 13);
223
5.47M
    R51(c1, d1, e1, a1, b1, w15, 5);
224
5.47M
    R52(c2, d2, e2, a2, b2, w9, 11);
225
5.47M
    R51(b1, c1, d1, e1, a1, w13, 6);
226
5.47M
    R52(b2, c2, d2, e2, a2, w11, 11);
227
228
5.47M
    uint32_t t = s[0];
229
5.47M
    s[0] = s[1] + c1 + d2;
230
5.47M
    s[1] = s[2] + d1 + e2;
231
5.47M
    s[2] = s[3] + e1 + a2;
232
5.47M
    s[3] = s[4] + a1 + b2;
233
5.47M
    s[4] = t + b1 + c2;
234
5.47M
}
235
236
} // namespace ripemd160
237
238
} // namespace
239
240
////// RIPEMD160
241
242
CRIPEMD160::CRIPEMD160()
243
5.47M
{
244
5.47M
    ripemd160::Initialize(s);
245
5.47M
}
246
247
CRIPEMD160& CRIPEMD160::Write(const unsigned char* data, size_t len)
248
16.4M
{
249
16.4M
    const unsigned char* end = data + len;
250
16.4M
    size_t bufsize = bytes % 64;
251
16.4M
    if (bufsize && bufsize + len >= 64) {
  Branch (251:9): [True: 10.9M, False: 5.47M]
  Branch (251:20): [True: 5.47M, False: 5.47M]

252
        // Fill the buffer, and process it.
253
5.47M
        memcpy(buf + bufsize, data, 64 - bufsize);
254
5.47M
        bytes += 64 - bufsize;
255
5.47M
        data += 64 - bufsize;
256
5.47M
        ripemd160::Transform(s, buf);
257
5.47M
        bufsize = 0;
258
5.47M
    }
259
16.4M
    while (end - data >= 64) {
  Branch (259:12): [True: 252, False: 16.4M]

260
        // Process full chunks directly from the source.
261
252
        ripemd160::Transform(s, data);
262
252
        bytes += 64;
263
252
        data += 64;
264
252
    }
265
16.4M
    if (end > data) {
  Branch (265:9): [True: 10.9M, False: 5.47M]

266
        // Fill the buffer with what remains.
267
10.9M
        memcpy(buf + bufsize, data, end - data);
268
10.9M
        bytes += end - data;
269
10.9M
    }
270
16.4M
    return *this;
271
16.4M
}
272
273
void CRIPEMD160::Finalize(unsigned char hash[OUTPUT_SIZE])
274
5.47M
{
275
5.47M
    static const unsigned char pad[64] = {0x80};
276
5.47M
    unsigned char sizedesc[8];
277
5.47M
    WriteLE64(sizedesc, bytes << 3);
278
5.47M
    Write(pad, 1 + ((119 - (bytes % 64)) % 64));
279
5.47M
    Write(sizedesc, 8);
280
5.47M
    WriteLE32(hash, s[0]);
281
5.47M
    WriteLE32(hash + 4, s[1]);
282
5.47M
    WriteLE32(hash + 8, s[2]);
283
5.47M
    WriteLE32(hash + 12, s[3]);
284
5.47M
    WriteLE32(hash + 16, s[4]);
285
5.47M
}
286
287
CRIPEMD160& CRIPEMD160::Reset()
288
0
{
289
0
    bytes = 0;
290
0
    ripemd160::Initialize(s);
291
0
    return *this;
292
0
}