mirror of
https://github.com/torvalds/linux.git
synced 2024-11-22 12:11:40 +00:00
a24d22b225
Currently <crypto/sha.h> contains declarations for both SHA-1 and SHA-2, and <crypto/sha3.h> contains declarations for SHA-3. This organization is inconsistent, but more importantly SHA-1 is no longer considered to be cryptographically secure. So to the extent possible, SHA-1 shouldn't be grouped together with any of the other SHA versions, and usage of it should be phased out. Therefore, split <crypto/sha.h> into two headers <crypto/sha1.h> and <crypto/sha2.h>, and make everyone explicitly specify whether they want the declarations for SHA-1, SHA-2, or both. This avoids making the SHA-1 declarations visible to files that don't want anything to do with SHA-1. It also prepares for potentially moving sha1.h into a new insecure/ or dangerous/ directory. Signed-off-by: Eric Biggers <ebiggers@google.com> Acked-by: Ard Biesheuvel <ardb@kernel.org> Acked-by: Jason A. Donenfeld <Jason@zx2c4.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
47 lines
1.2 KiB
C
47 lines
1.2 KiB
C
/* SPDX-License-Identifier: GPL-2.0 */
|
|
/*
|
|
* Common values for SHA-1 algorithms
|
|
*/
|
|
|
|
#ifndef _CRYPTO_SHA1_H
|
|
#define _CRYPTO_SHA1_H
|
|
|
|
#include <linux/types.h>
|
|
|
|
#define SHA1_DIGEST_SIZE 20
|
|
#define SHA1_BLOCK_SIZE 64
|
|
|
|
#define SHA1_H0 0x67452301UL
|
|
#define SHA1_H1 0xefcdab89UL
|
|
#define SHA1_H2 0x98badcfeUL
|
|
#define SHA1_H3 0x10325476UL
|
|
#define SHA1_H4 0xc3d2e1f0UL
|
|
|
|
extern const u8 sha1_zero_message_hash[SHA1_DIGEST_SIZE];
|
|
|
|
struct sha1_state {
|
|
u32 state[SHA1_DIGEST_SIZE / 4];
|
|
u64 count;
|
|
u8 buffer[SHA1_BLOCK_SIZE];
|
|
};
|
|
|
|
struct shash_desc;
|
|
|
|
extern int crypto_sha1_update(struct shash_desc *desc, const u8 *data,
|
|
unsigned int len);
|
|
|
|
extern int crypto_sha1_finup(struct shash_desc *desc, const u8 *data,
|
|
unsigned int len, u8 *hash);
|
|
|
|
/*
|
|
* An implementation of SHA-1's compression function. Don't use in new code!
|
|
* You shouldn't be using SHA-1, and even if you *have* to use SHA-1, this isn't
|
|
* the correct way to hash something with SHA-1 (use crypto_shash instead).
|
|
*/
|
|
#define SHA1_DIGEST_WORDS (SHA1_DIGEST_SIZE / 4)
|
|
#define SHA1_WORKSPACE_WORDS 16
|
|
void sha1_init(__u32 *buf);
|
|
void sha1_transform(__u32 *digest, const char *data, __u32 *W);
|
|
|
|
#endif /* _CRYPTO_SHA1_H */
|