devilutionX/Source/codec.cpp

#include <algorithm>
#include <cstddef>
#include <cstdint>
#include <cstring>

#include "appfat.h"
#include "sha.h"
#include "utils/endian_read.hpp"
#include "utils/log.hpp"

namespace devilution {
namespace {

struct CodecSignature {
	uint32_t checksum;
	uint8_t error;
	uint8_t lastChunkSize;
};

constexpr size_t BlockSizeBytes = BlockSize * sizeof(uint32_t);
constexpr size_t SignatureSize = 8;

SHA1Context CodecInitKey(const char *pszPassword)
{
	uint32_t pw[BlockSize]; // Repeat password until 64 char long
	std::size_t j = 0;
	for (uint32_t &value : pw) {
		if (pszPassword[j] == '\0')
			j = 0;
		value = LoadLE32(&pszPassword[j]);
		j += sizeof(uint32_t);
	}

	uint32_t digest[SHA1HashSize];
	{
		SHA1Context context;
		SHA1Calculate(context, pw);
		SHA1Result(context, digest);
	}

	uint32_t key[BlockSize] {
		2908958655, 4146550480, 658981742, 1113311088, 3927878744, 679301322, 1760465731, 3305370375,
		2269115995, 3928541685, 580724401, 2607446661, 2233092279, 2416822349, 4106933702, 3046442503
	};

	for (unsigned i = 0; i < BlockSize; ++i) {
		key[i] ^= digest[(i + 3) % SHA1HashSize];
	}

	SHA1Context context;
	SHA1Calculate(context, key);
	return context;
}

CodecSignature GetCodecSignature(std::byte *src)
{
	CodecSignature result;
	result.checksum = LoadLE32(src);
	src += 4;
	result.error = static_cast<uint8_t>(*src++);
	result.lastChunkSize = static_cast<uint8_t>(*src);
	return result;
}

void SetCodecSignature(std::byte *dst, CodecSignature sig)
{
	*dst++ = static_cast<std::byte>(sig.checksum);
	*dst++ = static_cast<std::byte>(sig.checksum >> 8);
	*dst++ = static_cast<std::byte>(sig.checksum >> 16);
	*dst++ = static_cast<std::byte>(sig.checksum >> 24);
	*dst++ = static_cast<std::byte>(sig.error);
	*dst++ = static_cast<std::byte>(sig.lastChunkSize);
	*dst++ = static_cast<std::byte>(0);
	*dst++ = static_cast<std::byte>(0);
}

void ByteSwapBlock(uint32_t *data)
{
	for (size_t i = 0; i < BlockSize; ++i)
		data[i] = SDL_SwapLE32(data[i]);
}

void XorBlock(const uint32_t *shaResult, uint32_t *out)
{
	for (unsigned i = 0; i < BlockSize; ++i)
		out[i] ^= shaResult[i % SHA1HashSize];
}

} // namespace

std::size_t codec_decode(std::byte *pbSrcDst, std::size_t size, const char *pszPassword)
{
	uint32_t buf[BlockSize];
	uint32_t dst[SHA1HashSize];

	SHA1Context context = CodecInitKey(pszPassword);
	if (size <= SignatureSize)
		return 0;
	size -= SignatureSize;
	if (size % BlockSize != 0)
		return 0;
	for (size_t i = 0; i < size; pbSrcDst += BlockSizeBytes, i += BlockSizeBytes) {
		memcpy(buf, pbSrcDst, BlockSizeBytes);
		ByteSwapBlock(buf);
		SHA1Result(context, dst);
		XorBlock(dst, buf);
		SHA1Calculate(context, buf);
		ByteSwapBlock(buf);
		memcpy(pbSrcDst, buf, BlockSizeBytes);
	}

	memset(buf, 0, sizeof(buf));
	const CodecSignature sig = GetCodecSignature(pbSrcDst);
	if (sig.error > 0) {
		return 0;
	}

	SHA1Result(context, dst);
	if (sig.checksum != dst[0]) {
		LogError("Checksum mismatch signature={} vs calculated={}", sig.checksum, dst[0]);
		memset(dst, 0, sizeof(dst));
		return 0;
	}

	size += sig.lastChunkSize - BlockSizeBytes;
	return size;
}

std::size_t codec_get_encoded_len(std::size_t dwSrcBytes)
{
	if (dwSrcBytes % BlockSizeBytes != 0)
		dwSrcBytes += BlockSizeBytes - (dwSrcBytes % BlockSizeBytes);
	return dwSrcBytes + SignatureSize;
}

void codec_encode(std::byte *pbSrcDst, std::size_t size, std::size_t size64, const char *pszPassword)
{
	uint32_t buf[BlockSize];
	uint32_t tmp[SHA1HashSize];
	uint32_t dst[SHA1HashSize];

	if (size64 != codec_get_encoded_len(size))
		app_fatal("Invalid encode parameters");
	SHA1Context context = CodecInitKey(pszPassword);

	size_t lastChunk = 0;
	while (size != 0) {
		const size_t chunk = std::min(size, BlockSizeBytes);
		memset(buf, 0, sizeof(buf));
		memcpy(buf, pbSrcDst, chunk);
		ByteSwapBlock(buf);
		SHA1Result(context, dst);
		SHA1Calculate(context, buf);
		XorBlock(dst, buf);
		ByteSwapBlock(buf);
		memcpy(pbSrcDst, buf, BlockSizeBytes);
		pbSrcDst += BlockSizeBytes;
		lastChunk = chunk;
		size -= chunk;
	}
	memset(buf, 0, sizeof(buf));
	SHA1Result(context, tmp);
	SetCodecSignature(pbSrcDst, CodecSignature { /*.checksum=*/*reinterpret_cast<uint32_t *>(tmp),
	                                /*.error=*/0,
	                                // lastChunk is at most 64 so will always fit in an 8 bit var
	                                /*.lastChunkSize=*/static_cast<uint8_t>(lastChunk) });
}

} // namespace devilution
Fix building on VS2017 (#4795) 4 years ago			`#include <algorithm>`
codec.cpp: Fix alignment and endianness issues 4 years ago			`#include <cstddef>`
codec.cpp codec_init_key: Minor clean-up 6 years ago			`#include <cstdint>`
Add missing <cstring> includes 4 years ago			`#include <cstring>`
codec.cpp codec_init_key: Minor clean-up 6 years ago
:truck: Split up all.h in to proper header relations 5 years ago			`#include "appfat.h"`
			`#include "sha.h"`
Rename endian.hpp to endian_read.hpp Following #7620, which split the write functions into a separate header. 1 year ago			`#include "utils/endian_read.hpp"`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`#include "utils/log.hpp"`
:truck: Split up all.h in to proper header relations 5 years ago
:art: Change namespace to devilution 5 years ago			`namespace devilution {`
Clean up private function names 5 years ago			`namespace {`
Put everything into namespace dvl 7 years ago
:art: Acceptable parts of modernize-* 5 years ago			`struct CodecSignature {`
♻️Migrate more code away from miniwin 5 years ago			`uint32_t checksum;`
			`uint8_t error;`
Clang-tidy: readability-identifier-naming.MemberCase: camelBack 5 years ago			`uint8_t lastChunkSize;`
:art: Acceptable parts of modernize-* 5 years ago			`};`
Add CodecSignature struct to codec.cpp to simplify code. 7 years ago
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`constexpr size_t BlockSizeBytes = BlockSize * sizeof(uint32_t);`
codec.cpp: Fix alignment and endianness issues 4 years ago			`constexpr size_t SignatureSize = 8;`

Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`SHA1Context CodecInitKey(const char *pszPassword)`
Refactor Diablo-SHA to attempt to document behaviour through code (#2524) * Hardcode the key and ensure buffers are appropriately sized. If you do want to build the key at runtime the following initial state gets the right sequence: ```cpp std::linear_congruential_engine<uint32_t, 214013, 2531011, 0> engine(3193970784); for (auto &notch: key) notch = static_cast<byte>(engine() >> 16); ``` * Move public defines into sha.h, move private struct into .cpp * Remove unused count member, clarify loop in SHA1Input * Update circular shift to indicate desired behaviour, remove unnecessary negation. The parameters are also reordered to match C++20 rotl/rotr and the usual order for shift operators. 5 years ago			`{`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`uint32_t pw[BlockSize]; // Repeat password until 64 char long`
:bug: Fix password expansion 5 years ago			`std::size_t j = 0;`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`for (uint32_t &value : pw) {`
:bug: Fix password expansion 5 years ago			`if (pszPassword[j] == '\0')`
			`j = 0;`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`value = LoadLE32(&pszPassword[j]);`
			`j += sizeof(uint32_t);`
Reorder codec.cpp 5 years ago			`}`
Merge branch 'master' of github.com:diasurgical/devilution 5 years ago
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`uint32_t digest[SHA1HashSize];`
			`{`
			`SHA1Context context;`
			`SHA1Calculate(context, pw);`
			`SHA1Result(context, digest);`
Reorder codec.cpp 5 years ago			`}`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago
			`uint32_t key[BlockSize] {`
			`2908958655, 4146550480, 658981742, 1113311088, 3927878744, 679301322, 1760465731, 3305370375,`
			`2269115995, 3928541685, 580724401, 2607446661, 2233092279, 2416822349, 4106933702, 3046442503`
			`};`

			`for (unsigned i = 0; i < BlockSize; ++i) {`
			`key[i] ^= digest[(i + 3) % SHA1HashSize];`
			`}`

			`SHA1Context context;`
			`SHA1Calculate(context, key);`
			`return context;`
Reorder codec.cpp 5 years ago			`}`
codec.cpp: Fix alignment and endianness issues 4 years ago
Remove utils/stdcompat/cstddef.hpp 3 years ago			`CodecSignature GetCodecSignature(std::byte *src)`
codec.cpp: Fix alignment and endianness issues 4 years ago			`{`
			`CodecSignature result;`
			`result.checksum = LoadLE32(src);`
			`src += 4;`
			`result.error = static_cast<uint8_t>(*src++);`
			`result.lastChunkSize = static_cast<uint8_t>(*src);`
			`return result;`
			`}`

Remove utils/stdcompat/cstddef.hpp 3 years ago			`void SetCodecSignature(std::byte *dst, CodecSignature sig)`
codec.cpp: Fix alignment and endianness issues 4 years ago			`{`
Remove utils/stdcompat/cstddef.hpp 3 years ago			`*dst++ = static_cast<std::byte>(sig.checksum);`
			`*dst++ = static_cast<std::byte>(sig.checksum >> 8);`
			`*dst++ = static_cast<std::byte>(sig.checksum >> 16);`
			`*dst++ = static_cast<std::byte>(sig.checksum >> 24);`
			`*dst++ = static_cast<std::byte>(sig.error);`
			`*dst++ = static_cast<std::byte>(sig.lastChunkSize);`
			`*dst++ = static_cast<std::byte>(0);`
			`*dst++ = static_cast<std::byte>(0);`
codec.cpp: Fix alignment and endianness issues 4 years ago			`}`

Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`void ByteSwapBlock(uint32_t *data)`
			`{`
			`for (size_t i = 0; i < BlockSize; ++i)`
			`data[i] = SDL_SwapLE32(data[i]);`
			`}`

			`void XorBlock(const uint32_t shaResult, uint32_t out)`
			`{`
			`for (unsigned i = 0; i < BlockSize; ++i)`
			`out[i] ^= shaResult[i % SHA1HashSize];`
			`}`

🎨 Apply clang-tidy 5 years ago			`} // namespace`
Reorder codec.cpp 5 years ago
Remove utils/stdcompat/cstddef.hpp 3 years ago			`std::size_t codec_decode(std::byte pbSrcDst, std::size_t size, const char pszPassword)`
Add files via upload 8 years ago			`{`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`uint32_t buf[BlockSize];`
			`uint32_t dst[SHA1HashSize];`
Add files via upload 8 years ago
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`SHA1Context context = CodecInitKey(pszPassword);`
codec.cpp: Fix alignment and endianness issues 4 years ago			`if (size <= SignatureSize)`
Add files via upload 8 years ago			`return 0;`
codec.cpp: Fix alignment and endianness issues 4 years ago			`size -= SignatureSize;`
Apply various cleanups via Android Studio 5 years ago			`if (size % BlockSize != 0)`
Add files via upload 8 years ago			`return 0;`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`for (size_t i = 0; i < size; pbSrcDst += BlockSizeBytes, i += BlockSizeBytes) {`
			`memcpy(buf, pbSrcDst, BlockSizeBytes);`
			`ByteSwapBlock(buf);`
			`SHA1Result(context, dst);`
			`XorBlock(dst, buf);`
			`SHA1Calculate(context, buf);`
			`ByteSwapBlock(buf);`
			`memcpy(pbSrcDst, buf, BlockSizeBytes);`
Add files via upload 8 years ago			`}`
Clean up codec_decode. 7 years ago
			`memset(buf, 0, sizeof(buf));`
codec.cpp: Fix alignment and endianness issues 4 years ago			`const CodecSignature sig = GetCodecSignature(pbSrcDst);`
			`if (sig.error > 0) {`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`return 0;`
codec_decode cleanup (#1661) 7 years ago			`}`

Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`SHA1Result(context, dst);`
			`if (sig.checksum != dst[0]) {`
			`LogError("Checksum mismatch signature={} vs calculated={}", sig.checksum, dst[0]);`
codec_decode cleanup (#1661) 7 years ago			`memset(dst, 0, sizeof(dst));`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`return 0;`
Update style to use tabs 8 years ago			`}`
codec_decode cleanup (#1661) 7 years ago
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`size += sig.lastChunkSize - BlockSizeBytes;`
Clean up codec_decode. 7 years ago			`return size;`
Add files via upload 8 years ago			`}`

🚨 Fix remaning warnings for clang and gcc 5 years ago			`std::size_t codec_get_encoded_len(std::size_t dwSrcBytes)`
Add files via upload 8 years ago			`{`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`if (dwSrcBytes % BlockSizeBytes != 0)`
			`dwSrcBytes += BlockSizeBytes - (dwSrcBytes % BlockSizeBytes);`
codec.cpp: Fix alignment and endianness issues 4 years ago			`return dwSrcBytes + SignatureSize;`
Add files via upload 8 years ago			`}`

Remove utils/stdcompat/cstddef.hpp 3 years ago			`void codec_encode(std::byte pbSrcDst, std::size_t size, std::size_t size64, const char pszPassword)`
Add files via upload 8 years ago			`{`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`uint32_t buf[BlockSize];`
			`uint32_t tmp[SHA1HashSize];`
			`uint32_t dst[SHA1HashSize];`
Add files via upload 8 years ago
Apply cleanups to codec, control, and some of cursor 5 years ago			`if (size64 != codec_get_encoded_len(size))`
Implement assert support (#791) 7 years ago			`app_fatal("Invalid encode parameters");`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`SHA1Context context = CodecInitKey(pszPassword);`
Clean up codec_encode. 7 years ago
Refactor Diablo-SHA to attempt to document behaviour through code (#2524) * Hardcode the key and ensure buffers are appropriately sized. If you do want to build the key at runtime the following initial state gets the right sequence: ```cpp std::linear_congruential_engine<uint32_t, 214013, 2531011, 0> engine(3193970784); for (auto &notch: key) notch = static_cast<byte>(engine() >> 16); ``` * Move public defines into sha.h, move private struct into .cpp * Remove unused count member, clarify loop in SHA1Input * Update circular shift to indicate desired behaviour, remove unnecessary negation. The parameters are also reordered to match C++20 rotl/rotr and the usual order for shift operators. 5 years ago			`size_t lastChunk = 0;`
Clean up codec_encode. 7 years ago			`while (size != 0) {`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`const size_t chunk = std::min(size, BlockSizeBytes);`
			`memset(buf, 0, sizeof(buf));`
Clean up codec_encode. 7 years ago			`memcpy(buf, pbSrcDst, chunk);`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`ByteSwapBlock(buf);`
			`SHA1Result(context, dst);`
			`SHA1Calculate(context, buf);`
			`XorBlock(dst, buf);`
			`ByteSwapBlock(buf);`
			`memcpy(pbSrcDst, buf, BlockSizeBytes);`
			`pbSrcDst += BlockSizeBytes;`
Apply cleanups to codec, control, and some of cursor 5 years ago			`lastChunk = chunk;`
Clean up codec_encode. 7 years ago			`size -= chunk;`
Add files via upload 8 years ago			`}`
Clean up codec_encode. 7 years ago			`memset(buf, 0, sizeof(buf));`
Cleanup Diablo-SHA and codec.cpp 1. Switches to 32-bit based calculation throughout. This is faster and less error-prone as we only byte-swap once when reading and writing. 2. Removes global state from Diablo-SHA implementation. 4 years ago			`SHA1Result(context, tmp);`
codec.cpp: Fix alignment and endianness issues 4 years ago			`SetCodecSignature(pbSrcDst, CodecSignature { /.checksum=/reinterpret_cast<uint32_t >(tmp),`
			`/.error=/0,`
			`// lastChunk is at most 64 so will always fit in an 8 bit var`
			`/.lastChunkSize=/static_cast<uint8_t>(lastChunk) });`
Add files via upload 8 years ago			`}`
Put everything into namespace dvl 7 years ago
:art: Change namespace to devilution 5 years ago			`} // namespace devilution`