binius_hash/groestl/
digest.rs

1// Copyright (c) 2020-2025 The RustCrypto Project Developers
2// Copyright 2025 Irreducible Inc.
3
4// Implementation is copied from <https://github.com/RustCrypto/hashes>, with some modifications.
5
6use core::fmt;
7
8pub use digest;
9use digest::{
10	block_buffer::Eager,
11	core_api::{
12		AlgorithmName, Block, BlockSizeUser, Buffer, BufferKindUser, CoreWrapper,
13		CtVariableCoreWrapper, OutputSizeUser, TruncSide, UpdateCore, VariableOutputCore,
14	},
15	typenum::{Unsigned, U32, U64},
16	HashMarker, InvalidOutputSize, Output,
17};
18
19use super::{GroestlShortImpl, GroestlShortInternal};
20
21/// Lowest-level core hasher state of the short Groestl variant.
22#[derive(Clone)]
23pub struct GroestlShortVarCore<G: GroestlShortInternal> {
24	state: G::State,
25	blocks_len: u64,
26}
27
28/// Core hasher state of the short Groestl variant generic over output size.
29pub type GroestlShortCore<OutSize> =
30	CtVariableCoreWrapper<GroestlShortVarCore<GroestlShortImpl>, OutSize>;
31/// Groestl-256 hasher state.
32pub type Groestl256 = CoreWrapper<GroestlShortCore<U32>>;
33
34impl<G: GroestlShortInternal> HashMarker for GroestlShortVarCore<G> {}
35
36impl<G: GroestlShortInternal> BlockSizeUser for GroestlShortVarCore<G> {
37	type BlockSize = U64;
38}
39
40impl<G: GroestlShortInternal> BufferKindUser for GroestlShortVarCore<G> {
41	type BufferKind = Eager;
42}
43
44impl<G: GroestlShortInternal> UpdateCore for GroestlShortVarCore<G> {
45	#[inline]
46	fn update_blocks(&mut self, blocks: &[Block<Self>]) {
47		self.blocks_len += blocks.len() as u64;
48		for block in blocks {
49			G::compress(&mut self.state, block.as_ref());
50		}
51	}
52}
53
54impl<G: GroestlShortInternal> OutputSizeUser for GroestlShortVarCore<G> {
55	type OutputSize = U32;
56}
57
58impl<G: GroestlShortInternal> VariableOutputCore for GroestlShortVarCore<G> {
59	const TRUNC_SIDE: TruncSide = TruncSide::Right;
60
61	#[inline]
62	fn new(output_size: usize) -> Result<Self, InvalidOutputSize> {
63		if output_size > Self::OutputSize::USIZE {
64			return Err(InvalidOutputSize);
65		}
66		let mut initial = [0u8; 64];
67		initial[56..64].copy_from_slice(&(8 * output_size).to_be_bytes());
68		let state = G::state_from_bytes(&initial);
69		let blocks_len = 0;
70		Ok(Self { state, blocks_len })
71	}
72
73	#[inline]
74	fn finalize_variable_core(&mut self, buffer: &mut Buffer<Self>, out: &mut Output<Self>) {
75		let blocks_len = if buffer.remaining() <= 8 {
76			self.blocks_len + 2
77		} else {
78			self.blocks_len + 1
79		};
80		buffer.len64_padding_be(blocks_len, |block| G::compress(&mut self.state, block.as_ref()));
81		let mut res = self.state.clone();
82		G::p_perm(&mut self.state);
83		G::xor_state(&mut res, &self.state);
84		let block = G::state_to_bytes(&res);
85		out.copy_from_slice(&block[64 - <Self as OutputSizeUser>::output_size()..]);
86	}
87}
88
89impl AlgorithmName for GroestlShortVarCore<GroestlShortImpl> {
90	#[inline]
91	fn write_alg_name(f: &mut fmt::Formatter<'_>) -> fmt::Result {
92		f.write_str("GroestlShort")
93	}
94}
95
96impl fmt::Debug for GroestlShortVarCore<GroestlShortImpl> {
97	fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
98		f.write_str("GroestlShortVarCore { ... }")
99	}
100}