fibjs
diff --git a/‎fibjs/include/ifs/hash.h
Lines changed: 85 additions & 7 deletions b/‎fibjs/include/ifs/hash.h
Lines changed: 85 additions & 7 deletions
diff --git a/‎fibjs/src/crypto/hash.cpp
Lines changed: 4 additions & 0 deletions b/‎fibjs/src/crypto/hash.cpp
Lines changed: 4 additions & 0 deletions
diff --git a/‎fibjs/src/crypto/md_api.cpp
Lines changed: 4 additions & 0 deletions b/‎fibjs/src/crypto/md_api.cpp
Lines changed: 4 additions & 0 deletions
diff --git a/‎fibjs/src/crypto/md_api.h
Lines changed: 10 additions & 8 deletions b/‎fibjs/src/crypto/md_api.h
Lines changed: 10 additions & 8 deletions
diff --git a/‎fibjs/src/crypto/md_shake.cpp
Lines changed: 109 additions & 0 deletions b/‎fibjs/src/crypto/md_shake.cpp
Lines changed: 109 additions & 0 deletions
@@ -35,13 +35,15 @@ class hash_base : public object_base {
         C_SHA3_256 = 9,
         C_SHA3_384 = 10,
         C_SHA3_512 = 11,
-        C_KECCAK256 = 12,
-        C_KECCAK384 = 13,
-        C_KECCAK512 = 14,
-        C_BLAKE2S = 15,
-        C_BLAKE2B = 16,
-        C_BLAKE2SP = 17,
-        C_BLAKE2BP = 18
+        C_SHAKE128 = 12,
+        C_SHAKE256 = 13,
+        C_KECCAK256 = 14,
+        C_KECCAK384 = 15,
+        C_KECCAK512 = 16,
+        C_BLAKE2S = 17,
+        C_BLAKE2B = 18,
+        C_BLAKE2SP = 19,
+        C_BLAKE2BP = 20
     };
 
 public:
@@ -59,6 +61,8 @@ class hash_base : public object_base {
     static result_t sha3_256(Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t sha3_384(Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t sha3_512(Buffer_base* data, obj_ptr<Digest_base>& retVal);
+    static result_t shake128(Buffer_base* data, obj_ptr<Digest_base>& retVal);
+    static result_t shake256(Buffer_base* data, obj_ptr<Digest_base>& retV
8000
al);
     static result_t keccak256(Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t keccak384(Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t keccak512(Buffer_base* data, obj_ptr<Digest_base>& retVal);
@@ -78,6 +82,8 @@ class hash_base : public object_base {
     static result_t hmac_sm3(PKey_base* pubKey, exlib::string id, Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t hmac_sha3_256(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t hmac_sha3_384(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
+    static result_t hmac_shake128(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
+    static result_t hmac_shake256(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t hmac_sha3_512(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t hmac_keccak256(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
     static result_t hmac_keccak384(Buffer_base* key, Buffer_base* data, obj_ptr<Digest_base>& retVal);
@@ -109,6 +115,8 @@ class hash_base : public object_base {
     static void s_static_sha3_256(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_sha3_384(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_sha3_512(const v8::FunctionCallbackInfo<v8::Value>& args);
+    static void s_static_shake128(const v8::FunctionCallbackInfo<v8::Value>& args);
+    static void s_static_shake256(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_keccak256(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_keccak384(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_keccak512(const v8::FunctionCallbackInfo<v8::Value>& args);
@@ -127,6 +135,8 @@ class hash_base : public object_base {
     static void s_static_hmac_sm3(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_hmac_sha3_256(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_hmac_sha3_384(const v8::FunctionCallbackInfo<v8::Value>& args);
+    static void s_static_hmac_shake128(const v8::FunctionCallbackInfo<v8::Value>& args);
+    static void s_static_hmac_shake256(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_hmac_sha3_512(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_hmac_keccak256(const v8::FunctionCallbackInfo<v8::Value>& args);
     static void s_static_hmac_keccak384(const v8::FunctionCallbackInfo<v8::Value>& args);
@@ -158,6 +168,8 @@ inline ClassInfo& hash_base::class_info()
         { "sha3_256", s_static_sha3_256, true, false },
         { "sha3_384", s_static_sha3_384, true, false },
         { "sha3_512", s_static_sha3_512, true, false },
+        { "shake128", s_static_shake128, true, false },
+        { "shake256", s_static_shake256, true, false },
         { "keccak256", s_static_keccak256, true, false },
         { "keccak384", s_static_keccak384, true, false },
         { "keccak512", s_static_keccak512, true, false },
@@ -176,6 +188,8 @@ inline ClassInfo& hash_base::class_info()
         { "hmac_sm3", s_static_hmac_sm3, true, false },
         { "hmac_sha3_256", s_static_hmac_sha3_256, true, false },
         { "hmac_sha3_384", s_static_hmac_sha3_384, true, false },
+        { "hmac_shake128", s_static_hmac_shake128, true, false },
+        { "hmac_shake256", s_static_hmac_shake256, true, false },
         { "hmac_sha3_512", s_static_hmac_sha3_512, true, false },
         { "hmac_keccak256", s_static_hmac_keccak256, true, false },
         { "hmac_keccak384", s_static_hmac_keccak384, true, false },
@@ -198,6 +212,8 @@ inline ClassInfo& hash_base::class_info()
         { "SHA3_256", C_SHA3_256 },
         { "SHA3_384", C_SHA3_384 },
         { "SHA3_512", C_SHA3_512 },
+        { "SHAKE128", C_SHAKE128 },
+        { "SHAKE256", C_SHAKE256 },
         { "KECCAK256", C_KECCAK256 },
         { "KECCAK384", C_KECCAK384 },
         { "KECCAK512", C_KECCAK512 },
@@ -406,6 +422,36 @@ inline void hash_base::s_static_sha3_512(const v8::FunctionCallbackInfo<v8::Valu
     METHOD_RETURN();
 }
 
+inline void hash_base::s_static_shake128(const v8::FunctionCallbackInfo<v8::Value>& args)
+{
+    obj_ptr<Digest_base> vr;
+
+    METHOD_ENTER();
+
+    METHOD_OVER(1, 0);
+
+    OPT_ARG(obj_ptr<Buffer_base>, 0, NULL);
+
+    hr = shake128(v0, vr);
+
+    METHOD_RETURN();
+}
+
+inline void hash_base::s_static_shake256(const v8::FunctionCallbackInfo<v8::Value>& args)
+{
+    obj_ptr<Digest_base> vr;
+
+    METHOD_ENTER();
+
+    METHOD_OVER(1, 0);
+
+    OPT_ARG(obj_ptr<Buffer_base>, 0, NULL);
+
+    hr = shake256(v0, vr);
+
+    METHOD_RETURN();
+}
+
 inline void hash_base::s_static_keccak256(const v8::FunctionCallbackInfo<v8::Value>& args)
 {
     obj_ptr<Digest_base> vr;
@@ -697,6 +743,38 @@ inline void hash_base::s_static_hmac_sha3_384(const v8::FunctionCallbackInfo<v8:
     METHOD_RETURN();
 }
 
+inline void hash_base::s_static_hmac_shake128(const v8::FunctionCallbackInfo<v8::Value>& args)
+{
+    obj_ptr<Digest_base> vr;
+
+    METHOD_ENTER();
+
+    METHOD_OVER(2, 1);
+
+    ARG(obj_ptr<Buffer_base>, 0);
+    OPT_ARG(obj_ptr<Buffer_base>, 1, NULL);
+
+    hr = hmac_shake128(v0, v1, vr);
+
+    METHOD_RETURN();
+}
+
+inline void hash_base::s_static_hmac_shake256(const v8::FunctionCallbackInfo<v8::Value>& args)
+{
+    obj_ptr<Digest_base> vr;
+
+    METHOD_ENTER();
+
+    METHOD_OVER(2, 1);
+
+    ARG(obj_ptr<Buffer_base>, 0);
+    OPT_ARG(obj_ptr<Buffer_base>, 1, NULL);
+
+    hr = hmac_shake256(v0, v1, vr);
+
+    METHOD_RETURN();
+}
+
 inline void hash_base::s_static_hmac_sha3_512(const v8::FunctionCallbackInfo<v8::Value>& args)
 {
     obj_ptr<Digest_base> vr;
 
@@ -33,6 +33,8 @@ class init_hashes {
         g_hashes->append("sha3_256");
         g_hashes->append("sha3_384");
         g_hashes->append("sha3_512");
+        g_hashes->append("shake128");
+        g_hashes->append("shake256");
         g_hashes->append("keccak256");
         g_hashes->append("keccak384");
         g_hashes->append("keccak512");
@@ -97,6 +99,8 @@ DEF_FUNC(ripemd160, RIPEMD160);
 DEF_FUNC(sha3_256, SHA3_256);
 DEF_FUNC(sha3_384, SHA3_384);
 DEF_FUNC(sha3_512, SHA3_512);
+DEF_FUNC(shake128, SHAKE128);
+DEF_FUNC(shake256, SHAKE256);
 DEF_FUNC(keccak256, KECCAK256);
 DEF_FUNC(keccak384, KECCAK384);
 DEF_FUNC(keccak512, KECCAK512);
 
@@ -16,6 +16,8 @@ namespace fibjs {
 extern mbedtls_md_info_x mbedtls_sha3_256_info;
 extern mbedtls_md_info_x mbedtls_sha3_384_info;
 extern mbedtls_md_info_x mbedtls_sha3_512_info;
+extern mbedtls_md_info_x mbedtls_shake128_info;
+extern mbedtls_md_info_x mbedtls_shake256_info;
 extern mbedtls_md_info_x mbedtls_keccak256_info;
 extern mbedtls_md_info_x mbedtls_keccak384_info;
 extern mbedtls_md_info_x mbedtls_keccak512_info;
@@ -28,6 +30,8 @@ static mbedtls_md_info_x* md_infos[] = {
     &mbedtls_sha3_256_info,
     &mbedtls_sha3_384_info,
     &mbedtls_sha3_512_info,
+    &mbedtls_shake128_info,
+    &mbedtls_shake256_info,
     &mbedtls_keccak256_info,
     &mbedtls_keccak384_info,
     &mbedtls_keccak512_info,
 
@@ -7,14 +7,16 @@
 #define MBEDTLS_MD_SHA3_256 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 1)
 #define MBEDTLS_MD_SHA3_384 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 2)
 #define MBEDTLS_MD_SHA3_512 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 3)
-#define MBEDTLS_MD_KECCAK256 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 4)
-#define MBEDTLS_MD_KECCAK384 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 5)
-#define MBEDTLS_MD_KECCAK512 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 6)
-#define MBEDTLS_MD_BLAKE2S mbedtls_md_type_t(MBEDTLS_MD_SM3 + 7)
-#define MBEDTLS_MD_BLAKE2B mbedtls_md_type_t(MBEDTLS_MD_SM3 + 8)
-#define MBEDTLS_MD_BLAKE2BP mbedtls_md_type_t(MBEDTLS_MD_SM3 + 10)
-#define MBEDTLS_MD_MAX mbedtls_md_type_t(MBEDTLS_MD_SM3 + 11)
+#define MBEDTLS_MD_SHAKE128 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 4)
+#define MBEDTLS_MD_SHAKE256 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 5)
+#define MBEDTLS_MD_KECCAK256 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 6)
+#define MBEDTLS_MD_KECCAK384 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 7)
+#define MBEDTLS_MD_KECCAK512 mbedtls_md_type_t(MBEDTLS_MD_SM3 + 8)
+#define MBEDTLS_MD_BLAKE2S mbedtls_md_type_t(MBEDTLS_MD_SM3 + 9)
+#define MBEDTLS_MD_BLAKE2B mbedtls_md_type_t(MBEDTLS_MD_SM3 + 10)
+#define MBEDTLS_MD_BLAKE2SP mbedtls_md_type_t(MBEDTLS_MD_SM3 + 11)
+#define MBEDTLS_MD_BLAKE2BP mbedtls_md_type_t(MBEDTLS_MD_SM3 + 12)
+#define MBEDTLS_MD_MAX mbedtls_md_type_t(MBEDTLS_MD_SM3 + 13)
 
 namespace fibjs {
 
 
@@ -0,0 +1,109 @@
+/*
+ * md_sha3.cpp
+ *
+ *  Created on: Aug 16, 2023
+ *      Author: lion
+ */
+
+#define MBEDTLS_ALLOW_PRIVATE_ACCESS
+
+#include "object.h"
+#include <string.h>
+#include "fips202.h"
+#include "md_api.h"
+
+namespace fibjs {
+
+static int _start_128(mbedtls_md_context_t* ctx)
+{
+    shake128_inc_init((shake128incctx*)&ctx->md_ctx);
+    return 0;
+}
+
+static int _start_256(mbedtls_md_context_t* ctx)
+{
+    shake256_inc_init((shake256incctx*)&ctx->md_ctx);
+    return 0;
+}
+
+static int _update_128(mbedtls_md_context_t* ctx, const unsigned char* input, size_t ilen)
+{
+    shake128_absorb((shake128ctx*)&ctx->md_ctx, input, ilen);
+    return 0;
+}
+
+static int _update_256(mbedtls_md_context_t* ctx, const unsigned char* input, size_t ilen)
+{
+    shake256_absorb((shake256ctx*)&ctx->md_ctx, input, ilen);
+    return 0;
+}
+
+static int _finish_128(mbedtls_md_context_t* ctx, unsigned char* output)
+{
+    size_t outlen = 16;
+    size_t nblocks = outlen / SHAKE128_RATE;
+    uint8_t t[SHAKE128_RATE];
+
+    shake128_squeezeblocks(output, nblocks, (shake128ctx*)&ctx->md_ctx);
+
+    output += nblocks * SHAKE128_RATE;
+    outlen -= nblocks * SHAKE128_RATE;
+
+    if (outlen) {
+        shake128_squeezeblocks(t, 1, (shake128ctx*)&ctx->md_ctx);
+        for (size_t i = 0; i < outlen; ++i) {
+            output[i] = t[i];
+        }
+    }
+
+    shake128_ctx_release((shake128ctx*)&ctx->md_ctx);
+    ctx->md_ctx = NULL;
+    return 0;
+}
+
+static int _finish_256(mbedtls_md_context_t* ctx, unsigned char* output)
+{
+    size_t outlen = 32;
+    size_t nblocks = outlen / SHAKE256_RATE;
+    uint8_t t[SHAKE256_RATE];
+
+    shake256_squeezeblocks(output, nblocks, (shake256ctx*)&ctx->md_ctx);
+
+    output += nblocks * SHAKE256_RATE;
+    outlen -= nblocks * SHAKE256_RATE;
+
+    if (outlen) {
+        shake256_squeezeblocks(t, 1, (shake256ctx*)&ctx->md_ctx);
+        for (size_t i = 0; i < outlen; ++i) {
+            output[i] = t[i];
+        }
+    }
+
+    shake256_ctx_release((shake256ctx*)&ctx->md_ctx);
+    ctx->md_ctx = NULL;
+    return 0;
+}
+
+mbedtls_md_info_x mbedtls_shake128_info = {
+    { "SHAKE128",
+        MBEDTLS_MD_SHAKE128,
+        16,
+        32 },
+    0,
+    _start_128,
+    _update_128,
+    _finish_128
+};
+
+mbedtls_md_info_x mbedtls_shake256_info = {
+    { "SHAKE256",
+        MBEDTLS_MD_SHAKE256,
+        32,
+        64 },
+    0,
+    _start_256,
+    _update_256,
+    _finish_256
+};
+
+} /* namespace fibjs */