Add hardened_hash, prevents adversarial inputs

beast/utility/tests/hardened_hash.test.cpp

@@ -0,0 +1,311 @@
+//------------------------------------------------------------------------------
+/*
+    This file is part of Beast: https://github.com/vinniefalco/Beast
+    Copyright 2013, Vinnie Falco <vinnie.falco@gmail.com>
+
+    Permission to use, copy, modify, and/or distribute this software for any
+    purpose  with  or without fee is hereby granted, provided that the above
+    copyright notice and this permission notice appear in all copies.
+
+    THE  SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+    WITH  REGARD  TO  THIS  SOFTWARE  INCLUDING  ALL  IMPLIED  WARRANTIES  OF
+    MERCHANTABILITY  AND  FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+    ANY  SPECIAL ,  DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+    WHATSOEVER  RESULTING  FROM  LOSS  OF USE, DATA OR PROFITS, WHETHER IN AN
+    ACTION  OF  CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+    OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+*/
+//==============================================================================
+
+#if BEAST_INCLUDE_BEASTCONFIG
+#include "../../../BeastConfig.h"
+#endif
+
+#include "../hardened_hash.h"
+#include "../../unit_test/suite.h"
+
+#include "../../crypto/Sha256.h"
+#include <boost/functional/hash.hpp>
+
+#include <array>
+#include <cstdint>
+#include <iomanip>
+#include <functional>
+#include <unordered_map>
+#include <unordered_set>
+
+namespace beast {
+namespace detail {
+
+template <class T>
+class test_user_type_member
+{
+private:
+    T t;
+
+public:
+    explicit test_user_type_member (T const& t_ = T())
+        : t (t_)
+    {
+    }
+
+    void
+    hash_combine (std::size_t& seed) const noexcept
+    {
+        boost::hash_combine (seed, t);
+    }
+};
+
+template <class T>
+class test_user_type_free
+{
+private:
+    T t;
+
+public:
+    explicit test_user_type_free (T const& t_ = T())
+        : t (t_)
+    {
+    }
+
+    friend
+    void
+    hash_combine (std::size_t& seed,
+        test_user_type_free const& v) noexcept
+    {
+        boost::hash_combine (seed, v.t);
+    }
+};
+
+} // detail
+} // beast
+
+//------------------------------------------------------------------------------
+
+namespace beast {
+
+namespace detail {
+
+template <class T>
+using test_hardened_unordered_set =
+    std::unordered_set <T, hardened_hash <T>>;
+
+template <class T>
+using test_hardened_unordered_map =
+    std::unordered_map <T, int, hardened_hash <T>>;
+
+template <class T>
+using test_hardened_unordered_multiset =
+    std::unordered_multiset <T, hardened_hash <T>>;
+
+template <class T>
+using test_hardened_unordered_multimap =
+    std::unordered_multimap <T, int, hardened_hash <T>>;
+
+} // beast
+
+template <std::size_t Bits, class UInt = std::uint64_t>
+class unsigned_integer
+{
+private:
+    static_assert (std::is_integral<UInt>::value &&
+        std::is_unsigned <UInt>::value,
+            "UInt must be an unsigned integral type");
+
+    static_assert (Bits%(8*sizeof(UInt))==0,
+        "Bits must be a multiple of 8*sizeof(UInt)");
+
+    static_assert (Bits >= (8*sizeof(UInt)),
+        "Bits must be at least 8*sizeof(UInt)");
+
+    static std::size_t const size = Bits/(8*sizeof(UInt));
+
+    std::array <UInt, size> m_vec;
+
+public:
+    typedef UInt value_type;
+
+    static std::size_t const bits = Bits;
+    static std::size_t const bytes = bits / 8;
+
+    template <class Int>
+    static 
+    unsigned_integer
+    from_number (Int v)
+    {
+        unsigned_integer result;
+        for (std::size_t i (1); i < size; ++i)
+            result.m_vec [i] = 0;
+        result.m_vec[0] = v;
+        return result;
+    }
+
+    void*
+    data() noexcept
+    {
+        return &m_vec[0];
+    }
+
+    void const*
+    data() const noexcept
+    {
+        return &m_vec[0];
+    }
+
+    void
+    hash_combine (std::size_t& seed) const noexcept
+    {
+        for (std::size_t i (0); i < size; ++i)
+            boost::hash_combine (seed, m_vec[i]);
+    }
+
+    friend
+    std::ostream&
+    operator<< (std::ostream& s, unsigned_integer const& v)
+    {
+        for (std::size_t i (0); i < size; ++i)
+            s <<
+                std::hex << 
+                std::setfill ('0') <<
+                std::setw (2*sizeof(UInt)) <<
+                v.m_vec[i]
+                ;
+        return s;
+    }
+};
+
+typedef unsigned_integer <256, std::size_t> sha256_t;
+
+static_assert (sha256_t::bits == 256,
+    "sha256_t must have 256 bits");
+
+} // beast
+
+//------------------------------------------------------------------------------
+
+namespace beast {
+
+class hardened_hash_test
+    : public unit_test::suite
+{
+public:
+    template <class T>
+    void
+    check ()
+    {
+        T t{};
+        hardened_hash <T>() (t);
+        pass();
+    }
+
+    template <template <class T> class U>
+    void
+    check_user_type()
+    {
+        check <U <bool>> ();
+        check <U <char>> ();
+        check <U <signed char>> ();
+        check <U <unsigned char>> ();
+        // These cause trouble for boost
+        //check <U <char16_t>> ();
+        //check <U <char32_t>> ();
+        check <U <wchar_t>> ();
+        check <U <short>> ();
+        check <U <unsigned short>> ();
+        check <U <int>> ();
+        check <U <unsigned int>> ();
+        check <U <long>> ();
+        check <U <long long>> ();
+        check <U <unsigned long>> ();
+        check <U <unsigned long long>> ();
+        check <U <float>> ();
+        check <U <double>> ();
+        check <U <long double>> ();
+    }
+
+    template <template <class T> class C >
+    void
+    check_container()
+    {
+        {
+            C <detail::test_user_type_member <std::string>> c;
+        }
+
+        pass();
+
+        {
+            C <detail::test_user_type_free <std::string>> c;
+        }
+
+        pass();
+    }
+
+    void
+    test_user_types()
+    {
+        testcase ("user types");
+        check_user_type <detail::test_user_type_member> ();
+        check_user_type <detail::test_user_type_free> ();
+    }
+
+    void
+    test_containers()
+    {
+        testcase ("containers");
+        check_container <detail::test_hardened_unordered_set>();
+        check_container <detail::test_hardened_unordered_map>();
+        check_container <detail::test_hardened_unordered_multiset>();
+        check_container <detail::test_hardened_unordered_multimap>();
+    }
+
+    void
+    run ()
+    {
+        test_user_types();
+        test_containers();
+    }
+};
+
+class hardened_hash_sha256_test
+    : public unit_test::suite
+{
+public:
+    void
+    testSHA256()
+    {
+        testcase ("sha256");
+
+        log <<
+            "sizeof(std::size_t) == " << sizeof(std::size_t);
+
+        hardened_hash <sha256_t> h;
+        for (int i = 0; i < 100; ++i)
+        {
+            sha256_t v (sha256_t::from_number (i));
+            Sha256::digest_type d;
+            Sha256::hash (v.data(), sha256_t::bytes, d);
+            sha256_t d_;
+            memcpy (d_.data(), d.data(), sha256_t::bytes);
+            std::size_t result (h (d_));
+            log <<
+                "i=" << std::setw(2) << i << " " <<
+                "sha256=0x" << d_ << " " <<
+                "hash=0x" <<
+                    std::setfill ('0') << 
+                    std::setw (2*sizeof(std::size_t)) << result
+                ;
+            pass();
+        }
+    }
+
+    void
+    run ()
+    {
+        testSHA256();
+    }
+};
+
+BEAST_DEFINE_TESTSUITE(hardened_hash,utility,beast);
+BEAST_DEFINE_TESTSUITE_MANUAL(hardened_hash_sha256,utility,beast);
+
+} // beast