[perl5.git] / lib / Digest.pm

package Digest;

use strict;
use vars qw($VERSION %MMAP $AUTOLOAD);

$VERSION = "1.15";

%MMAP = (
  "SHA-1"      => ["Digest::SHA1", ["Digest::SHA", 1], ["Digest::SHA2", 1]],
  "SHA-224"    => [["Digest::SHA", 224]],
  "SHA-256"    => [["Digest::SHA", 256], ["Digest::SHA2", 256]],
  "SHA-384"    => [["Digest::SHA", 384], ["Digest::SHA2", 384]],
  "SHA-512"    => [["Digest::SHA", 512], ["Digest::SHA2", 512]],
  "HMAC-MD5"   => "Digest::HMAC_MD5",
  "HMAC-SHA-1" => "Digest::HMAC_SHA1",
  "CRC-16"     => [["Digest::CRC", type => "crc16"]],
  "CRC-32"     => [["Digest::CRC", type => "crc32"]],
  "CRC-CCITT"  => [["Digest::CRC", type => "crcccitt"]],
);

sub new
{
    shift;  # class ignored
    my $algorithm = shift;
    my $impl = $MMAP{$algorithm} || do {
	$algorithm =~ s/\W+//;
	"Digest::$algorithm";
    };
    $impl = [$impl] unless ref($impl);
    my $err;
    for  (@$impl) {
	my $class = $_;
	my @args;
	($class, @args) = @$class if ref($class);
	no strict 'refs';
	unless (exists ${"$class\::"}{"VERSION"}) {
	    eval "require $class";
	    if ($@) {
		$err ||= $@;
		next;
	    }
	}
	return $class->new(@args, @_);
    }
    die $err;
}

sub AUTOLOAD
{
    my $class = shift;
    my $algorithm = substr($AUTOLOAD, rindex($AUTOLOAD, '::')+2);
    $class->new($algorithm, @_);
}

1;

__END__

=head1 NAME

Digest - Modules that calculate message digests

=head1 SYNOPSIS

  $md5  = Digest->new("MD5");
  $sha1 = Digest->new("SHA-1");
  $sha256 = Digest->new("SHA-256");
  $sha384 = Digest->new("SHA-384");
  $sha512 = Digest->new("SHA-512");

  $hmac = Digest->HMAC_MD5($key);

=head1 DESCRIPTION

The C<Digest::> modules calculate digests, also called "fingerprints"
or "hashes", of some data, called a message.  The digest is (usually)
some small/fixed size string.  The actual size of the digest depend of
the algorithm used.  The message is simply a sequence of arbitrary
bytes or bits.

An important property of the digest algorithms is that the digest is
I<likely> to change if the message change in some way.  Another
property is that digest functions are one-way functions, that is it
should be I<hard> to find a message that correspond to some given
digest.  Algorithms differ in how "likely" and how "hard", as well as
how efficient they are to compute.

Note that the properties of the algorithms change over time, as the
algorithms are analyzed and machines grow faster.  If your application
for instance depends on it being "impossible" to generate the same
digest for a different message it is wise to make it easy to plug in
stronger algorithms as the one used grow weaker.  Using the interface
documented here should make it easy to change algorithms later.

All C<Digest::> modules provide the same programming interface.  A
functional interface for simple use, as well as an object oriented
interface that can handle messages of arbitrary length and which can
read files directly.

The digest can be delivered in three formats:

=over 8

=item I<binary>

This is the most compact form, but it is not well suited for printing
or embedding in places that can't handle arbitrary data.

=item I<hex>

A twice as long string of lowercase hexadecimal digits.

=item I<base64>

A string of portable printable characters.  This is the base64 encoded
representation of the digest with any trailing padding removed.  The
string will be about 30% longer than the binary version.
L<MIME::Base64> tells you more about this encoding.

=back


The functional interface is simply importable functions with the same
name as the algorithm.  The functions take the message as argument and
return the digest.  Example:

  use Digest::MD5 qw(md5);
  $digest = md5($message);

There are also versions of the functions with "_hex" or "_base64"
appended to the name, which returns the digest in the indicated form.

=head1 OO INTERFACE

The following methods are available for all C<Digest::> modules:

=over 4

=item $ctx = Digest->XXX($arg,...)

=item $ctx = Digest->new(XXX => $arg,...)

=item $ctx = Digest::XXX->new($arg,...)

The constructor returns some object that encapsulate the state of the
message-digest algorithm.  You can add data to the object and finally
ask for the digest.  The "XXX" should of course be replaced by the proper
name of the digest algorithm you want to use.

The two first forms are simply syntactic sugar which automatically
load the right module on first use.  The second form allow you to use
algorithm names which contains letters which are not legal perl
identifiers, e.g. "SHA-1".  If no implementation for the given algorithm
can be found, then an exception is raised.

If new() is called as an instance method (i.e. $ctx->new) it will just
reset the state the object to the state of a newly created object.  No
new object is created in this case, and the return value is the
reference to the object (i.e. $ctx).

=item $other_ctx = $ctx->clone

The clone method creates a copy of the digest state object and returns
a reference to the copy.

=item $ctx->reset

This is just an alias for $ctx->new.

=item $ctx->add( $data )

=item $ctx->add( $chunk1, $chunk2, ... )

The string value of the $data provided as argument is appended to the
message we calculate the digest for.  The return value is the $ctx
object itself.

If more arguments are provided then they are all appended to the
message, thus all these lines will have the same effect on the state
of the $ctx object:

  $ctx->add("a"); $ctx->add("b"); $ctx->add("c");
  $ctx->add("a")->add("b")->add("c");
  $ctx->add("a", "b", "c");
  $ctx->add("abc");

Most algorithms are only defined for strings of bytes and this method
might therefore croak if the provided arguments contain chars with
ordinal number above 255.

=item $ctx->addfile( $io_handle )

The $io_handle is read until EOF and the content is appended to the
message we calculate the digest for.  The return value is the $ctx
object itself.

The addfile() method will croak() if it fails reading data for some
reason.  If it croaks it is unpredictable what the state of the $ctx
object will be in. The addfile() method might have been able to read
the file partially before it failed.  It is probably wise to discard
or reset the $ctx object if this occurs.

In most cases you want to make sure that the $io_handle is in
"binmode" before you pass it as argument to the addfile() method.

=item $ctx->add_bits( $data, $nbits )

=item $ctx->add_bits( $bitstring )

The add_bits() method is an alternative to add() that allow partial
bytes to be appended to the message.  Most users should just ignore
this method as partial bytes is very unlikely to be of any practical
use.

The two argument form of add_bits() will add the first $nbits bits
from $data.  For the last potentially partial byte only the high order
C<< $nbits % 8 >> bits are used.  If $nbits is greater than C<<
length($data) * 8 >>, then this method would do the same as C<<
$ctx->add($data) >>.

The one argument form of add_bits() takes a $bitstring of "1" and "0"
chars as argument.  It's a shorthand for C<< $ctx->add_bits(pack("B*",
$bitstring), length($bitstring)) >>.

The return value is the $ctx object itself.

This example shows two calls that should have the same effect:

   $ctx->add_bits("111100001010");
   $ctx->add_bits("\xF0\xA0", 12);

Most digest algorithms are byte based and for these it is not possible
to add bits that are not a multiple of 8, and the add_bits() method
will croak if you try.

=item $ctx->digest

Return the binary digest for the message.

Note that the C<digest> operation is effectively a destructive,
read-once operation. Once it has been performed, the $ctx object is
automatically C<reset> and can be used to calculate another digest
value.  Call $ctx->clone->digest if you want to calculate the digest
without resetting the digest state.

=item $ctx->hexdigest

Same as $ctx->digest, but will return the digest in hexadecimal form.

=item $ctx->b64digest

Same as $ctx->digest, but will return the digest as a base64 encoded
string.

=back

=head1 Digest speed

This table should give some indication on the relative speed of
different algorithms.  It is sorted by throughput based on a benchmark
done with of some implementations of this API:

 Algorithm      Size    Implementation                  MB/s

 MD4            128     Digest::MD4 v1.3               165.0
 MD5            128     Digest::MD5 v2.33               98.8
 SHA-256        256     Digest::SHA2 v1.1.0             66.7
 SHA-1          160     Digest::SHA v4.3.1              58.9
 SHA-1          160     Digest::SHA1 v2.10              48.8
 SHA-256        256     Digest::SHA v4.3.1              41.3
 Haval-256      256     Digest::Haval256 v1.0.4         39.8
 SHA-384        384     Digest::SHA2 v1.1.0             19.6
 SHA-512        512     Digest::SHA2 v1.1.0             19.3
 SHA-384        384     Digest::SHA v4.3.1              19.2
 SHA-512        512     Digest::SHA v4.3.1              19.2
 Whirlpool      512     Digest::Whirlpool v1.0.2        13.0
 MD2            128     Digest::MD2 v2.03                9.5

 Adler-32        32     Digest::Adler32 v0.03            1.3
 CRC-16          16     Digest::CRC v0.05                1.1
 CRC-32          32     Digest::CRC v0.05                1.1
 MD5            128     Digest::Perl::MD5 v1.5           1.0
 CRC-CCITT       16     Digest::CRC v0.05                0.8

These numbers was achieved Apr 2004 with ActivePerl-5.8.3 running
under Linux on a P4 2.8 GHz CPU.  The last 5 entries differ by being
pure perl implementations of the algorithms, which explains why they
are so slow.

=head1 SEE ALSO

L<Digest::Adler32>, L<Digest::CRC>, L<Digest::Haval256>,
L<Digest::HMAC>, L<Digest::MD2>, L<Digest::MD4>, L<Digest::MD5>,
L<Digest::SHA>, L<Digest::SHA1>, L<Digest::SHA2>, L<Digest::Whirlpool>

New digest implementations should consider subclassing from L<Digest::base>.

L<MIME::Base64>

http://en.wikipedia.org/wiki/Cryptographic_hash_function

=head1 AUTHOR

Gisle Aas <gisle@aas.no>

The C<Digest::> interface is based on the interface originally
developed by Neil Winton for his C<MD5> module.

This library is free software; you can redistribute it and/or
modify it under the same terms as Perl itself.

    Copyright 1998-2006 Gisle Aas.
    Copyright 1995,1996 Neil Winton.

=cut
Commit	Line	Data
3357b1b1 JH	1	package Digest;
	2
	3	use strict;
	4	use vars qw($VERSION %MMAP $AUTOLOAD);
	5
5e50d565	6	$VERSION = "1.15";
3357b1b1 JH	7
3357b1b1 JH	8	%MMAP = (
b12d758c	9	"SHA-1" => ["Digest::SHA1", ["Digest::SHA", 1], ["Digest::SHA2", 1]],
3cea4b92	10	"SHA-224" => [["Digest::SHA", 224]],
b12d758c NC	11	"SHA-256" => [["Digest::SHA", 256], ["Digest::SHA2", 256]],
	12	"SHA-384" => [["Digest::SHA", 384], ["Digest::SHA2", 384]],
	13	"SHA-512" => [["Digest::SHA", 512], ["Digest::SHA2", 512]],
3357b1b1 JH	14	"HMAC-MD5" => "Digest::HMAC_MD5",
3357b1b1 JH	15	"HMAC-SHA-1" => "Digest::HMAC_SHA1",
371dcd31 RGS	16	"CRC-16" => [["Digest::CRC", type => "crc16"]],
	17	"CRC-32" => [["Digest::CRC", type => "crc32"]],
	18	"CRC-CCITT" => [["Digest::CRC", type => "crcccitt"]],
3357b1b1 JH	19	);
	20
	21	sub new
	22	{
	23	shift; # class ignored
	24	my $algorithm = shift;
b12d758c NC	25	my $impl = $MMAP{$algorithm} \|\| do {
	26	$algorithm =~ s/\W+//;
	27	"Digest::$algorithm";
	28	};
	29	$impl = [$impl] unless ref($impl);
	30	my $err;
	31	for (@$impl) {
	32	my $class = $_;
	33	my @args;
	34	($class, @args) = @$class if ref($class);
	35	no strict 'refs';
	36	unless (exists ${"$class\::"}{"VERSION"}) {
	37	eval "require $class";
	38	if ($@) {
	39	$err \|\|= $@;
	40	next;
	41	}
	42	}
	43	return $class->new(@args, @_);
3357b1b1	44	}
b12d758c	45	die $err;
3357b1b1 JH	46	}
	47
	48	sub AUTOLOAD
	49	{
	50	my $class = shift;
	51	my $algorithm = substr($AUTOLOAD, rindex($AUTOLOAD, '::')+2);
	52	$class->new($algorithm, @_);
	53	}
	54
	55	1;
	56
	57	__END__
	58
	59	=head1 NAME
	60
e19eb3c1	61	Digest - Modules that calculate message digests
3357b1b1 JH	62
	63	=head1 SYNOPSIS
	64
e19eb3c1	65	$md5 = Digest->new("MD5");
3357b1b1	66	$sha1 = Digest->new("SHA-1");
e19eb3c1 NC	67	$sha256 = Digest->new("SHA-256");
	68	$sha384 = Digest->new("SHA-384");
	69	$sha512 = Digest->new("SHA-512");
3357b1b1 JH	70
	71	$hmac = Digest->HMAC_MD5($key);
	72
	73	=head1 DESCRIPTION
	74
	75	The C<Digest::> modules calculate digests, also called "fingerprints"
	76	or "hashes", of some data, called a message. The digest is (usually)
	77	some small/fixed size string. The actual size of the digest depend of
	78	the algorithm used. The message is simply a sequence of arbitrary
b12d758c	79	bytes or bits.
3357b1b1 JH	80
	81	An important property of the digest algorithms is that the digest is
	82	I<likely> to change if the message change in some way. Another
ec81b1ec	83	property is that digest functions are one-way functions, that is it
3357b1b1 JH	84	should be I<hard> to find a message that correspond to some given
	85	digest. Algorithms differ in how "likely" and how "hard", as well as
	86	how efficient they are to compute.
	87
ec81b1ec SP	88	Note that the properties of the algorithms change over time, as the
	89	algorithms are analyzed and machines grow faster. If your application
	90	for instance depends on it being "impossible" to generate the same
	91	digest for a different message it is wise to make it easy to plug in
	92	stronger algorithms as the one used grow weaker. Using the interface
	93	documented here should make it easy to change algorithms later.
	94
3357b1b1 JH	95	All C<Digest::> modules provide the same programming interface. A
	96	functional interface for simple use, as well as an object oriented
	97	interface that can handle messages of arbitrary length and which can
	98	read files directly.
	99
	100	The digest can be delivered in three formats:
	101
	102	=over 8
	103
	104	=item I<binary>
	105
	106	This is the most compact form, but it is not well suited for printing
	107	or embedding in places that can't handle arbitrary data.
	108
	109	=item I<hex>
	110
e19eb3c1	111	A twice as long string of lowercase hexadecimal digits.
3357b1b1 JH	112
	113	=item I<base64>
	114
	115	A string of portable printable characters. This is the base64 encoded
	116	representation of the digest with any trailing padding removed. The
	117	string will be about 30% longer than the binary version.
	118	L<MIME::Base64> tells you more about this encoding.
	119
	120	=back
	121
	122
	123	The functional interface is simply importable functions with the same
	124	name as the algorithm. The functions take the message as argument and
	125	return the digest. Example:
	126
	127	use Digest::MD5 qw(md5);
	128	$digest = md5($message);
	129
	130	There are also versions of the functions with "_hex" or "_base64"
	131	appended to the name, which returns the digest in the indicated form.
	132
	133	=head1 OO INTERFACE
	134
	135	The following methods are available for all C<Digest::> modules:
	136
	137	=over 4
	138
	139	=item $ctx = Digest->XXX($arg,...)
	140
	141	=item $ctx = Digest->new(XXX => $arg,...)
	142
	143	=item $ctx = Digest::XXX->new($arg,...)
	144
	145	The constructor returns some object that encapsulate the state of the
	146	message-digest algorithm. You can add data to the object and finally
	147	ask for the digest. The "XXX" should of course be replaced by the proper
	148	name of the digest algorithm you want to use.
	149
	150	The two first forms are simply syntactic sugar which automatically
	151	load the right module on first use. The second form allow you to use
	152	algorithm names which contains letters which are not legal perl
897ff129 RGS	153	identifiers, e.g. "SHA-1". If no implementation for the given algorithm
897ff129 RGS	154	can be found, then an exception is raised.
3357b1b1	155
67859229	156	If new() is called as an instance method (i.e. $ctx->new) it will just
3357b1b1 JH	157	reset the state the object to the state of a newly created object. No
	158	new object is created in this case, and the return value is the
	159	reference to the object (i.e. $ctx).
	160
70ee4409 JH	161	=item $other_ctx = $ctx->clone
	162
	163	The clone method creates a copy of the digest state object and returns
	164	a reference to the copy.
	165
3357b1b1 JH	166	=item $ctx->reset
	167
	168	This is just an alias for $ctx->new.
	169
5e50d565	170	=item $ctx->add( $data )
3357b1b1	171
5e50d565 GA	172	=item $ctx->add( $chunk1, $chunk2, ... )
	173
	174	The string value of the $data provided as argument is appended to the
	175	message we calculate the digest for. The return value is the $ctx
	176	object itself.
	177
	178	If more arguments are provided then they are all appended to the
	179	message, thus all these lines will have the same effect on the state
	180	of the $ctx object:
	181
	182	$ctx->add("a"); $ctx->add("b"); $ctx->add("c");
	183	$ctx->add("a")->add("b")->add("c");
	184	$ctx->add("a", "b", "c");
	185	$ctx->add("abc");
	186
	187	Most algorithms are only defined for strings of bytes and this method
	188	might therefore croak if the provided arguments contain chars with
	189	ordinal number above 255.
3357b1b1	190
e19eb3c1	191	=item $ctx->addfile( $io_handle )
3357b1b1 JH	192
	193	The $io_handle is read until EOF and the content is appended to the
	194	message we calculate the digest for. The return value is the $ctx
	195	object itself.
	196
5e50d565 GA	197	The addfile() method will croak() if it fails reading data for some
	198	reason. If it croaks it is unpredictable what the state of the $ctx
	199	object will be in. The addfile() method might have been able to read
	200	the file partially before it failed. It is probably wise to discard
	201	or reset the $ctx object if this occurs.
	202
	203	In most cases you want to make sure that the $io_handle is in
	204	"binmode" before you pass it as argument to the addfile() method.
	205
e19eb3c1	206	=item $ctx->add_bits( $data, $nbits )
b12d758c	207
e19eb3c1	208	=item $ctx->add_bits( $bitstring )
b12d758c	209
5e50d565 GA	210	The add_bits() method is an alternative to add() that allow partial
	211	bytes to be appended to the message. Most users should just ignore
	212	this method as partial bytes is very unlikely to be of any practical
	213	use.
b12d758c NC	214
b12d758c NC	215	The two argument form of add_bits() will add the first $nbits bits
5e50d565	216	from $data. For the last potentially partial byte only the high order
b12d758c NC	217	C<< $nbits % 8 >> bits are used. If $nbits is greater than C<<
b12d758c NC	218	length($data) * 8 >>, then this method would do the same as C<<
5e50d565	219	$ctx->add($data) >>.
b12d758c NC	220
	221	The one argument form of add_bits() takes a $bitstring of "1" and "0"
	222	chars as argument. It's a shorthand for C<< $ctx->add_bits(pack("B*",
	223	$bitstring), length($bitstring)) >>.
	224
5e50d565 GA	225	The return value is the $ctx object itself.
5e50d565 GA	226
b12d758c NC	227	This example shows two calls that should have the same effect:
	228
	229	$ctx->add_bits("111100001010");
	230	$ctx->add_bits("\xF0\xA0", 12);
	231
5e50d565	232	Most digest algorithms are byte based and for these it is not possible
b12d758c NC	233	to add bits that are not a multiple of 8, and the add_bits() method
	234	will croak if you try.
	235
3357b1b1 JH	236	=item $ctx->digest
	237
	238	Return the binary digest for the message.
	239
	240	Note that the C<digest> operation is effectively a destructive,
	241	read-once operation. Once it has been performed, the $ctx object is
	242	automatically C<reset> and can be used to calculate another digest
70ee4409	243	value. Call $ctx->clone->digest if you want to calculate the digest
3c4b39be	244	without resetting the digest state.
3357b1b1 JH	245
	246	=item $ctx->hexdigest
	247
	248	Same as $ctx->digest, but will return the digest in hexadecimal form.
	249
	250	=item $ctx->b64digest
	251
	252	Same as $ctx->digest, but will return the digest as a base64 encoded
	253	string.
	254
	255	=back
	256
e19eb3c1 NC	257	=head1 Digest speed
	258
	259	This table should give some indication on the relative speed of
	260	different algorithms. It is sorted by throughput based on a benchmark
	261	done with of some implementations of this API:
	262
371dcd31 RGS	263	Algorithm Size Implementation MB/s
	264
	265	MD4 128 Digest::MD4 v1.3 165.0
	266	MD5 128 Digest::MD5 v2.33 98.8
	267	SHA-256 256 Digest::SHA2 v1.1.0 66.7
	268	SHA-1 160 Digest::SHA v4.3.1 58.9
	269	SHA-1 160 Digest::SHA1 v2.10 48.8
	270	SHA-256 256 Digest::SHA v4.3.1 41.3
	271	Haval-256 256 Digest::Haval256 v1.0.4 39.8
	272	SHA-384 384 Digest::SHA2 v1.1.0 19.6
	273	SHA-512 512 Digest::SHA2 v1.1.0 19.3
	274	SHA-384 384 Digest::SHA v4.3.1 19.2
	275	SHA-512 512 Digest::SHA v4.3.1 19.2
	276	Whirlpool 512 Digest::Whirlpool v1.0.2 13.0
	277	MD2 128 Digest::MD2 v2.03 9.5
	278
	279	Adler-32 32 Digest::Adler32 v0.03 1.3
	280	CRC-16 16 Digest::CRC v0.05 1.1
	281	CRC-32 32 Digest::CRC v0.05 1.1
	282	MD5 128 Digest::Perl::MD5 v1.5 1.0
	283	CRC-CCITT 16 Digest::CRC v0.05 0.8
	284
	285	These numbers was achieved Apr 2004 with ActivePerl-5.8.3 running
	286	under Linux on a P4 2.8 GHz CPU. The last 5 entries differ by being
e19eb3c1 NC	287	pure perl implementations of the algorithms, which explains why they
	288	are so slow.
	289
3357b1b1 JH	290	=head1 SEE ALSO
3357b1b1 JH	291
371dcd31 RGS	292	L<Digest::Adler32>, L<Digest::CRC>, L<Digest::Haval256>,
	293	L<Digest::HMAC>, L<Digest::MD2>, L<Digest::MD4>, L<Digest::MD5>,
	294	L<Digest::SHA>, L<Digest::SHA1>, L<Digest::SHA2>, L<Digest::Whirlpool>
e19eb3c1 NC	295
e19eb3c1 NC	296	New digest implementations should consider subclassing from L<Digest::base>.
3357b1b1 JH	297
	298	L<MIME::Base64>
	299
5e50d565 GA	300	http://en.wikipedia.org/wiki/Cryptographic_hash_function
5e50d565 GA	301
3357b1b1 JH	302	=head1 AUTHOR
	303
	304	Gisle Aas <gisle@aas.no>
	305
	306	The C<Digest::> interface is based on the interface originally
	307	developed by Neil Winton for his C<MD5> module.
	308
e19eb3c1 NC	309	This library is free software; you can redistribute it and/or
	310	modify it under the same terms as Perl itself.
	311
5e50d565 GA	312	Copyright 1998-2006 Gisle Aas.
5e50d565 GA	313	Copyright 1995,1996 Neil Winton.
e19eb3c1	314
3357b1b1	315	=cut