microsoft
diff --git a/‎cmake-configs/SymCrypt-Platforms.cmake‎
Lines changed: 5 additions & 0 deletions b/‎cmake-configs/SymCrypt-Platforms.cmake‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎inc/symcrypt.h‎
Lines changed: 187 additions & 3 deletions b/‎inc/symcrypt.h‎
Lines changed: 187 additions & 3 deletions
diff --git a/‎inc/symcrypt_internal.h‎
Lines changed: 36 additions & 0 deletions b/‎inc/symcrypt_internal.h‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎lib/CMakeLists.txt‎
Lines changed: 4 additions & 0 deletions b/‎lib/CMakeLists.txt‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎lib/rsa_padding.c‎
Lines changed: 18 additions & 0 deletions b/‎lib/rsa_padding.c‎
Lines changed: 18 additions & 0 deletions
@@ -155,5 +155,10 @@ else() # Windows
         add_compile_options(/GF)
         add_compile_options(/Gy)
         add_compile_options(/Gw)
+    else()
+        if(SYMCRYPT_TARGET_ARCH MATCHES "AMD64")
+            # Prevent error C1128 for AMD64/Debug builds: number of sections exceeded object file format limit
+            add_compile_options(/bigobj)
+        endif()
     endif()
 endif()
@@ -1100,7 +1100,7 @@ extern const PCSYMCRYPT_HASH SymCryptSha1Algorithm;
 //   SHA-256
 //
 //
-// Tha SHA-256 hash algorithm per FIPS 180-4.
+// The SHA-256 hash algorithm per FIPS 180-4.
 // This implementation is limited to data strings that are in whole bytes.
 // Odd bit length are not supported.
 //
@@ -1165,7 +1165,7 @@ extern const PCSYMCRYPT_HASH SymCryptSha256Algorithm;
 //   SHA-384
 //
 //
-// Tha SHA-384 hash algorithm per FIPS 180-4.
+// The SHA-384 hash algorithm per FIPS 180-4.
 // This implementation is limited to data strings that are in whole bytes.
 // Odd bit length are not supported.
 //
@@ -1230,7 +1230,7 @@ extern const PCSYMCRYPT_HASH SymCryptSha384Algorithm;
 //   SHA-512
 //
 //
-// Tha SHA-512 hash algorithm per FIPS 180-4.
+// The SHA-512 hash algorithm per FIPS 180-4.
 // This implementation is limited to data strings that are in whole bytes.
 // Odd bit length are not supported.
 //
@@ -1291,6 +1291,181 @@ SymCryptSha512Selftest();
 
 extern const PCSYMCRYPT_HASH SymCryptSha512Algorithm;
 
+
+////////////////////////////////////////////////////////////////////////////
+//   SHA-3
+//
+// The SHA-3 family of hash algorithms per FIPS 202.
+// This implementation is limited to data strings that are in whole bytes.
+// Odd bit length are not supported.
+//
+//
+// For details on this API see the description above about the generic hash function API.
+//
+
+
+//
+// SHA-3-256
+//
+
+#define SYMCRYPT_SHA3_256_RESULT_SIZE         (32)
+#define SYMCRYPT_SHA3_256_INPUT_BLOCK_SIZE    (136)
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256(
+    _In_reads_(cbData)                          PCBYTE  pbData,
+                                                SIZE_T  cbData,
+    _Out_writes_(SYMCRYPT_SHA3_256_RESULT_SIZE) PBYTE   pbResult);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256Init(_Out_ PSYMCRYPT_SHA3_256_STATE pState);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256Append(
+    _Inout_                 PSYMCRYPT_SHA3_256_STATE    pState,
+    _In_reads_(cbData)      PCBYTE                      pbData,
+                            SIZE_T                      cbData);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256Result(
+    _Inout_                                     PSYMCRYPT_SHA3_256_STATE    pState,
+    _Out_writes_(SYMCRYPT_SHA3_256_RESULT_SIZE) PBYTE                       pbResult);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256StateCopy(_In_ PCSYMCRYPT_SHA3_256_STATE pSrc, _Out_ PSYMCRYPT_SHA3_256_STATE pDst);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256StateExport(
+    _In_                                                    PCSYMCRYPT_SHA3_256_STATE   pState,
+    _Out_writes_bytes_(SYMCRYPT_SHA3_256_STATE_EXPORT_SIZE) PBYTE                       pbBlob);
+
+SYMCRYPT_ERROR
+SYMCRYPT_CALL
+SymCryptSha3_256StateImport(
+    _Out_                                                   PSYMCRYPT_SHA3_256_STATE    pState,
+    _In_reads_bytes_(SYMCRYPT_SHA3_256_STATE_EXPORT_SIZE)   PCBYTE                      pbBlob);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_256Selftest();
+
+extern const PCSYMCRYPT_HASH SymCryptSha3_256Algorithm;
+
+
+//
+// SHA-3-384
+//
+
+#define SYMCRYPT_SHA3_384_RESULT_SIZE         (48)
+#define SYMCRYPT_SHA3_384_INPUT_BLOCK_SIZE    (104)
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384(
+    _In_reads_(cbData)                          PCBYTE  pbData,
+                                                SIZE_T  cbData,
+    _Out_writes_(SYMCRYPT_SHA3_384_RESULT_SIZE) PBYTE   pbResult);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384Init(_Out_ PSYMCRYPT_SHA3_384_STATE pState);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384Append(
+    _Inout_                 PSYMCRYPT_SHA3_384_STATE    pState,
+    _In_reads_(cbData)      PCBYTE                      pbData,
+                            SIZE_T                      cbData);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384Result(
+    _Inout_                                     PSYMCRYPT_SHA3_384_STATE    pState,
+    _Out_writes_(SYMCRYPT_SHA3_384_RESULT_SIZE) PBYTE                       pbResult);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384StateCopy(_In_ PCSYMCRYPT_SHA3_384_STATE pSrc, _Out_ PSYMCRYPT_SHA3_384_STATE pDst);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384StateExport(
+    _In_                                                    PCSYMCRYPT_SHA3_384_STATE   pState,
+    _Out_writes_bytes_(SYMCRYPT_SHA3_384_STATE_EXPORT_SIZE) PBYTE                       pbBlob);
+
+SYMCRYPT_ERROR
+SYMCRYPT_CALL
+SymCryptSha3_384StateImport(
+    _Out_                                                   PSYMCRYPT_SHA3_384_STATE    pState,
+    _In_reads_bytes_(SYMCRYPT_SHA3_384_STATE_EXPORT_SIZE)   PCBYTE                      pbBlob);
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_384Selftest();
+
+extern const PCSYMCRYPT_HASH SymCryptSha3_384Algorithm;
+
+
+//
+// SHA-3-512
+//
+
+#define SYMCRYPT_SHA3_512_RESULT_SIZE         (64)
+#define SYMCRYPT_SHA3_512_INPUT_BLOCK_SIZE    (72)
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512(
+    _In_reads_( cbData )                            PCBYTE  pbData,
+                                                    SIZE_T  cbData,
+    _Out_writes_( SYMCRYPT_SHA3_512_RESULT_SIZE )   PBYTE   pbResult );
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512Init( _Out_ PSYMCRYPT_SHA3_512_STATE pState );
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512Append(
+    _Inout_                 PSYMCRYPT_SHA3_512_STATE    pState,
+    _In_reads_( cbData )    PCBYTE                      pbData,
+                            SIZE_T                      cbData );
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512Result(
+    _Inout_                                         PSYMCRYPT_SHA3_512_STATE    pState,
+    _Out_writes_( SYMCRYPT_SHA3_512_RESULT_SIZE )   PBYTE                       pbResult );
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512StateCopy( _In_ PCSYMCRYPT_SHA3_512_STATE pSrc, _Out_ PSYMCRYPT_SHA3_512_STATE pDst );
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512StateExport(
+    _In_                                                        PCSYMCRYPT_SHA3_512_STATE   pState,
+    _Out_writes_bytes_( SYMCRYPT_SHA3_512_STATE_EXPORT_SIZE )   PBYTE                       pbBlob );
+
+SYMCRYPT_ERROR
+SYMCRYPT_CALL
+SymCryptSha3_512StateImport(
+    _Out_                                                   PSYMCRYPT_SHA3_512_STATE    pState,
+    _In_reads_bytes_( SYMCRYPT_SHA3_512_STATE_EXPORT_SIZE)  PCBYTE                      pbBlob );
+
+VOID
+SYMCRYPT_CALL
+SymCryptSha3_512Selftest();
+
+extern const PCSYMCRYPT_HASH SymCryptSha3_512Algorithm;
+
+
 //==========================================================================
 //   PARALLELISED HASH FUNCTIONS
 //==========================================================================
@@ -6419,6 +6594,15 @@ extern const SYMCRYPT_OID SymCryptSha384OidList[SYMCRYPT_SHA384_OID_COUNT];
 #define SYMCRYPT_SHA512_OID_COUNT      (2)
 extern const SYMCRYPT_OID SymCryptSha512OidList[SYMCRYPT_SHA512_OID_COUNT];
 
+#define SYMCRYPT_SHA3_256_OID_COUNT      (2)
+extern const SYMCRYPT_OID SymCryptSha3_256OidList[SYMCRYPT_SHA3_256_OID_COUNT];
+
+#define SYMCRYPT_SHA3_384_OID_COUNT      (2)
+extern const SYMCRYPT_OID SymCryptSha3_384OidList[SYMCRYPT_SHA3_384_OID_COUNT];
+
+#define SYMCRYPT_SHA3_512_OID_COUNT      (2)
+extern const SYMCRYPT_OID SymCryptSha3_512OidList[SYMCRYPT_SHA3_512_OID_COUNT];
+
 //
 // SYMCRYPT_FLAG_RSA_PKCS1_NO_ASN1: For RSA PKCS1 to not use the OID on signing or verifying.
 //
 
@@ -822,6 +822,34 @@ typedef SYMCRYPT_ALIGN_STRUCT _SYMCRYPT_SHA384_STATE
 } SYMCRYPT_SHA384_STATE, *PSYMCRYPT_SHA384_STATE;
 typedef const SYMCRYPT_SHA384_STATE *PCSYMCRYPT_SHA384_STATE;
 
+//
+// SYMCRYPT_SHA3_STATE
+//
+// Data structure that stores the state of an ongoing SHA-3 computation.
+// 
+
+typedef SYMCRYPT_ALIGN_STRUCT _SYMCRYPT_KECCAK_STATE
+{
+    UINT64                  resultSize;
+    SYMCRYPT_MAGIC_FIELD
+    UINT32                  inputBlockSize;
+    UINT32                  mergedBytes;    // number of message bytes merged into the state for current block
+    SYMCRYPT_ALIGN  UINT64  state[25];      // state for Keccak-f[1600] permutation
+} SYMCRYPT_KECCAK_STATE, *PSYMCRYPT_KECCAK_STATE;
+typedef const SYMCRYPT_KECCAK_STATE *PCSYMCRYPT_KECCAK_STATE;
+
+typedef SYMCRYPT_KECCAK_STATE SYMCRYPT_SHA3_STATE, * PSYMCRYPT_SHA3_STATE;
+typedef const SYMCRYPT_SHA3_STATE* PCSYMCRYPT_SHA3_STATE;
+
+typedef SYMCRYPT_KECCAK_STATE SYMCRYPT_SHA3_256_STATE, * PSYMCRYPT_SHA3_256_STATE;
+typedef const SYMCRYPT_SHA3_256_STATE* PCSYMCRYPT_SHA3_256_STATE;
+
+typedef SYMCRYPT_KECCAK_STATE SYMCRYPT_SHA3_384_STATE, * PSYMCRYPT_SHA3_384_STATE;
+typedef const SYMCRYPT_SHA3_384_STATE* PCSYMCRYPT_SHA3_384_STATE;
+
+typedef SYMCRYPT_KECCAK_STATE SYMCRYPT_SHA3_512_STATE, *PSYMCRYPT_SHA3_512_STATE;
+typedef const SYMCRYPT_SHA3_512_STATE* PCSYMCRYPT_SHA3_512_STATE;
+
 
 //
 // Generic hashing
@@ -835,6 +863,9 @@ typedef union _SYMCRYPT_HASH_STATE
     SYMCRYPT_SHA256_STATE   sha256State;
     SYMCRYPT_SHA384_STATE   sha384State;
     SYMCRYPT_SHA512_STATE   sha512State;
+    SYMCRYPT_SHA3_256_STATE sha3_256State;
+    SYMCRYPT_SHA3_384_STATE sha3_384State;
+    SYMCRYPT_SHA3_512_STATE sha3_512State;
 } SYMCRYPT_HASH_STATE, *PSYMCRYPT_HASH_STATE;
 typedef const SYMCRYPT_HASH_STATE *PCSYMCRYPT_HASH_STATE;
 
@@ -1622,6 +1653,11 @@ typedef const SYMCRYPT_MARVIN32_STATE *PCSYMCRYPT_MARVIN32_STATE;
 #define SYMCRYPT_SHA384_STATE_EXPORT_SIZE   (236)
 #define SYMCRYPT_SHA512_STATE_EXPORT_SIZE   (236)
 
+#define SYMCRYPT_SHA3_STATE_EXPORT_SIZE     (232)
+#define SYMCRYPT_SHA3_256_STATE_EXPORT_SIZE (232)
+#define SYMCRYPT_SHA3_384_STATE_EXPORT_SIZE (232)
+#define SYMCRYPT_SHA3_512_STATE_EXPORT_SIZE (232)
+
 
 //
 // KDF algorithms
 
@@ -92,6 +92,10 @@ set(SOURCES_COMMON
     sha512Par.c
     sha512Par-ymm.c
     sha512-ymm.c
+    sha3.c
+    sha3_256.c
+    sha3_384.c
+    sha3_512.c
     sp800_108_hmacsha1.c
     sp800_108_hmacsha256.c
     sp800_108_hmacsha512.c
 
@@ -46,6 +46,24 @@ const SYMCRYPT_OID SymCryptSha512OidList[] =
     {11, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x03"}
 };
 
+const SYMCRYPT_OID SymCryptSha3_256OidList[] =
+{
+    {13, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x08\x05\x00"},
+    {11, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x08"}
+};
+
+const SYMCRYPT_OID SymCryptSha3_384OidList[] =
+{
+    {13, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x09\x05\x00"},
+    {11, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x09"}
+};
+
+const SYMCRYPT_OID SymCryptSha3_512OidList[] =
+{
+    {13, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x0a\x05\x00"},
+    {11, (BYTE *)"\x06\x09\x60\x86\x48\x01\x65\x03\x04\x02\x0a"}
+};
+
 
 VOID
 SYMCRYPT_CALL