# Computational Theory Problems

In [1]:
# Numerical arrays and methods
import numpy as np

## Introduction
The Secure Hash Standard (SHS) ([Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf)) uses a multitude of hash algorithms that use similar functions that are differenciated by the amount of bits taken in. They create message digests that are then used to determine the stability of the message which is applied in verifying the contents of the message and sender.

[NumPy's .uint32](https://numpy.org/doc/stable/reference/arrays.scalars.html#numpy.uint32) will be used to configure words to 32-bit unsigned integers.

## Problem 1: Binary Words and Operations

### Parity(x, y, z) Function
The `Parity(x, y, z)` function operates on three 32-bit words, with a single 32-bit word outputted as described in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf). It is a SHA-1 and SHA-2 function and uses the bitwise `XOR` operation, written as:

$$
Parity(x, y, z) = x \oplus y \oplus z 
$$

It checks if the amount of bits a number has is [even (0) or odd (1)](https://www.geeksforgeeks.org/dsa/program-to-find-parity). It then compares the parity of the first two numbers against the third number to calculate the parity of all three numbers.

The time complexity of `Parity(x, y, z)` is $\textit{O(1)}$ since each number has guaranteed 32-bits with no recursion.

In [2]:
# Find the parity of three numbers of 32-bits
def Parity(x, y, z):
    """Find the parity between 3 different 32-bit integers
    Use XOR operator between the inputs
    The result is the XOR of all inputs together
    
    XOR is represented by the ^ operator """

    # Use XOR to calculate parity
    # 1 is outputted if an odd amount of corresponding bits in the three inputs are 1
    # 0 is outputted if an even amount of corresponding bits are 0
    return (np.uint32(x) ^ np.uint32(y) ^ np.uint32(z));

In [24]:
# Test Parity function
def test_parity():
    """ Test for correct calculations of Parity for groups of three hexadecimal numbers

    assert = will stop excecution if error is thrown (a result is not what is expected) """
    
    print("Testing Parity(x, y, z) function:\n")

    # Test only zeros
    x, y, z = 0x00000000, 0x00000000, 0x00000000
    result = Parity(x, y, z)
    print(f"Test zeros: \nParity({x:#010x}, {y:#010x}, {z:#010x}) = {result:#010x}\n")
    assert result == 0x00000000

    # Test one hex number with only 1 bit, rest zeros
    x, y, z = 0x00000001, 0x00000000, 0x00000000
    result = Parity(x, y, z)
    print(f"Test one hex with 1 bit: \nParity({x:#010x}, {y:#010x}, {z:#010x}) = {result:#010x}\n")
    assert result == 0x00000001

    # Test completely different hexadeciaml numbers
    x, y, z = 0xFFFFFFFF, 0x0F0F0F0F, 0x12345678
    result = Parity(x, y, z)
    print(f"Test different hex numbers: \nParity({x:#010x}, {y:#010x}, {z:#010x}) = {result:#010x}\n")
    assert result == 0xE2C4A688

    # Test only ones
    x, y, z = 0xFFFFFFFF, 0xFFFFFFFF, 0xFFFFFFFF
    result = Parity(x, y, z)
    print(f"Test only ones: \nParity({x:#010x}, {y:#010x}, {z:#010x}) = {result:#010x}\n")
    assert result == 0xFFFFFFFF

    # Test only int one
    x, y, z = 1, 1, 1
    result = Parity(x, y, z)
    print(f"Test only int one: \nParity({x:#010x}, {y:#010x}, {z:#010x}) = {result:#010x}\n")
    assert result == 0x00000001

    # Will only print if all asserts previous are passed
    print("-" * 64 + "\nAll tests passed!")

# Run tests
test_parity()


Testing Parity(x, y, z) function:

Test zeros: 
Parity(0x00000000, 0x00000000, 0x00000000) = 0x00000000

Test one hex with 1 bit: 
Parity(0x00000001, 0x00000000, 0x00000000) = 0x00000001

Test different hex numbers: 
Parity(0xffffffff, 0x0f0f0f0f, 0x12345678) = 0xe2c4a688

Test only ones: 
Parity(0xffffffff, 0xffffffff, 0xffffffff) = 0xffffffff

Test only int one: 
Parity(0x00000001, 0x00000001, 0x00000001) = 0x00000001

----------------------------------------------------------------
All tests passed!


### Choice(x, y, z) Function
The `Ch(x, y, z)` function is used in the SHA-1, SHA-224 and SHA-256 algorithms, using three 32-bit words. It uses the bitwise `AND`, complement(`NOT`) and `XOR` operations. In the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf), it is written as:

$$
\mathrm{Ch}(x, y, z) = (x \land y) \oplus (\lnot x \land z)
$$

It chooses the bits in $\textit{x}$ and $\textit{y}$ that are $\textit{1}$, and chooses the bits in $\textit{z}$ and $\textit{x}$ that are $\textit{0}$. The `NOT` operator returns the bits of its opposite ie. $\textit{1}$ becomes $\textit{0}$, [$\textit{0}$ becomes $\textit{1}$](https://www.geeksforgeeks.org/python/python-bitwise-operators). The `XOR` operator returns $\textit{0}$ if the bits are the same and $\textit{1}$ if they are not.

In [4]:
# Function to find result of choice
def Ch(x, y, z):
    """ Calculate the result of the Ch(x, y, z) function
     
    If the current bit of x is 1, take the corresponding bit from y
    If the current bit of x is 0, take the corresponding bit from z """

    # Ensure 32-bit unsigned int
    firstCompare = np.uint32(x) & np.uint32(y) # Choose bits in y where x has 1
    secondCompare = ~np.uint32(x) & np.uint32(z) # Choose bits in z where x has 0

    # Use XOR to find final choice
    return firstCompare ^ secondCompare;

### Majority(x, y, z) Function
The `Maj(x, y, z)` function is used in SHA-1, SHA-224 and SHA-256 algorithms, using three 32-bit words. It uses the bitwise `AND` and `XOR` operators. In the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf), it is written as:

$$
\mathrm{Maj}(x, y, z) = (x \land y) \oplus (x \land z) \oplus (y \land z)
$$

It checks if the majority of inputs are $\textit{1}$. Firstly, it uses the `AND` operator to check if the pair of inputs current bit position has value of $\textit{1}$ or $\textit{0}$. It then uses `XOR` on the results of these three pairs, where if [at least two of the inputs](https://en.wikipedia.org/wiki/Majority_function) have $\textit{1}$ at a given position, the result is $\textit{1}$. If not, the result is $\textit{0}$. 

It has a time complexity of $\textit{O(1)}$ since there is a constant number of operations and no loops.

In [5]:
# Function to find result of majority
def Maj(x, y, z):
    """ Calculate the majority value of three 32-bit integers   
    
    In each position, return 1 for if two or more of the corresponding bits of the three inputs have 1
        - 0 if not """

    # Ensures inputs are 32-bits
    x = np.uint32(x)
    y = np.uint32(y)
    z = np.uint32(z)

    # Using the AND operator, check if the corresponding pair of bits are 1
    firstCompare = x & y
    secondCompare = x & z
    thirdCompare = y & z   

    # Using the XOR operator, calculate if at least 2 of the results are 1
    return firstCompare ^ secondCompare ^ thirdCompare;

### ROTRn(x) Function
The `ROTRn(x)` function is the rotate right operation used in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf), also known as the circlar right shift. It is used in SHA-224, SHA-256, SHA-384, SHA-512, SHA512/224 and SHA-512/256 algorithms. For this project, it will be used for the purpose of SHA-224 and SHA-256 as they deal with 32-bit words. It is written as:

$$
\textit{ROTR}^n(x)
$$

This is one of the helper functions for the `Sigma0`, `Sigma1`, `sigma0` and `sigma1` logical functions listed in [NIST.FIPS.180-4](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) 4.1.2 section. It works by shifting all bits in the 32-bit word to the right. The shifted out bits are then wrapped around to the front, or the left end, of the bit string which creates a circluar rotation.

It has a time complexity of $\textit{O(1)}$, as it will only ever deals with 32-bit words.

In [6]:
# ROTR function (rotate right operation) to be used for the Sigma and sigma functions below
def rotrn(x, n):
    """  Rotate the 32-bit word (x) to the right by n bits  

    Manipulates the bits by performing a circlar right shift:
        Bits are rotated the right by n bits
        Excess bits are appended onto the left end
    
    As outlined in the SHS:
        ROTRn(x) = ( x >> n ) v ( x << w - n ) """

    # Ensure 32-bit unsigned int
    x = np.uint32(x)

    # Right shift by n bits 
    # Wrap shifted out bits to front
    # Combine the two parts
    return np.uint32(x >> n) | (x << (32 - n));

### SHRn(x) Function
The `SHRn(x)` function is the right shift operation used in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf). It is used in SHA-224, SHA-256, SHA-384, SHA-512, SHA512/224 and SHA-512/256 algorithms, alongside the `ROTRn(x)` function. For this project, it will be used for the purpose of SHA_224 and SHA-256 as they deal with 32-bit words. It is written as:

$$
\textit{SHR}^n(x) 
$$
This is the another helper function, only used for `sigma0` and `sigma1` logical functions listed in [NIST.FIPS.180-4](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) 4.1.2 section. It works similarly to `ROTRn(x)` by shifting the all the bits in the 32-bit word to the right by $\textit{n}$ positions. In this case, the bits shifted out are now lost and replaced with zeros on the left end.

It has a time complexity of $\textit{O(1)}$ as it only ever deals with 32-bit words.


In [7]:
# SHR function (right shift operation) to be used for Sigma and sigma functions below
def shrn(x, n):
    """ Shift the 32-bit word (x) to the right by n bits
        
    Manipulates the bits by: 
        Shifting the bits by n positions
        Replacing the shifted out bits by zeros on the left end

    As outlined in the SHS:
        SHRn(x) = x >> n """
    
    # Ensure 32-bit unsigned int
    x = np.uint32(x)

    # Shift x right by n bits
    # Insert 0 on left side for every bit moved over
    return x >> n;

### Sigma0(x) Function
The `Sigma0(x)` function is a logical function in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) used in SHA-224, SHA-256, SHA-384, SHA-512, SHA512/224 and SHA-512/256 algorithms, using both 32-bit and 64-bit words. It uses one of the helper functions (`ROTRn(x)`) and is written as:

$$
\Sigma_0^{256}(x) = \textit{ROTR}^2(x) \oplus \textit{ROTR}^{13}(x) \oplus \textit{ROTR}^{22}(x)
$$
It rotates the given word (x) to the right using the `ROTRn(x)` function by $\textit{2}$, $\textit{13}$ and $\textit{22}$ bits. It then uses the `XOR` operator on the results of the shifted bits as described in [NIST.FIPS.180-4](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) 4.1.2 section.

It has a time complexity of $\textit{O(1)}$ as it will only deal with 32-bit words and it has no recursion.

In [8]:
# Function of inverse sigma of a bitwise integer with XOR of three right rotations by 2, 13 and 22.
def Sigma0(x):
    """ Rotate the 32-bit word by 2, 13 and 22 using the ROTRn(x) function
    Use the XOR operator on the results
    Works to provide diffusion
    
    As outlined in the SHS:
        ROTR2(x) ^ ROTR13(x) ^ ROTR22(x) """

    # Ensure 32-bit unsigned bit
    x = np.uint32(x)

    # 3 right rotations
    rotr2 = rotrn(x, 2)
    rotr13 = rotrn(x, 13)
    rotr22 = rotrn(x, 22)

    # Use XOR to find final result
    return rotr2 ^ rotr13 ^ rotr22;

### Sigma1(x) Function
The Sigma1(x) is another logical function in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf), used in the same algorithms as `Sigma0(x)`. It uses the same helper function `ROTRn(x)`. It is written as:

$$
\Sigma_1^{256}(x) = \textit{ROTR}^6(x) \oplus \textit{ROTR}^{11}(x) \oplus \textit{ROTR}^{25}(x)
$$
It works the same as `Sigma0(x)` but rotates by different amounts, instead using $\textit{6}$, $\textit{11}$ and $\textit{25}$ as described in [NIST.FIPS.180-4](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) 4.1.2 section.

As it works the same, it has the same time complexity of $\textit{O(1)}$.

In [9]:
# Function of inverse sigma of a bitwise integer with XOR of three right rotations by 6, 11, 25.
def Sigma1(x):
    """ Rotate the 32-bit word by 6, 11 and 25 using the ROTRn(x) function
    Use the XOR operator on the results
    Works to provide diffusion
    
    As outlined in the SHS:
        ROTR6(x) ^ ROTR11(x) ^ ROTR25(x) """

    # Ensure 32-bit unsigned int
    x = np.uint32(x)

    # 3 right rotations
    rotr6 = rotrn(x, 6)
    rotr11 = rotrn(x, 11)
    rotr25 = rotrn(x, 25)

    # Use XOR to find final result
    return rotr6 ^ rotr11 ^ rotr25;

### sigma0(x) Function
The `sigma0(x)` function is another logical function in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) used in the same algorithms as `Sigma0(x)` and `Sigma1(x)`. It uses both of the helper functions, `ROTRn(x)` and `SHRn(x)`. It is written as:

$$
\sigma_0^{256}(x) = \textit{ROTR}^7(x) \oplus \textit{ROTR}^{18}(x) \oplus \textit{SHR}^3(x)
$$
It rotates the given word $\textit{x}$ to the right by $\textit{7}$ and $\textit{18}$ bits, and then shifts to the right by $\textit{3}$ bits using the `>>` operator. The `XOR` operator is then used on the results of the two rotations and the shift, as described in [NIST.FIPS.180-4](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) 4.1.2 section. It is used during the algorithm's [message schedule expansion](https://medium.com/biffures/part-5-hashing-with-sha-256-4c2afc191c40) which helps to mix bits.

It has a time complexity of $\textit{O(1)}$ as it is not dependent on input size and there is no loops or recursion.

In [10]:
# Function XOR of two right rotations, by 7 and 18,  and a right shift by 3.
def sigma0(x):
    """ Rotate the 32-bit word by 6 and 11 using the ROTRn(x) function
    Perform a right shift by 3 bits using the SHRn(x) function
    Use the XOR operator on the results

    Used during message schedule expansion

    As outlined in the SHS:
        ROTR7(x) ^ ROTR18(x) ^ SHR3(x) """

    # Ensure 32-bit unsigned int
    x = np.uint32(x)

    # 2 right rotations
    rotr7 = rotrn(x, 7)
    rotr18 = rotrn(x, 18)
    # 1 right shift
    shr3 = shrn(x, 3)

    # Use XOR to find final result
    return rotr7 ^ rotr18 ^ shr3;

### sigma1(x) Function
The `sigma1(x)` function is another logical function in the [Secure Hash Standard](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf), used in the same algorithms as `Sigma0(x)`, `Sigma1(x)` and `sigma0(x)`. It uses the same helper functions, `ROTRn(x)` and `SHRn(x)` It is written as:

$$
\sigma_0^{256}(x) = \textit{ROTR}^{17}(x) \oplus \textit{ROTR}^{19}(x) \oplus \textit{SHR}^{10}(x)
$$
It works the same as the `sigma0(x)` function but instead rotates the given word $\textit{x}$ by $\textit{17}$ and $\textit{19}$ bits, and right shifts by $\textit{10}$ bits using the `>>` operator as described in [NIST.FIPS.180-4](https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf) 4.1.2 section

As it works the same as `sigma0(x)`, it also has a time complexity of $\textit{O(1)}$.

In [11]:
# Function XOR of two right rotations, by 17 and 19, and a right shift by 10.
def sigma1(x):
    """ Rotate the 32-bit word by 17 and 19 using the ROTRn(x) function
    Perform a right shift by 10 bits using the SHRn(x) function
    Use the XOR operator on the results

    Used during message schedule expansion

    As outlined in the SHS:
        ROTR17(x) ^ ROTR19(x) ^ SHR10(x) """

    # Ensure 32-bit unsigned int
    x = np.uint32(x)

    # 2 right rotations
    rotr17 = rotrn(x, 17)
    rotr19 = rotrn(x, 19)
    # 1 right shift
    shr10 = shrn(x, 10)

    # Use XOR to find final result
    return rotr17 ^ rotr19 ^ shr10;

## Problem 2: Fractional Parts of Cube Roots

In [12]:
# Generate the first n prime numbers
def primes(n):
    """ Generate the first n prime numbers without using brute force """

    # If the length of the prime number list is equal to 0, return empty list
    if n == 0:
        return []
    
    primes = [] # Store list of prime numbers
    candidate = 2 # First prime number

    # Generate prime numbers until length of n is reached
    while len(primes) < n:
        is_prime = True

        # Check if current number can be divided by 2
        for i in range(2, candidate):
            # If so, its not a prime, don't add it to list
            if candidate % i == 0:
                is_prime = False
                break
        
        # If current number passes check above, add it to primes list
        if is_prime:
            primes.append(candidate)

        # Move onto next number
        candidate += 1

    return primes

In [13]:
# Calculate cube roots of prime number list
def prime_cube_roots(primes):
    """ Create a list of the cube roots of the list of n prime numbers """

    cube_roots = [] # Store cube roots of primes

    # Loop through primes, calculating their individual cube root
    for prime in primes:
        # Calculate cube root using exponatiation operator (**)
        cube_root = prime ** (1/3)

        # Add cube root of prime number to list
        cube_roots.append(cube_root)

    return cube_roots

In [14]:
# Calculate the first 64 prime numbers with primes() function
first_primes = primes(64)

# Print out result
print("Prime numbers: ", first_primes)

# Calculate cube roots of the first n prime numbers
cube_roots = prime_cube_roots(first_primes)

# Print out result
print("Cube roots of prime numbers: ", cube_roots)

Prime numbers:  [2, 3, 5, 7, 11, 13, 17, 19, 23, 29, 31, 37, 41, 43, 47, 53, 59, 61, 67, 71, 73, 79, 83, 89, 97, 101, 103, 107, 109, 113, 127, 131, 137, 139, 149, 151, 157, 163, 167, 173, 179, 181, 191, 193, 197, 199, 211, 223, 227, 229, 233, 239, 241, 251, 257, 263, 269, 271, 277, 281, 283, 293, 307, 311]
Cube roots of prime numbers:  [1.2599210498948732, 1.4422495703074083, 1.7099759466766968, 1.912931182772389, 2.2239800905693152, 2.3513346877207573, 2.571281590658235, 2.668401648721945, 2.8438669798515654, 3.072316825685847, 3.1413806523913927, 3.332221851645953, 3.4482172403827303, 3.503398060386724, 3.6088260801386944, 3.756285754221072, 3.8929964158732604, 3.936497183102173, 4.0615481004456795, 4.140817749422853, 4.179339196381232, 4.290840427026207, 4.362070671454838, 4.464745095584537, 4.594700892207039, 4.657009507803835, 4.687548147653597, 4.7474593985234, 4.776856181035017, 4.834588127111639, 5.026525695313479, 5.0787530781327, 5.155136735475772, 5.180101467380292, 5.301459

In [15]:
# Extract first 32-bits of fractional part of cube roots of primes
frac32 = []

# Loop through all prime numbers in array
""" Extract first 32 bits of the fractional part of the cube root of each prime number """
for prime in first_primes:
    root = np.cbrt(prime) # Calculates cube root of each prime number
    frac = np.modf(root)[0] # Collects fractional part of cube root
    frac = (frac * (2 ** 32)) # Move over 32 bits
    bits = int(frac) # Change into integer
    frac32.append(bits) # Add it to array of fractional parts

In [16]:
# Display the resulting fractional parts in hexadecimal
for frac in frac32:
    print(f"{frac:08x}")

428a2f98
71374491
b5c0fbcf
e9b5dba5
3956c25b
59f111f1
923f82a4
ab1c5ed5
d807aa98
12835b01
243185be
550c7dc3
72be5d74
80deb1fe
9bdc06a7
c19bf174
e49b69c1
efbe4786
0fc19dc6
240ca1cc
2de92c6f
4a7484aa
5cb0a9dc
76f988da
983e5152
a831c66d
b00327c8
bf597fc7
c6e00bf3
d5a79147
06ca6351
14292967
27b70a85
2e1b2138
4d2c6dfc
53380d13
650a7354
766a0abb
81c2c92e
92722c85
a2bfe8a1
a81a664b
c24b8b70
c76c51a3
d192e819
d6990624
f40e3585
106aa070
19a4c116
1e376c08
2748774c
34b0bcb5
391c0cb3
4ed8aa4a
5b9cca4f
682e6ff3
748f82ee
78a5636f
84c87814
8cc70208
90befffa
a4506ceb
bef9a3f7
c67178f2


In [17]:
# Test the hexadecimal results against the SHA-256 constants
""" Tests the hexadeciaml results of the fractional parts against the offical constant hexademical values provided by the Secure Hash Standard 
These constants stand for the cube roots of the first 64 prime numbers """

sha_constants = [
    0x428a2f98, 0x71374491, 0xb5c0fbcf, 0xe9b5dba5, 0x3956c25b, 0x59f111f1, 0x923f82a4, 0xab1c5ed5,
    0xd807aa98, 0x12835b01, 0x243185be, 0x550c7dc3, 0x72be5d74, 0x80deb1fe, 0x9bdc06a7, 0xc19bf174,
    0xe49b69c1, 0xefbe4786, 0x0fc19dc6, 0x240ca1cc, 0x2de92c6f, 0x4a7484aa, 0x5cb0a9dc, 0x76f988da,
    0x983e5152, 0xa831c66d, 0xb00327c8, 0xbf597fc7, 0xc6e00bf3, 0xd5a79147, 0x06ca6351, 0x14292967,
    0x27b70a85, 0x2e1b2138, 0x4d2c6dfc, 0x53380d13, 0x650a7354, 0x766a0abb, 0x81c2c92e, 0x92722c85,
    0xa2bfe8a1, 0xa81a664b, 0xc24b8b70, 0xc76c51a3, 0xd192e819, 0xd6990624, 0xf40e3585, 0x106aa070,
    0x19a4c116, 0x1e376c08, 0x2748774c, 0x34b0bcb5, 0x391c0cb3, 0x4ed8aa4a, 0x5b9cca4f, 0x682e6ff3,
    0x748f82ee, 0x78a5636f, 0x84c87814, 0x8cc70208, 0x90befffa, 0xa4506ceb, 0xbef9a3f7, 0xc67178f2
]

# Print out results to console
print(f"{'Index':>5} | {'frac32':>12} | {'sha_constants':>12}")
print("-" * 35)

# Iterate through both fractional parts and SHA constants
for i in range(len(frac32)):
    print(f"{i:5} | {frac32[i]:12} | {sha_constants[i]:12}")

# Check if the calculated cube roots match the SHA constants
if (np.array_equal(frac32, sha_constants)):
    print(f"\nThe hexadecimal results of the fractional parts match the SHA-256 constants.")
else:
    print(f"\nThe hexadecimal results of the fractional parts do not match the SHA-256 constants.")


Index |       frac32 | sha_constants
-----------------------------------
    0 |   1116352408 |   1116352408
    1 |   1899447441 |   1899447441
    2 |   3049323471 |   3049323471
    3 |   3921009573 |   3921009573
    4 |    961987163 |    961987163
    5 |   1508970993 |   1508970993
    6 |   2453635748 |   2453635748
    7 |   2870763221 |   2870763221
    8 |   3624381080 |   3624381080
    9 |    310598401 |    310598401
   10 |    607225278 |    607225278
   11 |   1426881987 |   1426881987
   12 |   1925078388 |   1925078388
   13 |   2162078206 |   2162078206
   14 |   2614888103 |   2614888103
   15 |   3248222580 |   3248222580
   16 |   3835390401 |   3835390401
   17 |   4022224774 |   4022224774
   18 |    264347078 |    264347078
   19 |    604807628 |    604807628
   20 |    770255983 |    770255983
   21 |   1249150122 |   1249150122
   22 |   1555081692 |   1555081692
   23 |   1996064986 |   1996064986
   24 |   2554220882 |   2554220882
   25 |   2821834349 |   28

## Problem 3: Padding

In [18]:
def block_parse(msg):
    """ Generator function that processes messages according to SHA-256 specifications 
    (Secure Hash Standard sections 5.1.1. and 5.2.1) and implement message padding

    Append 1 bit with 0x80 byte, have seven zeros
    Append 0 bits to reach 448 length

    Once calculated, append appropriate amount of zeros to padded message
    Append original message to be 64-bit big-edian integer """
    
    # Store the original message bit length
    original_msg_bits = len(msg) * 8

    # Append 1 bit (10000000 in binary, 0x80 in bytes) with seven zeros
    appended_msg = msg + b'\x80'

    # Find the number of zero needed to get to length 448 (mod 512) bits / 56 bytes (mod 64)
    appended_length = len(appended_msg)
    zeros_needed = (56 - appended_length % 64) % 64 

    # Append the zero bytes to padded message
    appended_msg += b'\x00' * zeros_needed

    # Append original message bit length as a 64-bit big-endian int
    appended_msg += original_msg_bits.to_bytes(8, byteorder='big')

    # Compute and yield 512-bit / 64-byte blocks
    for i in range(0, len(appended_msg), 64):    
        yield appended_msg[i:i + 64]

In [19]:
def test_block_parse():
    """ Test if the block_parse generator function works as expected

    Test with different lengths of messages to see the extent of its functionality """

    # Test empty message
    msg = b""
    blocks = list(block_parse(msg))
    print("Test empty message:")
    for i in range(len(blocks)):
        print(f"Block {i}: {blocks[i].hex()}")
        print(f"Length: {len(blocks[i])}")
    print(f"Total blocks: {len(blocks)}")
    print("-" * 64 + "\n")

    # Test short message
    msg = b"abc"
    blocks = list(block_parse(msg))
    print("Test 'abc':")
    for i in range(len(blocks)):
        print(f"Block {i}: {blocks[i].hex()}")
        print(f"Length: {len(blocks[i])}")
    print(f"Total blocks: {len(blocks)}")
    print("-" * 64 + "\n")

    # Test 1 block message, maximum 55 bytes
    msg = b"a" * 55
    blocks = list(block_parse(msg))
    print("Test '1 block message at 55 bytes:")
    for i in range(len(blocks)):
        print(f"Block {i}: {blocks[i].hex()}")
        print(f"Length: {len(blocks[i])}")
    print(f"Total blocks: {len(blocks)}")
    print("-" * 64 + "\n")


    # Test 2 block message, minimum 56 bytes
    msg = b"a" * 58
    blocks = list(block_parse(msg))
    print("Test 2 block message:")
    for i in range(len(blocks)):
        print(f"Block {i}: {blocks[i].hex()}")
        print(f"Length: {len(blocks[i])}")
    print(f"Total blocks: {len(blocks)}")
    print("-" * 64 + "\n")

    # Test message with exactly 64 bytes, 2 blocks
    msg = b"a" * 64
    blocks = list(block_parse(msg))
    print("Test 64-byte message:")
    for i in range(len(blocks)):
        print(f"Block {i}: {blocks[i].hex()}")
        print(f"Length: {len(blocks[i])}")
    print(f"Total blocks: {len(blocks)}")
    print("-" * 64 + "\n")

# Run tests
test_block_parse()


Test empty message:
Block 0: 80000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Length: 64
Total blocks: 1
----------------------------------------------------------------

Test 'abc':
Block 0: 61626380000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018
Length: 64
Total blocks: 1
----------------------------------------------------------------

Test '1 block message at 55 bytes:
Block 0: 616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161618000000000000001b8
Length: 64
Total blocks: 1
----------------------------------------------------------------

Test 2 block message:
Block 0: 61616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161800000000000
Length: 64
Block 1: 000000000000000000000000000000000000000000000000000000000000

## Problem 4: Hashes

In [None]:
# Initial hash values provided by the Secure Hash Standard
inital_hash = [
    np.uint32(0x6a09e667),
    np.uint32(0xbb67ae85),
    np.uint32(0x3c6ef372),
    np.uint32(0xa54ff53a),
    np.uint32(0x510e527f),
    np.uint32(0x9b05688c),
    np.uint32(0x1f83d9ab),
    np.uint32(0x5be0cd19),
]

In [None]:
def hash(current, block):
  """ Compute next hash from previous hash and next 512-bit / 64-byte block, Section 6.2.2. """

  # Convert block into an array of 16 big endian 32-bit unsigned integers
  block = np.frombuffer(block, dtype='>u4')

  # Make an array for 64 words for message schedule
  W = np.zeros(64, dtype=np.uint32)

  # Assign the 16 words of W from the message block
  for t in range(16):
    W[t] = block[t]
  
  # Add the next 48 words of W using the sigma0 and sigma1 functions
  for t in range(16, 64):
    W[t] = sigma1(W[t-2]) + W[t-7] + sigma0(W[t-15]) + W[t-16]

  # Declare and initialise the temporary hash value variables
  a = current[0]
  b = current[1]
  c = current[2]
  d = current[3]
  e = current[4]
  f = current[5]
  g = current[6]
  h = current[7]

  # Loop 64 times performing the SHA-256 compression 
  for t in range(64):
    # Calculate temporary values for T1, T2 using Sigma0, Sigma1 and Maj functions
    # Use SHA-256 constants from Problem 3 (K in SHS)
    T1 = (h + Sigma1(e) + Ch(e, f, g) + sha_constants[t] + W[t]) & 0xFFFFFFFF
    T2 = (Sigma0(a) + Maj(a, b, c)) & 0xFFFFFFFF

    # Update temporary hash variables
    h = g
    g = f
    f = e
    e = (d + T1) & 0xFFFFFFFF # Ensures 32-bits, in case of overflow
    d = c
    c = b
    b = a
    a = (T1 + T2) & 0xFFFFFFFF # Ensures 32-bits, in case of overflow

  # Assign the updated hash values to previously declared variables
  H = np.array([
    (current[0] + a) & 0xFFFFFFFF,
    (current[1] + b) & 0xFFFFFFFF,
    (current[2] + c) & 0xFFFFFFFF,
    (current[3] + d) & 0xFFFFFFFF,
    (current[4] + e) & 0xFFFFFFFF,
    (current[5] + f) & 0xFFFFFFFF,
    (current[6] + g) & 0xFFFFFFFF,
    (current[7] + h) & 0xFFFFFFFF,
  ], dtype=np.uint32) # 32-bit integer

  # Return the hash value
  return H

## Problem 5: Passwords

## References 
### Secure Hash Standard
https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.180-4.pdf

### Problem 1:
https://www.geeksforgeeks.org/dsa/finding-the-parity-of-a-number-efficiently  


### Problem 2:
https://dev.to/xfbs/generating-prime-numbers-with-python-and-rust-4663  
https://en.wikipedia.org/wiki/Trial_division  
https://docs.python.org/3/library/math.html