{

wil::unique_bcrypt_algorithm algHandle;

wil::unique_bcrypt_hash hashHandle;

DWORD hashLength = 0;

{

BCRYPT_ALG_HANDLE algHandleT{};

BCRYPT_HASH_HANDLE hashHandleT;

DWORD resultLength = 0;

// Open an algorithm handle

THROW_IF_NTSTATUS_FAILED_MSG(BCryptOpenAlgorithmProvider(

&algHandleT, // Alg Handle pointer

BCRYPT_SHA256_ALGORITHM, // Cryptographic Algorithm name (null terminated unicode string)

nullptr, // Provider name; if null, the default provider is loaded

0), // Flags

"failed opening SHA256 algorithm provider");

context->algHandle.reset(algHandleT);

// Obtain the length of the hash

THROW_IF_NTSTATUS_FAILED_MSG(BCryptGetProperty(

context->algHandle.get(), // Handle to a CNG object

BCRYPT_HASH_LENGTH, // Property name (null terminated unicode string)

(PBYTE) & (context->hashLength), // Address of the output buffer which receives the property value

sizeof(context->hashLength), // Size of the buffer in bytes

&resultLength, // Number of bytes that were copied into the buffer

0), // Flags

"failed getting SHA256 hash length");

if (resultLength != sizeof(context->hashLength))

{

THROW_HR_MSG(E_UNEXPECTED, "failed getting SHA256 hash length");

}

// Create a hash handle

THROW_IF_NTSTATUS_FAILED_MSG(BCryptCreateHash(

context->algHandle.get(), // Handle to an algorithm provider

&hashHandleT, // A pointer to a hash handle - can be a hash or hmac object

nullptr, // Pointer to the buffer that receives the hash/hmac object

0, // Size of the buffer in bytes

nullptr, // A pointer to a key to use for the hash or MAC

0, // Size of the key in bytes

0), // Flags

"failed creating SHA256 hash object");

context->hashHandle.reset(hashHandleT);

{

EnsureNotFinished();

// Add the data

THROW_IF_NTSTATUS_FAILED_MSG(

BCryptHashData(context->hashHandle.get(), const_cast<PUCHAR>(buffer), static_cast<ULONG>(cbBuffer), 0),

"failed adding SHA256 data");

{

EnsureNotFinished();

// Size the hash buffer appropriately

hash.resize(context->hashLength);

// Obtain the hash of the message(s) into the hash buffer

THROW_IF_NTSTATUS_FAILED_MSG(BCryptFinishHash(

context->hashHandle.get(), // Handle to the hash or MAC object

hash.data(), // A pointer to a buffer that receives the hash or MAC value

context->hashLength, // Size of the buffer in bytes

0), // Flags

"failed getting SHA256 hash");

context.reset();

{

SHA256 hasher;

hasher.Add(buffer, cbBuffer);

return hasher.Get();

{

THROW_HR_IF(HRESULT_FROM_WIN32(ERROR_INSUFFICIENT_BUFFER), buffer.size() > std::numeric_limits<uint32_t>::max());

return ComputeHash(buffer.data(), static_cast<uint32_t>(buffer.size()));

{

// Throw exceptions on badbit

auto excState = in.exceptions();

auto revertExcState = wil::scope_exit([excState, &in]() { in.exceptions(excState); });

in.exceptions(std::ios_base::badbit);

const int bufferSize = 1024 * 1024; // 1MB

auto buffer = std::make_unique<uint8_t[]>(bufferSize);

SHA256 hasher;

uint64_t totalSize = 0;

while (in.good())

{

in.read((char*)(buffer.get()), bufferSize);

std::streamsize bytesRead = in.gcount();

if (bytesRead)

{

hasher.Add(buffer.get(), static_cast<size_t>(bytesRead));

totalSize += static_cast<uint64_t>(bytesRead);

}

}

if (in.eof())

{

HashDetails result;

result.Hash = hasher.Get();

result.SizeInBytes = totalSize;

return result;

}

else

{

THROW_HR(APPINSTALLER_CLI_ERROR_STREAM_READ_FAILURE);

}

{

std::ifstream inStream{ path, std::ifstream::binary };

const Utility::SHA256::HashBuffer& targetFileHash = Utility::SHA256::ComputeHash(inStream);

inStream.close();

return targetFileHash;

{

if (!context)

{

THROW_HR_MSG(E_UNEXPECTED, "The hash is already finished");

}