md5.c 9.4 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275
  1. /*
  2. * This code implements the MD5 message-digest algorithm.
  3. * The algorithm is due to Ron Rivest. This code was
  4. * written by Colin Plumb in 1993, no copyright is claimed.
  5. * This code is in the public domain; do with it what you wish.
  6. *
  7. * Equivalent code is available from RSA Data Security, Inc.
  8. * This code has been tested against that, and is equivalent,
  9. * except that you don't need to include two pages of legalese
  10. * with every copy.
  11. *
  12. * To compute the message digest of a chunk of bytes, declare an
  13. * MD5Context structure, pass it to MD5Init, call MD5Update as
  14. * needed on buffers full of bytes, and then call MD5Final, which
  15. * will fill a supplied 16-byte array with the digest.
  16. * ----------------------------------------------------------------------------
  17. * libjpeg-turbo Modifications:
  18. * Copyright (C)2018, D. R. Commander. All Rights Reserved.
  19. *
  20. * Redistribution and use in source and binary forms, with or without
  21. * modification, are permitted provided that the following conditions are met:
  22. *
  23. * - Redistributions of source code must retain the above copyright notice,
  24. * this list of conditions and the following disclaimer.
  25. * - Redistributions in binary form must reproduce the above copyright notice,
  26. * this list of conditions and the following disclaimer in the documentation
  27. * and/or other materials provided with the distribution.
  28. * - Neither the name of the libjpeg-turbo Project nor the names of its
  29. * contributors may be used to endorse or promote products derived from this
  30. * software without specific prior written permission.
  31. *
  32. * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS",
  33. * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  34. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  35. * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR CONTRIBUTORS BE
  36. * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
  37. * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
  38. * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
  39. * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
  40. * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  41. * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
  42. * POSSIBILITY OF SUCH DAMAGE.
  43. * ----------------------------------------------------------------------------
  44. */
  45. #include <string.h> /* for memcpy() */
  46. #include "md5.h"
  47. #if (BYTE_ORDER == LITTLE_ENDIAN)
  48. #define byteReverse(buf, len) /* Nothing */
  49. #else
  50. /*
  51. * Note: this code is harmless on little-endian machines.
  52. */
  53. static void byteReverse(unsigned char *buf, unsigned int longs)
  54. {
  55. uint32 t;
  56. do {
  57. t = (uint32)((unsigned int)buf[3] << 8 | buf[2]) << 16 |
  58. ((unsigned int)buf[1] << 8 | buf[0]);
  59. *(uint32 *)buf = t;
  60. buf += 4;
  61. } while (--longs);
  62. }
  63. #endif
  64. /*
  65. * Start MD5 accumulation. Set bit count to 0 and buffer to mysterious
  66. * initialization constants.
  67. */
  68. void MD5Init(struct MD5Context *ctx)
  69. {
  70. ctx->buf[0] = 0x67452301;
  71. ctx->buf[1] = 0xefcdab89;
  72. ctx->buf[2] = 0x98badcfe;
  73. ctx->buf[3] = 0x10325476;
  74. ctx->bits[0] = 0;
  75. ctx->bits[1] = 0;
  76. }
  77. /*
  78. * Update context to reflect the concatenation of another buffer full
  79. * of bytes.
  80. */
  81. void MD5Update(struct MD5Context *ctx, unsigned char *buf, unsigned int len)
  82. {
  83. uint32 t;
  84. /* Update bitcount */
  85. t = ctx->bits[0];
  86. if ((ctx->bits[0] = t + ((uint32)len << 3)) < t)
  87. ctx->bits[1]++; /* Carry from low to high */
  88. ctx->bits[1] += len >> 29;
  89. t = (t >> 3) & 0x3f; /* Bytes already in shsInfo->data */
  90. /* Handle any leading odd-sized chunks */
  91. if (t) {
  92. unsigned char *p = (unsigned char *)ctx->in + t;
  93. t = 64 - t;
  94. if (len < t) {
  95. memcpy(p, buf, len);
  96. return;
  97. }
  98. memcpy(p, buf, t);
  99. byteReverse(ctx->in, 16);
  100. MD5Transform(ctx->buf, (uint32 *)ctx->in);
  101. buf += t;
  102. len -= t;
  103. }
  104. /* Process data in 64-byte chunks */
  105. while (len >= 64) {
  106. memcpy(ctx->in, buf, 64);
  107. byteReverse(ctx->in, 16);
  108. MD5Transform(ctx->buf, (uint32 *)ctx->in);
  109. buf += 64;
  110. len -= 64;
  111. }
  112. /* Handle any remaining bytes of data. */
  113. memcpy(ctx->in, buf, len);
  114. }
  115. /*
  116. * Final wrapup - pad to 64-byte boundary with the bit pattern
  117. * 1 0* (64-bit count of bits processed, MSB-first)
  118. */
  119. void MD5Final(unsigned char digest[16], struct MD5Context *ctx)
  120. {
  121. unsigned int count;
  122. unsigned char *p;
  123. uint32 *in32 = (uint32 *)ctx->in;
  124. /* Compute number of bytes mod 64 */
  125. count = (ctx->bits[0] >> 3) & 0x3F;
  126. /* Set the first char of padding to 0x80. This is safe since there is
  127. always at least one byte free */
  128. p = ctx->in + count;
  129. *p++ = 0x80;
  130. /* Bytes of padding needed to make 64 bytes */
  131. count = 64 - 1 - count;
  132. /* Pad out to 56 mod 64 */
  133. if (count < 8) {
  134. /* Two lots of padding: Pad the first block to 64 bytes */
  135. memset(p, 0, count);
  136. byteReverse(ctx->in, 16);
  137. MD5Transform(ctx->buf, (uint32 *)ctx->in);
  138. /* Now fill the next block with 56 bytes */
  139. memset(ctx->in, 0, 56);
  140. } else {
  141. /* Pad block to 56 bytes */
  142. memset(p, 0, count - 8);
  143. }
  144. byteReverse(ctx->in, 14);
  145. /* Append length in bits and transform */
  146. in32[14] = ctx->bits[0];
  147. in32[15] = ctx->bits[1];
  148. MD5Transform(ctx->buf, (uint32 *)ctx->in);
  149. byteReverse((unsigned char *)ctx->buf, 4);
  150. memcpy(digest, ctx->buf, 16);
  151. memset(ctx, 0, sizeof(struct MD5Context)); /* In case it's sensitive */
  152. }
  153. /* The four core functions - F1 is optimized somewhat */
  154. /* #define F1(x, y, z) (x & y | ~x & z) */
  155. #define F1(x, y, z) (z ^ (x & (y ^ z)))
  156. #define F2(x, y, z) F1(z, x, y)
  157. #define F3(x, y, z) (x ^ y ^ z)
  158. #define F4(x, y, z) (y ^ (x | ~z))
  159. /* This is the central step in the MD5 algorithm. */
  160. #define MD5STEP(f, w, x, y, z, data, s) \
  161. ( w += f(x, y, z) + data, w = w << s | w >> (32 - s), w += x )
  162. /*
  163. * The core of the MD5 algorithm, this alters an existing MD5 hash to
  164. * reflect the addition of 16 longwords of new data. MD5Update blocks
  165. * the data and converts bytes into longwords for this routine.
  166. */
  167. void MD5Transform(uint32 buf[4], uint32 in[16])
  168. {
  169. register uint32 a, b, c, d;
  170. a = buf[0];
  171. b = buf[1];
  172. c = buf[2];
  173. d = buf[3];
  174. MD5STEP(F1, a, b, c, d, in[0] + 0xd76aa478, 7);
  175. MD5STEP(F1, d, a, b, c, in[1] + 0xe8c7b756, 12);
  176. MD5STEP(F1, c, d, a, b, in[2] + 0x242070db, 17);
  177. MD5STEP(F1, b, c, d, a, in[3] + 0xc1bdceee, 22);
  178. MD5STEP(F1, a, b, c, d, in[4] + 0xf57c0faf, 7);
  179. MD5STEP(F1, d, a, b, c, in[5] + 0x4787c62a, 12);
  180. MD5STEP(F1, c, d, a, b, in[6] + 0xa8304613, 17);
  181. MD5STEP(F1, b, c, d, a, in[7] + 0xfd469501, 22);
  182. MD5STEP(F1, a, b, c, d, in[8] + 0x698098d8, 7);
  183. MD5STEP(F1, d, a, b, c, in[9] + 0x8b44f7af, 12);
  184. MD5STEP(F1, c, d, a, b, in[10] + 0xffff5bb1, 17);
  185. MD5STEP(F1, b, c, d, a, in[11] + 0x895cd7be, 22);
  186. MD5STEP(F1, a, b, c, d, in[12] + 0x6b901122, 7);
  187. MD5STEP(F1, d, a, b, c, in[13] + 0xfd987193, 12);
  188. MD5STEP(F1, c, d, a, b, in[14] + 0xa679438e, 17);
  189. MD5STEP(F1, b, c, d, a, in[15] + 0x49b40821, 22);
  190. MD5STEP(F2, a, b, c, d, in[1] + 0xf61e2562, 5);
  191. MD5STEP(F2, d, a, b, c, in[6] + 0xc040b340, 9);
  192. MD5STEP(F2, c, d, a, b, in[11] + 0x265e5a51, 14);
  193. MD5STEP(F2, b, c, d, a, in[0] + 0xe9b6c7aa, 20);
  194. MD5STEP(F2, a, b, c, d, in[5] + 0xd62f105d, 5);
  195. MD5STEP(F2, d, a, b, c, in[10] + 0x02441453, 9);
  196. MD5STEP(F2, c, d, a, b, in[15] + 0xd8a1e681, 14);
  197. MD5STEP(F2, b, c, d, a, in[4] + 0xe7d3fbc8, 20);
  198. MD5STEP(F2, a, b, c, d, in[9] + 0x21e1cde6, 5);
  199. MD5STEP(F2, d, a, b, c, in[14] + 0xc33707d6, 9);
  200. MD5STEP(F2, c, d, a, b, in[3] + 0xf4d50d87, 14);
  201. MD5STEP(F2, b, c, d, a, in[8] + 0x455a14ed, 20);
  202. MD5STEP(F2, a, b, c, d, in[13] + 0xa9e3e905, 5);
  203. MD5STEP(F2, d, a, b, c, in[2] + 0xfcefa3f8, 9);
  204. MD5STEP(F2, c, d, a, b, in[7] + 0x676f02d9, 14);
  205. MD5STEP(F2, b, c, d, a, in[12] + 0x8d2a4c8a, 20);
  206. MD5STEP(F3, a, b, c, d, in[5] + 0xfffa3942, 4);
  207. MD5STEP(F3, d, a, b, c, in[8] + 0x8771f681, 11);
  208. MD5STEP(F3, c, d, a, b, in[11] + 0x6d9d6122, 16);
  209. MD5STEP(F3, b, c, d, a, in[14] + 0xfde5380c, 23);
  210. MD5STEP(F3, a, b, c, d, in[1] + 0xa4beea44, 4);
  211. MD5STEP(F3, d, a, b, c, in[4] + 0x4bdecfa9, 11);
  212. MD5STEP(F3, c, d, a, b, in[7] + 0xf6bb4b60, 16);
  213. MD5STEP(F3, b, c, d, a, in[10] + 0xbebfbc70, 23);
  214. MD5STEP(F3, a, b, c, d, in[13] + 0x289b7ec6, 4);
  215. MD5STEP(F3, d, a, b, c, in[0] + 0xeaa127fa, 11);
  216. MD5STEP(F3, c, d, a, b, in[3] + 0xd4ef3085, 16);
  217. MD5STEP(F3, b, c, d, a, in[6] + 0x04881d05, 23);
  218. MD5STEP(F3, a, b, c, d, in[9] + 0xd9d4d039, 4);
  219. MD5STEP(F3, d, a, b, c, in[12] + 0xe6db99e5, 11);
  220. MD5STEP(F3, c, d, a, b, in[15] + 0x1fa27cf8, 16);
  221. MD5STEP(F3, b, c, d, a, in[2] + 0xc4ac5665, 23);
  222. MD5STEP(F4, a, b, c, d, in[0] + 0xf4292244, 6);
  223. MD5STEP(F4, d, a, b, c, in[7] + 0x432aff97, 10);
  224. MD5STEP(F4, c, d, a, b, in[14] + 0xab9423a7, 15);
  225. MD5STEP(F4, b, c, d, a, in[5] + 0xfc93a039, 21);
  226. MD5STEP(F4, a, b, c, d, in[12] + 0x655b59c3, 6);
  227. MD5STEP(F4, d, a, b, c, in[3] + 0x8f0ccc92, 10);
  228. MD5STEP(F4, c, d, a, b, in[10] + 0xffeff47d, 15);
  229. MD5STEP(F4, b, c, d, a, in[1] + 0x85845dd1, 21);
  230. MD5STEP(F4, a, b, c, d, in[8] + 0x6fa87e4f, 6);
  231. MD5STEP(F4, d, a, b, c, in[15] + 0xfe2ce6e0, 10);
  232. MD5STEP(F4, c, d, a, b, in[6] + 0xa3014314, 15);
  233. MD5STEP(F4, b, c, d, a, in[13] + 0x4e0811a1, 21);
  234. MD5STEP(F4, a, b, c, d, in[4] + 0xf7537e82, 6);
  235. MD5STEP(F4, d, a, b, c, in[11] + 0xbd3af235, 10);
  236. MD5STEP(F4, c, d, a, b, in[2] + 0x2ad7d2bb, 15);
  237. MD5STEP(F4, b, c, d, a, in[9] + 0xeb86d391, 21);
  238. buf[0] += a;
  239. buf[1] += b;
  240. buf[2] += c;
  241. buf[3] += d;
  242. }