md5.c 7.4 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253
  1. /*
  2. * Cryptographic API.
  3. *
  4. * MD5 Message Digest Algorithm (RFC1321).
  5. *
  6. * Derived from cryptoapi implementation, originally based on the
  7. * public domain implementation written by Colin Plumb in 1993.
  8. *
  9. * Copyright (c) Cryptoapi developers.
  10. * Copyright (c) 2002 James Morris <jmorris@intercode.com.au>
  11. *
  12. * This program is free software; you can redistribute it and/or modify it
  13. * under the terms of the GNU General Public License as published by the Free
  14. * Software Foundation; either version 2 of the License, or (at your option)
  15. * any later version.
  16. *
  17. */
  18. #include <crypto/internal/hash.h>
  19. #include <crypto/md5.h>
  20. #include <linux/init.h>
  21. #include <linux/module.h>
  22. #include <linux/string.h>
  23. #include <linux/types.h>
  24. #include <asm/byteorder.h>
  25. #define MD5_DIGEST_WORDS 4
  26. #define MD5_MESSAGE_BYTES 64
  27. const u8 md5_zero_message_hash[MD5_DIGEST_SIZE] = {
  28. 0xd4, 0x1d, 0x8c, 0xd9, 0x8f, 0x00, 0xb2, 0x04,
  29. 0xe9, 0x80, 0x09, 0x98, 0xec, 0xf8, 0x42, 0x7e,
  30. };
  31. EXPORT_SYMBOL_GPL(md5_zero_message_hash);
  32. #define F1(x, y, z) (z ^ (x & (y ^ z)))
  33. #define F2(x, y, z) F1(z, x, y)
  34. #define F3(x, y, z) (x ^ y ^ z)
  35. #define F4(x, y, z) (y ^ (x | ~z))
  36. #define MD5STEP(f, w, x, y, z, in, s) \
  37. (w += f(x, y, z) + in, w = (w<<s | w>>(32-s)) + x)
  38. static void md5_transform(__u32 *hash, __u32 const *in)
  39. {
  40. u32 a, b, c, d;
  41. a = hash[0];
  42. b = hash[1];
  43. c = hash[2];
  44. d = hash[3];
  45. MD5STEP(F1, a, b, c, d, in[0] + 0xd76aa478, 7);
  46. MD5STEP(F1, d, a, b, c, in[1] + 0xe8c7b756, 12);
  47. MD5STEP(F1, c, d, a, b, in[2] + 0x242070db, 17);
  48. MD5STEP(F1, b, c, d, a, in[3] + 0xc1bdceee, 22);
  49. MD5STEP(F1, a, b, c, d, in[4] + 0xf57c0faf, 7);
  50. MD5STEP(F1, d, a, b, c, in[5] + 0x4787c62a, 12);
  51. MD5STEP(F1, c, d, a, b, in[6] + 0xa8304613, 17);
  52. MD5STEP(F1, b, c, d, a, in[7] + 0xfd469501, 22);
  53. MD5STEP(F1, a, b, c, d, in[8] + 0x698098d8, 7);
  54. MD5STEP(F1, d, a, b, c, in[9] + 0x8b44f7af, 12);
  55. MD5STEP(F1, c, d, a, b, in[10] + 0xffff5bb1, 17);
  56. MD5STEP(F1, b, c, d, a, in[11] + 0x895cd7be, 22);
  57. MD5STEP(F1, a, b, c, d, in[12] + 0x6b901122, 7);
  58. MD5STEP(F1, d, a, b, c, in[13] + 0xfd987193, 12);
  59. MD5STEP(F1, c, d, a, b, in[14] + 0xa679438e, 17);
  60. MD5STEP(F1, b, c, d, a, in[15] + 0x49b40821, 22);
  61. MD5STEP(F2, a, b, c, d, in[1] + 0xf61e2562, 5);
  62. MD5STEP(F2, d, a, b, c, in[6] + 0xc040b340, 9);
  63. MD5STEP(F2, c, d, a, b, in[11] + 0x265e5a51, 14);
  64. MD5STEP(F2, b, c, d, a, in[0] + 0xe9b6c7aa, 20);
  65. MD5STEP(F2, a, b, c, d, in[5] + 0xd62f105d, 5);
  66. MD5STEP(F2, d, a, b, c, in[10] + 0x02441453, 9);
  67. MD5STEP(F2, c, d, a, b, in[15] + 0xd8a1e681, 14);
  68. MD5STEP(F2, b, c, d, a, in[4] + 0xe7d3fbc8, 20);
  69. MD5STEP(F2, a, b, c, d, in[9] + 0x21e1cde6, 5);
  70. MD5STEP(F2, d, a, b, c, in[14] + 0xc33707d6, 9);
  71. MD5STEP(F2, c, d, a, b, in[3] + 0xf4d50d87, 14);
  72. MD5STEP(F2, b, c, d, a, in[8] + 0x455a14ed, 20);
  73. MD5STEP(F2, a, b, c, d, in[13] + 0xa9e3e905, 5);
  74. MD5STEP(F2, d, a, b, c, in[2] + 0xfcefa3f8, 9);
  75. MD5STEP(F2, c, d, a, b, in[7] + 0x676f02d9, 14);
  76. MD5STEP(F2, b, c, d, a, in[12] + 0x8d2a4c8a, 20);
  77. MD5STEP(F3, a, b, c, d, in[5] + 0xfffa3942, 4);
  78. MD5STEP(F3, d, a, b, c, in[8] + 0x8771f681, 11);
  79. MD5STEP(F3, c, d, a, b, in[11] + 0x6d9d6122, 16);
  80. MD5STEP(F3, b, c, d, a, in[14] + 0xfde5380c, 23);
  81. MD5STEP(F3, a, b, c, d, in[1] + 0xa4beea44, 4);
  82. MD5STEP(F3, d, a, b, c, in[4] + 0x4bdecfa9, 11);
  83. MD5STEP(F3, c, d, a, b, in[7] + 0xf6bb4b60, 16);
  84. MD5STEP(F3, b, c, d, a, in[10] + 0xbebfbc70, 23);
  85. MD5STEP(F3, a, b, c, d, in[13] + 0x289b7ec6, 4);
  86. MD5STEP(F3, d, a, b, c, in[0] + 0xeaa127fa, 11);
  87. MD5STEP(F3, c, d, a, b, in[3] + 0xd4ef3085, 16);
  88. MD5STEP(F3, b, c, d, a, in[6] + 0x04881d05, 23);
  89. MD5STEP(F3, a, b, c, d, in[9] + 0xd9d4d039, 4);
  90. MD5STEP(F3, d, a, b, c, in[12] + 0xe6db99e5, 11);
  91. MD5STEP(F3, c, d, a, b, in[15] + 0x1fa27cf8, 16);
  92. MD5STEP(F3, b, c, d, a, in[2] + 0xc4ac5665, 23);
  93. MD5STEP(F4, a, b, c, d, in[0] + 0xf4292244, 6);
  94. MD5STEP(F4, d, a, b, c, in[7] + 0x432aff97, 10);
  95. MD5STEP(F4, c, d, a, b, in[14] + 0xab9423a7, 15);
  96. MD5STEP(F4, b, c, d, a, in[5] + 0xfc93a039, 21);
  97. MD5STEP(F4, a, b, c, d, in[12] + 0x655b59c3, 6);
  98. MD5STEP(F4, d, a, b, c, in[3] + 0x8f0ccc92, 10);
  99. MD5STEP(F4, c, d, a, b, in[10] + 0xffeff47d, 15);
  100. MD5STEP(F4, b, c, d, a, in[1] + 0x85845dd1, 21);
  101. MD5STEP(F4, a, b, c, d, in[8] + 0x6fa87e4f, 6);
  102. MD5STEP(F4, d, a, b, c, in[15] + 0xfe2ce6e0, 10);
  103. MD5STEP(F4, c, d, a, b, in[6] + 0xa3014314, 15);
  104. MD5STEP(F4, b, c, d, a, in[13] + 0x4e0811a1, 21);
  105. MD5STEP(F4, a, b, c, d, in[4] + 0xf7537e82, 6);
  106. MD5STEP(F4, d, a, b, c, in[11] + 0xbd3af235, 10);
  107. MD5STEP(F4, c, d, a, b, in[2] + 0x2ad7d2bb, 15);
  108. MD5STEP(F4, b, c, d, a, in[9] + 0xeb86d391, 21);
  109. hash[0] += a;
  110. hash[1] += b;
  111. hash[2] += c;
  112. hash[3] += d;
  113. }
  114. static inline void md5_transform_helper(struct md5_state *ctx)
  115. {
  116. le32_to_cpu_array(ctx->block, sizeof(ctx->block) / sizeof(u32));
  117. md5_transform(ctx->hash, ctx->block);
  118. }
  119. static int md5_init(struct shash_desc *desc)
  120. {
  121. struct md5_state *mctx = shash_desc_ctx(desc);
  122. mctx->hash[0] = MD5_H0;
  123. mctx->hash[1] = MD5_H1;
  124. mctx->hash[2] = MD5_H2;
  125. mctx->hash[3] = MD5_H3;
  126. mctx->byte_count = 0;
  127. return 0;
  128. }
  129. static int md5_update(struct shash_desc *desc, const u8 *data, unsigned int len)
  130. {
  131. struct md5_state *mctx = shash_desc_ctx(desc);
  132. const u32 avail = sizeof(mctx->block) - (mctx->byte_count & 0x3f);
  133. mctx->byte_count += len;
  134. if (avail > len) {
  135. memcpy((char *)mctx->block + (sizeof(mctx->block) - avail),
  136. data, len);
  137. return 0;
  138. }
  139. memcpy((char *)mctx->block + (sizeof(mctx->block) - avail),
  140. data, avail);
  141. md5_transform_helper(mctx);
  142. data += avail;
  143. len -= avail;
  144. while (len >= sizeof(mctx->block)) {
  145. memcpy(mctx->block, data, sizeof(mctx->block));
  146. md5_transform_helper(mctx);
  147. data += sizeof(mctx->block);
  148. len -= sizeof(mctx->block);
  149. }
  150. memcpy(mctx->block, data, len);
  151. return 0;
  152. }
  153. static int md5_final(struct shash_desc *desc, u8 *out)
  154. {
  155. struct md5_state *mctx = shash_desc_ctx(desc);
  156. const unsigned int offset = mctx->byte_count & 0x3f;
  157. char *p = (char *)mctx->block + offset;
  158. int padding = 56 - (offset + 1);
  159. *p++ = 0x80;
  160. if (padding < 0) {
  161. memset(p, 0x00, padding + sizeof (u64));
  162. md5_transform_helper(mctx);
  163. p = (char *)mctx->block;
  164. padding = 56;
  165. }
  166. memset(p, 0, padding);
  167. mctx->block[14] = mctx->byte_count << 3;
  168. mctx->block[15] = mctx->byte_count >> 29;
  169. le32_to_cpu_array(mctx->block, (sizeof(mctx->block) -
  170. sizeof(u64)) / sizeof(u32));
  171. md5_transform(mctx->hash, mctx->block);
  172. cpu_to_le32_array(mctx->hash, sizeof(mctx->hash) / sizeof(u32));
  173. memcpy(out, mctx->hash, sizeof(mctx->hash));
  174. memset(mctx, 0, sizeof(*mctx));
  175. return 0;
  176. }
  177. static int md5_export(struct shash_desc *desc, void *out)
  178. {
  179. struct md5_state *ctx = shash_desc_ctx(desc);
  180. memcpy(out, ctx, sizeof(*ctx));
  181. return 0;
  182. }
  183. static int md5_import(struct shash_desc *desc, const void *in)
  184. {
  185. struct md5_state *ctx = shash_desc_ctx(desc);
  186. memcpy(ctx, in, sizeof(*ctx));
  187. return 0;
  188. }
  189. static struct shash_alg alg = {
  190. .digestsize = MD5_DIGEST_SIZE,
  191. .init = md5_init,
  192. .update = md5_update,
  193. .final = md5_final,
  194. .export = md5_export,
  195. .import = md5_import,
  196. .descsize = sizeof(struct md5_state),
  197. .statesize = sizeof(struct md5_state),
  198. .base = {
  199. .cra_name = "md5",
  200. .cra_blocksize = MD5_HMAC_BLOCK_SIZE,
  201. .cra_module = THIS_MODULE,
  202. }
  203. };
  204. static int __init md5_mod_init(void)
  205. {
  206. return crypto_register_shash(&alg);
  207. }
  208. static void __exit md5_mod_fini(void)
  209. {
  210. crypto_unregister_shash(&alg);
  211. }
  212. module_init(md5_mod_init);
  213. module_exit(md5_mod_fini);
  214. MODULE_LICENSE("GPL");
  215. MODULE_DESCRIPTION("MD5 Message Digest Algorithm");
  216. MODULE_ALIAS_CRYPTO("md5");