Google Git
Sign in
pigweed / third_party / github / ARMmbed / mbedtls / bfcb6e16ab669814478b1de63e48d4ff6b408711 / . / library / md4.c
blob: 6a658e31d4ccb3dcedf1ffc82d1ac65daa031343 [file] [log] [blame]
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]1/*
2 * RFC 1186/1320 compliant MD4 implementation
3 *
Manuel Pégourié-Gonnard6fb81872015-07-27 11:11:48 +0200[diff] [blame]4 * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved
Manuel Pégourié-Gonnard37ff1402015-09-04 14:21:07 +0200[diff] [blame]5 * SPDX-License-Identifier: Apache-2.0
6 *
7 * Licensed under the Apache License, Version 2.0 (the "License"); you may
8 * not use this file except in compliance with the License.
9 * You may obtain a copy of the License at
10 *
11 * http://www.apache.org/licenses/LICENSE-2.0
12 *
13 * Unless required by applicable law or agreed to in writing, software
14 * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
15 * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
16 * See the License for the specific language governing permissions and
17 * limitations under the License.
Paul Bakkerb96f1542010-07-18 20:36:00 +0000[diff] [blame]18 *
Manuel Pégourié-Gonnardfe446432015-03-06 13:17:10 +0000[diff] [blame]19 * This file is part of mbed TLS (https://tls.mbed.org)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]20 */
21/*
22 * The MD4 algorithm was designed by Ron Rivest in 1990.
23 *
24 * http://www.ietf.org/rfc/rfc1186.txt
25 * http://www.ietf.org/rfc/rfc1320.txt
26 */
27
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]28#if !defined(MBEDTLS_CONFIG_FILE)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]29#include "mbedtls/config.h"
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]30#else
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]31#include MBEDTLS_CONFIG_FILE
Manuel Pégourié-Gonnardcef4ad22014-04-29 12:39:06 +0200[diff] [blame]32#endif
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]33
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]34#if defined(MBEDTLS_MD4_C)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]35
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]36#include "mbedtls/md4.h"
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]37#include "mbedtls/platform_util.h"
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]38#include "mbedtls/error.h"
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]39
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]40#include <string.h>
41
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]42#if defined(MBEDTLS_SELF_TEST)
43#if defined(MBEDTLS_PLATFORM_C)
Manuel Pégourié-Gonnard7f809972015-03-09 17:05:11 +0000[diff] [blame]44#include "mbedtls/platform.h"
Paul Bakker7dc4c442014-02-01 22:50:26 +0100[diff] [blame]45#else
Rich Evans00ab4702015-02-06 13:43:58 +0000[diff] [blame]46#include <stdio.h>
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]47#define mbedtls_printf printf
48#endif /* MBEDTLS_PLATFORM_C */
49#endif /* MBEDTLS_SELF_TEST */
Paul Bakker7dc4c442014-02-01 22:50:26 +0100[diff] [blame]50
Manuel Pégourié-Gonnard8b2641d2015-08-27 20:03:46 +0200[diff] [blame]51#if !defined(MBEDTLS_MD4_ALT)
52
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]53/*
54 * 32-bit integer manipulation macros (little endian)
55 */
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]56#ifndef GET_UINT32_LE
57#define GET_UINT32_LE(n,b,i) \
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]58{ \
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]59 (n) = ( (uint32_t) (b)[(i) ] ) \
60 | ( (uint32_t) (b)[(i) + 1] << 8 ) \
61 | ( (uint32_t) (b)[(i) + 2] << 16 ) \
62 | ( (uint32_t) (b)[(i) + 3] << 24 ); \
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]63}
64#endif
65
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]66#ifndef PUT_UINT32_LE
Manuel Pégourié-Gonnardceedb822015-01-23 15:02:43 +0000[diff] [blame]67#define PUT_UINT32_LE(n,b,i) \
68{ \
69 (b)[(i) ] = (unsigned char) ( ( (n) ) & 0xFF ); \
70 (b)[(i) + 1] = (unsigned char) ( ( (n) >> 8 ) & 0xFF ); \
71 (b)[(i) + 2] = (unsigned char) ( ( (n) >> 16 ) & 0xFF ); \
72 (b)[(i) + 3] = (unsigned char) ( ( (n) >> 24 ) & 0xFF ); \
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]73}
74#endif
75
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]76void mbedtls_md4_init( mbedtls_md4_context *ctx )
Paul Bakker5b4af392014-06-26 12:09:34 +0200[diff] [blame]77{
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]78 memset( ctx, 0, sizeof( mbedtls_md4_context ) );
Paul Bakker5b4af392014-06-26 12:09:34 +0200[diff] [blame]79}
80
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]81void mbedtls_md4_free( mbedtls_md4_context *ctx )
Paul Bakker5b4af392014-06-26 12:09:34 +0200[diff] [blame]82{
83 if( ctx == NULL )
84 return;
85
Andres Amaya Garcia1f6301b2018-04-17 09:51:09 -0500[diff] [blame]86 mbedtls_platform_zeroize( ctx, sizeof( mbedtls_md4_context ) );
Paul Bakker5b4af392014-06-26 12:09:34 +0200[diff] [blame]87}
88
Manuel Pégourié-Gonnard16d412f2015-07-06 15:26:26 +0200[diff] [blame]89void mbedtls_md4_clone( mbedtls_md4_context *dst,
90 const mbedtls_md4_context *src )
91{
92 *dst = *src;
93}
94
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]95/*
96 * MD4 context setup
97 */
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]98int mbedtls_md4_starts_ret( mbedtls_md4_context *ctx )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]99{
100 ctx->total[0] = 0;
101 ctx->total[1] = 0;
102
103 ctx->state[0] = 0x67452301;
104 ctx->state[1] = 0xEFCDAB89;
105 ctx->state[2] = 0x98BADCFE;
106 ctx->state[3] = 0x10325476;
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]107
108 return( 0 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]109}
110
Jaeden Amero041039f2018-02-19 15:28:08 +0000[diff] [blame]111#if !defined(MBEDTLS_DEPRECATED_REMOVED)
112void mbedtls_md4_starts( mbedtls_md4_context *ctx )
113{
114 mbedtls_md4_starts_ret( ctx );
115}
116#endif
117
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]118#if !defined(MBEDTLS_MD4_PROCESS_ALT)
Andres Amaya Garciacccfe082017-06-28 10:36:39 +0100[diff] [blame]119int mbedtls_internal_md4_process( mbedtls_md4_context *ctx,
120 const unsigned char data[64] )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]121{
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]122 uint32_t X[16], A, B, C, D;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]123
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]124 GET_UINT32_LE( X[ 0], data, 0 );
125 GET_UINT32_LE( X[ 1], data, 4 );
126 GET_UINT32_LE( X[ 2], data, 8 );
127 GET_UINT32_LE( X[ 3], data, 12 );
128 GET_UINT32_LE( X[ 4], data, 16 );
129 GET_UINT32_LE( X[ 5], data, 20 );
130 GET_UINT32_LE( X[ 6], data, 24 );
131 GET_UINT32_LE( X[ 7], data, 28 );
132 GET_UINT32_LE( X[ 8], data, 32 );
133 GET_UINT32_LE( X[ 9], data, 36 );
134 GET_UINT32_LE( X[10], data, 40 );
135 GET_UINT32_LE( X[11], data, 44 );
136 GET_UINT32_LE( X[12], data, 48 );
137 GET_UINT32_LE( X[13], data, 52 );
138 GET_UINT32_LE( X[14], data, 56 );
139 GET_UINT32_LE( X[15], data, 60 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]140
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]141#define S(x,n) (((x) << (n)) | (((x) & 0xFFFFFFFF) >> (32 - (n))))
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]142
143 A = ctx->state[0];
144 B = ctx->state[1];
145 C = ctx->state[2];
146 D = ctx->state[3];
147
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]148#define F(x, y, z) (((x) & (y)) | ((~(x)) & (z)))
Hanno Becker26d02e12018-10-30 09:29:25 +0000[diff] [blame]149#define P(a,b,c,d,x,s) \
150 do \
151 { \
Hanno Becker818bac52018-10-26 09:13:26 +0100[diff] [blame]152 (a) += F((b),(c),(d)) + (x); \
153 (a) = S((a),(s)); \
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]154 } while( 0 )
155
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]156
157 P( A, B, C, D, X[ 0], 3 );
158 P( D, A, B, C, X[ 1], 7 );
159 P( C, D, A, B, X[ 2], 11 );
160 P( B, C, D, A, X[ 3], 19 );
161 P( A, B, C, D, X[ 4], 3 );
162 P( D, A, B, C, X[ 5], 7 );
163 P( C, D, A, B, X[ 6], 11 );
164 P( B, C, D, A, X[ 7], 19 );
165 P( A, B, C, D, X[ 8], 3 );
166 P( D, A, B, C, X[ 9], 7 );
167 P( C, D, A, B, X[10], 11 );
168 P( B, C, D, A, X[11], 19 );
169 P( A, B, C, D, X[12], 3 );
170 P( D, A, B, C, X[13], 7 );
171 P( C, D, A, B, X[14], 11 );
172 P( B, C, D, A, X[15], 19 );
173
174#undef P
175#undef F
176
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]177#define F(x,y,z) (((x) & (y)) | ((x) & (z)) | ((y) & (z)))
178#define P(a,b,c,d,x,s) \
179 do \
180 { \
Hanno Becker26d02e12018-10-30 09:29:25 +0000[diff] [blame]181 (a) += F((b),(c),(d)) + (x) + 0x5A827999; \
182 (a) = S((a),(s)); \
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]183 } while( 0 )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]184
185 P( A, B, C, D, X[ 0], 3 );
186 P( D, A, B, C, X[ 4], 5 );
187 P( C, D, A, B, X[ 8], 9 );
188 P( B, C, D, A, X[12], 13 );
189 P( A, B, C, D, X[ 1], 3 );
190 P( D, A, B, C, X[ 5], 5 );
191 P( C, D, A, B, X[ 9], 9 );
192 P( B, C, D, A, X[13], 13 );
193 P( A, B, C, D, X[ 2], 3 );
194 P( D, A, B, C, X[ 6], 5 );
195 P( C, D, A, B, X[10], 9 );
196 P( B, C, D, A, X[14], 13 );
197 P( A, B, C, D, X[ 3], 3 );
198 P( D, A, B, C, X[ 7], 5 );
199 P( C, D, A, B, X[11], 9 );
200 P( B, C, D, A, X[15], 13 );
201
202#undef P
203#undef F
204
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]205#define F(x,y,z) ((x) ^ (y) ^ (z))
Hanno Becker26d02e12018-10-30 09:29:25 +0000[diff] [blame]206#define P(a,b,c,d,x,s) \
207 do \
208 { \
209 (a) += F((b),(c),(d)) + (x) + 0x6ED9EBA1; \
210 (a) = S((a),(s)); \
Hanno Becker1eeca412018-10-15 12:01:35 +0100[diff] [blame]211 } while( 0 )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]212
213 P( A, B, C, D, X[ 0], 3 );
214 P( D, A, B, C, X[ 8], 9 );
215 P( C, D, A, B, X[ 4], 11 );
216 P( B, C, D, A, X[12], 15 );
217 P( A, B, C, D, X[ 2], 3 );
218 P( D, A, B, C, X[10], 9 );
219 P( C, D, A, B, X[ 6], 11 );
220 P( B, C, D, A, X[14], 15 );
221 P( A, B, C, D, X[ 1], 3 );
222 P( D, A, B, C, X[ 9], 9 );
223 P( C, D, A, B, X[ 5], 11 );
224 P( B, C, D, A, X[13], 15 );
225 P( A, B, C, D, X[ 3], 3 );
226 P( D, A, B, C, X[11], 9 );
227 P( C, D, A, B, X[ 7], 11 );
228 P( B, C, D, A, X[15], 15 );
229
230#undef F
231#undef P
232
233 ctx->state[0] += A;
234 ctx->state[1] += B;
235 ctx->state[2] += C;
236 ctx->state[3] += D;
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]237
238 return( 0 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]239}
Jaeden Amero041039f2018-02-19 15:28:08 +0000[diff] [blame]240
241#if !defined(MBEDTLS_DEPRECATED_REMOVED)
242void mbedtls_md4_process( mbedtls_md4_context *ctx,
243 const unsigned char data[64] )
244{
245 mbedtls_internal_md4_process( ctx, data );
246}
247#endif
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]248#endif /* !MBEDTLS_MD4_PROCESS_ALT */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]249
250/*
251 * MD4 process buffer
252 */
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]253int mbedtls_md4_update_ret( mbedtls_md4_context *ctx,
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]254 const unsigned char *input,
255 size_t ilen )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]256{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]257 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Paul Bakker23986e52011-04-24 08:57:21 +0000[diff] [blame]258 size_t fill;
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]259 uint32_t left;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]260
Brian White12895d12014-04-11 11:29:42 -0400[diff] [blame]261 if( ilen == 0 )
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]262 return( 0 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]263
264 left = ctx->total[0] & 0x3F;
265 fill = 64 - left;
266
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]267 ctx->total[0] += (uint32_t) ilen;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]268 ctx->total[0] &= 0xFFFFFFFF;
269
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]270 if( ctx->total[0] < (uint32_t) ilen )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]271 ctx->total[1]++;
272
273 if( left && ilen >= fill )
274 {
275 memcpy( (void *) (ctx->buffer + left),
276 (void *) input, fill );
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]277
Andres Amaya Garciacccfe082017-06-28 10:36:39 +0100[diff] [blame]278 if( ( ret = mbedtls_internal_md4_process( ctx, ctx->buffer ) ) != 0 )
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]279 return( ret );
280
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]281 input += fill;
282 ilen -= fill;
283 left = 0;
284 }
285
286 while( ilen >= 64 )
287 {
Andres Amaya Garciacccfe082017-06-28 10:36:39 +0100[diff] [blame]288 if( ( ret = mbedtls_internal_md4_process( ctx, input ) ) != 0 )
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]289 return( ret );
290
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]291 input += 64;
292 ilen -= 64;
293 }
294
295 if( ilen > 0 )
296 {
297 memcpy( (void *) (ctx->buffer + left),
298 (void *) input, ilen );
299 }
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]300
301 return( 0 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]302}
303
Jaeden Amero041039f2018-02-19 15:28:08 +0000[diff] [blame]304#if !defined(MBEDTLS_DEPRECATED_REMOVED)
305void mbedtls_md4_update( mbedtls_md4_context *ctx,
306 const unsigned char *input,
307 size_t ilen )
308{
309 mbedtls_md4_update_ret( ctx, input, ilen );
310}
311#endif
312
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]313static const unsigned char md4_padding[64] =
314{
315 0x80, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
316 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
317 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
318 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
319};
320
321/*
322 * MD4 final digest
323 */
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]324int mbedtls_md4_finish_ret( mbedtls_md4_context *ctx,
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]325 unsigned char output[16] )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]326{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]327 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]328 uint32_t last, padn;
329 uint32_t high, low;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]330 unsigned char msglen[8];
331
332 high = ( ctx->total[0] >> 29 )
333 | ( ctx->total[1] << 3 );
334 low = ( ctx->total[0] << 3 );
335
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]336 PUT_UINT32_LE( low, msglen, 0 );
337 PUT_UINT32_LE( high, msglen, 4 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]338
339 last = ctx->total[0] & 0x3F;
340 padn = ( last < 56 ) ? ( 56 - last ) : ( 120 - last );
341
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]342 ret = mbedtls_md4_update_ret( ctx, (unsigned char *)md4_padding, padn );
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]343 if( ret != 0 )
344 return( ret );
345
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]346 if( ( ret = mbedtls_md4_update_ret( ctx, msglen, 8 ) ) != 0 )
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]347 return( ret );
348
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]349
Paul Bakker5c2364c2012-10-01 14:41:15 +0000[diff] [blame]350 PUT_UINT32_LE( ctx->state[0], output, 0 );
351 PUT_UINT32_LE( ctx->state[1], output, 4 );
352 PUT_UINT32_LE( ctx->state[2], output, 8 );
353 PUT_UINT32_LE( ctx->state[3], output, 12 );
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]354
355 return( 0 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]356}
357
Jaeden Amero041039f2018-02-19 15:28:08 +0000[diff] [blame]358#if !defined(MBEDTLS_DEPRECATED_REMOVED)
359void mbedtls_md4_finish( mbedtls_md4_context *ctx,
360 unsigned char output[16] )
361{
362 mbedtls_md4_finish_ret( ctx, output );
363}
364#endif
365
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]366#endif /* !MBEDTLS_MD4_ALT */
Paul Bakker90995b52013-06-24 19:20:35 +0200[diff] [blame]367
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]368/*
369 * output = MD4( input buffer )
370 */
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]371int mbedtls_md4_ret( const unsigned char *input,
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]372 size_t ilen,
373 unsigned char output[16] )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]374{
Janos Follath24eed8d2019-11-22 13:21:35 +0000[diff] [blame]375 int ret = MBEDTLS_ERR_ERROR_CORRUPTION_DETECTED;
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]376 mbedtls_md4_context ctx;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]377
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]378 mbedtls_md4_init( &ctx );
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]379
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]380 if( ( ret = mbedtls_md4_starts_ret( &ctx ) ) != 0 )
Andres Amaya Garcia0963e6c2017-07-20 14:34:08 +0100[diff] [blame]381 goto exit;
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]382
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]383 if( ( ret = mbedtls_md4_update_ret( &ctx, input, ilen ) ) != 0 )
Andres Amaya Garcia0963e6c2017-07-20 14:34:08 +0100[diff] [blame]384 goto exit;
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]385
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]386 if( ( ret = mbedtls_md4_finish_ret( &ctx, output ) ) != 0 )
Andres Amaya Garcia0963e6c2017-07-20 14:34:08 +0100[diff] [blame]387 goto exit;
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]388
Andres Amaya Garcia0963e6c2017-07-20 14:34:08 +0100[diff] [blame]389exit:
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]390 mbedtls_md4_free( &ctx );
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]391
Andres Amaya Garcia0963e6c2017-07-20 14:34:08 +0100[diff] [blame]392 return( ret );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]393}
394
Jaeden Amero041039f2018-02-19 15:28:08 +0000[diff] [blame]395#if !defined(MBEDTLS_DEPRECATED_REMOVED)
396void mbedtls_md4( const unsigned char *input,
397 size_t ilen,
398 unsigned char output[16] )
399{
400 mbedtls_md4_ret( input, ilen, output );
401}
402#endif
403
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]404#if defined(MBEDTLS_SELF_TEST)
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]405
406/*
407 * RFC 1320 test vectors
408 */
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]409static const unsigned char md4_test_str[7][81] =
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]410{
Paul Bakker9af723c2014-05-01 13:03:14 +0200[diff] [blame]411 { "" },
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]412 { "a" },
413 { "abc" },
414 { "message digest" },
415 { "abcdefghijklmnopqrstuvwxyz" },
416 { "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789" },
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]417 { "12345678901234567890123456789012345678901234567890123456789012"
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]418 "345678901234567890" }
419};
420
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]421static const size_t md4_test_strlen[7] =
422{
423 0, 1, 3, 14, 26, 62, 80
424};
425
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]426static const unsigned char md4_test_sum[7][16] =
427{
428 { 0x31, 0xD6, 0xCF, 0xE0, 0xD1, 0x6A, 0xE9, 0x31,
429 0xB7, 0x3C, 0x59, 0xD7, 0xE0, 0xC0, 0x89, 0xC0 },
430 { 0xBD, 0xE5, 0x2C, 0xB3, 0x1D, 0xE3, 0x3E, 0x46,
431 0x24, 0x5E, 0x05, 0xFB, 0xDB, 0xD6, 0xFB, 0x24 },
432 { 0xA4, 0x48, 0x01, 0x7A, 0xAF, 0x21, 0xD8, 0x52,
433 0x5F, 0xC1, 0x0A, 0xE8, 0x7A, 0xA6, 0x72, 0x9D },
434 { 0xD9, 0x13, 0x0A, 0x81, 0x64, 0x54, 0x9F, 0xE8,
435 0x18, 0x87, 0x48, 0x06, 0xE1, 0xC7, 0x01, 0x4B },
436 { 0xD7, 0x9E, 0x1C, 0x30, 0x8A, 0xA5, 0xBB, 0xCD,
437 0xEE, 0xA8, 0xED, 0x63, 0xDF, 0x41, 0x2D, 0xA9 },
438 { 0x04, 0x3F, 0x85, 0x82, 0xF2, 0x41, 0xDB, 0x35,
439 0x1C, 0xE6, 0x27, 0xE1, 0x53, 0xE7, 0xF0, 0xE4 },
440 { 0xE3, 0x3B, 0x4D, 0xDC, 0x9C, 0x38, 0xF2, 0x19,
441 0x9C, 0x3E, 0x7B, 0x16, 0x4F, 0xCC, 0x05, 0x36 }
442};
443
444/*
445 * Checkup routine
446 */
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]447int mbedtls_md4_self_test( int verbose )
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]448{
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]449 int i, ret = 0;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]450 unsigned char md4sum[16];
451
452 for( i = 0; i < 7; i++ )
453 {
454 if( verbose != 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]455 mbedtls_printf( " MD4 test #%d: ", i + 1 );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]456
Gilles Peskine9e4f77c2018-01-22 11:48:08 +0100[diff] [blame]457 ret = mbedtls_md4_ret( md4_test_str[i], md4_test_strlen[i], md4sum );
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]458 if( ret != 0 )
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]459 goto fail;
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]460
461 if( memcmp( md4sum, md4_test_sum[i], 16 ) != 0 )
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]462 {
463 ret = 1;
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]464 goto fail;
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]465 }
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]466
467 if( verbose != 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]468 mbedtls_printf( "passed\n" );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]469 }
470
471 if( verbose != 0 )
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]472 mbedtls_printf( "\n" );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]473
474 return( 0 );
Andres Amaya Garciabee06352017-04-28 17:00:30 +0100[diff] [blame]475
476fail:
477 if( verbose != 0 )
478 mbedtls_printf( "failed\n" );
479
Andres Amaya Garcia2d0aa8b2017-07-21 14:57:26 +0100[diff] [blame]480 return( ret );
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]481}
482
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]483#endif /* MBEDTLS_SELF_TEST */
Paul Bakker5121ce52009-01-03 21:22:43 +0000[diff] [blame]484
Manuel Pégourié-Gonnard2cf5a7c2015-04-08 12:49:31 +0200[diff] [blame]485#endif /* MBEDTLS_MD4_C */