Skip to content

Commit

Permalink
Port MD4 managed implementation from mono/mono (dotnet#62074)
Browse files Browse the repository at this point in the history 
Porting MD4 managed implementation from mono/mono (MD4.cs and MD4Managed.cs). 
  
It adds:  
- an internal class in the System.Net.Security with a single HashData method for now;  
- a set of related MD 4 unit tests to System.Net.Security.Unit.Tests project.
  • Loading branch information
@MaximLipnin
MaximLipnin committed Jan 24, 2022
1 parent 8cee8fa commit f4bfd05
Show file tree
Hide file tree
Showing 4 changed files with 420 additions and 1 deletion.
1 change: 1 addition & 0 deletions src/libraries/System.Net.Security/src/System.Net.Security.csproj
View file
Original file line number Diff line number Diff line change
Expand Up @@ -363,6 +363,7 @@
<Compile Include="$(CommonPath)Interop\Android\System.Security.Cryptography.Native.Android\Interop.X509.cs"
Link="Common\Interop\Android\System.Security.Cryptography.Native.Android\Interop.X509.cs" />
<Compile Include="System\Net\CertificateValidationPal.Android.cs" />
<Compile Include="System\Net\Security\MD4.cs" />
<Compile Include="System\Net\Security\Pal.Android\SafeDeleteSslContext.cs" />
<Compile Include="System\Net\Security\Pal.Managed\SafeFreeSslCredentials.cs" />
<Compile Include="System\Net\Security\Pal.Managed\SslProtocolsValidation.cs" />
Expand Down
256 changes: 256 additions & 0 deletions src/libraries/System.Net.Security/src/System/Net/Security/MD4.cs
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,256 @@
// Licensed to the .NET Foundation under one or more agreements.
// The .NET Foundation licenses this file to you under the MIT license.

//
// MD4.cs - Message Digest 4 Abstract class
//
// Author:
// Sebastien Pouliot (sebastien@xamarin.com)
//
// (C) 2003 Motus Technologies Inc. (http://www.motus.com)
// Copyright 2013 Xamarin Inc. (http://www.xamarin.com)
//

//
// Permission is hereby granted, free of charge, to any person obtaining
// a copy of this software and associated documentation files (the
// "Software"), to deal in the Software without restriction, including
// without limitation the rights to use, copy, modify, merge, publish,
// distribute, sublicense, and/or sell copies of the Software, and to
// permit persons to whom the Software is furnished to do so, subject to
// the following conditions:
//
// The above copyright notice and this permission notice shall be
// included in all copies or substantial portions of the Software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
// EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
// MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
// NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
// LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
// OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//

using System.Buffers.Binary;
using System.Diagnostics;
using System.Diagnostics.CodeAnalysis;
using System.Numerics;

//
// This class is a port of the Mono managed implementation of the MD4 algorithm
// and required to support NTLM in Android only.
// It's an implementation detail and is not intended to be a public API.
// Assuming that NTLM would be System.Net.Security, it makes sense to put MD4 here as well.
//
namespace System.Net.Security
{
internal sealed class MD4
{
private const int S11 = 3;
private const int S12 = 7;
private const int S13 = 11;
private const int S14 = 19;
private const int S21 = 3;
private const int S22 = 5;
private const int S23 = 9;
private const int S24 = 13;
private const int S31 = 3;
private const int S32 = 9;
private const int S33 = 11;
private const int S34 = 15;

internal static void HashData(ReadOnlySpan<byte> source, Span<byte> destination)
{
Debug.Assert(destination.Length == 128 >> 3);

Span<byte> buffer = stackalloc byte[64];
buffer.Clear();
// Initialize the context
Span<uint> state = stackalloc uint[4] { 0x67452301, 0xefcdab89, 0x98badcfe, 0x10325476 };
Span<uint> count = stackalloc uint[2] { 0, 0 };

HashCore(source, state, count, buffer);

// Save number of bits
Span<byte> bits = stackalloc byte[8];
Encode(bits, count);

// Pad out to 56 mod 64
uint index = ((count[0] >> 3) & 0x3f);
int padLen = (int)((index < 56) ? (56 - index) : (120 - index));
Span<byte> padding = stackalloc byte[padLen];
padding.Clear();
padding[0] = 0x80;
HashCore(padding, state, count, buffer);

// Append length (before padding)
HashCore(bits, state, count, buffer);

// Write state to destination
Encode(destination, state);
}

private static void HashCore(ReadOnlySpan<byte> input, Span<uint> state, Span<uint> count, Span<byte> buffer)
{
// Compute number of bytes mod 64
int index = (int)((count[0] >> 3) & 0x3F);
// Update number of bits
count[0] += (uint)(input.Length << 3);
if (count[0] < (input.Length << 3))
{
count[1]++;
}

count[1] += (uint)(input.Length >> 29);

int partLen = 64 - index;
int i = 0;
// Transform as many times as possible.
if (input.Length >= partLen)
{
if (index != 0)
{
input.Slice(0, partLen).CopyTo(buffer.Slice(index));
MD4Transform(state, buffer);
index = 0;
}
else
{
partLen = 0;
}

for (i = partLen; i + 63 < input.Length; i += 64)
{
MD4Transform(state, input.Slice(i));
}
}

// Buffer remaining input
input.Slice(i).CopyTo(buffer.Slice(index));
}

//--- private methods ---------------------------------------------------

// F, G and H are basic MD4 functions.
private static uint F(uint x, uint y, uint z)
{
return (uint)(((x) & (y)) | ((~x) & (z)));
}

private static uint G(uint x, uint y, uint z)
{
return (uint)(((x) & (y)) | ((x) & (z)) | ((y) & (z)));
}

private static uint H(uint x, uint y, uint z)
{
return (uint)((x) ^ (y) ^ (z));
}

// FF, GG and HH are transformations for rounds 1, 2 and 3.
// Rotation is separate from addition to prevent recomputation.
private static void FF(ref uint a, uint b, uint c, uint d, uint x, byte s)
{
a += F(b, c, d) + x;
a = BitOperations.RotateLeft(a, s);
}

private static void GG(ref uint a, uint b, uint c, uint d, uint x, byte s)
{
a += G(b, c, d) + x + 0x5a827999;
a = BitOperations.RotateLeft(a, s);
}

private static void HH(ref uint a, uint b, uint c, uint d, uint x, byte s)
{
a += H(b, c, d) + x + 0x6ed9eba1;
a = BitOperations.RotateLeft(a, s);
}

private static void Encode(Span<byte> output, Span<uint> input)
{
for (int i = 0, j = 0; j < output.Length; i++, j += 4)
{
BinaryPrimitives.WriteUInt32LittleEndian(output.Slice(j), input[i]);
}
}

private static void Decode(Span<uint> output, ReadOnlySpan<byte> input)
{
for (int i = 0, j = 0; i < output.Length; i++, j += 4)
{
output[i] = BinaryPrimitives.ReadUInt32LittleEndian(input.Slice(j));
}
}

private static void MD4Transform(Span<uint> state, ReadOnlySpan<byte> block)
{
uint a = state[0];
uint b = state[1];
uint c = state[2];
uint d = state[3];
Span<uint> x = stackalloc uint[16];

Decode(x, block);

// Round 1
FF(ref a, b, c, d, x[0], S11); // 1
FF(ref d, a, b, c, x[1], S12); // 2
FF(ref c, d, a, b, x[2], S13); // 3
FF(ref b, c, d, a, x[3], S14); // 4
FF(ref a, b, c, d, x[4], S11); // 5
FF(ref d, a, b, c, x[5], S12); // 6
FF(ref c, d, a, b, x[6], S13); // 7
FF(ref b, c, d, a, x[7], S14); // 8
FF(ref a, b, c, d, x[8], S11); // 9
FF(ref d, a, b, c, x[9], S12); // 10
FF(ref c, d, a, b, x[10], S13); // 11
FF(ref b, c, d, a, x[11], S14); // 12
FF(ref a, b, c, d, x[12], S11); // 13
FF(ref d, a, b, c, x[13], S12); // 14
FF(ref c, d, a, b, x[14], S13); // 15
FF(ref b, c, d, a, x[15], S14); // 16

// Round 2
GG(ref a, b, c, d, x[0], S21); // 17
GG(ref d, a, b, c, x[4], S22); // 18
GG(ref c, d, a, b, x[8], S23); // 19
GG(ref b, c, d, a, x[12], S24); // 20
GG(ref a, b, c, d, x[1], S21); // 21
GG(ref d, a, b, c, x[5], S22); // 22
GG(ref c, d, a, b, x[9], S23); // 23
GG(ref b, c, d, a, x[13], S24); // 24
GG(ref a, b, c, d, x[2], S21); // 25
GG(ref d, a, b, c, x[6], S22); // 26
GG(ref c, d, a, b, x[10], S23); // 27
GG(ref b, c, d, a, x[14], S24); // 28
GG(ref a, b, c, d, x[3], S21); // 29
GG(ref d, a, b, c, x[7], S22); // 30
GG(ref c, d, a, b, x[11], S23); // 31
GG(ref b, c, d, a, x[15], S24); // 32

HH(ref a, b, c, d, x[0], S31); // 33
HH(ref d, a, b, c, x[8], S32); // 34
HH(ref c, d, a, b, x[4], S33); // 35
HH(ref b, c, d, a, x[12], S34); // 36
HH(ref a, b, c, d, x[2], S31); // 37
HH(ref d, a, b, c, x[10], S32); // 38
HH(ref c, d, a, b, x[6], S33); // 39
HH(ref b, c, d, a, x[14], S34); // 40
HH(ref a, b, c, d, x[1], S31); // 41
HH(ref d, a, b, c, x[9], S32); // 42
HH(ref c, d, a, b, x[5], S33); // 43
HH(ref b, c, d, a, x[13], S34); // 44
HH(ref a, b, c, d, x[3], S31); // 45
HH(ref d, a, b, c, x[11], S32); // 46
HH(ref c, d, a, b, x[7], S33); // 47
HH(ref b, c, d, a, x[15], S34); // 48

state[0] += a;
state[1] += b;
state[2] += c;
state[3] += d;
}
}
}
Loading

0 comments on commit f4bfd05

Please sign in to comment.