4 files changed, 508 insertions, 2 deletions
diff --git a/src/lib/libc/crypt/Makefile.inc b/src/lib/libc/crypt/Makefile.inc
index 78b5168fb9..e7b9d9baf8 100644
--- a/src/lib/libc/crypt/Makefile.inc
+++ b/src/lib/libc/crypt/Makefile.inc
@@ -1,8 +1,8 @@
-#       $Id: Makefile.inc,v 1.2 1996-03-25 22:31:44 tholo Exp $
+#       $Id: Makefile.inc,v 1.3 1996-05-30 02:36:32 deraadt Exp $
 .PATH: ${.CURDIR}/arch/${MACHINE_ARCH}/crypt ${.CURDIR}/crypt
-SRCS+=  crypt.c morecrypt.c
+SRCS+=  crypt.c morecrypt.c md5crypt.c md5c.c
 MAN+=   crypt.3
 MLINKS+=crypt.3 encrypt.3 crypt.3 setkey.3 crypt.3 des_cipher.3
diff --git a/src/lib/libc/crypt/md5.h b/src/lib/libc/crypt/md5.h
new file mode 100644
index 0000000000..da0c116c2e
--- /dev/null
+++ b/src/lib/libc/crypt/md5.h
@@ -0,0 +1,42 @@
+/* MD5.H - header file for MD5C.C
+ * $FreeBSD$
+ */
+/* Copyright (C) 1991-2, RSA Data Security, Inc. Created 1991. All
+rights reserved.
+License to copy and use this software is granted provided that it
+is identified as the "RSA Data Security, Inc. MD5 Message-Digest
+Algorithm" in all material mentioning or referencing this software
+or this function.
+License is also granted to make and use derivative works provided
+that such works are identified as "derived from the RSA Data
+Security, Inc. MD5 Message-Digest Algorithm" in all material
+mentioning or referencing the derived work.
+RSA Data Security, Inc. makes no representations concerning either
+the merchantability of this software or the suitability of this
+software for any particular purpose. It is provided "as is"
+without express or implied warranty of any kind.
+These notices must be retained in any copies of any part of this
+documentation and/or software.
+ */
+#ifndef _MD5_H_
+#define _MD5_H_
+/* MD5 context. */
+typedef struct MD5Context {
+  unsigned long state[4];       /* state (ABCD) */
+  unsigned long count[2];       /* number of bits, modulo 2^64 (lsb first) */
+  unsigned char buffer[64];     /* input buffer */
+} MD5_CTX;
+void   MD5Init (MD5_CTX *);
+void   MD5Update (MD5_CTX *, const unsigned char *, unsigned int);
+void   MD5Final (unsigned char [16], MD5_CTX *);
+char * MD5End(MD5_CTX *, char *);
+char * MD5File(char *, char *);
+char * MD5Data(const unsigned char *, unsigned int, char *);
+#endif /* _MD5_H_ */
diff --git a/src/lib/libc/crypt/md5c.c b/src/lib/libc/crypt/md5c.c
new file mode 100644
index 0000000000..5c35b5b58d
--- /dev/null
+++ b/src/lib/libc/crypt/md5c.c
@@ -0,0 +1,313 @@
+/* MD5C.C - RSA Data Security, Inc., MD5 message-digest algorithm
+ * $FreeBSD$
+ */
+/* Copyright (C) 1991-2, RSA Data Security, Inc. Created 1991. All
+rights reserved.
+License to copy and use this software is granted provided that it
+is identified as the "RSA Data Security, Inc. MD5 Message-Digest
+Algorithm" in all material mentioning or referencing this software
+or this function.
+License is also granted to make and use derivative works provided
+that such works are identified as "derived from the RSA Data
+Security, Inc. MD5 Message-Digest Algorithm" in all material
+mentioning or referencing the derived work.
+RSA Data Security, Inc. makes no representations concerning either
+the merchantability of this software or the suitability of this
+software for any particular purpose. It is provided "as is"
+without express or implied warranty of any kind.
+These notices must be retained in any copies of any part of this
+documentation and/or software.
+ */
+#include "md5.h"
+#include <string.h>
+typedef unsigned char *POINTER;
+typedef unsigned short int UINT2;
+typedef unsigned long int UINT4;
+#define PROTO_LIST(list) list
+/* Constants for MD5Transform routine.
+ */
+#define S11 7
+#define S12 12
+#define S13 17
+#define S14 22
+#define S21 5
+#define S22 9
+#define S23 14
+#define S24 20
+#define S31 4
+#define S32 11
+#define S33 16
+#define S34 23
+#define S41 6
+#define S42 10
+#define S43 15
+#define S44 21
+static void MD5Transform PROTO_LIST ((UINT4 [4], const unsigned char [64]));
+#ifdef i386
+#define Encode memcpy
+#define Decode memcpy
+#else /* i386 */
+/* Encodes input (UINT4) into output (unsigned char). Assumes len is
+  a multiple of 4.
+ */
+static void Encode (output, input, len)
+unsigned char *output;
+UINT4 *input;
+unsigned int len;
+{
+  unsigned int i, j;
+  for (i = 0, j = 0; j < len; i++, j += 4) {
+    output[j] = (unsigned char)(input[i] & 0xff);
+    output[j+1] = (unsigned char)((input[i] >> 8) & 0xff);
+    output[j+2] = (unsigned char)((input[i] >> 16) & 0xff);
+    output[j+3] = (unsigned char)((input[i] >> 24) & 0xff);
+  }
+}
+/* Decodes input (unsigned char) into output (UINT4). Assumes len is
+  a multiple of 4.
+ */
+static void Decode (output, input, len)
+UINT4 *output;
+const unsigned char *input;
+unsigned int len;
+{
+  unsigned int i, j;
+  for (i = 0, j = 0; j < len; i++, j += 4)
+    output[i] = ((UINT4)input[j]) | (((UINT4)input[j+1]) << 8) |
+    (((UINT4)input[j+2]) << 16) | (((UINT4)input[j+3]) << 24);
+}
+#endif /* i386 */
+static unsigned char PADDING[64] = {
+  0x80, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
+  0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
+  0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
+};
+/* F, G, H and I are basic MD5 functions.
+ */
+#define F(x, y, z) (((x) & (y)) | ((~x) & (z)))
+#define G(x, y, z) (((x) & (z)) | ((y) & (~z)))
+#define H(x, y, z) ((x) ^ (y) ^ (z))
+#define I(x, y, z) ((y) ^ ((x) | (~z)))
+/* ROTATE_LEFT rotates x left n bits.
+ */
+#define ROTATE_LEFT(x, n) (((x) << (n)) | ((x) >> (32-(n))))
+/* FF, GG, HH, and II transformations for rounds 1, 2, 3, and 4.
+Rotation is separate from addition to prevent recomputation.
+ */
+#define FF(a, b, c, d, x, s, ac) { \
+ (a) += F ((b), (c), (d)) + (x) + (UINT4)(ac); \
+ (a) = ROTATE_LEFT ((a), (s)); \
+ (a) += (b); \
+  }
+#define GG(a, b, c, d, x, s, ac) { \
+ (a) += G ((b), (c), (d)) + (x) + (UINT4)(ac); \
+ (a) = ROTATE_LEFT ((a), (s)); \
+ (a) += (b); \
+  }
+#define HH(a, b, c, d, x, s, ac) { \
+ (a) += H ((b), (c), (d)) + (x) + (UINT4)(ac); \
+ (a) = ROTATE_LEFT ((a), (s)); \
+ (a) += (b); \
+  }
+#define II(a, b, c, d, x, s, ac) { \
+ (a) += I ((b), (c), (d)) + (x) + (UINT4)(ac); \
+ (a) = ROTATE_LEFT ((a), (s)); \
+ (a) += (b); \
+  }
+/* MD5 initialization. Begins an MD5 operation, writing a new context.
+ */
+void MD5Init (context)
+MD5_CTX *context;                                        /* context */
+{
+  context->count[0] = context->count[1] = 0;
+  /* Load magic initialization constants.
+*/
+  context->state[0] = 0x67452301;
+  context->state[1] = 0xefcdab89;
+  context->state[2] = 0x98badcfe;
+  context->state[3] = 0x10325476;
+}
+/* MD5 block update operation. Continues an MD5 message-digest
+  operation, processing another message block, and updating the
+  context.
+ */
+void MD5Update (context, input, inputLen)
+MD5_CTX *context;                                        /* context */
+const unsigned char *input;                                /* input block */
+unsigned int inputLen;                     /* length of input block */
+{
+  unsigned int i, index, partLen;
+  /* Compute number of bytes mod 64 */
+  index = (unsigned int)((context->count[0] >> 3) & 0x3F);
+  /* Update number of bits */
+  if ((context->count[0] += ((UINT4)inputLen << 3))
+   < ((UINT4)inputLen << 3))
+ context->count[1]++;
+  context->count[1] += ((UINT4)inputLen >> 29);
+  partLen = 64 - index;
+  /* Transform as many times as possible.
+*/
+  if (inputLen >= partLen) {
+ memcpy
+   ((POINTER)&context->buffer[index], (POINTER)input, partLen);
+ MD5Transform (context->state, context->buffer);
+ for (i = partLen; i + 63 < inputLen; i += 64)
+   MD5Transform (context->state, &input[i]);
+ index = 0;
+  }
+  else
+ i = 0;
+  /* Buffer remaining input */
+  memcpy
+ ((POINTER)&context->buffer[index], (POINTER)&input[i],
+  inputLen-i);
+}
+/* MD5 finalization. Ends an MD5 message-digest operation, writing the
+  the message digest and zeroizing the context.
+ */
+void MD5Final (digest, context)
+unsigned char digest[16];                         /* message digest */
+MD5_CTX *context;                                       /* context */
+{
+  unsigned char bits[8];
+  unsigned int index, padLen;
+  /* Save number of bits */
+  Encode (bits, context->count, 8);
+  /* Pad out to 56 mod 64.
+*/
+  index = (unsigned int)((context->count[0] >> 3) & 0x3f);
+  padLen = (index < 56) ? (56 - index) : (120 - index);
+  MD5Update (context, PADDING, padLen);
+  /* Append length (before padding) */
+  MD5Update (context, bits, 8);
+  /* Store state in digest */
+  Encode (digest, context->state, 16);
+  /* Zeroize sensitive information.
+*/
+  memset ((POINTER)context, 0, sizeof (*context));
+}
+/* MD5 basic transformation. Transforms state based on block.
+ */
+static void MD5Transform (state, block)
+UINT4 state[4];
+const unsigned char block[64];
+{
+  UINT4 a = state[0], b = state[1], c = state[2], d = state[3], x[16];
+  Decode (x, block, 64);
+  /* Round 1 */
+  FF (a, b, c, d, x[ 0], S11, 0xd76aa478); /* 1 */
+  FF (d, a, b, c, x[ 1], S12, 0xe8c7b756); /* 2 */
+  FF (c, d, a, b, x[ 2], S13, 0x242070db); /* 3 */
+  FF (b, c, d, a, x[ 3], S14, 0xc1bdceee); /* 4 */
+  FF (a, b, c, d, x[ 4], S11, 0xf57c0faf); /* 5 */
+  FF (d, a, b, c, x[ 5], S12, 0x4787c62a); /* 6 */
+  FF (c, d, a, b, x[ 6], S13, 0xa8304613); /* 7 */
+  FF (b, c, d, a, x[ 7], S14, 0xfd469501); /* 8 */
+  FF (a, b, c, d, x[ 8], S11, 0x698098d8); /* 9 */
+  FF (d, a, b, c, x[ 9], S12, 0x8b44f7af); /* 10 */
+  FF (c, d, a, b, x[10], S13, 0xffff5bb1); /* 11 */
+  FF (b, c, d, a, x[11], S14, 0x895cd7be); /* 12 */
+  FF (a, b, c, d, x[12], S11, 0x6b901122); /* 13 */
+  FF (d, a, b, c, x[13], S12, 0xfd987193); /* 14 */
+  FF (c, d, a, b, x[14], S13, 0xa679438e); /* 15 */
+  FF (b, c, d, a, x[15], S14, 0x49b40821); /* 16 */
+ /* Round 2 */
+  GG (a, b, c, d, x[ 1], S21, 0xf61e2562); /* 17 */
+  GG (d, a, b, c, x[ 6], S22, 0xc040b340); /* 18 */
+  GG (c, d, a, b, x[11], S23, 0x265e5a51); /* 19 */
+  GG (b, c, d, a, x[ 0], S24, 0xe9b6c7aa); /* 20 */
+  GG (a, b, c, d, x[ 5], S21, 0xd62f105d); /* 21 */
+  GG (d, a, b, c, x[10], S22,  0x2441453); /* 22 */
+  GG (c, d, a, b, x[15], S23, 0xd8a1e681); /* 23 */
+  GG (b, c, d, a, x[ 4], S24, 0xe7d3fbc8); /* 24 */
+  GG (a, b, c, d, x[ 9], S21, 0x21e1cde6); /* 25 */
+  GG (d, a, b, c, x[14], S22, 0xc33707d6); /* 26 */
+  GG (c, d, a, b, x[ 3], S23, 0xf4d50d87); /* 27 */
+  GG (b, c, d, a, x[ 8], S24, 0x455a14ed); /* 28 */
+  GG (a, b, c, d, x[13], S21, 0xa9e3e905); /* 29 */
+  GG (d, a, b, c, x[ 2], S22, 0xfcefa3f8); /* 30 */
+  GG (c, d, a, b, x[ 7], S23, 0x676f02d9); /* 31 */
+  GG (b, c, d, a, x[12], S24, 0x8d2a4c8a); /* 32 */
+  /* Round 3 */
+  HH (a, b, c, d, x[ 5], S31, 0xfffa3942); /* 33 */
+  HH (d, a, b, c, x[ 8], S32, 0x8771f681); /* 34 */
+  HH (c, d, a, b, x[11], S33, 0x6d9d6122); /* 35 */
+  HH (b, c, d, a, x[14], S34, 0xfde5380c); /* 36 */
+  HH (a, b, c, d, x[ 1], S31, 0xa4beea44); /* 37 */
+  HH (d, a, b, c, x[ 4], S32, 0x4bdecfa9); /* 38 */
+  HH (c, d, a, b, x[ 7], S33, 0xf6bb4b60); /* 39 */
+  HH (b, c, d, a, x[10], S34, 0xbebfbc70); /* 40 */
+  HH (a, b, c, d, x[13], S31, 0x289b7ec6); /* 41 */
+  HH (d, a, b, c, x[ 0], S32, 0xeaa127fa); /* 42 */
+  HH (c, d, a, b, x[ 3], S33, 0xd4ef3085); /* 43 */
+  HH (b, c, d, a, x[ 6], S34,  0x4881d05); /* 44 */
+  HH (a, b, c, d, x[ 9], S31, 0xd9d4d039); /* 45 */
+  HH (d, a, b, c, x[12], S32, 0xe6db99e5); /* 46 */
+  HH (c, d, a, b, x[15], S33, 0x1fa27cf8); /* 47 */
+  HH (b, c, d, a, x[ 2], S34, 0xc4ac5665); /* 48 */
+  /* Round 4 */
+  II (a, b, c, d, x[ 0], S41, 0xf4292244); /* 49 */
+  II (d, a, b, c, x[ 7], S42, 0x432aff97); /* 50 */
+  II (c, d, a, b, x[14], S43, 0xab9423a7); /* 51 */
+  II (b, c, d, a, x[ 5], S44, 0xfc93a039); /* 52 */
+  II (a, b, c, d, x[12], S41, 0x655b59c3); /* 53 */
+  II (d, a, b, c, x[ 3], S42, 0x8f0ccc92); /* 54 */
+  II (c, d, a, b, x[10], S43, 0xffeff47d); /* 55 */
+  II (b, c, d, a, x[ 1], S44, 0x85845dd1); /* 56 */
+  II (a, b, c, d, x[ 8], S41, 0x6fa87e4f); /* 57 */
+  II (d, a, b, c, x[15], S42, 0xfe2ce6e0); /* 58 */
+  II (c, d, a, b, x[ 6], S43, 0xa3014314); /* 59 */
+  II (b, c, d, a, x[13], S44, 0x4e0811a1); /* 60 */
+  II (a, b, c, d, x[ 4], S41, 0xf7537e82); /* 61 */
+  II (d, a, b, c, x[11], S42, 0xbd3af235); /* 62 */
+  II (c, d, a, b, x[ 2], S43, 0x2ad7d2bb); /* 63 */
+  II (b, c, d, a, x[ 9], S44, 0xeb86d391); /* 64 */
+  state[0] += a;
+  state[1] += b;
+  state[2] += c;
+  state[3] += d;
+  /* Zeroize sensitive information.
+*/
+  memset ((POINTER)x, 0, sizeof (x));
+}
diff --git a/src/lib/libc/crypt/md5crypt.c b/src/lib/libc/crypt/md5crypt.c
new file mode 100644
index 0000000000..7872c36859
--- /dev/null
+++ b/src/lib/libc/crypt/md5crypt.c
@@ -0,0 +1,151 @@
+/*      $OpenBSD: md5crypt.c,v 1.1 1996/05/30 02:36:33 deraadt Exp $ */
+/*
+ * ----------------------------------------------------------------------------
+ * "THE BEER-WARE LICENSE" (Revision 42):
+ * <phk@login.dknet.dk> wrote this file.  As long as you retain this notice you
+ * can do whatever you want with this stuff. If we meet some day, and you think
+ * this stuff is worth it, you can buy me a beer in return.   Poul-Henning Kamp
+ * ----------------------------------------------------------------------------
+ *
+ */
+#if defined(LIBC_SCCS) && !defined(lint)
+static char rcsid[] = "$OpenBSD: md5crypt.c,v 1.1 1996/05/30 02:36:33 deraadt Exp $";
+#endif /* LIBC_SCCS and not lint */
+#include <unistd.h>
+#include <stdio.h>
+#include "md5.h"
+static unsigned char itoa64[] =         /* 0 ... 63 => ascii - 64 */
+        "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";
+static void
+to64(s, v, n)
+        char *s;
+        unsigned long v;
+        int n;
+{
+        while (--n >= 0) {
+                *s++ = itoa64[v&0x3f];
+                v >>= 6;
+        }
+}
+/*
+ * UNIX password
+ *
+ * Use MD5 for what it is best at...
+ */
+char *
+md5crypt(pw, salt)
+        register const char *pw;
+        register const char *salt;
+{
+        static char     *magic = "$1$"; /*
+                                                 * This string is magic for
+                                                 * this algorithm.  Having
+                                                 * it this way, we can get
+                                                 * get better later on
+                                                 */
+        static char     passwd[120], *p;
+        static const char *sp,*ep;
+        unsigned char   final[16];
+        int sl,pl,i,j;
+        MD5_CTX ctx,ctx1;
+        unsigned long l;
+        /* Refine the Salt first */
+        sp = salt;
+        /* If it starts with the magic string, then skip that */
+        if(!strncmp(sp,magic,strlen(magic)))
+                sp += strlen(magic);
+        /* It stops at the first '$', max 8 chars */
+        for(ep=sp;*ep && *ep != '$' && ep < (sp+8);ep++)
+                continue;
+        /* get the length of the true salt */
+        sl = ep - sp;
+        MD5Init(&ctx);
+        /* The password first, since that is what is most unknown */
+        MD5Update(&ctx,pw,strlen(pw));
+        /* Then our magic string */
+        MD5Update(&ctx,magic,strlen(magic));
+        /* Then the raw salt */
+        MD5Update(&ctx,sp,sl);
+        /* Then just as many characters of the MD5(pw,salt,pw) */
+        MD5Init(&ctx1);
+        MD5Update(&ctx1,pw,strlen(pw));
+        MD5Update(&ctx1,sp,sl);
+        MD5Update(&ctx1,pw,strlen(pw));
+        MD5Final(final,&ctx1);
+        for(pl = strlen(pw); pl > 0; pl -= 16)
+                MD5Update(&ctx,final,pl>16 ? 16 : pl);
+        /* Don't leave anything around in vm they could use. */
+        memset(final,0,sizeof final);
+        /* Then something really weird... */
+        for (j=0,i = strlen(pw); i ; i >>= 1)
+                if(i&1)
+                    MD5Update(&ctx, final+j, 1);
+                else
+                    MD5Update(&ctx, pw+j, 1);
+        /* Now make the output string */
+        strcpy(passwd,magic);
+        strncat(passwd,sp,sl);
+        strcat(passwd,"$");
+        MD5Final(final,&ctx);
+        /*
+         * and now, just to make sure things don't run too fast
+         * On a 60 Mhz Pentium this takes 34 msec, so you would
+         * need 30 seconds to build a 1000 entry dictionary...
+         */
+        for(i=0;i<1000;i++) {
+                MD5Init(&ctx1);
+                if(i & 1)
+                        MD5Update(&ctx1,pw,strlen(pw));
+                else
+                        MD5Update(&ctx1,final,16);
+                if(i % 3)
+                        MD5Update(&ctx1,sp,sl);
+                if(i % 7)
+                        MD5Update(&ctx1,pw,strlen(pw));
+                if(i & 1)
+                        MD5Update(&ctx1,final,16);
+                else
+                        MD5Update(&ctx1,pw,strlen(pw));
+                MD5Final(final,&ctx1);
+        }
+        p = passwd + strlen(passwd);
+        l = (final[ 0]<<16) | (final[ 6]<<8) | final[12]; to64(p,l,4); p += 4;
+        l = (final[ 1]<<16) | (final[ 7]<<8) | final[13]; to64(p,l,4); p += 4;
+        l = (final[ 2]<<16) | (final[ 8]<<8) | final[14]; to64(p,l,4); p += 4;
+        l = (final[ 3]<<16) | (final[ 9]<<8) | final[15]; to64(p,l,4); p += 4;
+        l = (final[ 4]<<16) | (final[10]<<8) | final[ 5]; to64(p,l,4); p += 4;
+        l =                    final[11]                ; to64(p,l,2); p += 2;
+        *p = '\0';
+        /* Don't leave anything around in vm they could use. */
+        memset(final,0,sizeof final);
+        return passwd;
+}

diff --git a/src/lib/libc/crypt/Makefile.inc b/src/lib/libc/crypt/Makefile.inc index 78b5168fb9..e7b9d9baf8 100644 --- a/src/lib/libc/crypt/Makefile.inc +++ b/src/lib/libc/crypt/Makefile.inc
@@ -1,8 +1,8 @@
1	# $Id: Makefile.inc,v 1.2 1996-03-25 22:31:44 tholo Exp $	1	# $Id: Makefile.inc,v 1.3 1996-05-30 02:36:32 deraadt Exp $
2		2
3	.PATH: ${.CURDIR}/arch/${MACHINE_ARCH}/crypt ${.CURDIR}/crypt	3	.PATH: ${.CURDIR}/arch/${MACHINE_ARCH}/crypt ${.CURDIR}/crypt
4		4
5	SRCS+= crypt.c morecrypt.c	5	SRCS+= crypt.c morecrypt.c md5crypt.c md5c.c
6		6
7	MAN+= crypt.3	7	MAN+= crypt.3
8	MLINKS+=crypt.3 encrypt.3 crypt.3 setkey.3 crypt.3 des_cipher.3	8	MLINKS+=crypt.3 encrypt.3 crypt.3 setkey.3 crypt.3 des_cipher.3


diff --git a/src/lib/libc/crypt/md5.h b/src/lib/libc/crypt/md5.h new file mode 100644 index 0000000000..da0c116c2e --- /dev/null +++ b/src/lib/libc/crypt/md5.h
@@ -0,0 +1,42 @@
		1	/* MD5.H - header file for MD5C.C
		2	* $FreeBSD$
		3	*/
		4
		5	/* Copyright (C) 1991-2, RSA Data Security, Inc. Created 1991. All
		6	rights reserved.
		7
		8	License to copy and use this software is granted provided that it
		9	is identified as the "RSA Data Security, Inc. MD5 Message-Digest
		10	Algorithm" in all material mentioning or referencing this software
		11	or this function.
		12
		13	License is also granted to make and use derivative works provided
		14	that such works are identified as "derived from the RSA Data
		15	Security, Inc. MD5 Message-Digest Algorithm" in all material
		16	mentioning or referencing the derived work.
		17
		18	RSA Data Security, Inc. makes no representations concerning either
		19	the merchantability of this software or the suitability of this
		20	software for any particular purpose. It is provided "as is"
		21	without express or implied warranty of any kind.
		22
		23	These notices must be retained in any copies of any part of this
		24	documentation and/or software.
		25	*/
		26
		27	#ifndef _MD5_H_
		28	#define _MD5_H_
		29	/* MD5 context. */
		30	typedef struct MD5Context {
		31	unsigned long state[4]; /* state (ABCD) */
		32	unsigned long count[2]; /* number of bits, modulo 2^64 (lsb first) */
		33	unsigned char buffer[64]; /* input buffer */
		34	} MD5_CTX;
		35
		36	void MD5Init (MD5_CTX *);
		37	void MD5Update (MD5_CTX , const unsigned char , unsigned int);
		38	void MD5Final (unsigned char [16], MD5_CTX *);
		39	char * MD5End(MD5_CTX , char );
		40	char * MD5File(char , char );
		41	char * MD5Data(const unsigned char , unsigned int, char );
		42	#endif /* _MD5_H_ */


diff --git a/src/lib/libc/crypt/md5c.c b/src/lib/libc/crypt/md5c.c new file mode 100644 index 0000000000..5c35b5b58d --- /dev/null +++ b/src/lib/libc/crypt/md5c.c
@@ -0,0 +1,313 @@
		1	/* MD5C.C - RSA Data Security, Inc., MD5 message-digest algorithm
		2	* $FreeBSD$
		3	*/
		4
		5	/* Copyright (C) 1991-2, RSA Data Security, Inc. Created 1991. All
		6	rights reserved.
		7
		8	License to copy and use this software is granted provided that it
		9	is identified as the "RSA Data Security, Inc. MD5 Message-Digest
		10	Algorithm" in all material mentioning or referencing this software
		11	or this function.
		12
		13	License is also granted to make and use derivative works provided
		14	that such works are identified as "derived from the RSA Data
		15	Security, Inc. MD5 Message-Digest Algorithm" in all material
		16	mentioning or referencing the derived work.
		17
		18	RSA Data Security, Inc. makes no representations concerning either
		19	the merchantability of this software or the suitability of this
		20	software for any particular purpose. It is provided "as is"
		21	without express or implied warranty of any kind.
		22
		23	These notices must be retained in any copies of any part of this
		24	documentation and/or software.
		25	*/
		26
		27	#include "md5.h"
		28	#include <string.h>
		29
		30	typedef unsigned char *POINTER;
		31	typedef unsigned short int UINT2;
		32	typedef unsigned long int UINT4;
		33
		34	#define PROTO_LIST(list) list
		35
		36	/* Constants for MD5Transform routine.
		37	*/
		38	#define S11 7
		39	#define S12 12
		40	#define S13 17
		41	#define S14 22
		42	#define S21 5
		43	#define S22 9
		44	#define S23 14
		45	#define S24 20
		46	#define S31 4
		47	#define S32 11
		48	#define S33 16
		49	#define S34 23
		50	#define S41 6
		51	#define S42 10
		52	#define S43 15
		53	#define S44 21
		54
		55	static void MD5Transform PROTO_LIST ((UINT4 [4], const unsigned char [64]));
		56
		57	#ifdef i386
		58	#define Encode memcpy
		59	#define Decode memcpy
		60	#else /* i386 */
		61	/* Encodes input (UINT4) into output (unsigned char). Assumes len is
		62	a multiple of 4.
		63	*/
		64	static void Encode (output, input, len)
		65	unsigned char *output;
		66	UINT4 *input;
		67	unsigned int len;
		68	{
		69	unsigned int i, j;
		70
		71	for (i = 0, j = 0; j < len; i++, j += 4) {
		72	output[j] = (unsigned char)(input[i] & 0xff);
		73	output[j+1] = (unsigned char)((input[i] >> 8) & 0xff);
		74	output[j+2] = (unsigned char)((input[i] >> 16) & 0xff);
		75	output[j+3] = (unsigned char)((input[i] >> 24) & 0xff);
		76	}
		77	}
		78
		79	/* Decodes input (unsigned char) into output (UINT4). Assumes len is
		80	a multiple of 4.
		81	*/
		82	static void Decode (output, input, len)
		83	UINT4 *output;
		84	const unsigned char *input;
		85	unsigned int len;
		86	{
		87	unsigned int i, j;
		88
		89	for (i = 0, j = 0; j < len; i++, j += 4)
		90	output[i] = ((UINT4)input[j]) \| (((UINT4)input[j+1]) << 8) \|
		91	(((UINT4)input[j+2]) << 16) \| (((UINT4)input[j+3]) << 24);
		92	}
		93	#endif /* i386 */
		94
		95	static unsigned char PADDING[64] = {
		96	0x80, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
		97	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0,
		98	0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0
		99	};
		100
		101	/* F, G, H and I are basic MD5 functions.
		102	*/
		103	#define F(x, y, z) (((x) & (y)) \| ((~x) & (z)))
		104	#define G(x, y, z) (((x) & (z)) \| ((y) & (~z)))
		105	#define H(x, y, z) ((x) ^ (y) ^ (z))
		106	#define I(x, y, z) ((y) ^ ((x) \| (~z)))
		107
		108	/* ROTATE_LEFT rotates x left n bits.
		109	*/
		110	#define ROTATE_LEFT(x, n) (((x) << (n)) \| ((x) >> (32-(n))))
		111
		112	/* FF, GG, HH, and II transformations for rounds 1, 2, 3, and 4.
		113	Rotation is separate from addition to prevent recomputation.
		114	*/
		115	#define FF(a, b, c, d, x, s, ac) { \
		116	(a) += F ((b), (c), (d)) + (x) + (UINT4)(ac); \
		117	(a) = ROTATE_LEFT ((a), (s)); \
		118	(a) += (b); \
		119	}
		120	#define GG(a, b, c, d, x, s, ac) { \
		121	(a) += G ((b), (c), (d)) + (x) + (UINT4)(ac); \
		122	(a) = ROTATE_LEFT ((a), (s)); \
		123	(a) += (b); \
		124	}
		125	#define HH(a, b, c, d, x, s, ac) { \
		126	(a) += H ((b), (c), (d)) + (x) + (UINT4)(ac); \
		127	(a) = ROTATE_LEFT ((a), (s)); \
		128	(a) += (b); \
		129	}
		130	#define II(a, b, c, d, x, s, ac) { \
		131	(a) += I ((b), (c), (d)) + (x) + (UINT4)(ac); \
		132	(a) = ROTATE_LEFT ((a), (s)); \
		133	(a) += (b); \
		134	}
		135
		136	/* MD5 initialization. Begins an MD5 operation, writing a new context.
		137	*/
		138	void MD5Init (context)
		139	MD5_CTX context; / context */
		140	{
		141	context->count[0] = context->count[1] = 0;
		142	/* Load magic initialization constants.
		143	*/
		144	context->state[0] = 0x67452301;
		145	context->state[1] = 0xefcdab89;
		146	context->state[2] = 0x98badcfe;
		147	context->state[3] = 0x10325476;
		148	}
		149
		150	/* MD5 block update operation. Continues an MD5 message-digest
		151	operation, processing another message block, and updating the
		152	context.
		153	*/
		154	void MD5Update (context, input, inputLen)
		155	MD5_CTX context; / context */
		156	const unsigned char input; / input block */
		157	unsigned int inputLen; /* length of input block */
		158	{
		159	unsigned int i, index, partLen;
		160
		161	/* Compute number of bytes mod 64 */
		162	index = (unsigned int)((context->count[0] >> 3) & 0x3F);
		163
		164	/* Update number of bits */
		165	if ((context->count[0] += ((UINT4)inputLen << 3))
		166	< ((UINT4)inputLen << 3))
		167	context->count[1]++;
		168	context->count[1] += ((UINT4)inputLen >> 29);
		169
		170	partLen = 64 - index;
		171
		172	/* Transform as many times as possible.
		173	*/
		174	if (inputLen >= partLen) {
		175	memcpy
		176	((POINTER)&context->buffer[index], (POINTER)input, partLen);
		177	MD5Transform (context->state, context->buffer);
		178
		179	for (i = partLen; i + 63 < inputLen; i += 64)
		180	MD5Transform (context->state, &input[i]);
		181
		182	index = 0;
		183	}
		184	else
		185	i = 0;
		186
		187	/* Buffer remaining input */
		188	memcpy
		189	((POINTER)&context->buffer[index], (POINTER)&input[i],
		190	inputLen-i);
		191	}
		192
		193	/* MD5 finalization. Ends an MD5 message-digest operation, writing the
		194	the message digest and zeroizing the context.
		195	*/
		196	void MD5Final (digest, context)
		197	unsigned char digest[16]; /* message digest */
		198	MD5_CTX context; / context */
		199	{
		200	unsigned char bits[8];
		201	unsigned int index, padLen;
		202
		203	/* Save number of bits */
		204	Encode (bits, context->count, 8);
		205
		206	/* Pad out to 56 mod 64.
		207	*/
		208	index = (unsigned int)((context->count[0] >> 3) & 0x3f);
		209	padLen = (index < 56) ? (56 - index) : (120 - index);
		210	MD5Update (context, PADDING, padLen);
		211
		212	/* Append length (before padding) */
		213	MD5Update (context, bits, 8);
		214	/* Store state in digest */
		215	Encode (digest, context->state, 16);
		216
		217	/* Zeroize sensitive information.
		218	*/
		219	memset ((POINTER)context, 0, sizeof (*context));
		220	}
		221
		222	/* MD5 basic transformation. Transforms state based on block.
		223	*/
		224	static void MD5Transform (state, block)
		225	UINT4 state[4];
		226	const unsigned char block[64];
		227	{
		228	UINT4 a = state[0], b = state[1], c = state[2], d = state[3], x[16];
		229
		230	Decode (x, block, 64);
		231
		232	/* Round 1 */
		233	FF (a, b, c, d, x[ 0], S11, 0xd76aa478); /* 1 */
		234	FF (d, a, b, c, x[ 1], S12, 0xe8c7b756); /* 2 */
		235	FF (c, d, a, b, x[ 2], S13, 0x242070db); /* 3 */
		236	FF (b, c, d, a, x[ 3], S14, 0xc1bdceee); /* 4 */
		237	FF (a, b, c, d, x[ 4], S11, 0xf57c0faf); /* 5 */
		238	FF (d, a, b, c, x[ 5], S12, 0x4787c62a); /* 6 */
		239	FF (c, d, a, b, x[ 6], S13, 0xa8304613); /* 7 */
		240	FF (b, c, d, a, x[ 7], S14, 0xfd469501); /* 8 */
		241	FF (a, b, c, d, x[ 8], S11, 0x698098d8); /* 9 */
		242	FF (d, a, b, c, x[ 9], S12, 0x8b44f7af); /* 10 */
		243	FF (c, d, a, b, x[10], S13, 0xffff5bb1); /* 11 */
		244	FF (b, c, d, a, x[11], S14, 0x895cd7be); /* 12 */
		245	FF (a, b, c, d, x[12], S11, 0x6b901122); /* 13 */
		246	FF (d, a, b, c, x[13], S12, 0xfd987193); /* 14 */
		247	FF (c, d, a, b, x[14], S13, 0xa679438e); /* 15 */
		248	FF (b, c, d, a, x[15], S14, 0x49b40821); /* 16 */
		249
		250	/* Round 2 */
		251	GG (a, b, c, d, x[ 1], S21, 0xf61e2562); /* 17 */
		252	GG (d, a, b, c, x[ 6], S22, 0xc040b340); /* 18 */
		253	GG (c, d, a, b, x[11], S23, 0x265e5a51); /* 19 */
		254	GG (b, c, d, a, x[ 0], S24, 0xe9b6c7aa); /* 20 */
		255	GG (a, b, c, d, x[ 5], S21, 0xd62f105d); /* 21 */
		256	GG (d, a, b, c, x[10], S22, 0x2441453); /* 22 */
		257	GG (c, d, a, b, x[15], S23, 0xd8a1e681); /* 23 */
		258	GG (b, c, d, a, x[ 4], S24, 0xe7d3fbc8); /* 24 */
		259	GG (a, b, c, d, x[ 9], S21, 0x21e1cde6); /* 25 */
		260	GG (d, a, b, c, x[14], S22, 0xc33707d6); /* 26 */
		261	GG (c, d, a, b, x[ 3], S23, 0xf4d50d87); /* 27 */
		262	GG (b, c, d, a, x[ 8], S24, 0x455a14ed); /* 28 */
		263	GG (a, b, c, d, x[13], S21, 0xa9e3e905); /* 29 */
		264	GG (d, a, b, c, x[ 2], S22, 0xfcefa3f8); /* 30 */
		265	GG (c, d, a, b, x[ 7], S23, 0x676f02d9); /* 31 */
		266	GG (b, c, d, a, x[12], S24, 0x8d2a4c8a); /* 32 */
		267
		268	/* Round 3 */
		269	HH (a, b, c, d, x[ 5], S31, 0xfffa3942); /* 33 */
		270	HH (d, a, b, c, x[ 8], S32, 0x8771f681); /* 34 */
		271	HH (c, d, a, b, x[11], S33, 0x6d9d6122); /* 35 */
		272	HH (b, c, d, a, x[14], S34, 0xfde5380c); /* 36 */
		273	HH (a, b, c, d, x[ 1], S31, 0xa4beea44); /* 37 */
		274	HH (d, a, b, c, x[ 4], S32, 0x4bdecfa9); /* 38 */
		275	HH (c, d, a, b, x[ 7], S33, 0xf6bb4b60); /* 39 */
		276	HH (b, c, d, a, x[10], S34, 0xbebfbc70); /* 40 */
		277	HH (a, b, c, d, x[13], S31, 0x289b7ec6); /* 41 */
		278	HH (d, a, b, c, x[ 0], S32, 0xeaa127fa); /* 42 */
		279	HH (c, d, a, b, x[ 3], S33, 0xd4ef3085); /* 43 */
		280	HH (b, c, d, a, x[ 6], S34, 0x4881d05); /* 44 */
		281	HH (a, b, c, d, x[ 9], S31, 0xd9d4d039); /* 45 */
		282	HH (d, a, b, c, x[12], S32, 0xe6db99e5); /* 46 */
		283	HH (c, d, a, b, x[15], S33, 0x1fa27cf8); /* 47 */
		284	HH (b, c, d, a, x[ 2], S34, 0xc4ac5665); /* 48 */
		285
		286	/* Round 4 */
		287	II (a, b, c, d, x[ 0], S41, 0xf4292244); /* 49 */
		288	II (d, a, b, c, x[ 7], S42, 0x432aff97); /* 50 */
		289	II (c, d, a, b, x[14], S43, 0xab9423a7); /* 51 */
		290	II (b, c, d, a, x[ 5], S44, 0xfc93a039); /* 52 */
		291	II (a, b, c, d, x[12], S41, 0x655b59c3); /* 53 */
		292	II (d, a, b, c, x[ 3], S42, 0x8f0ccc92); /* 54 */
		293	II (c, d, a, b, x[10], S43, 0xffeff47d); /* 55 */
		294	II (b, c, d, a, x[ 1], S44, 0x85845dd1); /* 56 */
		295	II (a, b, c, d, x[ 8], S41, 0x6fa87e4f); /* 57 */
		296	II (d, a, b, c, x[15], S42, 0xfe2ce6e0); /* 58 */
		297	II (c, d, a, b, x[ 6], S43, 0xa3014314); /* 59 */
		298	II (b, c, d, a, x[13], S44, 0x4e0811a1); /* 60 */
		299	II (a, b, c, d, x[ 4], S41, 0xf7537e82); /* 61 */
		300	II (d, a, b, c, x[11], S42, 0xbd3af235); /* 62 */
		301	II (c, d, a, b, x[ 2], S43, 0x2ad7d2bb); /* 63 */
		302	II (b, c, d, a, x[ 9], S44, 0xeb86d391); /* 64 */
		303
		304	state[0] += a;
		305	state[1] += b;
		306	state[2] += c;
		307	state[3] += d;
		308
		309	/* Zeroize sensitive information.
		310	*/
		311	memset ((POINTER)x, 0, sizeof (x));
		312	}
		313


diff --git a/src/lib/libc/crypt/md5crypt.c b/src/lib/libc/crypt/md5crypt.c new file mode 100644 index 0000000000..7872c36859 --- /dev/null +++ b/src/lib/libc/crypt/md5crypt.c
@@ -0,0 +1,151 @@
		1	/* $OpenBSD: md5crypt.c,v 1.1 1996/05/30 02:36:33 deraadt Exp $ */
		2
		3	/*
		4	* ----------------------------------------------------------------------------
		5	* "THE BEER-WARE LICENSE" (Revision 42):
		6	* <phk@login.dknet.dk> wrote this file. As long as you retain this notice you
		7	* can do whatever you want with this stuff. If we meet some day, and you think
		8	* this stuff is worth it, you can buy me a beer in return. Poul-Henning Kamp
		9	* ----------------------------------------------------------------------------
		10	*
		11	*/
		12
		13	#if defined(LIBC_SCCS) && !defined(lint)
		14	static char rcsid[] = "$OpenBSD: md5crypt.c,v 1.1 1996/05/30 02:36:33 deraadt Exp $";
		15	#endif /* LIBC_SCCS and not lint */
		16
		17	#include <unistd.h>
		18	#include <stdio.h>
		19	#include "md5.h"
		20
		21	static unsigned char itoa64[] = /* 0 ... 63 => ascii - 64 */
		22	"./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";
		23
		24	static void
		25	to64(s, v, n)
		26	char *s;
		27	unsigned long v;
		28	int n;
		29	{
		30	while (--n >= 0) {
		31	*s++ = itoa64[v&0x3f];
		32	v >>= 6;
		33	}
		34	}
		35
		36	/*
		37	* UNIX password
		38	*
		39	* Use MD5 for what it is best at...
		40	*/
		41
		42	char *
		43	md5crypt(pw, salt)
		44	register const char *pw;
		45	register const char *salt;
		46	{
		47	static char magic = "$1$"; /
		48	* This string is magic for
		49	* this algorithm. Having
		50	* it this way, we can get
		51	* get better later on
		52	*/
		53	static char passwd[120], *p;
		54	static const char sp,ep;
		55	unsigned char final[16];
		56	int sl,pl,i,j;
		57	MD5_CTX ctx,ctx1;
		58	unsigned long l;
		59
		60	/* Refine the Salt first */
		61	sp = salt;
		62
		63	/* If it starts with the magic string, then skip that */
		64	if(!strncmp(sp,magic,strlen(magic)))
		65	sp += strlen(magic);
		66
		67	/* It stops at the first '$', max 8 chars */
		68	for(ep=sp;ep && ep != '$' && ep < (sp+8);ep++)
		69	continue;
		70
		71	/* get the length of the true salt */
		72	sl = ep - sp;
		73
		74	MD5Init(&ctx);
		75
		76	/* The password first, since that is what is most unknown */
		77	MD5Update(&ctx,pw,strlen(pw));
		78
		79	/* Then our magic string */
		80	MD5Update(&ctx,magic,strlen(magic));
		81
		82	/* Then the raw salt */
		83	MD5Update(&ctx,sp,sl);
		84
		85	/* Then just as many characters of the MD5(pw,salt,pw) */
		86	MD5Init(&ctx1);
		87	MD5Update(&ctx1,pw,strlen(pw));
		88	MD5Update(&ctx1,sp,sl);
		89	MD5Update(&ctx1,pw,strlen(pw));
		90	MD5Final(final,&ctx1);
		91	for(pl = strlen(pw); pl > 0; pl -= 16)
		92	MD5Update(&ctx,final,pl>16 ? 16 : pl);
		93
		94	/* Don't leave anything around in vm they could use. */
		95	memset(final,0,sizeof final);
		96
		97	/* Then something really weird... */
		98	for (j=0,i = strlen(pw); i ; i >>= 1)
		99	if(i&1)
		100	MD5Update(&ctx, final+j, 1);
		101	else
		102	MD5Update(&ctx, pw+j, 1);
		103
		104	/* Now make the output string */
		105	strcpy(passwd,magic);
		106	strncat(passwd,sp,sl);
		107	strcat(passwd,"$");
		108
		109	MD5Final(final,&ctx);
		110
		111	/*
		112	* and now, just to make sure things don't run too fast
		113	* On a 60 Mhz Pentium this takes 34 msec, so you would
		114	* need 30 seconds to build a 1000 entry dictionary...
		115	*/
		116	for(i=0;i<1000;i++) {
		117	MD5Init(&ctx1);
		118	if(i & 1)
		119	MD5Update(&ctx1,pw,strlen(pw));
		120	else
		121	MD5Update(&ctx1,final,16);
		122
		123	if(i % 3)
		124	MD5Update(&ctx1,sp,sl);
		125
		126	if(i % 7)
		127	MD5Update(&ctx1,pw,strlen(pw));
		128
		129	if(i & 1)
		130	MD5Update(&ctx1,final,16);
		131	else
		132	MD5Update(&ctx1,pw,strlen(pw));
		133	MD5Final(final,&ctx1);
		134	}
		135
		136	p = passwd + strlen(passwd);
		137
		138	l = (final[ 0]<<16) \| (final[ 6]<<8) \| final[12]; to64(p,l,4); p += 4;
		139	l = (final[ 1]<<16) \| (final[ 7]<<8) \| final[13]; to64(p,l,4); p += 4;
		140	l = (final[ 2]<<16) \| (final[ 8]<<8) \| final[14]; to64(p,l,4); p += 4;
		141	l = (final[ 3]<<16) \| (final[ 9]<<8) \| final[15]; to64(p,l,4); p += 4;
		142	l = (final[ 4]<<16) \| (final[10]<<8) \| final[ 5]; to64(p,l,4); p += 4;
		143	l = final[11] ; to64(p,l,2); p += 2;
		144	*p = '\0';
		145
		146	/* Don't leave anything around in vm they could use. */
		147	memset(final,0,sizeof final);
		148
		149	return passwd;
		150	}
		151