archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 7b07a90fc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7b07a90fc1'
${ noResults }
windows-server-2003/multimedia/directx/dplay/dplay8/protocol/sha1hashing.cpp

518 lines
15 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*==========================================================================
  2. *
  3. * Copyright (C) 2000-2002 Microsoft Corporation. All Rights Reserved.
  4. *
  5. * File: Hashing.cpp
  6. * Content: This file contains code to support hashing operations on protocol data
  7. *
  8. * History:
  9. * Date By Reason
  10. * ==== == ======
  11. * 07/15/02 simonpow Created
  12. *
  13. ****************************************************************************/
  15. #include "dnproti.h"
  17. /*********************************************************************************************
  18. ** Following is standard code for the SHA1 hashing algo.
  19. ** Taken from RFC 3174 (http://www.ietf.org/rfc/rfc3174.txt)
  20. ** Minor tweaks have been made to reduce unecessary error checking
  21. */
  23. #define SHA1HashSize 20
  25. typedef DWORD uint32_t;
  26. typedef BYTE uint8_t;
  27. typedef int int_least16_t;
  29. /*
  30. * This structure will hold context information for the SHA-1
  31. * hashing operation
  32. */
  33. typedef struct SHA1Context
  34. {
  35. uint32_t Intermediate_Hash[SHA1HashSize/4]; /* Message Digest */
  36. uint32_t Length_Low; /* Message length in bits */
  37. uint32_t Length_High; /* Message length in bits */
  38. int_least16_t Message_Block_Index; /* Index into message block array */
  39. uint8_t Message_Block[64]; /* 512-bit message blocks */
  40. int Computed; /* Is the digest computed? */
  41. } SHA1Context;
  44. /*
  45. * Function Prototypes
  46. */
  48. void SHA1Reset( SHA1Context *);
  49. void SHA1Input( SHA1Context *, const uint8_t *, unsigned int);
  50. void SHA1Result( SHA1Context *, uint8_t Message_Digest[SHA1HashSize]);
  53. /*
  54. * Define the SHA1 circular left shift macro
  55. */
  56. #define SHA1CircularShift(bits,word) \
  57. (((word) << (bits)) | ((word) >> (32-(bits))))
  59. /* Local Function Prototyptes */
  60. void SHA1PadMessage(SHA1Context *);
  61. void SHA1ProcessMessageBlock(SHA1Context *);
  63. /*
  64. * SHA1Reset
  65. *
  66. * Description:
  67. * This function will initialize the SHA1Context in preparation
  68. * for computing a new SHA1 message digest.
  69. */
  71. #undef DPF_MODNAME
  72. #define DPF_MODNAME "SHA1Reset"
  74. void SHA1Reset(SHA1Context *context)
  75. {
  76. DNASSERT(context);
  78. context->Length_Low = 0;
  79. context->Length_High = 0;
  80. context->Message_Block_Index = 0;
  82. context->Intermediate_Hash[0] = 0x67452301;
  83. context->Intermediate_Hash[1] = 0xEFCDAB89;
  84. context->Intermediate_Hash[2] = 0x98BADCFE;
  85. context->Intermediate_Hash[3] = 0x10325476;
  86. context->Intermediate_Hash[4] = 0xC3D2E1F0;
  88. context->Computed = 0;
  89. }
  91. /*
  92. * SHA1Result
  93. *
  94. * Description:
  95. * This function will return the 160-bit message digest into the
  96. * Message_Digest array provided by the caller.
  97. * NOTE: The first octet of hash is stored in the 0th element,
  98. * the last octet of hash in the 19th element.
  99. *
  100. * Parameters:
  101. * context: [in/out]
  102. * The context to use to calculate the SHA-1 hash.
  103. * Message_Digest: [out]
  104. * Where the digest is returned.
  105. *
  106. */
  108. #undef DPF_MODNAME
  109. #define DPF_MODNAME "SHA1Result"
  111. void SHA1Result( SHA1Context *context,
  112. uint8_t Message_Digest[SHA1HashSize])
  113. {
  114. int i;
  116. if (!context->Computed)
  117. {
  118. SHA1PadMessage(context);
  119. for(i=0; i<64; ++i)
  120. {
  121. /* message may be sensitive, clear it out */
  122. context->Message_Block[i] = 0;
  123. }
  124. context->Length_Low = 0; /* and clear length */
  125. context->Length_High = 0;
  126. context->Computed = 1;
  128. }
  130. for(i = 0; i < SHA1HashSize; ++i)
  131. {
  132. Message_Digest[i] = (uint8_t ) (context->Intermediate_Hash[i>>2] >> 8 * ( 3 - ( i & 0x03 ) ));
  133. }
  134. }
  136. /*
  137. * SHA1Input
  138. *
  139. * Description:
  140. * This function accepts an array of octets as the next portion
  141. * of the message.
  142. *
  143. * Parameters:
  144. * context: [in/out]
  145. * The SHA context to update
  146. * message_array: [in]
  147. * An array of characters representing the next portion of
  148. * the message.
  149. * length: [in]
  150. * The length of the message in message_array
  151. *
  152. */
  154. #undef DPF_MODNAME
  155. #define DPF_MODNAME "SHA1Input"
  157. void SHA1Input( SHA1Context *context,
  158. const uint8_t *message_array,
  159. unsigned length)
  160. {
  162. while(length--)
  163. {
  164. context->Message_Block[context->Message_Block_Index++] =(*message_array & 0xFF);
  166. context->Length_Low += 8;
  167. if (context->Length_Low == 0)
  168. {
  169. context->Length_High++;
  170. DNASSERT(context->Length_High!=0);
  171. }
  173. if (context->Message_Block_Index == 64)
  174. {
  175. SHA1ProcessMessageBlock(context);
  176. }
  178. message_array++;
  179. }
  180. }
  182. /*
  183. * SHA1ProcessMessageBlock
  184. *
  185. * Description:
  186. * This function will process the next 512 bits of the message
  187. * stored in the Message_Block array.
  188. *
  189. * Parameters:
  190. * None.
  191. *
  192. * Returns:
  193. * Nothing.
  194. *
  195. * Comments:
  197. * Many of the variable names in this code, especially the
  198. * single character names, were used because those were the
  199. * names used in the publication.
  200. *
  201. *
  202. */
  203. void SHA1ProcessMessageBlock(SHA1Context *context)
  204. {
  205. const uint32_t K[] = { /* Constants defined in SHA-1 */
  206. 0x5A827999,
  207. 0x6ED9EBA1,
  208. 0x8F1BBCDC,
  209. 0xCA62C1D6
  210. };
  211. int t; /* Loop counter */
  212. uint32_t temp; /* Temporary word value */
  213. uint32_t W[80]; /* Word sequence */
  214. uint32_t A, B, C, D, E; /* Word buffers */
  216. /*
  217. * Initialize the first 16 words in the array W
  218. */
  219. for(t = 0; t < 16; t++)
  220. {
  221. W[t] = context->Message_Block[t * 4] << 24;
  222. W[t] |= context->Message_Block[t * 4 + 1] << 16;
  223. W[t] |= context->Message_Block[t * 4 + 2] << 8;
  224. W[t] |= context->Message_Block[t * 4 + 3];
  225. }
  227. for(t = 16; t < 80; t++)
  228. {
  229. W[t] = SHA1CircularShift(1,W[t-3] ^ W[t-8] ^ W[t-14] ^ W[t-16]);
  230. }
  232. A = context->Intermediate_Hash[0];
  233. B = context->Intermediate_Hash[1];
  234. C = context->Intermediate_Hash[2];
  235. D = context->Intermediate_Hash[3];
  236. E = context->Intermediate_Hash[4];
  238. for(t = 0; t < 20; t++)
  239. {
  240. temp = SHA1CircularShift(5,A) +
  241. ((B & C) | ((~B) & D)) + E + W[t] + K[0];
  242. E = D;
  243. D = C;
  244. C = SHA1CircularShift(30,B);
  246. B = A;
  247. A = temp;
  248. }
  250. for(t = 20; t < 40; t++)
  251. {
  252. temp = SHA1CircularShift(5,A) + (B ^ C ^ D) + E + W[t] + K[1];
  253. E = D;
  254. D = C;
  255. C = SHA1CircularShift(30,B);
  256. B = A;
  257. A = temp;
  258. }
  260. for(t = 40; t < 60; t++)
  261. {
  262. temp = SHA1CircularShift(5,A) +
  263. ((B & C) | (B & D) | (C & D)) + E + W[t] + K[2];
  264. E = D;
  265. D = C;
  266. C = SHA1CircularShift(30,B);
  267. B = A;
  268. A = temp;
  269. }
  271. for(t = 60; t < 80; t++)
  272. {
  273. temp = SHA1CircularShift(5,A) + (B ^ C ^ D) + E + W[t] + K[3];
  274. E = D;
  275. D = C;
  276. C = SHA1CircularShift(30,B);
  277. B = A;
  278. A = temp;
  279. }
  281. context->Intermediate_Hash[0] += A;
  282. context->Intermediate_Hash[1] += B;
  283. context->Intermediate_Hash[2] += C;
  284. context->Intermediate_Hash[3] += D;
  285. context->Intermediate_Hash[4] += E;
  287. context->Message_Block_Index = 0;
  288. }
  290. /*
  291. * SHA1PadMessage
  292. *
  294. * Description:
  295. * According to the standard, the message must be padded to an even
  296. * 512 bits. The first padding bit must be a '1'. The last 64
  297. * bits represent the length of the original message. All bits in
  298. * between should be 0. This function will pad the message
  299. * according to those rules by filling the Message_Block array
  300. * accordingly. It will also call the ProcessMessageBlock function
  301. * provided appropriately. When it returns, it can be assumed that
  302. * the message digest has been computed.
  303. *
  304. * Parameters:
  305. * context: [in/out]
  306. * The context to pad
  307. * ProcessMessageBlock: [in]
  308. * The appropriate SHA*ProcessMessageBlock function
  309. * Returns:
  310. * Nothing.
  311. *
  312. */
  314. void SHA1PadMessage(SHA1Context *context)
  315. {
  316. /*
  317. * Check to see if the current message block is too small to hold
  318. * the initial padding bits and length. If so, we will pad the
  319. * block, process it, and then continue padding into a second
  320. * block.
  321. */
  322. if (context->Message_Block_Index > 55)
  323. {
  324. context->Message_Block[context->Message_Block_Index++] = 0x80;
  325. while(context->Message_Block_Index < 64)
  326. {
  327. context->Message_Block[context->Message_Block_Index++] = 0;
  328. }
  330. SHA1ProcessMessageBlock(context);
  332. while(context->Message_Block_Index < 56)
  333. {
  334. context->Message_Block[context->Message_Block_Index++] = 0;
  335. }
  336. }
  337. else
  338. {
  339. context->Message_Block[context->Message_Block_Index++] = 0x80;
  340. while(context->Message_Block_Index < 56)
  341. {
  343. context->Message_Block[context->Message_Block_Index++] = 0;
  344. }
  345. }
  347. /*
  348. * Store the message length as the last 8 octets
  349. */
  350. context->Message_Block[56] = (uint8_t ) (context->Length_High >> 24);
  351. context->Message_Block[57] = (uint8_t ) (context->Length_High >> 16);
  352. context->Message_Block[58] = (uint8_t ) (context->Length_High >> 8);
  353. context->Message_Block[59] = (uint8_t ) (context->Length_High);
  354. context->Message_Block[60] = (uint8_t ) (context->Length_Low >> 24);
  355. context->Message_Block[61] = (uint8_t ) (context->Length_Low >> 16);
  356. context->Message_Block[62] = (uint8_t ) (context->Length_Low >> 8);
  357. context->Message_Block[63] = (uint8_t ) (context->Length_Low);
  359. SHA1ProcessMessageBlock(context);
  360. }
  363. /*
  364. ** Above was all standard SHA1 hash code taken from RFC 3174
  365. **********************************************************************************************/
  367. union HashResult
  368. {
  369. //all 160 bits of the result
  370. uint8_t val_160[SHA1HashSize];
  371. //the first 64 bits of the result
  372. ULONGLONG val_64;
  373. };
  376. /*
  377. ** Generate Connect Signature
  378. **
  379. ** This takes a session identity, an address hash, and a connect secret and hashes them together to create
  380. ** a signature we can pass back to a connecting host that it can use to identify itself
  381. */
  383. #undef DPF_MODNAME
  384. #define DPF_MODNAME "GenerateConnectSig"
  386. ULONGLONG GenerateConnectSig(DWORD dwSessID, DWORD dwAddressHash, ULONGLONG ullConnectSecret)
  387. {
  388. //arrange all the supplied input parameters into a single data block
  389. struct InputBuffer
  390. {
  391. DWORD dwSessID;
  392. DWORD dwAddressHash;
  393. ULONGLONG ullConnectSecret;
  394. } inputData = { dwSessID, dwAddressHash, ullConnectSecret };
  396. HashResult result;
  397. SHA1Context context;
  399. //create a context for the hash and add in the input data
  400. SHA1Reset(&context);
  401. SHA1Input(&context, (const uint8_t * ) &inputData, sizeof(inputData));
  402. //get result of the hash and return the first 64 bits as the result
  403. SHA1Result(&context, result.val_160);
  405. DPFX(DPFPREP, 7, "Connect Sig %x-%x", DPFX_OUTPUT_ULL(result.val_64));
  406. return result.val_64;
  407. }
  410. #undef DPF_MODNAME
  411. #define DPF_MODNAME "GenerateOutgoingFrameSig"
  413. ULONGLONG GenerateOutgoingFrameSig(PFMD pFMD, ULONGLONG ullSecret)
  414. {
  415. SHA1Context context;
  416. HashResult result;
  417. BUFFERDESC * pBuffers=pFMD->SendDataBlock.pBuffers;
  420. //create context for hash and then iterate over all the frames we're going to send
  421. SHA1Reset(&context);
  422. for (DWORD dwLoop=0; dwLoop<pFMD->SendDataBlock.dwBufferCount; dwLoop++)
  423. {
  424. SHA1Input(&context, (const uint8_t * ) pBuffers[dwLoop].pBufferData, pBuffers[dwLoop].dwBufferSize);
  425. }
  427. //also hash in our secret, and return the first 64 bits of the result
  428. SHA1Input(&context, (const uint8_t * ) &ullSecret, sizeof(ullSecret));
  429. SHA1Result(&context, result.val_160);
  431. DPFX(DPFPREP, 7, "Outgoing Frame Sig %x-%x", DPFX_OUTPUT_ULL(result.val_64));
  432. return result.val_64;
  433. }
  436. #undef DPF_MODNAME
  437. #define DPF_MODNAME "GenerateIncomingFrameSig"
  439. ULONGLONG GenerateIncomingFrameSig(BYTE * pbyFrame, DWORD dwFrameSize, ULONGLONG ullSecret)
  440. {
  441. SHA1Context context;
  442. HashResult result;
  444. //create context for hash and add in packet data followed by the secret
  445. SHA1Reset(&context);
  446. SHA1Input(&context, (const uint8_t * ) pbyFrame, dwFrameSize);
  447. SHA1Input(&context, (const uint8_t * ) &ullSecret, sizeof(ullSecret));
  449. //get result of hash and return its first 64 bits as the result
  450. SHA1Result(&context, result.val_160);
  452. DPFX(DPFPREP, 7, "Incoming Frame Sig %x-%x", DPFX_OUTPUT_ULL(result.val_64));
  453. return result.val_64;
  454. }
  457. #undef DPF_MODNAME
  458. #define DPF_MODNAME "GenerateNewSecret"
  460. ULONGLONG GenerateNewSecret(ULONGLONG ullCurrentSecret, ULONGLONG ullSecretModifier)
  461. {
  462. SHA1Context context;
  463. HashResult result;
  465. //create context for hash and combine secret followed by modifier
  466. SHA1Reset(&context);
  467. SHA1Input(&context, (const uint8_t * ) &ullCurrentSecret, sizeof(ullCurrentSecret));
  468. SHA1Input(&context, (const uint8_t * ) &ullSecretModifier, sizeof(ullSecretModifier));
  470. //get result and return first 64 bits as the result
  471. SHA1Result(&context, result.val_160);
  473. DPFX(DPFPREP, 5, "Combined current secret %x-%x with modifier %x-%x to create new secret %x-%x",
  474. DPFX_OUTPUT_ULL(ullCurrentSecret), DPFX_OUTPUT_ULL(ullSecretModifier), DPFX_OUTPUT_ULL(result.val_64));
  476. return result.val_64;
  477. }
  479. #undef DPF_MODNAME
  480. #define DPF_MODNAME "GenerateRemoteSecretModifier"
  482. ULONGLONG GenerateRemoteSecretModifier(BYTE * pbyData, DWORD dwDataSize)
  483. {
  484. SHA1Context context;
  485. HashResult result;
  487. //create context for hash and hash supplied data
  488. SHA1Reset(&context);
  489. SHA1Input(&context, (const uint8_t * ) pbyData, dwDataSize);
  490. //get result and return first 64 bits as the result
  491. SHA1Result(&context, result.val_160);
  493. DPFX(DPFPREP, 5, "New Remote Secret Modifier %x-%x", DPFX_OUTPUT_ULL(result.val_64));
  494. return result.val_64;
  495. }
  497. #undef DPF_MODNAME
  498. #define DPF_MODNAME "GenerateLocalSecretModifier"
  500. ULONGLONG GenerateLocalSecretModifier(BUFFERDESC * pBuffers, DWORD dwNumBuffers)
  501. {
  502. SHA1Context context;
  503. HashResult result;
  505. //create context for hash and hash supplied data
  506. SHA1Reset(&context);
  507. for (DWORD dwLoop=0; dwLoop<dwNumBuffers; dwLoop++)
  508. {
  509. SHA1Input(&context, (const uint8_t * ) pBuffers[dwLoop].pBufferData, pBuffers[dwLoop].dwBufferSize);
  510. }
  511. //get result and return first 64 bits as the result
  512. SHA1Result(&context, result.val_160);
  514. DPFX(DPFPREP, 5, "New Local Secret Modifier %x-%x", DPFX_OUTPUT_ULL(result.val_64));
  515. return result.val_64;
  516. }