| Details | |
|---|---|
| Project | Project Spec |
| Course | BSc (Hons) in Software Development |
| Module | Theory of Algorithms |
| Author | Faris Nassif |
| Report | Overview |
| Lecturer | Dr Ian McLoughlin |
- Assignment Overview
- Running the Program
- Project Implementation
- Research & Development Diary
- References
The MD5 hash works by taking a string of any length and encoding it into a 128-bit fingerprint. Encoding the same string over and over will always yield the same 128-bit hash output.
An MD5 hash is not encryption, the hash is considered a fingerprint. However it is a one-way transaction, meaning it's (almost) impossible to reverse engineer an MD5 hash to obtain the original string.
For a thorough breakdown of the algorithm and how it works see the Project Overview.
- In your command line terminal:
git clone https://github.com/farisNassif/FourthYear_TheoryOfAlgorithms - Navigate to the \program\ directory:
cd program - Compile the program:
gcc -o md5 md5.c||make md5 - Execute the program:
md5.exe --hashstring abc||md5.exe --hashfile path/to/file.txt||md5.exe||./md5
- Run the program without a command line argument
- Enter a file as a command line argument to be hashed at runtime
- Enter a String as a command line argument to be hashed at runtime
> ./md5 --hashstring abc
> ./md5 --hashfile path-to/yourfile.txt
> ./md5
| Valid Arguments | Input Examples |
Output |
|---|---|---|
| --help | ./md5 --help |
Will detail additional arguments and examples on how to execute them |
| --test | ./md5 --test |
Runs a suite of tests on local files adapted from the Request for Comments Document |
| --explain | ./md5 --explain |
Displays a brief explanation of MD5 including an ASCII high-level diagram |
| --hashstring | ./md5 --hashstring abc |
Performs the MD5 hash on a String and returns the result |
| --hashfile | ./md5 --hashfile path_to/yourfile.txt |
Performs the MD5 hash on a file and returns the result |
The arguments were implemented with help from the GetOpt::Long module. This allows quick definitions of Unix-like interfaces options into the program.
The Arguments could be declared and assigned to a character, in my case, after research [24] they were implemented as an array and associated with a single character meaning it could be utilized and delegated to a single Switch statement. Another benefit is that it could be specified whether to expect an additional argument, like in the case for both --hashfile and --hashstring.
static struct option long_options[] = {
{"help" , no_argument , 0, 'h'},
{"test" , no_argument , 0, 't'},
{"explain" , no_argument , 0, 'e'},
{"hashfile" , required_argument, 0, 'f'},
{"hashstring", required_argument, 0, 's'}
};When looking at the C file containing the code for the MD5 implementation it may be an eyesore, however there really isn't much to it. The hash consists of about a dozen constants and two methods, but I appreciate how it may look more convoluted than it is.
Assume the user wants to hash a text file called 'textfile.txt' with the contents 'abc', and they execute the program from the command line with the statement /.md5 --hashfile textfile.txt, well what actually happens under the hood?, I'll attempt to explain the process step-by-step. (The implementation code is heavily based on the process outlined in the Request for Comments Document and appropriately referenced within the code) [2].
Command-line arguments are implemented meaning the program will associate --hashfile with the character f and expect an argument as specified by the 'required_argument' parameter below.
static struct option long_options[] = {
{"help" , no_argument , 0, 'h'},
{"test" , no_argument , 0, 't'},
{"explain" , no_argument , 0, 'e'},
{"hashfile" , required_argument, 0, 'f'},
{"hashstring", required_argument, 0, 's'}
}; In this case, the argument is 'textfile.txt'. A switch statement which checks which command-line argument was ran will execute code according to the input. If no textfile argument was passed with the command-line argument --hashfile, then the program by default will abort. In the case of the above input example, the following case will be reached,
case 'f':
infile = fopen(optarg, "rb");
if (!infile) {
return 1;
} else {
preMd5(infile);
fclose(infile);
}
break;This case checks to see if the file is valid or invalid, if the latter the program is aborted, however if the former is true the file is passed to the preMd5() function.
void preMd5(FILE *infile) {
BLOCK M;
uint64_t nobits = 0;
PADFLAG status = READ;
WORD MD5_RES[] = {A, B, C, D};
while (nextblock(&M, infile, &nobits, &status)) {
md5(&M, MD5_RES);
}
output(MD5_RES);
}The purpose of the preMD5() function is to handle the pre-processing of the message blocks and then delegate the processed blocks to the md5() method to perform the hashing rounds. WORD MD5_RES[] = {A, B, C, D} plays an important role in the program, the array consists of the four 32-bit register values that will be used and manipulated during the actual hashing rounds and will ultimately contain the final hash to be output to the user.
Before any of that happens the user defined input needs to be pre processed via the nextblock() function. This function processes and pads the message blocks based on the process outlined in the Request for Comments document [2]. A switch statement checks to see which of the three conditions outlined in the first section of How MD5 Works is true, each message block that gets processed is passed into md5(&M, MD5_RES) as a parameter along with the array containing the four 32-bit register values needed to compute the hash.
The md5() function is the final processing step and is executed for each message individual message block.
void md5(BLOCK *M, WORD *MD5_RES) {
WORD a, b, c, d;
a = MD5_RES[0];
b = MD5_RES[1];
c = MD5_RES[2];
d = MD5_RES[3];
for(int i = 0; i<64; i++) {
if (i < 16) {
FF(MD5_RES[AA[i]], MD5_RES[BB[i]], MD5_RES[CC[i]], MD5_RES[DD[i]], M->threetwo[MM[i]] , S[i] , T[i]);
} else if (i < 32) {
GG(MD5_RES[AA[i]], MD5_RES[BB[i]], MD5_RES[CC[i]], MD5_RES[DD[i]], M->threetwo[MM[i]] , S[i] , T[i]);
} else if (i < 48) {
HH(MD5_RES[AA[i]], MD5_RES[BB[i]], MD5_RES[CC[i]], MD5_RES[DD[i]], M->threetwo[MM[i]] , S[i] , T[i]);
} else {
II(MD5_RES[AA[i]], MD5_RES[BB[i]], MD5_RES[CC[i]], MD5_RES[DD[i]], M->threetwo[MM[i]] , S[i] , T[i]);
}
}
MD5_RES[0] += a;
MD5_RES[1] += b;
MD5_RES[2] += c;
MD5_RES[3] += d;
}Four temporary values (a, b, c, d) are initialized with the pre-hash values of each of the four 32-bit register values, this is so the old value can be accumulated with each new temporary value for each iteration. The four transformation rounds of hashing consisting of 64(16*4) steps were simplified into a for loop, this was accomplished by initializing the constant parameterized values into pre-defined constant arrays. Each of the four rounds consists of a transformation function that gets executed 16 times. All of the parameters are pre-defined constants with exception of the fifth parameter which contains the processed message block.
Once the four hashing rounds have concluded, the four temporary values that once contained the old 32-bit register values are now transformed, the next step is to add these transformed temporary values to the old 32-bit register values. This is repeated until all message blocks have undergone this process.
Once all the message blocks have been pre-processed and processed, the array WORD MD5_RES[] = {A, B, C, D} should now contain the final MD5 hash, however printing and outputting the current values won't yet yield the correct output, this is because the MD5 hash output should begin with the low-order byte of A, and end with the high-order byte of D (little endian). To ensure the output follows this rule, the output array must be processed via a function to correct this.
void output(WORD MD5_RES[]) {
printf("MD5 -> ");
for (int i = 0; i < 4; ++i) {
printf("%02x%02x%02x%02x",
(MD5_RES[i] >> 0) & 0xFF,
(MD5_RES[i] >> 8) & 0xFF,
(MD5_RES[i] >> 16) & 0xFF,
(MD5_RES[i] >> 24) & 0xFF);
}
}The output() function is called at the end of the program when the hashing rounds are complete. It's job is to display the result in little endian to ensure the output hash is correct. It works by using the bitwise operator >> which shifts the bits of each index of the array right by different amounts for each iteration of the loop for that index [18]. This ensures the output begins with the low-order byte of A and ends with the high-order byte D. Once all four final 32-bit register values are processed, the correct MD5 hash will be displayed to the user.
- Week One
- The first week involved the setup of the repository and also getting setup on my Google cloud virtual machine. I also included a skeleton implementation of the program that just included some file readers and other basic functions. In preparation for the assignment I watched some related external videos that would help cement my understanding of the underlying concepts behind the project [5] [6].
- Week Two
- During this week I completed the first video that discussed the SHA standard. I didn't fully understand everything in the video so I looked over the document in my own time [1] and watched a video [8] that helped provide a bit more insight. I also had a look at the main differences between MD5 and SHA [7] [9] which helped me get a handle on the main differences in terms of speed, amount of attacks required to find the original message, message digest length and security [11].
- Week Three
- I finished the C bit operations video and looked over the recommended document [3] and some examples and tutorials of bit manipulation in C [4] [10]. I spent a good bit of time this week reading up on VI and learning some new editing and file commands [12].
- Week Four
- This week I was a bit behind with videos so caught up on both Functions and Constants in SHA and Padding. I attempted to code up some functions for MD5 by looking through the Request for Comments [2] summary and began defining constants like the four auxiliary functions and constants for the transformation routine. Since I still wasn't fully sure of the fully process required for the MD5 algorithm I found an article [13] that helped simplify the whole process for me, I got a better understanding of the role of auxiliary functions in the block processing and how each sixteen operations of the four rounds work.
- Week Five
- I coded up the Unions in C video but didn't fully understand what was meant by storing different data types in the same location. I looked at some tutorials [14] [15] and got a bit of a better understanding of how a unions members are accessed and the main differences between unions and structures, like for example how a union variable will always be the size of it's largest element unlike a struct where it's size is accumulative. Since big and little endian was mentioned in the video I did some reading on that also [16] just to get a surface level understanding of byte order representation. I also included a union block in my MD5 project file and integrated it with code that was already written.
- Week Six & Week Seven
- I was behind a week so caught up on the Hash Function video as well as Finalizing Padding. With reference to both these videos and to the Request for Comments [2] document I radically changed the contents of my main MD5 project file. My project file now contained all MD5 constants and a function that would perform the MD5 hash on an input albeit a rough implementation. The output wasn't correct and I suspect it to be an issue with how the message blocks are padded.
- Week Eight
- During this week I completed the final video available to us, Refactoring SHA256. The video led me to look over the MD5 code I had written already and check every constant and function to ensure they were written correctly. I did find some errors with auxiliary functions and values that weren't initialized correctly however my hash output still wasn't correct.
- Week Nine
- Having completed the videos I focused solely on the MD5 implementation. I refactored and simplified the function that performs the hash rounds for each block into a single loop by defining the parameterized input values as constant arrays. I also fixed issues with block processing including the context not changing correctly and cases not executing correctly in the switch statement. I was still getting the wrong output so began looking at methods in C to ensure output will always be in little endian (as required for MD5) [17].
- Week Ten
- After multiple attempts and testing of different endian solutions one was found that successfully extracts individual bytes from each input value in little endian [18]. Following the implementation of the little endian solution and some changes to the 32 bit output value array the program successfully output correct MD5 values. Once it correctly worked I again began to refactor and comment as much code as I could, included a menu that allowed easy traversal and multiple input options and began to perform more tests against the project to verify results.
- Week Thirteen
- Following the sudden societal change, the project scope has been revised. This revision includes additional command-line argument functionality, a document containing a report on the overall project with a fixed structure as well as amplified testing. This week I got to work on the command line functionality. After researching and learning about the
getopt()function which is used to parse command line arguments [19] [20]. I attempted to implement some basic arguments and code, however after further research discovered thegetopt() longoption. Instead of, for example, declaringmd5.exe -hfor help, it would allow long arguments includingmd5.exe --help, allowing for more possibilities includingmd5.exe --hashfile <path_to_file.txt>[21]. I felt this to be a cleaner and more straight forward method of implementing the arguments.
- Following the sudden societal change, the project scope has been revised. This revision includes additional command-line argument functionality, a document containing a report on the overall project with a fixed structure as well as amplified testing. This week I got to work on the command line functionality. After researching and learning about the
- Week Fourteen
- This week I finished the Overview report for the project. I moved some sections from this README to the Overview, like testing for example since they would be a better fit there. I also finished off testing by testing large input files against my MD5 implementation and included those new tests in the testing section. I also researched a range of topics on one-way complexity and similar concepts and algorithms that are closely related and included them in the write-up as well as re-watching lectures and tutorials posted on the module page that were relevant to the topic. Additionally I included an extra command-line argument that gives a high-level overview of the MD5 process as well as providing a brief explanation when initiated.
[1] https://www.nist.gov/publications/secure-hash-standard
[2] https://tools.ietf.org/html/rfc1321
[3] https://www.gnu.org/software/gnu-c-manual/gnu-c-manual.html#Expressions-and-Operators
[4] https://graphics.stanford.edu/~seander/bithacks.html
[5] https://www.youtube.com/watch?v=6h7_YAmtzGw
[6] https://www.youtube.com/watch?v=53O9J2J5i14
[7] https://www.thesslstore.com/blog/difference-sha-1-sha-2-sha-256-hash-algorithms/
[8] https://www.youtube.com/watch?v=DMtFhACPnTY
[9] https://stackoverflow.com/questions/2948156/algorithm-complexity-security-md5-or-sha1
[10] https://www.tutorialspoint.com/cprogramming/c_bitwise_operators.htm
[11] https://stackoverflow.com/a/37235104
[12] https://www.guru99.com/the-vi-editor.html
[13] http://www.boblandstrom.com/the-md5-hashing-algorithm/
[14] https://www.tutorialspoint.com/cprogramming/c_unions.htm
[15] https://www.programiz.com/c-programming/c-unions
[16] https://www.geeksforgeeks.org/little-and-big-endian-mystery/
[17] https://stackoverflow.com/questions/54548061/c-little-and-big-endian-confusion
[18] https://stackoverflow.com/a/17913021
[19] https://www.gnu.org/software/libc/manual/html_node/Example-of-Getopt.html
[20] https://www.youtube.com/watch?v=SjyR74lbZOc&t=
[21] https://www.gnu.org/software/libc/manual/html_node/Getopt-Long-Option-Example.html