Ana Sayfa Keşfet Yardım
Giriş Yap
torambo.com
/
Momentum-Apps
2
0
Çatalla 0
Dosyalar Sorunlar 0 Değişiklik İstekleri 0 Wiki
Ağaç: 7bb88e945d
Dallar Biçim İmleri
Momentum-Apps
/
crypto
/
pbkdf2.c

pbkdf2.c 6.6 KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179 
  1. /**
    2. 

  2.  * Copyright (c) 2013-2014 Tomas Dzetkulic
    3. 

  3.  * Copyright (c) 2013-2014 Pavol Rusnak
    4. 

  4.  *
    5. 

  5.  * Permission is hereby granted, free of charge, to any person obtaining
    6. 

  6.  * a copy of this software and associated documentation files (the "Software"),
    7. 

  7.  * to deal in the Software without restriction, including without limitation
    8. 

  8.  * the rights to use, copy, modify, merge, publish, distribute, sublicense,
    9. 

  9.  * and/or sell copies of the Software, and to permit persons to whom the
    10. 

  10.  * Software is furnished to do so, subject to the following conditions:
    11. 

  11.  *
    12. 

  12.  * The above copyright notice and this permission notice shall be included
    13. 

  13.  * in all copies or substantial portions of the Software.
    14. 

  14.  *
    15. 

  15.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
    16. 

  16.  * OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    17. 

  17.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
    18. 

  18.  * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES
    19. 

  19.  * OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
    20. 

  20.  * ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
    21. 

  21.  * OTHER DEALINGS IN THE SOFTWARE.
    22. 

  22.  */
    23. 

  23. 

  24. #include "pbkdf2.h"
    25. 

  25. #include <string.h>
    26. 

  26. #include "hmac.h"
    27. 

  27. #include "memzero.h"
    28. 

  28. #include "sha2.h"
    29. 

  29. 

  30. void pbkdf2_hmac_sha256_Init(PBKDF2_HMAC_SHA256_CTX *pctx, const uint8_t *pass,
    31. 

  31.                              int passlen, const uint8_t *salt, int saltlen,
    32. 

  32.                              uint32_t blocknr) {
    33. 

  33.   SHA256_CTX ctx = {0};
    34. 

  34. #if BYTE_ORDER == LITTLE_ENDIAN
    35. 

  35.   REVERSE32(blocknr, blocknr);
    36. 

  36. #endif
    37. 

  37. 

  38.   hmac_sha256_prepare(pass, passlen, pctx->odig, pctx->idig);
    39. 

  39.   memzero(pctx->g, sizeof(pctx->g));
    40. 

  40.   pctx->g[8] = 0x80000000;
    41. 

  41.   pctx->g[15] = (SHA256_BLOCK_LENGTH + SHA256_DIGEST_LENGTH) * 8;
    42. 

  42. 

  43.   memcpy(ctx.state, pctx->idig, sizeof(pctx->idig));
    44. 

  44.   ctx.bitcount = SHA256_BLOCK_LENGTH * 8;
    45. 

  45.   sha256_Update(&ctx, salt, saltlen);
    46. 

  46.   sha256_Update(&ctx, (uint8_t *)&blocknr, sizeof(blocknr));
    47. 

  47.   sha256_Final(&ctx, (uint8_t *)pctx->g);
    48. 

  48. #if BYTE_ORDER == LITTLE_ENDIAN
    49. 

  49.   for (uint32_t k = 0; k < SHA256_DIGEST_LENGTH / sizeof(uint32_t); k++) {
    50. 

  50.     REVERSE32(pctx->g[k], pctx->g[k]);
    51. 

  51.   }
    52. 

  52. #endif
    53. 

  53.   sha256_Transform(pctx->odig, pctx->g, pctx->g);
    54. 

  54.   memcpy(pctx->f, pctx->g, SHA256_DIGEST_LENGTH);
    55. 

  55.   pctx->first = 1;
    56. 

  56. }
    57. 

  57. 

  58. void pbkdf2_hmac_sha256_Update(PBKDF2_HMAC_SHA256_CTX *pctx,
    59. 

  59.                                uint32_t iterations) {
    60. 

  60.   for (uint32_t i = pctx->first; i < iterations; i++) {
    61. 

  61.     sha256_Transform(pctx->idig, pctx->g, pctx->g);
    62. 

  62.     sha256_Transform(pctx->odig, pctx->g, pctx->g);
    63. 

  63.     for (uint32_t j = 0; j < SHA256_DIGEST_LENGTH / sizeof(uint32_t); j++) {
    64. 

  64.       pctx->f[j] ^= pctx->g[j];
    65. 

  65.     }
    66. 

  66.   }
    67. 

  67.   pctx->first = 0;
    68. 

  68. }
    69. 

  69. 

  70. void pbkdf2_hmac_sha256_Final(PBKDF2_HMAC_SHA256_CTX *pctx, uint8_t *key) {
    71. 

  71. #if BYTE_ORDER == LITTLE_ENDIAN
    72. 

  72.   for (uint32_t k = 0; k < SHA256_DIGEST_LENGTH / sizeof(uint32_t); k++) {
    73. 

  73.     REVERSE32(pctx->f[k], pctx->f[k]);
    74. 

  74.   }
    75. 

  75. #endif
    76. 

  76.   memcpy(key, pctx->f, SHA256_DIGEST_LENGTH);
    77. 

  77.   memzero(pctx, sizeof(PBKDF2_HMAC_SHA256_CTX));
    78. 

  78. }
    79. 

  79. 

  80. void pbkdf2_hmac_sha256(const uint8_t *pass, int passlen, const uint8_t *salt,
    81. 

  81.                         int saltlen, uint32_t iterations, uint8_t *key,
    82. 

  82.                         int keylen) {
    83. 

  83.   uint32_t last_block_size = keylen % SHA256_DIGEST_LENGTH;
    84. 

  84.   uint32_t blocks_count = keylen / SHA256_DIGEST_LENGTH;
    85. 

  85.   if (last_block_size) {
    86. 

  86.     blocks_count++;
    87. 

  87.   } else {
    88. 

  88.     last_block_size = SHA256_DIGEST_LENGTH;
    89. 

  89.   }
    90. 

  90.   for (uint32_t blocknr = 1; blocknr <= blocks_count; blocknr++) {
    91. 

  91.     PBKDF2_HMAC_SHA256_CTX pctx = {0};
    92. 

  92.     pbkdf2_hmac_sha256_Init(&pctx, pass, passlen, salt, saltlen, blocknr);
    93. 

  93.     pbkdf2_hmac_sha256_Update(&pctx, iterations);
    94. 

  94.     uint8_t digest[SHA256_DIGEST_LENGTH] = {0};
    95. 

  95.     pbkdf2_hmac_sha256_Final(&pctx, digest);
    96. 

  96.     uint32_t key_offset = (blocknr - 1) * SHA256_DIGEST_LENGTH;
    97. 

  97.     if (blocknr < blocks_count) {
    98. 

  98.       memcpy(key + key_offset, digest, SHA256_DIGEST_LENGTH);
    99. 

  99.     } else {
    100. 

  100.       memcpy(key + key_offset, digest, last_block_size);
    101. 

  101.     }
    102. 

  102.   }
    103. 

  103. }
    104. 

  104. 

  105. void pbkdf2_hmac_sha512_Init(PBKDF2_HMAC_SHA512_CTX *pctx, const uint8_t *pass,
    106. 

  106.                              int passlen, const uint8_t *salt, int saltlen,
    107. 

  107.                              uint32_t blocknr) {
    108. 

  108.   SHA512_CTX ctx = {0};
    109. 

  109. #if BYTE_ORDER == LITTLE_ENDIAN
    110. 

  110.   REVERSE32(blocknr, blocknr);
    111. 

  111. #endif
    112. 

  112. 

  113.   hmac_sha512_prepare(pass, passlen, pctx->odig, pctx->idig);
    114. 

  114.   memzero(pctx->g, sizeof(pctx->g));
    115. 

  115.   pctx->g[8] = 0x8000000000000000;
    116. 

  116.   pctx->g[15] = (SHA512_BLOCK_LENGTH + SHA512_DIGEST_LENGTH) * 8;
    117. 

  117. 

  118.   memcpy(ctx.state, pctx->idig, sizeof(pctx->idig));
    119. 

  119.   ctx.bitcount[0] = SHA512_BLOCK_LENGTH * 8;
    120. 

  120.   ctx.bitcount[1] = 0;
    121. 

  121.   sha512_Update(&ctx, salt, saltlen);
    122. 

  122.   sha512_Update(&ctx, (uint8_t *)&blocknr, sizeof(blocknr));
    123. 

  123.   sha512_Final(&ctx, (uint8_t *)pctx->g);
    124. 

  124. #if BYTE_ORDER == LITTLE_ENDIAN
    125. 

  125.   for (uint32_t k = 0; k < SHA512_DIGEST_LENGTH / sizeof(uint64_t); k++) {
    126. 

  126.     REVERSE64(pctx->g[k], pctx->g[k]);
    127. 

  127.   }
    128. 

  128. #endif
    129. 

  129.   sha512_Transform(pctx->odig, pctx->g, pctx->g);
    130. 

  130.   memcpy(pctx->f, pctx->g, SHA512_DIGEST_LENGTH);
    131. 

  131.   pctx->first = 1;
    132. 

  132. }
    133. 

  133. 

  134. void pbkdf2_hmac_sha512_Update(PBKDF2_HMAC_SHA512_CTX *pctx,
    135. 

  135.                                uint32_t iterations) {
    136. 

  136.   for (uint32_t i = pctx->first; i < iterations; i++) {
    137. 

  137.     sha512_Transform(pctx->idig, pctx->g, pctx->g);
    138. 

  138.     sha512_Transform(pctx->odig, pctx->g, pctx->g);
    139. 

  139.     for (uint32_t j = 0; j < SHA512_DIGEST_LENGTH / sizeof(uint64_t); j++) {
    140. 

  140.       pctx->f[j] ^= pctx->g[j];
    141. 

  141.     }
    142. 

  142.   }
    143. 

  143.   pctx->first = 0;
    144. 

  144. }
    145. 

  145. 

  146. void pbkdf2_hmac_sha512_Final(PBKDF2_HMAC_SHA512_CTX *pctx, uint8_t *key) {
    147. 

  147. #if BYTE_ORDER == LITTLE_ENDIAN
    148. 

  148.   for (uint32_t k = 0; k < SHA512_DIGEST_LENGTH / sizeof(uint64_t); k++) {
    149. 

  149.     REVERSE64(pctx->f[k], pctx->f[k]);
    150. 

  150.   }
    151. 

  151. #endif
    152. 

  152.   memcpy(key, pctx->f, SHA512_DIGEST_LENGTH);
    153. 

  153.   memzero(pctx, sizeof(PBKDF2_HMAC_SHA512_CTX));
    154. 

  154. }
    155. 

  155. 

  156. void pbkdf2_hmac_sha512(const uint8_t *pass, int passlen, const uint8_t *salt,
    157. 

  157.                         int saltlen, uint32_t iterations, uint8_t *key,
    158. 

  158.                         int keylen) {
    159. 

  159.   uint32_t last_block_size = keylen % SHA512_DIGEST_LENGTH;
    160. 

  160.   uint32_t blocks_count = keylen / SHA512_DIGEST_LENGTH;
    161. 

  161.   if (last_block_size) {
    162. 

  162.     blocks_count++;
    163. 

  163.   } else {
    164. 

  164.     last_block_size = SHA512_DIGEST_LENGTH;
    165. 

  165.   }
    166. 

  166.   for (uint32_t blocknr = 1; blocknr <= blocks_count; blocknr++) {
    167. 

  167.     PBKDF2_HMAC_SHA512_CTX pctx = {0};
    168. 

  168.     pbkdf2_hmac_sha512_Init(&pctx, pass, passlen, salt, saltlen, blocknr);
    169. 

  169.     pbkdf2_hmac_sha512_Update(&pctx, iterations);
    170. 

  170.     uint8_t digest[SHA512_DIGEST_LENGTH] = {0};
    171. 

  171.     pbkdf2_hmac_sha512_Final(&pctx, digest);
    172. 

  172.     uint32_t key_offset = (blocknr - 1) * SHA512_DIGEST_LENGTH;
    173. 

  173.     if (blocknr < blocks_count) {
    174. 

  174.       memcpy(key + key_offset, digest, SHA512_DIGEST_LENGTH);
    175. 

  175.     } else {
    176. 

  176.       memcpy(key + key_offset, digest, last_block_size);
    177. 

  177.     }
    178. 

  178.   }
    179. 

  179. }
    180.