Home Explore Help
Sign In
alimiracle
/
LibertyBSD_kernel
Watch 3
Star 1
Fork 2
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
LibertyBSD_k...
/
sys
/
lib
/
libsa
/
pbkdf2.c

pbkdf2.c 2.2 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. /*	$OpenBSD: pbkdf2.c,v 1.1 2012/10/09 12:36:50 jsing Exp $	*/
    2. 

  2. 

  3. /*-
    4. 

  4.  * Copyright (c) 2008 Damien Bergamini <damien.bergamini@free.fr>
    5. 

  5.  *
    6. 

  6.  * Permission to use, copy, modify, and distribute this software for any
    7. 

  7.  * purpose with or without fee is hereby granted, provided that the above
    8. 

  8.  * copyright notice and this permission notice appear in all copies.
    9. 

  9.  *
    10. 

  10.  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
    11. 

  11.  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
    12. 

  12.  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
    13. 

  13.  * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
    14. 

  14.  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
    15. 

  15.  * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
    16. 

  16.  * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
    17. 

  17.  */
    18. 

  18. 

  19. #include <sys/param.h>
    20. 

  20. 

  21. #include <lib/libsa/stand.h>
    22. 

  22. 

  23. #include "pbkdf2.h"
    24. 

  24. #include "hmac_sha1.h"
    25. 

  25. 

  26. /*
    27. 

  27.  * Password-Based Key Derivation Function 2 (PKCS #5 v2.0).
    28. 

  28.  * Code based on IEEE Std 802.11-2007, Annex H.4.2.
    29. 

  29.  */
    30. 

  30. int
    31. 

  31. pkcs5_pbkdf2(const char *pass, size_t pass_len, const char *salt,
    32. 

  32.     size_t salt_len, u_int8_t *key, size_t key_len, u_int rounds)
    33. 

  33. {
    34. 

  34. 	u_int8_t *asalt, obuf[SHA1_DIGEST_LENGTH];
    35. 

  35. 	u_int8_t d1[SHA1_DIGEST_LENGTH], d2[SHA1_DIGEST_LENGTH];
    36. 

  36. 	u_int i, j;
    37. 

  37. 	u_int count;
    38. 

  38. 	size_t r;
    39. 

  39. 

  40. 	if (rounds < 1 || key_len == 0)
    41. 

  41. 		return -1;
    42. 

  42. 	if (salt_len == 0 || salt_len > SIZE_MAX - 1)
    43. 

  43. 		return -1;
    44. 

  44. 	if ((asalt = alloca(salt_len + 4)) == NULL)
    45. 

  45. 		return -1;
    46. 

  46. 

  47. 	memcpy(asalt, salt, salt_len);
    48. 

  48. 

  49. 	for (count = 1; key_len > 0; count++) {
    50. 

  50. 		asalt[salt_len + 0] = (count >> 24) & 0xff;
    51. 

  51. 		asalt[salt_len + 1] = (count >> 16) & 0xff;
    52. 

  52. 		asalt[salt_len + 2] = (count >> 8) & 0xff;
    53. 

  53. 		asalt[salt_len + 3] = count & 0xff;
    54. 

  54. 		hmac_sha1(asalt, salt_len + 4, pass, pass_len, d1);
    55. 

  55. 		memcpy(obuf, d1, sizeof(obuf));
    56. 

  56. 

  57. 		for (i = 1; i < rounds; i++) {
    58. 

  58. 			hmac_sha1(d1, sizeof(d1), pass, pass_len, d2);
    59. 

  59. 			memcpy(d1, d2, sizeof(d1));
    60. 

  60. 			for (j = 0; j < sizeof(obuf); j++)
    61. 

  61. 				obuf[j] ^= d1[j];
    62. 

  62. 		}
    63. 

  63. 

  64. 		r = MIN(key_len, SHA1_DIGEST_LENGTH);
    65. 

  65. 		memcpy(key, obuf, r);
    66. 

  66. 		key += r;
    67. 

  67. 		key_len -= r;
    68. 

  68. 	};
    69. 

  69. 	explicit_bzero(asalt, salt_len + 4);
    70. 

  70. 	explicit_bzero(d1, sizeof(d1));
    71. 

  71. 	explicit_bzero(d2, sizeof(d2));
    72. 

  72. 	explicit_bzero(obuf, sizeof(obuf));
    73. 

  73. 

  74. 	return 0;
    75. 

  75. }
    76. 

  76.