mirrors/core-lightning
1
0
Fork 0
mirror of https://github.com/ElementsProject/lightning.git synced 2025-03-04 03:03:51 +01:00
Code Issues Projects Releases Wiki Activity
core-lightning/libwally-core/src/pbkdf2.inl
Rusty Russell 1271ac8899 libwally-core: import version 3b025127cbf11912f8b95e7ff3c905d74e8433ce 
Signed-off-by: Rusty Russell <rusty@rustcorp.com.au>
2017-02-21 15:15:28 +10:30

75 lines
2.6 KiB
C++
Raw Blame History

/*
* This is a heavily modified version of openBSDs pkcs5_pbkdf2 from
* libutil/pkcs5_pbkdf2.c, whose copyright appears here:
*
* Copyright (c) 2008 Damien Bergamini <damien.bergamini@free.fr>
*
* Permission to use, copy, modify, and distribute this software for any
* purpose with or without fee is hereby granted, provided that the above
* copyright notice and this permission notice appear in all copies.
*/
int SHA_POST(wally_pbkdf2_hmac_)(const unsigned char *pass, size_t pass_len,
unsigned char *salt_in_out, size_t salt_len,
uint32_t flags, uint32_t cost,
unsigned char *bytes_out, size_t len)
{
unsigned char *tmp_salt = NULL;
struct SHA_T d1, d2, *sha_cp = &d2;
size_t n, c, j;
BUILD_ASSERT(sizeof(beint32_t) == PBKDF2_HMAC_EXTRA_LEN);
BUILD_ASSERT(sizeof(d1) == PBKDF2_HMAC_SHA_LEN);
if (!bytes_out || !len)
return WALLY_EINVAL;
if (flags & ~PBKDF2_HMAC_FLAG_BLOCK_RESERVED)
return WALLY_EINVAL; /* Invalid flag */
if (flags & PBKDF2_HMAC_FLAG_BLOCK_RESERVED && salt_len < PBKDF2_HMAC_EXTRA_LEN)
return WALLY_EINVAL; /* No room for block appending */
if (!len || len % PBKDF2_HMAC_SHA_LEN)
return WALLY_EINVAL;
if (!(flags & PBKDF2_HMAC_FLAG_BLOCK_RESERVED)) {
tmp_salt = wally_malloc(salt_len + PBKDF2_HMAC_EXTRA_LEN);
if (!tmp_salt)
return WALLY_ENOMEM;
memcpy(tmp_salt, salt_in_out, salt_len);
salt_in_out = tmp_salt;
salt_len += PBKDF2_HMAC_EXTRA_LEN;
}
/* If bytes out is suitably aligned, we can work on it directly */
if (alignment_ok(bytes_out, sizeof(SHA_ALIGN_T)))
sha_cp = (struct SHA_T *)bytes_out;
for (n = 0; n < len / PBKDF2_HMAC_SHA_LEN; ++n) {
beint32_t block = cpu_to_be32(n + 1); /* Block number */
memcpy(salt_in_out + salt_len - sizeof(block), &block, sizeof(block));
SHA_POST(hmac_)(&d1, pass, pass_len, salt_in_out, salt_len);
memcpy(sha_cp, &d1, sizeof(d1));
for (c = 0; cost && c < cost - 1; ++c) {
SHA_POST(hmac_)(&d1, pass, pass_len, d1.u.u8, sizeof(d1));
for (j = 0; j < sizeof(d1.u.SHA_MEM)/sizeof(d1.u.SHA_MEM[0]); ++j)
sha_cp->u.SHA_MEM[j] ^= d1.u.SHA_MEM[j];
}
if (sha_cp == &d2)
memcpy(bytes_out, sha_cp, sizeof(*sha_cp));
else
++sha_cp;
bytes_out += PBKDF2_HMAC_SHA_LEN;
}
clear_n(2, &d1, sizeof(d1), &d2, sizeof(d2));
if (tmp_salt) {
clear(tmp_salt, salt_len);
wally_free(tmp_salt);
}
return WALLY_OK;
}
Reference in a new issue View git blame Copy permalink