+++ /dev/null
-/*
- * Copyright (c) 2000-2001 Apple Computer, Inc. All Rights Reserved.
- *
- * The contents of this file constitute Original Code as defined in and are
- * subject to the Apple Public Source License Version 1.2 (the 'License').
- * You may not use this file except in compliance with the License. Please obtain
- * a copy of the License at http://www.apple.com/publicsource and read it before
- * using this file.
- *
- * This Original Code and all software distributed under the License are
- * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS
- * OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT
- * LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
- * PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the
- * specific language governing rights and limitations under the License.
- */
-
-
-/*
- File: pbkdf2.c
- Contains: Apple Data Security Services PKCS #5 PBKDF2 function definition.
- Copyright: (C) 1999 by Apple Computer, Inc., all rights reserved
- Written by: Michael Brouwer <mb@apple.com>
-*/
-#include "pbkdf2.h"
-#include <string.h>
-/* Will write hLen bytes into dataPtr according to PKCS #5 2.0 spec.
- See: http://www.rsa.com/rsalabs/node.asp?id=2127 for details.
- tempBuffer is a pointer to at least MAX (hLen, saltLen + 4) + hLen bytes. */
-static void
-F (PRF prf, size_t hLen,
- const void *passwordPtr, size_t passwordLen,
- const void *saltPtr, size_t saltLen,
- size_t iterationCount,
- uint32_t blockNumber,
- void *dataPtr,
- void *tempBuffer)
-{
- uint8_t *inBlock, *outBlock, *resultBlockPtr;
- size_t iteration;
- outBlock = (uint8_t*)tempBuffer;
- inBlock = outBlock + hLen;
- /* Set up inBlock to contain Salt || INT (blockNumber). */
- memcpy (inBlock, saltPtr, saltLen);
-
- inBlock[saltLen + 0] = (uint8_t)(blockNumber >> 24);
- inBlock[saltLen + 1] = (uint8_t)(blockNumber >> 16);
- inBlock[saltLen + 2] = (uint8_t)(blockNumber >> 8);
- inBlock[saltLen + 3] = (uint8_t)(blockNumber);
-
- /* Caculate U1 (result goes to outBlock) and copy it to resultBlockPtr. */
- resultBlockPtr = (uint8_t*)dataPtr;
- prf (passwordPtr, passwordLen, inBlock, saltLen + 4, outBlock);
- memcpy (resultBlockPtr, outBlock, hLen);
- /* Calculate U2 though UiterationCount. */
- for (iteration = 2; iteration <= iterationCount; iteration++)
- {
- uint8_t *tempBlock;
- uint32_t byte;
- /* Swap inBlock and outBlock pointers. */
- tempBlock = inBlock;
- inBlock = outBlock;
- outBlock = tempBlock;
- /* Now inBlock conatins Uiteration-1. Calculate Uiteration into outBlock. */
- prf (passwordPtr, passwordLen, inBlock, hLen, outBlock);
- /* Xor data in dataPtr (U1 \xor U2 \xor ... \xor Uiteration-1) with
- outBlock (Uiteration). */
- for (byte = 0; byte < hLen; byte++)
- resultBlockPtr[byte] ^= outBlock[byte];
- }
-}
-void pbkdf2 (PRF prf, size_t hLen,
- const void *passwordPtr, size_t passwordLen,
- const void *saltPtr, size_t saltLen,
- size_t iterationCount,
- void *dkPtr, size_t dkLen,
- void *tempBuffer)
-{
- size_t completeBlocks = dkLen / hLen;
- size_t partialBlockSize = dkLen % hLen;
- uint32_t blockNumber;
- uint8_t *dataPtr = (uint8_t*)dkPtr;
- uint8_t *blkBuffer = (uint8_t*)tempBuffer;
-
- /* This check make sure that the following loops ends, in case where dk_len is 64 bits, and very large.
- This will cause the derived key to be the maximum size supported by pbkdf2 (4GB * size of the hash)
- rather than the actual requested size.*/
- completeBlocks=completeBlocks & UINT32_MAX;
-
- /* First calculate all the complete hLen sized blocks required. */
- for (blockNumber = 1; blockNumber <= completeBlocks; blockNumber++)
- {
- F (prf, hLen, passwordPtr, passwordLen, saltPtr, saltLen,
- iterationCount, blockNumber, dataPtr, blkBuffer + hLen);
- dataPtr += hLen;
- }
- /* Finally if the requested output size was not an even multiple of hLen, calculate
- the final block and copy the first partialBlockSize bytes of it to the output. */
- if (partialBlockSize > 0)
- {
- F (prf, hLen, passwordPtr, passwordLen, saltPtr, saltLen,
- iterationCount, blockNumber, blkBuffer, blkBuffer + hLen);
- memcpy (dataPtr, blkBuffer, partialBlockSize);
- }
-}
projects / apple / security.git / blobdiff