|
Packit |
c4476c |
/*
|
|
Packit |
c4476c |
* Copyright 2015-2018 The OpenSSL Project Authors. All Rights Reserved.
|
|
Packit |
c4476c |
*
|
|
Packit |
c4476c |
* Licensed under the OpenSSL license (the "License"). You may not use
|
|
Packit |
c4476c |
* this file except in compliance with the License. You can obtain a copy
|
|
Packit |
c4476c |
* in the file LICENSE in the source distribution or at
|
|
Packit |
c4476c |
* https://www.openssl.org/source/license.html
|
|
Packit |
c4476c |
*/
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
#include <openssl/evp.h>
|
|
Packit |
c4476c |
#include <openssl/err.h>
|
|
Packit |
c4476c |
#include <openssl/kdf.h>
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
#ifndef OPENSSL_NO_SCRYPT
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
/*
|
|
Packit |
c4476c |
* Maximum permitted memory allow this to be overridden with Configuration
|
|
Packit |
c4476c |
* option: e.g. -DSCRYPT_MAX_MEM=0 for maximum possible.
|
|
Packit |
c4476c |
*/
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
#ifdef SCRYPT_MAX_MEM
|
|
Packit |
c4476c |
# if SCRYPT_MAX_MEM == 0
|
|
Packit |
c4476c |
# undef SCRYPT_MAX_MEM
|
|
Packit |
c4476c |
/*
|
|
Packit |
c4476c |
* Although we could theoretically allocate SIZE_MAX memory that would leave
|
|
Packit |
c4476c |
* no memory available for anything else so set limit as half that.
|
|
Packit |
c4476c |
*/
|
|
Packit |
c4476c |
# define SCRYPT_MAX_MEM (SIZE_MAX/2)
|
|
Packit |
c4476c |
# endif
|
|
Packit |
c4476c |
#else
|
|
Packit |
c4476c |
/* Default memory limit: 32 MB */
|
|
Packit |
c4476c |
# define SCRYPT_MAX_MEM (1024 * 1024 * 32)
|
|
Packit |
c4476c |
#endif
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
int EVP_PBE_scrypt(const char *pass, size_t passlen,
|
|
Packit |
c4476c |
const unsigned char *salt, size_t saltlen,
|
|
Packit |
c4476c |
uint64_t N, uint64_t r, uint64_t p, uint64_t maxmem,
|
|
Packit |
c4476c |
unsigned char *key, size_t keylen)
|
|
Packit |
c4476c |
{
|
|
Packit |
c4476c |
const char *empty = "";
|
|
Packit |
c4476c |
int rv = 1;
|
|
Packit |
c4476c |
EVP_KDF_CTX *kctx;
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
if (r > UINT32_MAX || p > UINT32_MAX) {
|
|
Packit |
c4476c |
EVPerr(EVP_F_EVP_PBE_SCRYPT, EVP_R_PARAMETER_TOO_LARGE);
|
|
Packit |
c4476c |
return 0;
|
|
Packit |
c4476c |
}
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
/* Maintain existing behaviour. */
|
|
Packit |
c4476c |
if (pass == NULL) {
|
|
Packit |
c4476c |
pass = empty;
|
|
Packit |
c4476c |
passlen = 0;
|
|
Packit |
c4476c |
}
|
|
Packit |
c4476c |
if (salt == NULL) {
|
|
Packit |
c4476c |
salt = (const unsigned char *)empty;
|
|
Packit |
c4476c |
saltlen = 0;
|
|
Packit |
c4476c |
}
|
|
Packit |
c4476c |
if (maxmem == 0)
|
|
Packit |
c4476c |
maxmem = SCRYPT_MAX_MEM;
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
kctx = EVP_KDF_CTX_new_id(EVP_KDF_SCRYPT);
|
|
Packit |
c4476c |
if (kctx == NULL)
|
|
Packit |
c4476c |
return 0;
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
if (EVP_KDF_ctrl(kctx, EVP_KDF_CTRL_SET_PASS, pass, (size_t)passlen) != 1
|
|
Packit |
c4476c |
|| EVP_KDF_ctrl(kctx, EVP_KDF_CTRL_SET_SALT,
|
|
Packit |
c4476c |
salt, (size_t)saltlen) != 1
|
|
Packit |
c4476c |
|| EVP_KDF_ctrl(kctx, EVP_KDF_CTRL_SET_SCRYPT_N, N) != 1
|
|
Packit |
c4476c |
|| EVP_KDF_ctrl(kctx, EVP_KDF_CTRL_SET_SCRYPT_R, (uint32_t)r) != 1
|
|
Packit |
c4476c |
|| EVP_KDF_ctrl(kctx, EVP_KDF_CTRL_SET_SCRYPT_P, (uint32_t)p) != 1
|
|
Packit |
c4476c |
|| EVP_KDF_ctrl(kctx, EVP_KDF_CTRL_SET_MAXMEM_BYTES, maxmem) != 1
|
|
Packit |
c4476c |
|| EVP_KDF_derive(kctx, key, keylen) != 1)
|
|
Packit |
c4476c |
rv = 0;
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
EVP_KDF_CTX_free(kctx);
|
|
Packit |
c4476c |
return rv;
|
|
Packit |
c4476c |
}
|
|
Packit |
c4476c |
|
|
Packit |
c4476c |
#endif
|