Files @ 20fa1614ab45
Branch filter:

Location: CryptoJS/src/pbkdf2.js - annotation

20fa1614ab45 749 B text/javascript Show Source Show as Raw Download as Raw
Laman
FIX: unstretched password leaking through signature
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4
944bd9524df4

import {int322bytesBE} from "./util.js";
import {blake2s} from "./blake.js";

const HASH_LENGTH=32;

export function pbkdf2(password,salt,iterationCount,outLength){
	// max BLAKE2 key length is 32B
	if(password.length>32){password=blake2s(password);}
	
	let blockCount=Math.ceil(outLength/HASH_LENGTH);
	let result=[];
	
	for(let i=0;i<blockCount;i++){
		let block=_computeBlock(password,salt,iterationCount,i+1);
		result=result.concat(block);
	}
	return result.slice(0,outLength);
}

function _computeBlock(password,salt,iterationCount,blockIndex){
	let u=blake2s(salt.concat(int322bytesBE(blockIndex)),HASH_LENGTH,password);
	for(let i=1;i<iterationCount;i++){
		let ui=blake2s(u,HASH_LENGTH,password);
		u=u.map((b,j)=>b^ui[j]);
	}
	return u;
}
Server instance: Sirius-557 This site is powered by Kallithea 0.7.0, which is © 2010–2023 by various authors & licensed under GPLv3. – Support