mirror of
https://github.com/ergochat/ergo.git
synced 2024-12-21 10:12:53 +01:00
129 lines
3.5 KiB
Go
129 lines
3.5 KiB
Go
|
/*
|
||
|
Copyright (c) 2009 The Go Authors. All rights reserved.
|
||
|
|
||
|
Redistribution and use in source and binary forms, with or without
|
||
|
modification, are permitted provided that the following conditions are
|
||
|
met:
|
||
|
|
||
|
* Redistributions of source code must retain the above copyright
|
||
|
notice, this list of conditions and the following disclaimer.
|
||
|
* Redistributions in binary form must reproduce the above
|
||
|
copyright notice, this list of conditions and the following disclaimer
|
||
|
in the documentation and/or other materials provided with the
|
||
|
distribution.
|
||
|
* Neither the name of Google Inc. nor the names of its
|
||
|
contributors may be used to endorse or promote products derived from
|
||
|
this software without specific prior written permission.
|
||
|
|
||
|
THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
|
||
|
"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
|
||
|
LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
|
||
|
A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
|
||
|
OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
||
|
SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
||
|
LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
|
||
|
DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
|
||
|
THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
||
|
(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
|
||
|
OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||
|
*/
|
||
|
|
||
|
// SHA256 implementation from golang/go, modified to accommodate anope's
|
||
|
// password hashing scheme, which overrides the initialization vector
|
||
|
// using the salt.
|
||
|
|
||
|
package migrations
|
||
|
|
||
|
import (
|
||
|
"encoding/binary"
|
||
|
)
|
||
|
|
||
|
// The size of a SHA256 checksum in bytes.
|
||
|
const Size = 32
|
||
|
|
||
|
const (
|
||
|
chunk = 64
|
||
|
)
|
||
|
|
||
|
// digest represents the partial evaluation of a checksum.
|
||
|
type digest struct {
|
||
|
h [8]uint32
|
||
|
x [chunk]byte
|
||
|
nx int
|
||
|
len uint64
|
||
|
}
|
||
|
|
||
|
func (d *digest) Write(p []byte) (nn int, err error) {
|
||
|
nn = len(p)
|
||
|
d.len += uint64(nn)
|
||
|
if d.nx > 0 {
|
||
|
n := copy(d.x[d.nx:], p)
|
||
|
d.nx += n
|
||
|
if d.nx == chunk {
|
||
|
sha256BlockGeneric(d, d.x[:])
|
||
|
d.nx = 0
|
||
|
}
|
||
|
p = p[n:]
|
||
|
}
|
||
|
if len(p) >= chunk {
|
||
|
n := len(p) &^ (chunk - 1)
|
||
|
sha256BlockGeneric(d, p[:n])
|
||
|
p = p[n:]
|
||
|
}
|
||
|
if len(p) > 0 {
|
||
|
d.nx = copy(d.x[:], p)
|
||
|
}
|
||
|
return
|
||
|
}
|
||
|
|
||
|
func (d *digest) Sum(in []byte) []byte {
|
||
|
// Make a copy of d so that caller can keep writing and summing.
|
||
|
d0 := *d
|
||
|
hash := d0.checkSum()
|
||
|
return append(in, hash[:]...)
|
||
|
}
|
||
|
|
||
|
func (d *digest) checkSum() [Size]byte {
|
||
|
len := d.len
|
||
|
// Padding. Add a 1 bit and 0 bits until 56 bytes mod 64.
|
||
|
var tmp [64]byte
|
||
|
tmp[0] = 0x80
|
||
|
if len%64 < 56 {
|
||
|
d.Write(tmp[0 : 56-len%64])
|
||
|
} else {
|
||
|
d.Write(tmp[0 : 64+56-len%64])
|
||
|
}
|
||
|
|
||
|
// Length in bits.
|
||
|
len <<= 3
|
||
|
binary.BigEndian.PutUint64(tmp[:], len)
|
||
|
d.Write(tmp[0:8])
|
||
|
|
||
|
if d.nx != 0 {
|
||
|
panic("d.nx != 0")
|
||
|
}
|
||
|
|
||
|
var digest [Size]byte
|
||
|
|
||
|
binary.BigEndian.PutUint32(digest[0:], d.h[0])
|
||
|
binary.BigEndian.PutUint32(digest[4:], d.h[1])
|
||
|
binary.BigEndian.PutUint32(digest[8:], d.h[2])
|
||
|
binary.BigEndian.PutUint32(digest[12:], d.h[3])
|
||
|
binary.BigEndian.PutUint32(digest[16:], d.h[4])
|
||
|
binary.BigEndian.PutUint32(digest[20:], d.h[5])
|
||
|
binary.BigEndian.PutUint32(digest[24:], d.h[6])
|
||
|
binary.BigEndian.PutUint32(digest[28:], d.h[7])
|
||
|
|
||
|
return digest
|
||
|
}
|
||
|
|
||
|
// Anope password hashing function: SHA-256 with an override for the IV
|
||
|
// The actual SHA-256 IV for reference:
|
||
|
// [8]uint32{0x6A09E667, 0xBB67AE85, 0x3C6EF372, 0xA54FF53A, 0x510E527F, 0x9B05688C, 0x1F83D9AB, 0x5BE0CD19}
|
||
|
func anopeSum256(data []byte, iv [8]uint32) [Size]byte {
|
||
|
var d digest
|
||
|
d.h = iv
|
||
|
d.Write(data)
|
||
|
return d.checkSum()
|
||
|
}
|