mirror of
https://github.com/ruby/ruby.git
synced 2022-11-09 12:17:21 -05:00
3a16cc24e8
* ext/openssl/ossl.h: ditto. * ext/openssl/ossl_asn1.c: ditto. * ext/openssl/ossl_bio.c: ditto. * ext/openssl/ossl_bn.c: ditto. * ext/openssl/ossl_cipher.c: ditto. * ext/openssl/ossl_hmac.c: ditto. * ext/openssl/ossl_ns_spki.c: ditto. * ext/openssl/ossl_ocsp.c: ditto. * ext/openssl/ossl_pkcs5.c: ditto. * ext/openssl/ossl_pkey.c: ditto. * ext/openssl/ossl_pkey_dh.c: ditto. * ext/openssl/ossl_pkey_dsa.c: ditto. * ext/openssl/ossl_pkey_ec.c: ditto. * ext/openssl/ossl_pkey_rsa.c: ditto. * ext/openssl/ossl_rand.c: ditto. * ext/openssl/ossl_ssl.c: ditto. * ext/openssl/ossl_x509ext.c: ditto. * ext/openssl/ossl_x509name.c: ditto. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@31166 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
101 lines
2.5 KiB
C
101 lines
2.5 KiB
C
/*
|
|
* $Id$
|
|
* Copyright (C) 2007 Technorama Ltd. <oss-ruby@technorama.net>
|
|
*/
|
|
#include "ossl.h"
|
|
|
|
VALUE mPKCS5;
|
|
VALUE ePKCS5;
|
|
|
|
#ifdef HAVE_PKCS5_PBKDF2_HMAC
|
|
/*
|
|
* call-seq:
|
|
* PKCS5.pbkdf2_hmac(pass, salt, iter, keylen, digest) => string
|
|
*
|
|
* === Parameters
|
|
* * +pass+ - string
|
|
* * +salt+ - string
|
|
* * +iter+ - integer - should be greater than 1000. 2000 is better.
|
|
* * +keylen+ - integer
|
|
* * +digest+ - a string or OpenSSL::Digest object.
|
|
*
|
|
* Available in OpenSSL 0.9.9?.
|
|
*
|
|
* Digests other than SHA1 may not be supported by other cryptography libraries.
|
|
*/
|
|
static VALUE
|
|
ossl_pkcs5_pbkdf2_hmac(VALUE self, VALUE pass, VALUE salt, VALUE iter, VALUE keylen, VALUE digest)
|
|
{
|
|
VALUE str;
|
|
const EVP_MD *md;
|
|
int len = NUM2INT(keylen);
|
|
|
|
StringValue(pass);
|
|
StringValue(salt);
|
|
md = GetDigestPtr(digest);
|
|
|
|
str = rb_str_new(0, len);
|
|
|
|
if (PKCS5_PBKDF2_HMAC(RSTRING_PTR(pass), RSTRING_LEN(pass),
|
|
(unsigned char *)RSTRING_PTR(salt), RSTRING_LEN(salt),
|
|
NUM2INT(iter), md, len,
|
|
(unsigned char *)RSTRING_PTR(str)) != 1)
|
|
ossl_raise(ePKCS5, "PKCS5_PBKDF2_HMAC");
|
|
|
|
return str;
|
|
}
|
|
#else
|
|
#define ossl_pkcs5_pbkdf2_hmac rb_f_notimplement
|
|
#endif
|
|
|
|
|
|
#ifdef HAVE_PKCS5_PBKDF2_HMAC_SHA1
|
|
/*
|
|
* call-seq:
|
|
* PKCS5.pbkdf2_hmac_sha1(pass, salt, iter, keylen) => string
|
|
*
|
|
* === Parameters
|
|
* * +pass+ - string
|
|
* * +salt+ - string
|
|
* * +iter+ - integer - should be greater than 1000. 2000 is better.
|
|
* * +keylen+ - integer
|
|
*
|
|
* This method is available almost any version OpenSSL.
|
|
*
|
|
* Conforms to rfc2898.
|
|
*/
|
|
static VALUE
|
|
ossl_pkcs5_pbkdf2_hmac_sha1(VALUE self, VALUE pass, VALUE salt, VALUE iter, VALUE keylen)
|
|
{
|
|
VALUE str;
|
|
int len = NUM2INT(keylen);
|
|
|
|
StringValue(pass);
|
|
StringValue(salt);
|
|
|
|
str = rb_str_new(0, len);
|
|
|
|
if (PKCS5_PBKDF2_HMAC_SHA1(RSTRING_PTR(pass), RSTRING_LENINT(pass),
|
|
(const unsigned char *)RSTRING_PTR(salt), RSTRING_LENINT(salt), NUM2INT(iter),
|
|
len, (unsigned char *)RSTRING_PTR(str)) != 1)
|
|
ossl_raise(ePKCS5, "PKCS5_PBKDF2_HMAC_SHA1");
|
|
|
|
return str;
|
|
}
|
|
#else
|
|
#define ossl_pkcs5_pbkdf2_hmac_sha1 rb_f_notimplement
|
|
#endif
|
|
|
|
void
|
|
Init_ossl_pkcs5()
|
|
{
|
|
/*
|
|
* Password-based Encryption
|
|
*
|
|
*/
|
|
mPKCS5 = rb_define_module_under(mOSSL, "PKCS5");
|
|
ePKCS5 = rb_define_class_under(mPKCS5, "PKCS5Error", eOSSLError);
|
|
|
|
rb_define_module_function(mPKCS5, "pbkdf2_hmac", ossl_pkcs5_pbkdf2_hmac, 5);
|
|
rb_define_module_function(mPKCS5, "pbkdf2_hmac_sha1", ossl_pkcs5_pbkdf2_hmac_sha1, 4);
|
|
}
|