pike.git / lib / modules / Crypto.pmod / SCRAM.pike

version» Context lines:

pike.git/lib/modules/Crypto.pmod/SCRAM.pike:78:   //! @returns   //! The username specified by the client. Returns null   //! if the response could not be parsed.   //!   //! @seealso   //! @[server_2]   string server_1(Stdio.Buffer|string(8bit) line) {    constant format = "n,,n=%s,r=%s";    string username, r;    catch { -  first = line[3..]; +  first = [string(8bit)]line[3..];    [username, r] = stringp(line)    ? array_sscanf([string]line, format)    : [array(string)](line->sscanf(format));    nonce = [string(8bit)]r;    r = Standards.IDNA.to_unicode(username);    };    return r;   }      //! Server-side step 2 in the SCRAM handshake.
pike.git/lib/modules/Crypto.pmod/SCRAM.pike:137:    if (!catch([r, salt, iters] = stringp(line)    ? array_sscanf([string]line, format)    : [array(string)](line->sscanf(format)))    && iters > 0    && has_prefix(r, nonce)) {    line = [string(8bit)]sprintf("c=biws,r=%s", r);    r = sprintf("%s,r=%s,s=%s,i=%d,%s", first[3..], r, salt, iters, line);    if (pass != "")    pass = Standards.IDNA.to_ascii(pass);    salt = MIME.decode_base64(salt); -  nonce = sprintf("%s,%s,%d", pass, salt, iters); +  nonce = [string(8bit)]sprintf("%s,%s,%d", pass, salt, iters);    if (!(first = .SCRAM_get_salted_password(H, nonce))) {    first = [string(8bit)]H->pbkdf2(pass, salt, iters, H->digest_size());    .SCRAM_set_salted_password(first, H, nonce);    }    Crypto.MAC.State hmacfirst = HMAC(first);    first = 0; // Free memory    salt = hmacfirst([string(8bit)]ClientKey);    salt = sprintf("%s,p=%s", line, -  encode64(salt +  encode64([string(8bit)]salt    ^ HMAC(H->hash([string(8bit)]salt))([string(8bit)]r)));    nonce = HMAC(hmacfirst([string(8bit)]ServerKey))([string(8bit)]r);    } else    salt = 0;    return [string(7bit)]salt;   }      //! Final server-side step in the SCRAM handshake.   //!   //! @param line
pike.git/lib/modules/Crypto.pmod/SCRAM.pike:170:   //! The salted (using the salt provided earlier) password belonging   //! to the specified username.   //!   //! @returns   //! The server-final response to send to the client. If the response   //! is null, the client did not supply the correct credentials or   //! the response was unparseable.   string(7bit) server_3(Stdio.Buffer|string(8bit) line,    string(8bit) salted_password) {    constant format = "c=biws,r=%s,p=%s"; -  string r, p, response; +  string r, p; +  string(7bit) response;    if (!catch([r, p] = stringp(line)    ? array_sscanf([string]line, format)    : [array(string)](line->sscanf(format)))    && r == nonce) {    first += sprintf("c=biws,r=%s", r);    Crypto.MAC.State hmacfirst = HMAC(salted_password);    r = hmacfirst([string(8bit)]ClientKey);    if (MIME.decode_base64(p)    == [string(8bit)](r ^ HMAC(H->hash([string(8bit)]r))(first))) -  response = sprintf("v=%s", encode64(HMAC( +  response = [string(7bit)]sprintf("v=%s", encode64(HMAC(    hmacfirst([string(8bit)]ServerKey))(first)));    }    return response;   }      //! Final client-side step in the SCRAM handshake. If we get this far, the   //! server has already verified that we supplied the correct credentials.   //! If this step fails, it means the server does not have our   //! credentials at all and is an imposter.   //!   //! @param line   //! The received server-final verification response.   //!   //! @returns   //! True if the server is valid, false if the server is invalid.   int(0..1) client_3(Stdio.Buffer|string(8bit) line) {    constant format = "v=%s"; -  string(8bit) v; +  string v;    return !catch([v] = stringp(line) -  ? array_sscanf(line, format) +  ? array_sscanf([string]line, format)    : line->sscanf(format))    && MIME.decode_base64(v) == nonce;   }