vlib/crypto/bcrypt: Add bcrypt (#12595)

2023-08-10 21:13:21 +03:00 · 2021-11-28 19:40:50 +09:00
parent f72d001db5
commit 783aba4552
6 changed files with 1437 additions and 0 deletions
--- a/vlib/crypto/blowfish/block.v
+++ b/vlib/crypto/blowfish/block.v
@@ -0,0 +1,142 @@
+module blowfish
+
+pub fn expand_key(key []byte, mut bf Blowfish) {
+	mut j := 0
+	for i := 0; i < 18; i++ {
+		mut d := u32(0)
+		for k := 0; k < 4; k++ {
+			d = d << 8 | u32(key[j])
+			j++
+			if j >= key.len {
+				j = 0
+			}
+		}
+		bf.p[i] ^= d
+	}
+
+	mut l := u32(0)
+	mut r := u32(0)
+	for i := 0; i < 18; i += 2 {
+		arr := encrypt_block(l, r, mut bf)
+		bf.p[i], bf.p[i + 1] = arr[0], arr[1]
+	}
+
+	for i := 0; i < 256; i += 2 {
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[0][i], bf.s[0][i + 1] = arr[0], arr[1]
+	}
+	for i := 0; i < 256; i += 2 {
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[1][i], bf.s[1][i + 1] = arr[0], arr[1]
+	}
+	for i := 0; i < 256; i += 2 {
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[2][i], bf.s[2][i + 1] = arr[0], arr[1]
+	}
+	for i := 0; i < 256; i += 2 {
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[3][i], bf.s[3][i + 1] = arr[0], arr[1]
+	}
+}
+
+pub fn expand_key_with_salt(key []byte, salt []byte, mut bf Blowfish) {
+	mut j := 0
+	for i := 0; i < 18; i++ {
+		bf.p[i] ^= get_next_word(key, &j)
+	}
+
+	j = 0
+
+	mut l := u32(0)
+	mut r := u32(0)
+	for i := 0; i < 18; i += 2 {
+		l ^= get_next_word(key, &j)
+		r ^= get_next_word(key, &j)
+		arr := encrypt_block(l, r, mut bf)
+		bf.p[i], bf.p[i + 1] = arr[0], arr[1]
+	}
+
+	for i := 0; i < 256; i += 2 {
+		l ^= get_next_word(key, &j)
+		r ^= get_next_word(key, &j)
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[0][i], bf.s[0][i + 1] = arr[0], arr[1]
+	}
+	for i := 0; i < 256; i += 2 {
+		l ^= get_next_word(key, &j)
+		r ^= get_next_word(key, &j)
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[1][i], bf.s[1][i + 1] = arr[0], arr[1]
+	}
+	for i := 0; i < 256; i += 2 {
+		l ^= get_next_word(key, &j)
+		r ^= get_next_word(key, &j)
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[2][i], bf.s[2][i + 1] = arr[0], arr[1]
+	}
+	for i := 0; i < 256; i += 2 {
+		l ^= get_next_word(key, &j)
+		r ^= get_next_word(key, &j)
+		arr := encrypt_block(l, r, mut bf)
+		bf.s[3][i], bf.s[3][i + 1] = arr[0], arr[1]
+	}
+}
+
+fn encrypt_block(l u32, r u32, mut bf Blowfish) []u32 {
+	mut xl := l
+	mut xr := r
+	xl ^= bf.p[0]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[1]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[2]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[3]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[4]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[5]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[6]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[7]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[8]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[9]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[10]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[11]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[12]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[13]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[14]
+	xr ^= ((bf.s[0][byte(xl >> 24)] + bf.s[1][byte(xl >> 16)]) ^ bf.s[2][byte(xl >> 8)]) +
+		bf.s[3][byte(xl)] ^ bf.p[15]
+	xl ^= ((bf.s[0][byte(xr >> 24)] + bf.s[1][byte(xr >> 16)]) ^ bf.s[2][byte(xr >> 8)]) +
+		bf.s[3][byte(xr)] ^ bf.p[16]
+	xr ^= bf.p[17]
+	return [xl, xr]
+}
+
+fn get_next_word(b []byte, pos &int) u32 {
+	mut w := u32(0)
+	mut j := 0
+	unsafe {
+		j = *pos
+	}
+	for i := 0; i < 4; i++ {
+		w = w << 8 | u32(b[j])
+		j++
+		if j >= b.len {
+			j = 0
+		}
+	}
+	unsafe {
+		*pos = j
+	}
+	return w
+}
--- a/vlib/crypto/blowfish/blowfish.v
+++ b/vlib/crypto/blowfish/blowfish.v
@@ -0,0 +1,37 @@
+module blowfish
+
+pub struct Blowfish {
+pub mut:
+	p [18]u32
+	s [4][256]u32
+}
+
+pub fn new_cipher(key []byte) ?Blowfish {
+	mut bf := Blowfish{p, s}
+	if key.len < 1 || key.len > 56 {
+		return error('invalid key')
+	}
+	expand_key(key, mut bf)
+
+	return bf
+}
+
+pub fn new_salted_cipher(key []byte, salt []byte) ?Blowfish {
+	if salt.len == 0 {
+		return new_cipher(key)
+	}
+	mut bf := Blowfish{p, s}
+	if key.len < 1 {
+		return error('invalid key')
+	}
+	expand_key_with_salt(key, salt, mut bf)
+	return bf
+}
+
+pub fn (mut bf Blowfish) encrypt(mut dst []byte, src []byte) {
+	l := u32(src[0]) << 24 | u32(src[1]) << 16 | u32(src[2]) << 8 | u32(src[3])
+	r := u32(src[4]) << 24 | u32(src[5]) << 16 | u32(src[6]) << 8 | u32(src[7])
+	arr := encrypt_block(l, r, mut bf)
+	dst[0], dst[1], dst[2], dst[3] = byte(arr[0] >> 24), byte(arr[0] >> 16), byte(arr[0] >> 8), byte(arr[0])
+	dst[4], dst[5], dst[6], dst[7] = byte(arr[1] >> 24), byte(arr[1] >> 16), byte(arr[1] >> 8), byte(arr[1])
+}
--- a/vlib/crypto/blowfish/blowfish_test.v
+++ b/vlib/crypto/blowfish/blowfish_test.v
@@ -0,0 +1,8 @@
+import crypto.blowfish
+import encoding.base64
+
+fn test_crypto_blowfish() {
+	key := 'password'.bytes()
+	csalt := base64.decode('an2da3dn')
+	bf := blowfish.new_salted_cipher(key, csalt) or { panic(err) }
+}
--- a/vlib/crypto/blowfish/const.v
+++ b/vlib/crypto/blowfish/const.v