|
1 | | -begin |
2 | | - module Devise |
3 | | - module Encryptable |
4 | | - module Encryptors |
5 | | - class Pbkdf2 < Base |
6 | | - def self.compare(encrypted_password, password, stretches, salt, pepper) |
7 | | - value_to_test = self.digest(password, stretches, salt, pepper) |
8 | | - Devise.secure_compare(encrypted_password, value_to_test) |
9 | | - end |
10 | | - |
11 | | - def self.digest(password, stretches, salt, pepper) |
12 | | - hash = OpenSSL::Digest.new('SHA512').new |
13 | | - OpenSSL::KDF.pbkdf2_hmac( |
14 | | - password.to_s, |
15 | | - salt: "#{[salt].pack('H*')}#{pepper}", |
16 | | - iterations: stretches, |
17 | | - hash: hash, |
18 | | - length: hash.digest_length, |
19 | | - ).unpack1('H*') |
20 | | - end |
| 1 | +module Devise |
| 2 | + module Encryptable |
| 3 | + module Encryptors |
| 4 | + # https://en.wikipedia.org/wiki/PBKDF2 |
| 5 | + # Adapted from https://gitlab.com/gitlab-org/gitlab/-/blob/373f088e755f678478b8dd1627fab908d2641b21/vendor/gems/devise-pbkdf2-encryptable/lib/devise/pbkdf2_encryptable/encryptors/pbkdf2_sha512.rb |
| 6 | + class Pbkdf2 < Base |
| 7 | + STRATEGY = 'pbkdf2-sha512' |
| 8 | + |
| 9 | + def self.compare(encrypted_password, password, _stretches, _salt, pepper) |
| 10 | + split_digest = self.split_digest(encrypted_password) |
| 11 | + value_to_test = sha512_checksum(password, split_digest[:stretches], split_digest[:salt], pepper) |
| 12 | + |
| 13 | + Devise.secure_compare(split_digest[:checksum], value_to_test) |
| 14 | + end |
| 15 | + |
| 16 | + def self.digest(password, stretches, salt, pepper) |
| 17 | + checksum = sha512_checksum(password, stretches, salt, pepper) |
| 18 | + |
| 19 | + format_hash(STRATEGY, stretches, salt, checksum) |
| 20 | + end |
| 21 | + |
| 22 | + private_class_method def self.sha512_checksum(password, stretches, salt, pepper) |
| 23 | + hash = OpenSSL::Digest.new('SHA512') |
| 24 | + pbkdf2_checksum(hash, password, stretches, salt, pepper) |
| 25 | + end |
| 26 | + |
| 27 | + private_class_method def self.pbkdf2_checksum(hash, password, stretches, salt, pepper) |
| 28 | + OpenSSL::KDF.pbkdf2_hmac( |
| 29 | + password.to_s, |
| 30 | + salt: "#{[salt].pack('H*')}#{pepper}", |
| 31 | + iterations: stretches, |
| 32 | + hash: hash, |
| 33 | + length: hash.digest_length |
| 34 | + ).unpack1('H*') |
| 35 | + end |
| 36 | + |
| 37 | + # Passlib-style hash: $pbkdf2-sha512$rounds$salt$checksum |
| 38 | + # where salt and checksum are "adapted" Base64 encoded |
| 39 | + private_class_method def self.format_hash(strategy, stretches, salt, checksum) |
| 40 | + encoded_salt = passlib_encode64(salt) |
| 41 | + encoded_checksum = passlib_encode64(checksum) |
| 42 | + |
| 43 | + "$#{strategy}$#{stretches}$#{encoded_salt}$#{encoded_checksum}" |
| 44 | + end |
| 45 | + |
| 46 | + private_class_method def self.passlib_encode64(value) |
| 47 | + Base64.strict_encode64([value].pack('H*')).tr('+', '.').delete('=') |
| 48 | + end |
| 49 | + |
| 50 | + private_class_method def self.passlib_decode64(value) |
| 51 | + enc = value.tr('.', '+') |
| 52 | + Base64.decode64(enc).unpack1('H*') |
| 53 | + end |
| 54 | + |
| 55 | + private_class_method def self.split_digest(hash) |
| 56 | + split_digest = hash.split('$') |
| 57 | + _, strategy, stretches, salt, checksum = split_digest |
| 58 | + |
| 59 | + raise InvalidHash, 'invalid PBKDF2 hash' unless split_digest.length == 5 && strategy.start_with?('pbkdf2-') |
| 60 | + |
| 61 | + { strategy: strategy, stretches: stretches.to_i, |
| 62 | + salt: passlib_decode64(salt), checksum: passlib_decode64(checksum) } |
21 | 63 | end |
22 | 64 | end |
23 | 65 | end |
|
0 commit comments