Class: CryptCheckpass::Scrypt
- Inherits:
-
CryptCheckpass
- Object
- CryptCheckpass
- CryptCheckpass::Scrypt
- Defined in:
- lib/crypt_checkpass/scrypt.rb
Overview
This class is to support RFC7914-related hash variants.
Format:
Life gets extremely hard here because Ruby's scrypt gem does not follow the
Modular Crypt Format. You cannot tell if a string is scrypt-generated or not
by looking at its beginning.
%r{
(?<N> [0-9a-f]+ ){0}
(?<r> [0-9a-f]+ ){0}
(?<p> [0-9a-f]+ ){0}
(?<salt> [0-9a-f]+ ){0}
(?<csum> [0-9a-f]+ ){0}
\A \g<N>
[$] \g<r>
[$] \g<p>
[$] \g<salt>
[$] \g<csum>
\z
}x
Nis the CPU/Memory cost parameter N ("costParameter").ris the block size parameter r ("blockSize").pis the parallelization parameter p ("parallelizationParameter").saltis the salt string.csumis the checksum string.
All of above fields are represented as hexadecimal numbers.
This is too different from other password hashs. To ease the situation we also follow extra format that is compatible with Python's Passlib and npm's @phc/scrypt generates.
%r{
(?<id> scrypt ){0}
(?<ln> ln=[1-9][0-9]* ){0}
(?<r> r=[1-9][0-9]* ){0}
(?<p> p=[1-9][0-9]* ){0}
(?<salt> [a-zA-Z0-9+/]* ){0}
(?<csum> [a-zA-Z0-9+/]* ){0}
\A [$] \g<id>
[$] \g<ln>
[,] \g<r>
[,] \g<p>
[$] \g<salt>
[$] \g<csum>
\z
}x
- Parameters are
ln,r, andpwherelndeontes log2(N).
Other formats:
Seems there are no such thing like a standard way to encode scrypt-generated passwords. Lots of wild formats are seen. We could support them if they have actual usage and to be migrated to another format.
variant
$7$: seem in http://mail.tarsnap.com/scrypt/msg00063.html. Not sure if it has actual applications.variant
$s1$: https://github.com/technion/libscrypt generates this.variant
$$scrypt-mcf$: the default output of https://libpasta.github.ioRecent OpenSSL (1.1.0+) does have EVP_PBE_scrypt() implemented, but generates pure-binary raw checksums without any formats.
Class Method Summary collapse
-
.checkpass?(pass, hash) ⇒ true, false
Checks if the given password matches the hash.
-
.newhash(pass, id: 'scrypt', ln: 8, r: 8, p: 1) ⇒ String
Generate a new password hash string.
-
.provide?(id) ⇒ true, false
Checks if the given ID can be handled by this class.
-
.understand?(str) ⇒ true, false
Checks if the given hash string can be handled by this class.
Methods inherited from CryptCheckpass
crypt_checkpass?, crypt_newhash
Class Method Details
.checkpass?(pass, hash) ⇒ true, false
Checks if the given password matches the hash.
124 125 126 127 128 129 130 131 |
# File 'lib/crypt_checkpass/scrypt.rb', line 124 def self.checkpass? pass, hash require 'scrypt' case hash when /\A\$scrypt\$/ then return checkpass_phc pass, hash else return checkpass_gem pass, hash end end |
.newhash(pass, id: 'scrypt', ln: 8, r: 8, p: 1) ⇒ String
There is no way to specify salt. That's a bad idea.
Generate a new password hash string.
145 146 147 148 149 150 151 152 |
# File 'lib/crypt_checkpass/scrypt.rb', line 145 def self.newhash pass, id: 'scrypt', ln: 8, r: 8, p: 1 require 'scrypt' salt = SecureRandom.random_bytes ::SCrypt::Engine::DEFAULTS[:salt_size] klen = ::SCrypt::Engine::DEFAULTS[:key_len] csum = ::SCrypt::Engine.scrypt pass, salt, 2 ** ln, r, p, klen return phcencode 'scrypt', { ln: ln, r: r, p: p }, salt, csum end |
.provide?(id) ⇒ true, false
Checks if the given ID can be handled by this class. A class is free to handle several IDs, like 'argon2i', 'argon2d', ...
134 135 136 |
# File 'lib/crypt_checkpass/scrypt.rb', line 134 def self.provide? id return id == 'scrypt' end |
.understand?(str) ⇒ true, false
Checks if the given hash string can be handled by this class.
119 120 121 |
# File 'lib/crypt_checkpass/scrypt.rb', line 119 def self.understand? str return match? str, understander end |