bcrypt

SymmetricChaos · Nov 7, 2024 · fa99d02 · fa99d02
1 parent e960d72
commit fa99d02
Show file tree

Hide file tree

Showing 4 changed files with 109 additions and 269 deletions.
diff --git a/hashers/src/bcrypt/bcrypt_hasher.rs b/hashers/src/bcrypt/bcrypt_hasher.rs
@@ -2,14 +2,108 @@ use crate::{
     auxiliary::blowfish_arrays::{PARRAY, SBOXES},
     traits::ClassicHasher,
 };
-use utils::byte_formatting::ByteFormat;
+use utils::byte_formatting::{make_u32s_be, u32s_to_bytes_be, ByteFormat};
+
+pub fn encrypt_u64(n: &mut u64, parray: &[u32; 18], sboxes: &[[u32; 256]; 4]) {
+    let mut lr = make_u32s_be::<2>(&n.to_be_bytes());
+    for i in 0..16 {
+        lr[0] ^= parray[i];
+        lr[1] ^= f(lr[0], sboxes);
+        lr.swap(0, 1);
+    }
+    lr.swap(0, 1);
+    lr[1] ^= parray[16];
+    lr[0] ^= parray[17];
+    *n = (lr[0] as u64) << 32 | lr[1] as u64;
+}
+
+pub fn encrypt_bytes(n: &mut [u8; 16], parray: &[u32; 18], sboxes: &[[u32; 256]; 4]) {
+    let mut lr = make_u32s_be::<2>(&n[0..16]);
+    for i in 0..16 {
+        lr[0] ^= parray[i];
+        lr[1] ^= f(lr[0], sboxes);
+        lr.swap(0, 1);
+    }
+    lr.swap(0, 1);
+    lr[1] ^= parray[16];
+    lr[0] ^= parray[17];
+    u32s_to_bytes_be(&mut n[0..16], &lr);
+}
+
+pub fn f(x: u32, sboxes: &[[u32; 256]; 4]) -> u32 {
+    let a = sboxes[0][(x >> 24) as usize];
+    let b = sboxes[1][((x >> 16) & 0xff) as usize];
+    let c = sboxes[2][((x >> 8) & 0xff) as usize];
+    let d = sboxes[3][(x & 0xff) as usize];
+    (a.wrapping_add(b) ^ c).wrapping_add(d)
+}
+
+pub fn eks_blowfish_setup(
+    password: &[u8],
+    salt: [u8; 16],
+    parray: &mut [u32; 18],
+    sboxes: &mut [[u32; 256]; 4],
+    cost: usize,
+) {
+    // Create new parray and sboxes from the password and salt
+    expand_key(password, salt, parray, sboxes);
+
+    // Repeatedly derive new parrays and sboxes. The expensive step.
+    for _ in 0..(1 << cost) {
+        expand_key(password, [0; 16], parray, sboxes);
+        expand_key(&salt, [0; 16], parray, sboxes);
+    }
+}
+
+pub fn expand_key(
+    password: &[u8],
+    salt: [u8; 16],
+    parray: &mut [u32; 18],
+    sboxes: &mut [[u32; 256]; 4],
+) {
+    // Endlessly repeat the key as needed
+    let mut key_bytes = password.iter().cycle();
+
+    // Xoring the password into the IV
+    for word in parray.iter_mut() {
+        let mut k = 0u32;
+        for _ in 0..4 {
+            k <<= 8;
+            k |= (*key_bytes.next().unwrap()) as u32;
+        }
+        *word ^= k;
+    }
+
+    let salt_halves = [
+        u64::from_le_bytes(salt[0..8].try_into().unwrap()),
+        u64::from_le_bytes(salt[8..16].try_into().unwrap()),
+    ];
+
+    let mut block: u64 = 0;
+
+    // Create the parray
+    for i in 0..9 {
+        block ^= salt_halves[i % 2];
+        encrypt_u64(&mut block, parray, sboxes);
+        parray[2 * i] = (block >> 32) as u32;
+        parray[2 * i + 1] = block as u32;
+    }
+
+    // Create the sboxes
+    for i in 0..4 {
+        for j in 0..128 {
+            block ^= salt_halves[i % 2];
+            encrypt_u64(&mut block, parray, sboxes);
+            sboxes[i][j * 2] = (block >> 32) as u32;
+            sboxes[i][j * 2 + 1] = block as u32;
+        }
+    }
+}
 
 pub struct Bcrypt {
     pub input_format: ByteFormat,
     pub output_format: ByteFormat,
-    // parray: [u32; 18],
-    // sboxes: [[u32; 256]; 4],
-    pub cost: u8,
+    pub cost: usize,
     pub salt: [u8; 16],
 }
 
@@ -18,42 +112,21 @@ impl Default for Bcrypt {
         Self {
             input_format: ByteFormat::Utf8,
             output_format: ByteFormat::Hex,
-            // parray: PARRAY,
-            // sboxes: SBOXES,
             cost: 12,
             salt: [0; 16],
         }
     }
 }
 
-impl Bcrypt {
-    pub fn eks_blowfish_setup(&self, password: &[u8]) {}
-    pub fn expand_key(
-        &mut self,
-        password: &[u8],
-        parray: &mut [u32; 18],
-        sboxes: &mut [[u32; 256]; 4],
-    ) {
-        // Endlessly repeat the key as needed
-        let mut key_bytes = password.iter().cycle();
-
-        // Xoring the password into the IV
-        for word in parray.iter_mut() {
-            let mut k = 0u32;
-            for _ in 0..4 {
-                k <<= 8;
-                k |= (*key_bytes.next().unwrap()) as u32;
-            }
-            *word ^= k;
-        }
-
-        let salt0 = u64::from_le_bytes(self.salt[0..8].try_into().unwrap());
-        let salt1 = u64::from_le_bytes(self.salt[8..16].try_into().unwrap());
-    }
-}
+impl Bcrypt {}
 
 impl ClassicHasher for Bcrypt {
     fn hash(&self, bytes: &[u8]) -> Vec<u8> {
+        let mut parry = PARRAY;
+        let mut sboxes = SBOXES;
+        eks_blowfish_setup(&bytes[0..72], self.salt, &mut parry, &mut sboxes, self.cost);
+
+        for _ in 0..64 {}
         todo!()
     }
 

diff --git a/hashers/src/bcrypt/des.rs b/hashers/src/bcrypt/des.rs
diff --git a/hashers/src/bcrypt/des_functions.rs b/hashers/src/bcrypt/des_functions.rs