line |
stmt |
bran |
cond |
sub |
pod |
time |
code |
1
|
|
|
|
|
|
|
package Crypt::Passphrase::Scrypt; |
2
|
|
|
|
|
|
|
$Crypt::Passphrase::Scrypt::VERSION = '0.002'; |
3
|
1
|
|
|
1
|
|
68756
|
use strict; |
|
1
|
|
|
|
|
12
|
|
|
1
|
|
|
|
|
29
|
|
4
|
1
|
|
|
1
|
|
5
|
use warnings; |
|
1
|
|
|
|
|
2
|
|
|
1
|
|
|
|
|
27
|
|
5
|
|
|
|
|
|
|
|
6
|
1
|
|
|
1
|
|
412
|
use parent 'Crypt::Passphrase::Encoder'; |
|
1
|
|
|
|
|
299
|
|
|
1
|
|
|
|
|
5
|
|
7
|
|
|
|
|
|
|
|
8
|
1
|
|
|
1
|
|
6999
|
use Carp 'croak'; |
|
1
|
|
|
|
|
3
|
|
|
1
|
|
|
|
|
56
|
|
9
|
1
|
|
|
1
|
|
8
|
use Crypt::ScryptKDF qw/scrypt_b64 scrypt_raw/; |
|
1
|
|
|
|
|
1
|
|
|
1
|
|
|
|
|
50
|
|
10
|
1
|
|
|
1
|
|
6
|
use MIME::Base64 qw/encode_base64 decode_base64/; |
|
1
|
|
|
|
|
3
|
|
|
1
|
|
|
|
|
443
|
|
11
|
|
|
|
|
|
|
|
12
|
|
|
|
|
|
|
sub new { |
13
|
2
|
|
|
2
|
1
|
90
|
my ($class, %args) = @_; |
14
|
|
|
|
|
|
|
return bless { |
15
|
|
|
|
|
|
|
cost => $args{cost} || 16, |
16
|
|
|
|
|
|
|
block_size => $args{block_size} || 8, |
17
|
|
|
|
|
|
|
parallel => $args{parallel} || 1, |
18
|
|
|
|
|
|
|
salt_size => $args{salt_size} || 16, |
19
|
2
|
|
100
|
|
|
45
|
output_size => $args{output_size} || 16, |
|
|
|
50
|
|
|
|
|
|
|
|
50
|
|
|
|
|
|
|
|
50
|
|
|
|
|
|
|
|
50
|
|
|
|
|
20
|
|
|
|
|
|
|
}, $class; |
21
|
|
|
|
|
|
|
} |
22
|
|
|
|
|
|
|
|
23
|
|
|
|
|
|
|
sub hash_password { |
24
|
2
|
|
|
2
|
1
|
13
|
my ($self, $password) = @_; |
25
|
2
|
|
|
|
|
30
|
my $salt = $self->random_bytes($self->{salt_size}); |
26
|
2
|
|
|
|
|
10166
|
my $hash = scrypt_b64($password, $salt, 1 << $self->{cost}, $self->{block_size}, $self->{parallel}, $self->{output_size}); |
27
|
2
|
|
|
|
|
663024
|
return sprintf '$scrypt$ln=%d,r=%d,p=%d$%s$%s', $self->{cost}, $self->{block_size}, $self->{parallel}, encode_base64($salt), $hash; |
28
|
|
|
|
|
|
|
} |
29
|
|
|
|
|
|
|
|
30
|
|
|
|
|
|
|
my $decode_regex = qr/ \A \$ scrypt \$ ln=(\d+),r=(\d+),p=(\d+) \$ ([^\$]+) \$ ([^\$]*) \z /x; |
31
|
|
|
|
|
|
|
|
32
|
|
|
|
|
|
|
sub needs_rehash { |
33
|
3
|
|
|
3
|
1
|
2329
|
my ($self, $hash) = @_; |
34
|
3
|
50
|
|
|
|
68
|
my ($cost, $block_size, $parallel, $salt64, $hash64) = $hash =~ $decode_regex or return 1; |
35
|
3
|
50
|
66
|
|
|
57
|
return 1 if $cost < $self->{cost} or $block_size < $self->{block_size} or $parallel < $self->{parallel}; |
|
|
|
66
|
|
|
|
|
36
|
2
|
50
|
33
|
|
|
24
|
return 1 if length decode_base64($salt64) < $self->{salt_size} or length decode_base64($hash64) < $self->{output_size}; |
37
|
2
|
|
|
|
|
11
|
return 0; |
38
|
|
|
|
|
|
|
} |
39
|
|
|
|
|
|
|
|
40
|
|
|
|
|
|
|
sub crypt_subtypes { |
41
|
0
|
|
|
0
|
1
|
0
|
return 'scrypt'; |
42
|
|
|
|
|
|
|
} |
43
|
|
|
|
|
|
|
|
44
|
|
|
|
|
|
|
sub verify_password { |
45
|
3
|
|
|
3
|
1
|
47
|
my ($class, $password, $hash) = @_; |
46
|
3
|
50
|
|
|
|
70
|
my ($cost, $block_size, $parallel, $salt64, $hash64) = $hash =~ $decode_regex or return 0; |
47
|
3
|
|
|
|
|
19
|
my $old_hash = decode_base64($hash64); |
48
|
3
|
|
|
|
|
35
|
my $new_hash = scrypt_raw($password, decode_base64($salt64), 1 << $cost, $block_size, $parallel, length $old_hash); |
49
|
3
|
|
|
|
|
1158493
|
return $class->secure_compare($new_hash, $old_hash); |
50
|
|
|
|
|
|
|
} |
51
|
|
|
|
|
|
|
|
52
|
|
|
|
|
|
|
1; |
53
|
|
|
|
|
|
|
|
54
|
|
|
|
|
|
|
#ABSTRACT: A scrypt encoder for Crypt::Passphrase |
55
|
|
|
|
|
|
|
|
56
|
|
|
|
|
|
|
__END__ |