Migrate sha1 to sha2

2019-04-23 20:36:30 -04:00 · 2019-04-23 20:36:30 -04:00 · 7317e1b73b
parent 8a030cbc50
commit 7317e1b73b
6 changed files with 207 additions and 12 deletions
--- a/sys/apis/sha2.lua
+++ b/sys/apis/sha2.lua
@ -0,0 +1,195 @@
+-- SHA-256, HMAC and PBKDF2 functions in ComputerCraft
+-- By Anavrins
+
+local sha2 = {}
+
+local mod32 = 2^32
+local band    = bit32 and bit32.band or bit.band
+local bnot    = bit32 and bit32.bnot or bit.bnot
+local bxor    = bit32 and bit32.bxor or bit.bxor
+local blshift = bit32 and bit32.lshift or bit.blshift
+local upack   = unpack
+
+local function rrotate(n, b)
+	local s = n/(2^b)
+	local f = s%1
+	return (s-f) + f*mod32
+end
+local function brshift(int, by)
+	local s = int / (2^by)
+	return s - s%1
+end
+
+local H = {
+	0x6a09e667, 0xbb67ae85, 0x3c6ef372, 0xa54ff53a,
+	0x510e527f, 0x9b05688c, 0x1f83d9ab, 0x5be0cd19,
+}
+
+local K = {
+	0x428a2f98, 0x71374491, 0xb5c0fbcf, 0xe9b5dba5, 0x3956c25b, 0x59f111f1, 0x923f82a4, 0xab1c5ed5,
+	0xd807aa98, 0x12835b01, 0x243185be, 0x550c7dc3, 0x72be5d74, 0x80deb1fe, 0x9bdc06a7, 0xc19bf174,
+	0xe49b69c1, 0xefbe4786, 0x0fc19dc6, 0x240ca1cc, 0x2de92c6f, 0x4a7484aa, 0x5cb0a9dc, 0x76f988da,
+	0x983e5152, 0xa831c66d, 0xb00327c8, 0xbf597fc7, 0xc6e00bf3, 0xd5a79147, 0x06ca6351, 0x14292967,
+	0x27b70a85, 0x2e1b2138, 0x4d2c6dfc, 0x53380d13, 0x650a7354, 0x766a0abb, 0x81c2c92e, 0x92722c85,
+	0xa2bfe8a1, 0xa81a664b, 0xc24b8b70, 0xc76c51a3, 0xd192e819, 0xd6990624, 0xf40e3585, 0x106aa070,
+	0x19a4c116, 0x1e376c08, 0x2748774c, 0x34b0bcb5, 0x391c0cb3, 0x4ed8aa4a, 0x5b9cca4f, 0x682e6ff3,
+	0x748f82ee, 0x78a5636f, 0x84c87814, 0x8cc70208, 0x90befffa, 0xa4506ceb, 0xbef9a3f7, 0xc67178f2,
+}
+
+local function counter(incr)
+	local t1, t2 = 0, 0
+	if 0xFFFFFFFF - t1 < incr then
+		t2 = t2 + 1
+		t1 = incr - (0xFFFFFFFF - t1) - 1		
+	else t1 = t1 + incr
+	end
+	return t2, t1
+end
+
+local function BE_toInt(bs, i)
+	return blshift((bs[i] or 0), 24) + blshift((bs[i+1] or 0), 16) + blshift((bs[i+2] or 0), 8) + (bs[i+3] or 0)
+end
+
+local function preprocess(data)
+	local len = #data
+	local proc = {}
+	data[#data+1] = 0x80
+	while #data%64~=56 do data[#data+1] = 0 end
+	local blocks = math.ceil(#data/64)
+	for i = 1, blocks do
+		proc[i] = {}
+		for j = 1, 16 do
+			proc[i][j] = BE_toInt(data, 1+((i-1)*64)+((j-1)*4))
+		end
+	end
+	proc[blocks][15], proc[blocks][16] = counter(len*8)
+	return proc
+end
+
+local function digestblock(w, C)
+	for j = 17, 64 do
+		local v = w[j-15]
+		local s0 = bxor(bxor(rrotate(w[j-15], 7), rrotate(w[j-15], 18)), brshift(w[j-15], 3))
+		local s1 = bxor(bxor(rrotate(w[j-2], 17), rrotate(w[j-2], 19)), brshift(w[j-2], 10))
+		w[j] = (w[j-16] + s0 + w[j-7] + s1)%mod32
+	end
+	local a, b, c, d, e, f, g, h = upack(C)
+	for j = 1, 64 do
+		local S1 = bxor(bxor(rrotate(e, 6), rrotate(e, 11)), rrotate(e, 25))
+		local ch = bxor(band(e, f), band(bnot(e), g))
+		local temp1 = (h + S1 + ch + K[j] + w[j])%mod32
+		local S0 = bxor(bxor(rrotate(a, 2), rrotate(a, 13)), rrotate(a, 22))
+		local maj = bxor(bxor(band(a, b), band(a, c)), band(b, c))
+		local temp2 = (S0 + maj)%mod32
+		h, g, f, e, d, c, b, a = g, f, e, (d+temp1)%mod32, c, b, a, (temp1+temp2)%mod32
+	end
+	C[1] = (C[1] + a)%mod32
+	C[2] = (C[2] + b)%mod32
+	C[3] = (C[3] + c)%mod32
+	C[4] = (C[4] + d)%mod32
+	C[5] = (C[5] + e)%mod32
+	C[6] = (C[6] + f)%mod32
+	C[7] = (C[7] + g)%mod32
+	C[8] = (C[8] + h)%mod32
+	return C
+end
+
+local mt = {
+	__tostring = function(a) return string.char(unpack(a)) end,
+	__index = {
+		toHex = function(self, s) return ("%02x"):rep(#self):format(unpack(self)) end,
+		isEqual = function(self, t)
+			if type(t) ~= "table" then return false end
+			if #self ~= #t then return false end
+			local ret = 0
+			for i = 1, #self do
+				ret = bit32.bor(ret, bxor(self[i], t[i]))
+			end
+			return ret == 0
+		end
+	}
+}
+
+local function toBytes(t, n)
+	local b = {}
+	for i = 1, n do
+		b[(i-1)*4+1] = band(brshift(t[i], 24), 0xFF)
+		b[(i-1)*4+2] = band(brshift(t[i], 16), 0xFF)
+		b[(i-1)*4+3] = band(brshift(t[i], 8), 0xFF)
+		b[(i-1)*4+4] = band(t[i], 0xFF)
+	end
+	return setmetatable(b, mt)
+end
+
+function sha2.digest(data)
+	local data = data or ""
+	data = type(data) == "table" and {upack(data)} or {tostring(data):byte(1,-1)}
+
+	data = preprocess(data)
+	local C = {upack(H)}
+	for i = 1, #data do C = digestblock(data[i], C) end
+	return toBytes(C, 8)
+end
+
+function sha2.hmac(data, key)
+	local data = type(data) == "table" and {upack(data)} or {tostring(data):byte(1,-1)}
+	local key = type(key) == "table" and {upack(key)} or {tostring(key):byte(1,-1)}
+
+	local blocksize = 64
+
+	key = #key > blocksize and digest(key) or key
+
+	local ipad = {}
+	local opad = {}
+	local padded_key = {}
+
+	for i = 1, blocksize do
+		ipad[i] = bxor(0x36, key[i] or 0)
+		opad[i] = bxor(0x5C, key[i] or 0)
+	end
+
+	for i = 1, #data do
+		ipad[blocksize+i] = data[i]
+	end
+
+	ipad = digest(ipad)
+
+	for i = 1, blocksize do
+		padded_key[i] = opad[i]
+		padded_key[blocksize+i] = ipad[i]
+	end
+
+	return digest(padded_key)
+end
+
+function sha2.pbkdf2(pass, salt, iter, dklen)
+	local salt = type(salt) == "table" and salt or {tostring(salt):byte(1,-1)}
+	local hashlen = 32
+	local dklen = dklen or 32
+	local block = 1
+	local out = {}
+
+	while dklen > 0 do
+		local ikey = {}
+		local isalt = {upack(salt)}
+		local clen = dklen > hashlen and hashlen or dklen
+
+		isalt[#isalt+1] = band(brshift(block, 24), 0xFF)
+		isalt[#isalt+1] = band(brshift(block, 16), 0xFF)
+		isalt[#isalt+1] = band(brshift(block, 8), 0xFF)
+		isalt[#isalt+1] = band(block, 0xFF)
+
+		for j = 1, iter do
+			isalt = hmac(isalt, pass)
+			for k = 1, clen do ikey[k] = bxor(isalt[k], ikey[k] or 0) end
+			if j % 200 == 0 then os.queueEvent("PBKDF2", j) coroutine.yield("PBKDF2") end
+		end
+		dklen = dklen - clen
+		block = block+1
+		for k = 1, clen do out[#out+1] = ikey[k] end
+	end
+
+	return setmetatable(out, mt)
+end
+
+return sha2
--- a/sys/apps/Overview.lua
+++ b/sys/apps/Overview.lua
@ -3,7 +3,7 @@ local Config   = require('config')
 local Event    = require('event')
 local NFT      = require('nft')
 local Packages = require('packages')
-local SHA1     = require('sha1')
+local SHA2     = require('sha2')
 local Tween    = require('ui.tween')
 local UI       = require('ui')
 local Util     = require('util')
@ -502,7 +502,7 @@ end

 function page.editor:updateApplications(app)
 	if not app.key then
-		app.key = SHA1.sha1(app.title)
+		app.key = SHA2.digest(app.title):toHex()
 	end
 	local filename = app.filename or fs.combine(REGISTRY_DIR, app.key)
 	Util.writeTable(filename, app)
@ -571,7 +571,7 @@ end

 Event.on('overview_shortcut', function(_, app)
 	if not app.key then
-		app.key = SHA1.sha1(app.title)
+		app.key = SHA2.digest(app.title):toHex()
 	end
 	local filename = app.filename or fs.combine(REGISTRY_DIR, app.key)
 	if not fs.exists(filename) then
--- a/sys/apps/Welcome.lua
+++ b/sys/apps/Welcome.lua
@ -1,7 +1,7 @@
 local Ansi     = require('ansi')
 local Config   = require('config')
 local Security = require('security')
-local SHA1     = require('sha1')
+local SHA2     = require('sha2')
 local UI       = require('ui')

 local colors   = _G.colors
@ -108,7 +108,7 @@ end

 function page.wizard.pages.password:validate()
  if #self.newPass.value > 0 then
-    Security.updatePassword(SHA1.sha1(self.newPass.value))
+    Security.updatePassword(SHA2.digest(self.newPass.value):toHex())
  end
  --[[
  if #self.group.value > 0 then
--- a/sys/apps/password.lua
+++ b/sys/apps/password.lua
@ -1,10 +1,10 @@
 local Security = require('security')
-local SHA1     = require('sha1')
+local SHA2     = require('sha2')
 local Terminal = require('terminal')

 local password = Terminal.readPassword('Enter new password: ')

 if password then
-	Security.updatePassword(SHA1.sha1(password))
+	Security.updatePassword(SHA2.digest(password):toHex())
 	print('Password updated')
 end
--- a/sys/apps/system/password.lua
+++ b/sys/apps/system/password.lua
@ -1,5 +1,5 @@
 local Security = require('security')
-local SHA1     = require('sha1')
+local SHA2     = require('sha2')
 local UI       = require('ui')

 local colors   = _G.colors
@ -40,11 +40,11 @@ function passwordTab:eventHandler(event)
 		if #self.newPass.value == 0 then
 			self:emit({ type = 'error_message', message = 'Invalid password' })

-		elseif Security.getPassword() and not Security.verifyPassword(SHA1.sha1(self.oldPass.value)) then
+		elseif Security.getPassword() and not Security.verifyPassword(SHA2.digest(self.oldPass.value):toHex()) then
 			self:emit({ type = 'error_message', message = 'Passwords do not match' })

 		else
-			Security.updatePassword(SHA1.sha1(self.newPass.value))
+			Security.updatePassword(SHA2.digest(self.newPass.value):toHex())
 			self.oldPass.inactive = false
 			self:emit({ type = 'success_message', message = 'Password updated' })
 		end
--- a/sys/apps/trust.lua
+++ b/sys/apps/trust.lua
@ -1,6 +1,6 @@
 local Crypto   = require('crypto')
 local Security = require('security')
-local SHA1     = require('sha1')
+local SHA2     = require('sha2')
 local Socket   = require('socket')
 local Terminal = require('terminal')

@ -35,7 +35,7 @@ end

 local publicKey = Security.getPublicKey()

-socket:write(Crypto.encrypt({ pk = publicKey, dh = os.getComputerID() }, SHA1.sha1(password)))
+socket:write(Crypto.encrypt({ pk = publicKey, dh = os.getComputerID() }, SHA2.digest(password):toHex()))

 local data = socket:read(2)
 socket:close()