Startsida Utforska Hjälp
Logga in
oid
/
obfs4
spegling av https://git.torproject.org/pluggable-transports/obfs4.git/
Bevaka 1
Stjärnmärk 0
Fork 0
Filer Ärenden 0 Wiki
Träd: b12fdd7aab
Grenar Taggar
obfs4
/
transports
/
scramblesuit
/
hkdf_expand.go

hkdf_expand.go 2.2 KB
Historik

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. /*
    2. 

  2.  * Copyright (c) 2015, Yawning Angel <yawning at schwanenlied dot me>
    3. 

  3.  * All rights reserved.
    4. 

  4.  *
    5. 

  5.  * Redistribution and use in source and binary forms, with or without
    6. 

  6.  * modification, are permitted provided that the following conditions are met:
    7. 

  7.  *
    8. 

  8.  *  * Redistributions of source code must retain the above copyright notice,
    9. 

  9.  *    this list of conditions and the following disclaimer.
    10. 

  10.  *
    11. 

  11.  *  * Redistributions in binary form must reproduce the above copyright notice,
    12. 

  12.  *    this list of conditions and the following disclaimer in the documentation
    13. 

  13.  *    and/or other materials provided with the distribution.
    14. 

  14.  *
    15. 

  15.  * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
    16. 

  16.  * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
    17. 

  17.  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
    18. 

  18.  * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
    19. 

  19.  * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
    20. 

  20.  * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
    21. 

  21.  * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
    22. 

  22.  * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
    23. 

  23.  * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
    24. 

  24.  * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
    25. 

  25.  * POSSIBILITY OF SUCH DAMAGE.
    26. 

  26.  */
    27. 

  27. 

  28. package scramblesuit
    29. 

  29. 

  30. import (
    31. 

  31. 	"crypto/hmac"
    32. 

  32. 	"hash"
    33. 

  33. )
    34. 

  34. 

  35. func hkdfExpand(hashFn func() hash.Hash, prk []byte, info []byte, l int) []byte {
    36. 

  36. 	// Why, yes.  golang.org/x/crypto/hkdf exists, and is a fine
    37. 

  37. 	// implementation of HKDF.  However it does both the extract
    38. 

  38. 	// and expand, while ScrambleSuit only does extract, with no
    39. 

  39. 	// way to separate the two steps.
    40. 

  40. 

  41. 	h := hmac.New(hashFn, prk)
    42. 

  42. 	digestSz := h.Size()
    43. 

  43. 	if l > 255*digestSz {
    44. 

  44. 		panic("hkdf: requested OKM length > 255*HashLen")
    45. 

  45. 	}
    46. 

  46. 

  47. 	var t []byte
    48. 

  48. 	okm := make([]byte, 0, l)
    49. 

  49. 	toAppend := l
    50. 

  50. 	ctr := byte(1)
    51. 

  51. 	for toAppend > 0 {
    52. 

  52. 		h.Reset()
    53. 

  53. 		_, _ = h.Write(t)
    54. 

  54. 		_, _ = h.Write(info)
    55. 

  55. 		_, _ = h.Write([]byte{ctr})
    56. 

  56. 		t = h.Sum(nil)
    57. 

  57. 		ctr++
    58. 

  58. 

  59. 		aLen := digestSz
    60. 

  60. 		if toAppend < digestSz {
    61. 

  61. 			aLen = toAppend
    62. 

  62. 		}
    63. 

  63. 		okm = append(okm, t[:aLen]...)
    64. 

  64. 		toAppend -= aLen
    65. 

  65. 	}
    66. 

  66. 	return okm
    67. 

  67. }
    68. 

  68.