scram-common_8h_source.html

 /*-------------------------------------------------------------------------
  *
  * scram-common.h
  *      Declarations for helper functions used for SCRAM authentication
  *
  * Portions Copyright (c) 1996-2021, PostgreSQL Global Development Group
  * Portions Copyright (c) 1994, Regents of the University of California
  *
  * src/include/common/scram-common.h
  *
  *-------------------------------------------------------------------------
  */
 #ifndef SCRAM_COMMON_H
 #define SCRAM_COMMON_H

 #include "common/cryptohash.h"
 #include "common/sha2.h"

 /* Name of SCRAM mechanisms per IANA */
 #define SCRAM_SHA_256_NAME "SCRAM-SHA-256"
 #define SCRAM_SHA_256_PLUS_NAME "SCRAM-SHA-256-PLUS"    /* with channel binding */

 /* Length of SCRAM keys (client and server) */
 #define SCRAM_KEY_LEN               PG_SHA256_DIGEST_LENGTH

 /* length of HMAC */
 #define SHA256_HMAC_B               PG_SHA256_BLOCK_LENGTH

 /*
  * Size of random nonce generated in the authentication exchange.  This
  * is in "raw" number of bytes, the actual nonces sent over the wire are
  * encoded using only ASCII-printable characters.
  */
 #define SCRAM_RAW_NONCE_LEN         18

 /*
  * Length of salt when generating new secrets, in bytes.  (It will be stored
  * and sent over the wire encoded in Base64.)  16 bytes is what the example in
  * RFC 7677 uses.
  */
 #define SCRAM_DEFAULT_SALT_LEN      16

 /*
  * Default number of iterations when generating secret.  Should be at least
  * 4096 per RFC 7677.
  */
 #define SCRAM_DEFAULT_ITERATIONS    4096

 /*
  * Context data for HMAC used in SCRAM authentication.
  */
 typedef struct
 {
     pg_cryptohash_ctx *sha256ctx;
     uint8       k_opad[SHA256_HMAC_B];
 } scram_HMAC_ctx;

 extern int  scram_HMAC_init(scram_HMAC_ctx *ctx, const uint8 *key, int keylen);
 extern int  scram_HMAC_update(scram_HMAC_ctx *ctx, const char *str, int slen);
 extern int  scram_HMAC_final(uint8 *result, scram_HMAC_ctx *ctx);

 extern int  scram_SaltedPassword(const char *password, const char *salt,
                                  int saltlen, int iterations, uint8 *result);
 extern int  scram_H(const uint8 *str, int len, uint8 *result);
 extern int  scram_ClientKey(const uint8 *salted_password, uint8 *result);
 extern int  scram_ServerKey(const uint8 *salted_password, uint8 *result);

 extern char *scram_build_secret(const char *salt, int saltlen, int iterations,
                                 const char *password);

 #endif                          /* SCRAM_COMMON_H */
scram_build_secret
char * scram_build_secret(const char *salt, int saltlen, int iterations, const char *password)
Definition: scram-common.c:261

uint8
unsigned char uint8
Definition: c.h:427

scram_H
int scram_H(const uint8 *str, int len, uint8 *result)
Definition: scram-common.c:195

scram_HMAC_ctx::sha256ctx
pg_cryptohash_ctx * sha256ctx
Definition: scram-common.h:54

cryptohash.h

sort-test.key
key
Definition: sort-test.py:17

scram_HMAC_ctx
Definition: scram-common.h:52

generate_unaccent_rules.str
str
Definition: generate_unaccent_rules.py:282

sha2.h

scram_ClientKey
int scram_ClientKey(const uint8 *salted_password, uint8 *result)
Definition: scram-common.c:219

password
static char * password
Definition: streamutil.c:53

pg_cryptohash_ctx
Definition: cryptohash.c:43

scram_SaltedPassword
int scram_SaltedPassword(const char *password, const char *salt, int saltlen, int iterations, uint8 *result)
Definition: scram-common.c:142

scram_HMAC_init
int scram_HMAC_init(scram_HMAC_ctx *ctx, const uint8 *key, int keylen)
Definition: scram-common.c:35

scram_HMAC_update
int scram_HMAC_update(scram_HMAC_ctx *ctx, const char *str, int slen)
Definition: scram-common.c:93

scram_HMAC_final
int scram_HMAC_final(uint8 *result, scram_HMAC_ctx *ctx)
Definition: scram-common.c:109

scram_ServerKey
int scram_ServerKey(const uint8 *salted_password, uint8 *result)
Definition: scram-common.c:237

SHA256_HMAC_B
#define SHA256_HMAC_B
Definition: scram-common.h:27