1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
|
extern crate commoncrypto_sys;
extern crate hex;
use hex::{ToHex, FromHex};
// These password, salts, rounds and derived key values come from the test
// vectors stated in RFC 6070
const PASSWORD: &'static str = "password";
const SALT: &'static str = "salt";
const DERIVED1: &'static str = "0c60c80f961f0e71f3a9b524af6012062fe037a6";
const DERIVED4096: &'static str = "4b007901b765489abead49d926f721d065a429c1";
macro_rules! test_pbkdf2 {
(
$test_name: ident,
$prf_algorithm: ident,
$pw: ident,
$salt: ident,
$rounds: expr,
$expected_dkey: ident
) => {
#[test]
fn $test_name() {
let derived_len = Vec::<u8>::from_hex($expected_dkey).expect("dkey from hex").len();
let mut pw_derived = vec![0u8; derived_len];
unsafe {
assert_eq!(0, commoncrypto_sys::CCKeyDerivationPBKDF(
commoncrypto_sys::CCPBKDFAlgorithm::kCCPBKDF2,
$pw.as_ptr(), $pw.len(),
$salt.as_ptr(), $salt.len(),
commoncrypto_sys::CCPseudoRandomAlgorithm::$prf_algorithm,
$rounds,
pw_derived.as_mut_ptr(), pw_derived.len()
));
}
assert_eq!($expected_dkey, pw_derived.to_hex());
}
}
}
test_pbkdf2!(pbkdf2_1, kCCPRFHmacAlgSHA1, PASSWORD, SALT, 1, DERIVED1);
test_pbkdf2!(pbkdf2_4096,
kCCPRFHmacAlgSHA1,
PASSWORD,
SALT,
4096,
DERIVED4096);
|
