Dave Cridland <[email protected]> writes: > On Tue Nov 3 15:58:34 2009, Simon Josefsson wrote: >> So hopefully it is Just A Small Matter of, err, reordering the >> fields >> and things will work. Hopefully. > > Nope - my implementation and the specification have obviously drifted > considerably. > > I think I've now brought my implementation into line, though, and it > still fails to work. > > The portion I'm finding hardest to test is my Hi() function. I have, > for example: > > Hi( 'pencil', '$\x93<\xdeM\x0e\xa42\xdf:\x86\x19', 4096 ) => > \x1e\x0ba\xd9\xb6>\x8aiN8\x98\xc8c\xad\x85is\x03"=' > > That's with a base64 encoded salt of JJM83k0OpDLfOoYZ
That seems wrong, check your PBKDF2 implementation. I have created a small test tool (see below) to print pbkdf2 outputs, and with those inputs I get the following output: 6c 30 ac 3f 42 98 52 b2 14 2e 1f d2 c6 be cb de 36 4a ff 8d This is with an PBKDF2 implementation that is used in both GNU Shishi for Kerberos V5 and GnuTLS for X.509 (and GNU SASL for SCRAM but that proves nothing) so I feel fairly confident that it is correct. I could have made an error in my test tool though. However I cannot find any test vectors for PBKDF2 which seems bad, I'll see if I can put together a document on that. Here is how to use my tool: j...@mocca:~$ git clone git://git.josefsson.org/git/pbkdf2.git ... j...@mocca:~$ cd pbkdf2/ j...@mocca:~/pbkdf2 master$ autoreconf -i ... j...@mocca:~/pbkdf2 master$ ./configure ... j...@mocca:~/pbkdf2 master$ make ... j...@mocca:~/pbkdf2 master$ ./pbkdf2 4b 00 79 01 b7 65 48 9a be ad 49 d9 26 f7 21 d0 65 a4 29 c1 4b 00 79 01 b7 65 48 9a be ad 49 d9 26 f7 21 d0 65 a4 29 c1 4b 00 79 01 b7 65 48 9a be ad 49 d9 26 f7 21 d0 65 a4 29 c1 j...@mocca:~/pbkdf2 master$ See pbkdf2.c for changing the password/salt values. /Simon _______________________________________________ JDev mailing list Forum: http://www.jabberforum.org/forumdisplay.php?f=20 Info: http://mail.jabber.org/mailman/listinfo/jdev Unsubscribe: [email protected] _______________________________________________
