我目前正在使用MongooseIM,并希望将HTTP身份验证与scram一起使用。我正在使用python passlib来创建scram哈希:
import sys
from passlib.hash import scram
def main():
hash = scram.encrypt(sys.argv[1], rounds=4096, salt_size=16)
print hash
if __name__ == "__main__":
main()
然后我最终得到这样的东西:
$scram$4096$BmAsRcgZA4AwRijl3FtLyQ$sha-1=AXh5FzYzEnf6PaVQNR79AZhkwz8,sha-256=YZceXCVhfCBrr8sM9k3eS.5bztHugerGzjO97emvn20,sha-512=2NyVspiE7MP6xBAEycAV5Z/nIbBlki3sHfWvVUPPnEkMt5b4VbZfDZ0s8lvE/ns0scPGWmfKhUobmZbjfFH6RA
不幸的是,MongooseIM的HTTP身份验证不接受此格式。我查看了代码,并试图找出scram的密码形式如何散列密码:https://github.com/esl/MongooseIM/blob/master/apps/ejabberd/src/scram.erl
deserialize(<<?SCRAM_SERIAL_PREFIX, Serialized/binary>>) ->
case catch binary:split(Serialized, <<",">>, [global]) of
[StoredKey, ServerKey,Salt,IterationCount] ->
{ok, #scram{storedkey = StoredKey,
serverkey = ServerKey,
salt = Salt,
iterationcount = binary_to_integer(IterationCount)}};
_ ->
?WARNING_MSG("Incorrect serialized SCRAM: ~p, ~p", [Serialized]),
{error, incorrect_scram}
end;
从passlib我得到盐,迭代计数和盐渍(哈希)密码的实际摘要(sha-1,sha-256,sha-512)据我所知,但是StoredKey和来自Erlang代码的ServerKey? host / get_password返回的正确序列化HTTP主体如何看起来像?
提前致谢, 马格努斯
答案 0 :(得分:2)
这是一个非常好的问题,实际上让我意识到我们没有记录。我们会解决它。
目前预期的格式如下所示(您可以使用MongooseIM的调试shell来生成它)。
scram:serialize(scram:password_to_scram(<<"ala_ma_kota">>, 4096)).
<<"==SCRAM==,xB2++RvZklv0rV5I1iuCpoxLqL0=,sKXBkOFrtyGxKqYo/dlzeKfYszU=,oplvMJ5VDxQ7rJZuIj0ZfA==,4096">>
换句话说,MongooseIM希望格式为:
==SCRAM==,StoredKey,ServerKey,Salt,IterationCount
== SCRAM ==前缀是常量,其他部分取决于密码。
希望有所帮助。
答案 1 :(得分:1)
所以我想出来并写了一个小的python脚本来生成预期的格式。
import base64
import hashlib
import hmac
import sys
from passlib.hash import scram
# password_to_scram(Password, IterationCount) ->
# Salt = crypto:rand_bytes(?SALT_LENGTH),
# SaltedPassword = salted_password(Password, Salt, IterationCount),
# StoredKey = stored_key(scram:client_key(SaltedPassword)),
# ServerKey = server_key(SaltedPassword),
# #scram{storedkey = base64:encode(StoredKey),
# serverkey = base64:encode(ServerKey),
# salt = base64:encode(Salt),
# iterationcount = IterationCount}.
def main():
rounds = 4096
hash = scram.encrypt(sys.argv[1], rounds=rounds, salt_size=16)
hash = scram.encrypt('1234', rounds=rounds, salt='salt')
salt, iterations, salted_password = scram.extract_digest_info(hash, "sha-1")
# server_key(SaltedPassword) ->
# crypto:hmac(sha, SaltedPassword, <<"Server Key">>).
server_key = hmac.new(key=salted_password, msg='Server Key', digestmod=hashlib.sha1).digest()
# client_key(SaltedPassword) ->
# crypto:hmac(sha, SaltedPassword, <<"Client Key">>).
client_key = hmac.new(key=salted_password, msg='Client Key', digestmod=hashlib.sha1).digest()
# StoredKey = stored_key(scram:client_key(SaltedPassword)),
stored_key = hashlib.sha1(client_key).digest()
result = '==SCRAM==,%s,%s,%s,%d' % \
(base64.b64encode(stored_key), base64.b64encode(server_key), base64.b64encode(salt), rounds)
print result
if __name__ == '__main__':
main()
验证
(mongooseim@localhost)2> base64:encode(scram:salted_password(<<"1234">>, <<"salt">>, 4096)).
<<"vbpf4gmRPxs/+ru4TZJO3toJdw0=">>
(mongooseim@localhost)4> base64:encode(scram:stored_key(scram:client_key(scram:salted_password(<<"1234">>, <<"salt">>, 4096)))).
<<"bXKEekOUoWNAx0f21H/fIZ4dj6Y=">>
(mongooseim@localhost)3> base64:encode(scram:server_key(scram:salted_password(<<"1234">>, <<"salt">>, 4096))).
<<"eVwl7wTir232HDy7Tzq3SXZHn+4=">>
==SCRAM==,bXKEekOUoWNAx0f21H/fIZ4dj6Y=,eVwl7wTir232HDy7Tzq3SXZHn+4=,c2FsdA==,4096