xs/vendor/gopkg.in/hlandau/passlib.v1/hash/sha2crypt/raw/parse.go

package raw

import "fmt"
import "strings"
import "strconv"

// Indicates that a password hash or stub is invalid.
var ErrInvalidStub = fmt.Errorf("invalid stub")

// Indicates that the number of rounds specified is not in the valid range.
var ErrInvalidRounds = fmt.Errorf("invalid number of rounds")

// Scans a sha256-crypt or sha512-crypt modular crypt stub or modular crypt hash
// to determine configuration parameters.
func Parse(stub string) (isSHA512 bool, salt, hash string, rounds int, err error) {
	// $5$
	if len(stub) < 3 || stub[0] != '$' || stub[2] != '$' {
		err = ErrInvalidStub
		return
	}

	if stub[1] == '6' {
		isSHA512 = true
	} else if stub[1] != '5' {
		err = ErrInvalidStub
		return
	}

	rest := stub[3:]
	parts := strings.Split(rest, "$")
	roundsStr := ""

	switch len(parts) {
	case 1:
		// $5$
		// $5$salt
		salt = parts[0]
	case 2:
		// $5$salt$hash
		// $5$rounds=1000$salt
		if strings.HasPrefix(parts[0], "rounds=") {
			roundsStr = parts[0]
			salt = parts[1]
		} else {
			salt = parts[0]
			hash = parts[1]
		}
	case 3:
		// $5$rounds=1000$salt$hash
		roundsStr = parts[0]
		salt = parts[1]
		hash = parts[2]
	default:
		err = ErrInvalidStub
	}

	if roundsStr != "" {
		if !strings.HasPrefix(roundsStr, "rounds=") {
			err = ErrInvalidStub
			return
		}

		roundsStr = roundsStr[7:]
		var n uint64
		n, err = strconv.ParseUint(roundsStr, 10, 31)
		if err != nil {
			err = ErrInvalidStub
			return
		}

		rounds = int(n)

		if rounds < MinimumRounds || rounds > MaximumRounds {
			err = ErrInvalidRounds
			return
		}
	} else {
		rounds = DefaultRounds
	}

	return
}
1/3 Updated Makefile to allow VENDOR flag (adds -vendor to version string) 2/3 Added vendor/ dir to lock down dependent pkg versions. The author of git.schwanenlied.me/yawning/{chacha20,newhope,kyber}.git has copied their repos to gitlab.com/yawning/ but some imports of chacha20 from newhope still inconsistently refer to git.schwanenlied.me/, breaking build. Licenses for chacha20 also changed from CC0 to AGPL, which may or may not be an issue. Until the two aforementioned issues are resolved, locking to last-good versions is probably the best way forward for now. To build with vendored deps, use make VENDOR=1 clean all 3/3 Moved body of CI push script into bacillus/ 2020-01-29 21:25:14 +00:00			`package raw`

			`import "fmt"`
			`import "strings"`
			`import "strconv"`

			`// Indicates that a password hash or stub is invalid.`
			`var ErrInvalidStub = fmt.Errorf("invalid stub")`

			`// Indicates that the number of rounds specified is not in the valid range.`
			`var ErrInvalidRounds = fmt.Errorf("invalid number of rounds")`

			`// Scans a sha256-crypt or sha512-crypt modular crypt stub or modular crypt hash`
			`// to determine configuration parameters.`
			`func Parse(stub string) (isSHA512 bool, salt, hash string, rounds int, err error) {`
			`// $5$`
			`if len(stub) < 3 \|\| stub[0] != '$' \|\| stub[2] != '$' {`
			`err = ErrInvalidStub`
			`return`
			`}`

			`if stub[1] == '6' {`
			`isSHA512 = true`
			`} else if stub[1] != '5' {`
			`err = ErrInvalidStub`
			`return`
			`}`

			`rest := stub[3:]`
			`parts := strings.Split(rest, "$")`
			`roundsStr := ""`

			`switch len(parts) {`
			`case 1:`
			`// $5$`
			`// $5$salt`
			`salt = parts[0]`
			`case 2:`
			`// $5$salt$hash`
			`// $5$rounds=1000$salt`
			`if strings.HasPrefix(parts[0], "rounds=") {`
			`roundsStr = parts[0]`
			`salt = parts[1]`
			`} else {`
			`salt = parts[0]`
			`hash = parts[1]`
			`}`
			`case 3:`
			`// $5$rounds=1000$salt$hash`
			`roundsStr = parts[0]`
			`salt = parts[1]`
			`hash = parts[2]`
			`default:`
			`err = ErrInvalidStub`
			`}`

			`if roundsStr != "" {`
			`if !strings.HasPrefix(roundsStr, "rounds=") {`
			`err = ErrInvalidStub`
			`return`
			`}`

			`roundsStr = roundsStr[7:]`
			`var n uint64`
			`n, err = strconv.ParseUint(roundsStr, 10, 31)`
			`if err != nil {`
			`err = ErrInvalidStub`
			`return`
			`}`

			`rounds = int(n)`

			`if rounds < MinimumRounds \|\| rounds > MaximumRounds {`
			`err = ErrInvalidRounds`
			`return`
			`}`
			`} else {`
			`rounds = DefaultRounds`
			`}`

			`return`
			`}`