1.修改代码适配阿里云的服务器
This commit is contained in:
198
server/vendor/github.com/xdg-go/scram/client.go
generated
vendored
Normal file
198
server/vendor/github.com/xdg-go/scram/client.go
generated
vendored
Normal file
@@ -0,0 +1,198 @@
|
||||
// Copyright 2018 by David A. Golden. All rights reserved.
|
||||
//
|
||||
// Licensed under the Apache License, Version 2.0 (the "License"); you may
|
||||
// not use this file except in compliance with the License. You may obtain
|
||||
// a copy of the License at http://www.apache.org/licenses/LICENSE-2.0
|
||||
|
||||
package scram
|
||||
|
||||
import (
|
||||
"sync"
|
||||
)
|
||||
|
||||
// Client implements the client side of SCRAM authentication. It holds
|
||||
// configuration values needed to initialize new client-side conversations for
|
||||
// a specific username, password and authorization ID tuple. Client caches
|
||||
// the computationally-expensive parts of a SCRAM conversation as described in
|
||||
// RFC-5802. If repeated authentication conversations may be required for a
|
||||
// user (e.g. disconnect/reconnect), the user's Client should be preserved.
|
||||
//
|
||||
// For security reasons, Clients have a default minimum PBKDF2 iteration count
|
||||
// of 4096. If a server requests a smaller iteration count, an authentication
|
||||
// conversation will error.
|
||||
//
|
||||
// A Client can also be used by a server application to construct the hashed
|
||||
// authentication values to be stored for a new user. See StoredCredentials()
|
||||
// for more.
|
||||
type Client struct {
|
||||
sync.RWMutex
|
||||
username string
|
||||
password string
|
||||
authzID string
|
||||
minIters int
|
||||
nonceGen NonceGeneratorFcn
|
||||
hashGen HashGeneratorFcn
|
||||
cache map[KeyFactors]derivedKeys
|
||||
}
|
||||
|
||||
func newClient(username, password, authzID string, fcn HashGeneratorFcn) *Client {
|
||||
return &Client{
|
||||
username: username,
|
||||
password: password,
|
||||
authzID: authzID,
|
||||
minIters: 4096,
|
||||
nonceGen: defaultNonceGenerator,
|
||||
hashGen: fcn,
|
||||
cache: make(map[KeyFactors]derivedKeys),
|
||||
}
|
||||
}
|
||||
|
||||
// WithMinIterations changes minimum required PBKDF2 iteration count.
|
||||
func (c *Client) WithMinIterations(n int) *Client {
|
||||
c.Lock()
|
||||
defer c.Unlock()
|
||||
c.minIters = n
|
||||
return c
|
||||
}
|
||||
|
||||
// WithNonceGenerator replaces the default nonce generator (base64 encoding of
|
||||
// 24 bytes from crypto/rand) with a custom generator. This is provided for
|
||||
// testing or for users with custom nonce requirements.
|
||||
func (c *Client) WithNonceGenerator(ng NonceGeneratorFcn) *Client {
|
||||
c.Lock()
|
||||
defer c.Unlock()
|
||||
c.nonceGen = ng
|
||||
return c
|
||||
}
|
||||
|
||||
// NewConversation constructs a client-side authentication conversation.
|
||||
// Conversations cannot be reused, so this must be called for each new
|
||||
// authentication attempt.
|
||||
func (c *Client) NewConversation() *ClientConversation {
|
||||
c.RLock()
|
||||
defer c.RUnlock()
|
||||
return &ClientConversation{
|
||||
client: c,
|
||||
nonceGen: c.nonceGen,
|
||||
hashGen: c.hashGen,
|
||||
minIters: c.minIters,
|
||||
}
|
||||
}
|
||||
|
||||
// NewConversationAdvertisingChannelBinding constructs a client-side
|
||||
// authentication conversation that advertises channel binding support without
|
||||
// using it. This generates the "y" GS2 flag, indicating the client supports
|
||||
// channel binding but the server did not advertise a PLUS variant mechanism.
|
||||
//
|
||||
// This helps detect downgrade attacks where a MITM strips PLUS mechanism
|
||||
// advertisements from the server's mechanism list. If the server actually
|
||||
// advertised PLUS variants, it will reject the "y" flag as a downgrade attack.
|
||||
//
|
||||
// Use this when:
|
||||
// - Your application supports channel binding (has access to TLS connection state)
|
||||
// - SASL mechanism negotiation showed the server does NOT advertise PLUS variants
|
||||
// (e.g., server advertised "SCRAM-SHA-256" but not "SCRAM-SHA-256-PLUS")
|
||||
//
|
||||
// Conversations cannot be reused, so this must be called for each new
|
||||
// authentication attempt.
|
||||
func (c *Client) NewConversationAdvertisingChannelBinding() *ClientConversation {
|
||||
c.RLock()
|
||||
defer c.RUnlock()
|
||||
return &ClientConversation{
|
||||
client: c,
|
||||
nonceGen: c.nonceGen,
|
||||
hashGen: c.hashGen,
|
||||
minIters: c.minIters,
|
||||
advertiseChannelBinding: true,
|
||||
}
|
||||
}
|
||||
|
||||
// NewConversationWithChannelBinding constructs a client-side authentication
|
||||
// conversation with channel binding for SCRAM-PLUS authentication. Channel
|
||||
// binding is connection-specific, so a new conversation should be created for
|
||||
// each connection being authenticated. Conversations cannot be reused, so this
|
||||
// must be called for each new authentication attempt.
|
||||
func (c *Client) NewConversationWithChannelBinding(cb ChannelBinding) *ClientConversation {
|
||||
c.RLock()
|
||||
defer c.RUnlock()
|
||||
return &ClientConversation{
|
||||
client: c,
|
||||
nonceGen: c.nonceGen,
|
||||
hashGen: c.hashGen,
|
||||
minIters: c.minIters,
|
||||
channelBinding: cb,
|
||||
}
|
||||
}
|
||||
|
||||
func (c *Client) getDerivedKeys(kf KeyFactors) (derivedKeys, error) {
|
||||
dk, ok := c.getCache(kf)
|
||||
if !ok {
|
||||
var err error
|
||||
dk, err = c.computeKeys(kf)
|
||||
if err != nil {
|
||||
return derivedKeys{}, err
|
||||
}
|
||||
c.setCache(kf, dk)
|
||||
}
|
||||
return dk, nil
|
||||
}
|
||||
|
||||
// GetStoredCredentials takes a salt and iteration count structure and
|
||||
// provides the values that must be stored by a server to authenticate a
|
||||
// user. These values are what the Server credential lookup function must
|
||||
// return for a given username.
|
||||
//
|
||||
// Deprecated: Use GetStoredCredentialsWithError for proper error handling.
|
||||
// This method panics if PBKDF2 key derivation fails, which should only
|
||||
// occur with invalid KeyFactors parameters.
|
||||
func (c *Client) GetStoredCredentials(kf KeyFactors) StoredCredentials {
|
||||
creds, err := c.GetStoredCredentialsWithError(kf)
|
||||
if err != nil {
|
||||
panic("scram: GetStoredCredentials failed: " + err.Error())
|
||||
}
|
||||
return creds
|
||||
}
|
||||
|
||||
// GetStoredCredentialsWithError takes a salt and iteration count structure and
|
||||
// provides the values that must be stored by a server to authenticate a
|
||||
// user. These values are what the Server credential lookup function must
|
||||
// return for a given username.
|
||||
//
|
||||
// Returns an error if PBKDF2 key derivation fails, which can occur with
|
||||
// invalid parameters in Go 1.24+ (e.g., invalid iteration counts or key lengths).
|
||||
func (c *Client) GetStoredCredentialsWithError(kf KeyFactors) (StoredCredentials, error) {
|
||||
dk, err := c.getDerivedKeys(kf)
|
||||
return StoredCredentials{
|
||||
KeyFactors: kf,
|
||||
StoredKey: dk.StoredKey,
|
||||
ServerKey: dk.ServerKey,
|
||||
}, err
|
||||
}
|
||||
|
||||
func (c *Client) computeKeys(kf KeyFactors) (derivedKeys, error) {
|
||||
h := c.hashGen()
|
||||
saltedPassword, err := pbkdf2Key(c.hashGen, c.password, []byte(kf.Salt), kf.Iters, h.Size())
|
||||
if err != nil {
|
||||
return derivedKeys{}, err
|
||||
}
|
||||
clientKey := computeHMAC(c.hashGen, saltedPassword, []byte("Client Key"))
|
||||
|
||||
return derivedKeys{
|
||||
ClientKey: clientKey,
|
||||
StoredKey: computeHash(c.hashGen, clientKey),
|
||||
ServerKey: computeHMAC(c.hashGen, saltedPassword, []byte("Server Key")),
|
||||
}, nil
|
||||
}
|
||||
|
||||
func (c *Client) getCache(kf KeyFactors) (derivedKeys, bool) {
|
||||
c.RLock()
|
||||
defer c.RUnlock()
|
||||
dk, ok := c.cache[kf]
|
||||
return dk, ok
|
||||
}
|
||||
|
||||
func (c *Client) setCache(kf KeyFactors, dk derivedKeys) {
|
||||
c.Lock()
|
||||
defer c.Unlock()
|
||||
c.cache[kf] = dk
|
||||
}
|
||||
Reference in New Issue
Block a user