1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
|
#pragma once
#include <yt/yt_proto/yt/core/crypto/proto/crypto.pb.h>
#include <yt/yt/core/misc/serialize.h>
#include <library/cpp/yt/memory/ref.h>
#include <util/generic/strbuf.h>
#include <array>
namespace NYT::NCrypto {
////////////////////////////////////////////////////////////////////////////////
using TMD5Hash = std::array<char, 16>;
using TMD5State = std::array<char, 92>;
TMD5Hash MD5FromString(TStringBuf data);
class TMD5Hasher
{
public:
TMD5Hasher();
explicit TMD5Hasher(const TMD5State& data);
TMD5Hasher& Append(TStringBuf data);
TMD5Hasher& Append(TRef data);
TMD5Hash GetDigest();
TString GetHexDigestLowerCase();
TString GetHexDigestUpperCase();
const TMD5State& GetState() const;
void Persist(const TStreamPersistenceContext& context);
private:
//! Erasing openssl struct type... brutally.
TMD5State State_;
};
////////////////////////////////////////////////////////////////////////////////
TString GetMD5HexDigestUpperCase(TStringBuf data);
TString GetMD5HexDigestLowerCase(TStringBuf data);
////////////////////////////////////////////////////////////////////////////////
using TSha1Hash = std::array<char, 20>;
TSha1Hash Sha1FromString(TStringBuf data);
class TSha1Hasher
{
public:
TSha1Hasher();
TSha1Hasher& Append(TStringBuf data);
TSha1Hash GetDigest();
TString GetHexDigestLowerCase();
TString GetHexDigestUpperCase();
private:
std::array<char, 96> CtxStorage_;
};
////////////////////////////////////////////////////////////////////////////////
class TSha256Hasher
{
public:
TSha256Hasher();
TSha256Hasher& Append(TStringBuf data);
using TDigest = std::array<char, 32>;
TDigest GetDigest();
TString GetHexDigestLowerCase();
TString GetHexDigestUpperCase();
private:
constexpr static int CtxSize = 112;
std::array<char, CtxSize> CtxStorage_;
};
////////////////////////////////////////////////////////////////////////////////
TString GetSha256HexDigestUpperCase(TStringBuf data);
TString GetSha256HexDigestLowerCase(TStringBuf data);
////////////////////////////////////////////////////////////////////////////////
TString CreateSha256Hmac(const TString& key, const TString& message);
TString CreateSha256HmacRaw(const TString& key, const TString& message);
bool ConstantTimeCompare(const TString& trusted, const TString& untrusted);
////////////////////////////////////////////////////////////////////////////////
//! Hashes password with given (random) salt.
// BEWARE: Think twice before changing this function's semantics!
TString HashPassword(const TString& password, const TString& salt);
//! Hashes SHA256-hashed password with given (random) salt.
TString HashPasswordSha256(const TString& passwordSha256, const TString& salt);
////////////////////////////////////////////////////////////////////////////////
//! Returns string of given length filled with random bytes fetched
//! from cryptographically strong generator.
// NB: May throw on RNG failure.
TString GenerateCryptoStrongRandomString(int length);
////////////////////////////////////////////////////////////////////////////////
namespace NProto {
void ToProto(NCrypto::NProto::TMD5Hasher* protoHasher, const std::optional<NYT::NCrypto::TMD5Hasher>& hasher);
void FromProto(std::optional<NYT::NCrypto::TMD5Hasher>* hasher, const NCrypto::NProto::TMD5Hasher& protoHasher);
} // namespace NProto
////////////////////////////////////////////////////////////////////////////////
} // namespace NYT::NCrypto
|