Skip to content

Commit

Permalink
Add catpig.py
Browse files Browse the repository at this point in the history
  • Loading branch information
@hakavlad
hakavlad committed Sep 21, 2023
1 parent 3b25a50 commit ca487a9
Show file tree
Hide file tree
Showing 2 changed files with 127 additions and 0 deletions.
Empty file added catpig/__init__.py
View file
Empty file.
127 changes: 127 additions & 0 deletions catpig/catpig.py
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,127 @@
#!/usr/bin/env python3
"""catpig memory-hard KDF.
"""

from hashlib import blake2b, pbkdf2_hmac, shake_256

K: int = 2 ** 10
M: int = 2 ** 20
BYTEORDER = 'little'
RND_CHUNK_SIZE: int = 8
SHAKE_SIZE: int = 64
READ_CHUNK_SIZE: int = K * 4
READ_BLOCK_SIZE: int = K * 64
NUM_CHUNKS_IN_READ_BLOCK: int = READ_BLOCK_SIZE // READ_CHUNK_SIZE
NUM_READ_BLOCKS_IN_MIB: int = M // READ_BLOCK_SIZE
RND_BLOCK_SIZE: int = RND_CHUNK_SIZE * NUM_CHUNKS_IN_READ_BLOCK + SHAKE_SIZE
MAX_SPACE_BLOCK_SIZE: int = (2 ** 31 - 1) // M
MAX_DKLEN: int = 2 ** 31 - 1
MAX_SPACE_MIB: int = 256 ** RND_CHUNK_SIZE // M


def catpig(
password: bytes,
salt: bytes,
space_mib: int = 64,
passes: int = 4,
dklen: int = 64
) -> bytes:
"""Memory-hard function.
"""
if space_mib < 1 or space_mib > MAX_SPACE_MIB:
raise ValueError('Invalid space_mib value')

if passes < 1:
raise ValueError('Invalid passes value')

if dklen < 1 or dklen > MAX_DKLEN:
raise ValueError('Invalid dklen value')

space_size: int = space_mib * M
num_read_blocks: int = NUM_READ_BLOCKS_IN_MIB * space_mib * passes
half_num_read_blocks: int = num_read_blocks // 2 - 1

ho_blake = blake2b()
ho_blake.update(password)
key64: bytes = ho_blake.digest()

ho_blake = blake2b()
ho_blake.update(salt)
salt64: bytes = ho_blake.digest()

ho_passes = blake2b(key=key64)
ho_passes.update(salt64)

passes_digest0: bytes = ho_passes.digest()

ho_space = shake_256()
ho_space.update(passes_digest0)

num_space_blocks: int = space_size // MAX_SPACE_BLOCK_SIZE
rem_space_size: int = space_size % MAX_SPACE_BLOCK_SIZE

space_block_list: list = []

for _ in range(num_space_blocks):
space_block: bytes = ho_space.digest(MAX_SPACE_BLOCK_SIZE)
space_block_list.append(space_block)
ho_space.update(space_block[-SHAKE_SIZE:])
if rem_space_size > 0:
space_block = ho_space.digest(rem_space_size)
space_block_list.append(space_block)

ho_mem_access_pattern = shake_256()
ho_mem_access_pattern.update(salt64)

for i in range(num_read_blocks):
rnd_block: bytes = ho_mem_access_pattern.digest(RND_BLOCK_SIZE)
rnd_block_read_pos: int = 0

for _ in range(NUM_CHUNKS_IN_READ_BLOCK):
rnd_chunk: bytes = rnd_block[rnd_block_read_pos:
rnd_block_read_pos + RND_CHUNK_SIZE]
int_rnd_chunk: int = int.from_bytes(rnd_chunk, byteorder=BYTEORDER)
rnd_offset: int = int_rnd_chunk % space_size

cur_block_num: int = rnd_offset // MAX_SPACE_BLOCK_SIZE
cur_block_rnd_offset: int = rnd_offset % MAX_SPACE_BLOCK_SIZE
cur_block_size: int = len(space_block_list[cur_block_num])

if cur_block_size - cur_block_rnd_offset >= READ_CHUNK_SIZE:
read_chunk: bytes = space_block_list[cur_block_num][
cur_block_rnd_offset:
cur_block_rnd_offset + READ_CHUNK_SIZE]
else:
if space_size - rnd_offset < READ_CHUNK_SIZE:
cur_block_num2: int = 0
else:
cur_block_num2 = cur_block_num + 1

read_size1: int = cur_block_size - cur_block_rnd_offset
read_size2: int = READ_CHUNK_SIZE - read_size1

read_chunk = b''.join([
space_block_list[cur_block_num][-read_size1:],
space_block_list[cur_block_num2][:read_size2]
])

ho_passes.update(read_chunk)
rnd_block_read_pos += RND_CHUNK_SIZE

ho_mem_access_pattern.update(rnd_block[-SHAKE_SIZE:])

if i >= half_num_read_blocks:
passes_intermediate_digest = ho_passes.digest()
ho_mem_access_pattern.update(passes_intermediate_digest)

passes_final_digest: bytes = ho_passes.digest()

derived_key: bytes = pbkdf2_hmac(
hash_name='sha3_512',
iterations=K,
password=passes_final_digest,
salt=salt64,
dklen=dklen
)

return derived_key

0 comments on commit ca487a9

Please sign in to comment.