Skip Menu |

This queue is for tickets about the Crypt-PBKDF2 CPAN distribution.

Report information
The Basics
Id: 105118
Status: resolved
Priority: 0/
Queue: Crypt-PBKDF2
People
Owner: Nobody in particular
Requestors: michael-dev [...] fami-braun.de
Cc:
AdminCc:
Bug Information
Severity: (no value)
Broken in: (no value)
Fixed in: 0.150900

History Show all quoted text
  Tue Jun 09 06:22:48 2015 michael-dev [...] fami-braun.de - Ticket created
CC: projekt-wlan [...] fem.tu-ilmenau.de
Subject: output of PBKDF2_hex broken
Date: Tue, 09 Jun 2015 12:22:15 +0200
To: bug-Crypt-PBKDF2 [...] rt.cpan.org
From: michael-dev <michael-dev [...] fami-braun.de>
Dear maintainer, I'm using Crypt::PBKDF2 to derive WPA PSK from WPA passphrases [1]. I need the PSK in hex encoding, as the target application (hostapd) needs it that way. But when using PBKDF2_hex, this will work only most of the time. This is because PBKDF2_hex calls "unpack 'A*'" before doing hex encode ("unpack 'H*'"), which removes trailing newlines from the binary key string before converting to hex. As a result, the returned data length does not match the output_len given. This can be worked around by not using PBKDF2_hex and instead doing the hex encoding manually outside of Crypt::PBKDF2. I would expect PBKDF2_hex to match its description, which reads Show quoted text
> As the PBKDF2 method, only the output is encoded in hexadecimal.
This can be fixed by applying: --- /usr/share/perl5/Crypt/PBKDF2.pm.orig 2015-06-09 12:20:27.569859994 +0200 +++ /usr/share/perl5/Crypt/PBKDF2.pm 2015-06-09 12:20:37.441790751 +0200 @@ -182,7 +182,7 @@ sub PBKDF2_base64 { sub PBKDF2_hex { my $self = shift; - return unpack "H*", unpack "A*", $self->PBKDF2(@_); + return unpack "H*", $self->PBKDF2(@_); } sub _PBKDF2_F { Thanks, M. Braun [1] http://subversion.fem.tu-ilmenau.de/websvn/wsvn/fem-wlan/configs/controller/etc/raddb.fem/wpa-password-hash.pl
  Thu Jun 25 13:02:23 2015 ARODLAND [...] cpan.org - Correspondence added
On Tue Jun 09 06:22:48 2015, michael-dev@fami-braun.de wrote: Show quoted text
> Dear maintainer, > > I'm using Crypt::PBKDF2 to derive WPA PSK from WPA passphrases [1]. > I need the PSK in hex encoding, as the target application (hostapd) > needs it that way. > > But when using PBKDF2_hex, this will work only most of the time. This > is > because PBKDF2_hex > calls "unpack 'A*'" before doing hex encode ("unpack 'H*'"), which > removes trailing newlines > from the binary key string before converting to hex. As a result, the > returned data length > does not match the output_len given. > > This can be worked around by not using PBKDF2_hex and instead doing > the > hex encoding manually > outside of Crypt::PBKDF2. > > I would expect PBKDF2_hex to match its description, which reads
> > As the PBKDF2 method, only the output is encoded in hexadecimal.
> > This can be fixed by applying: > > --- /usr/share/perl5/Crypt/PBKDF2.pm.orig 2015-06-09 > 12:20:27.569859994 +0200 > +++ /usr/share/perl5/Crypt/PBKDF2.pm 2015-06-09 12:20:37.441790751 > +0200 > @@ -182,7 +182,7 @@ sub PBKDF2_base64 { > > sub PBKDF2_hex { > my $self = shift; > - return unpack "H*", unpack "A*", $self->PBKDF2(@_); > + return unpack "H*", $self->PBKDF2(@_); > } > > sub _PBKDF2_F { > > Thanks, > M. Braun > > [1] > http://subversion.fem.tu-ilmenau.de/websvn/wsvn/fem- > wlan/configs/controller/etc/raddb.fem/wpa-password-hash.pl
This is the same bug as #102447, which was fixed in 0.150900 of March 31st.
  Thu Jun 25 13:02:23 2015 The RT System itself - Status changed from 'new' to 'open'
  Thu Jun 25 13:02:30 2015 ARODLAND [...] cpan.org - Status changed from 'open' to 'resolved'
  Thu Jun 25 13:02:36 2015 ARODLAND [...] cpan.org - Fixed in 0.150900 added