Turns out OpenSSL's implementation of PBKDF2 allows empty passphrases,

so for compatability with keys that were encrypted with an empty passphrase we probably want to support it as well. In PBKDF2, don't reject empty passphrases out of hand; simply call set_key and if the underlying MAC cannot use the key, throw an informative exception. This will also be more helpful in the case that someone tries using another MAC (say, CMAC) with a block cipher that only supports keys of specific sizes. In HMAC, allow zero-length keys. This is not really optimal in the sense of allowing the user to do something dumb, but a 1 byte key would be pretty dumb as well and we already allowed that. Add a test vector using an empty passphrase generated by OpenSSL
author: lloyd <[email protected]> 2010-08-21 20:02:19 +0000
committer: lloyd <[email protected]> 2010-08-21 20:02:19 +0000
commit: d34c9569af1c230c3ee52cef18aadf7d10bdf563 (patch)
tree: 51554cedf99989c5bb59e64a9d35f4af712dad17 /checks/validate.dat
parent: 50a545ebbfb9695159fbd607372a28798db1f413 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/checks/validate.dat b/checks/validate.dat
index cea1f18fc..594f7ed2f 100644
--- a/checks/validate.dat
+++ b/checks/validate.dat
@@ -60624,6 +60624,10 @@ CCFC44C09339040E55D3F7F76CA6EF838FDE928717241DEB9AC1A4EF45A27711:20:2001
 BC8BC53D4604977C3ADB1D19C15E87B77A84C2F6:14:10000
 
 [PBKDF2(SHA-1)]
+:\
+59B2B1143B4CB1059EC58D9722FB1C72471E0D85C6F7543BA5228526375B0127:\
+0001020304050607:32:10000
+
 6A79756571677872736367676C707864796B6366:\
 DF6D9D72872404BF73E708CF3B7D:\
 9B56E55328A4C97A250738F8DBA1B992E8A1B508:14:10000
author	lloyd <[email protected]>	2010-08-21 20:02:19 +0000
committer	lloyd <[email protected]>	2010-08-21 20:02:19 +0000
commit	d34c9569af1c230c3ee52cef18aadf7d10bdf563 (patch)
tree	51554cedf99989c5bb59e64a9d35f4af712dad17 /checks/validate.dat
parent	50a545ebbfb9695159fbd607372a28798db1f413 (diff)