libxcrypt
libxcrypt copied to clipboard
besser82
Extended crypt library for descrypt, md5crypt, bcrypt, and others
Argon2
I have observed that a search for "argon2" didn't come up with anything relevant in the issue tracker (apart from honourable mentions in a yescrypt discussion), which is pretty much...
GCC 10.2 and LLVM/Clang 10 offer initial support for building libraries, that are using symbol versioning features, with LTO. To make use of this with GCC 10.2, the exported versioned...
This change makes crypt and crypt_gensalt as thread-safe as they can be without changing their interfaces. Solaris already made this change, and it’s being discussed by glibc (with suggestion that...
Addressing issue #4, I've written up a bunch of documentation for a hypothetical new feature in which the set of hashing methods that may be used, and the default cost...
The default number of SHA245, SHA512 iterations is 5000. #define ROUNDS_DEFAULT 5000 This is too low to be considered secure again even moderate GPU, ASIC attacks. Please increase the default...
This came up during the review of yescrypt, but should be discussed separately. We support generation of new "setting strings", via `crypt_gensalt`, for all of the supported hashing methods, including...
Historically, hashes were fixed-cost and thus OK for semi-trusted users to be able to specify directly e.g. in Apache httpd `.htpasswd` files. With tunable-cost hashes, this changes - a semi-trusted...
On Linux, glibc's libcrypt forbids the use of MD5 and DES password hashes if `/proc/sys/crypto/fips_enabled` exists and contains a positive integer. As I understand it, this was a kludge for...
