Skip to content

Issue 6241 - Add support for CRYPT-YESCRYPT #6242

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 2, 2024
Merged

Issue 6241 - Add support for CRYPT-YESCRYPT #6242

merged 1 commit into from
Jul 2, 2024

Conversation

@jasonborden
Copy link
Contributor

@jasonborden jasonborden commented Jun 28, 2024
edited by progier389
Loading

Description:
Implements CRYPT-YESCRYPT as a password storage scheme

Issue: #6241

Reviewed by: @progier389

@jasonborden
Copy link
Contributor Author

jasonborden commented Jun 28, 2024

This PR uses the same defaults parameters as the distros that use yescrypt: 24 b64 salt chars and j9T params. To use yescrypt the system will need libxcrypt 4.2 or higher.

progier389
progier389 reviewed Jun 28, 2024
View reviewed changes
Copy link
Contributor

@progier389 progier389 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good,
but I would prefer that we use #define for the standard crypt algorithm id rather than embedding directly the string in the code.

Maybe a bit picky but this code is sensitive in term of security,
and it is better make it as easily readable as possible ...

/* Standard Crypt Algorithms identifiers (with usual options when needed) */
#define CRYPT_ALGO_ID_SHA512 "$6$"
#define CRYPT_ALGO_ID_YESCRYPT "$y$j9T$"

@jasonborden jasonborden force-pushed the crypt_pwd-yescrypt branch from c42e1dd to ff86b69 Compare July 2, 2024 05:46
@jasonborden
Issue 6241 - Add support for CRYPT-YESCRYPT
44108c3 
Description:
Implements CRYPT-YESCRYPT as a password storage scheme
@jasonborden jasonborden force-pushed the crypt_pwd-yescrypt branch from ff86b69 to 44108c3 Compare July 2, 2024 05:51
@jasonborden
Copy link
Contributor Author

jasonborden commented Jul 2, 2024

Updated with suggested #defined algorithm IDs and comment.

progier389
progier389 approved these changes Jul 2, 2024
View reviewed changes
Copy link
Contributor

@progier389 progier389 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good.

@progier389 progier389 linked an issue Jul 2, 2024 that may be closed by this pull request
Add support for CRYPT-YESCRYPT #6241
Closed
@progier389 progier389 merged commit f6481f6 into 389ds:main Jul 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@progier389 progier389 progier389 approved these changes

Assignees

@jasonborden jasonborden

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add support for CRYPT-YESCRYPT

2 participants

@jasonborden @progier389