aboutsummaryrefslogtreecommitdiffstats
path: root/doc/examples/passhash.cpp
Commit message (Collapse)AuthorAgeFilesLines
* Further passhash changes before release and things have to belloyd2010-02-051-3/+3
| | | | | | | | | | | | | | finalized. Move header to passhash9.h and rename the functions to be passhash9 specific ({generator,check}_passhash9) Add an algorithm identifer field. Currently only id 0 is defined, for HMAC(SHA-1), but this opens up for using HMAC(SHA-512) or HMAC(SHA-3) or CMAC(Blowfish) or whatever in the future if necessary. Increase the salt size to 96 bits and the PRF output size to 192 bits. Document in api.tex
* Prefix passhash with "$9$" in a manner similar with otherlloyd2010-02-021-3/+1
| | | | | | | | | | | | | | | | password hashing schemes. Increase salt size to 80 bits. Research shows that virtually no other PBKDF2 implementations support anything but SHA-1; for ease of implementation elsehwere switch back from SHA-512 to SHA-1. Should be mostly harmless; it limits total entropy of the password to a maximum of 160 bits, but this is unlikely anyway. Use two bytes to specify the work factor for future-proofing. Add a test.
* Password hashing is a pretty useful service, really. Move the guts oflloyd2010-02-011-58/+7
| | | | | | | | the passhash example to the library. Support variable work factors; default work factor of 10 takes about half a second to do one password on my Core2. Switch to using SHA-512 instead of SHA-1 in PBKDF2. To keep the output evenly sized for base64 purposes, reduce PBKDF2 output size by one byte (to 112 bits).
* Modify the S2K interface. Instead of being stateful in terms of the saltlloyd2010-02-011-8/+19
| | | | | | | | | | | and iteration count, force it to be passed to each call to derive_key. So remove current_salt, set_iterations, new_random_salt, and change_salt functions from S2K interface. Update examples and test application to match. While I was in there, change the passhash example to use 64 bit salts and 128 bit PBKDF2 outputs.
* Add copyright and license notes to pretty much every file that didn't have them,lloyd2009-12-311-0/+6
| | | | | | | | including the examples and self-test code. Most of these files had not copyright/license information at all; since a major point of the examples is to allow users to copy and paste code that already does something they want, an ambigious license is not good.
* Add LibraryInitializers to the examples, instead of relying on lazy init.lloyd2009-03-171-0/+2
| | | | Patch from David X Callaway.
* Move rng.{cpp,h} from core to rng/ topdirlloyd2008-10-261-3/+2
| | | | | | | | | | | | | | Add a new class AutoSeeded_RNG that is a RandomNumberGenerator that wraps up the logic formerly in RandomNumberGenerator::make_rng. make_rng in fact now just returns a new AutoSeeded_RNG object. AutoSeeded_RNG is a bit more convenient because - No need to use auto_ptr - No need to dereference (same syntax everywhere - it's an underestimated advantage imo) Also move the code from timer/timer_base to timer/
* Update examples for recent API changeslloyd2008-10-081-3/+5
|
* Fix the DSA examples. Reindent.lloyd2008-06-281-1/+2
|
* Update pkcs10, passhash exampleslloyd2008-06-271-5/+12
|
* Update passhash example with new S2K::new_random_salt signaturelloyd2008-05-241-1/+2
|
* Wrap lines in pk_bench and passhash to keep them under 80 columns.lloyd2007-10-191-2/+2
|
* If the LibraryInitializer is created with just default arguments, don'tlloyd2007-10-071-2/+0
| | | | | | | bother creating it, just let it be initialized lazily when needed. Reindents in encypt.cpp and hash_fd.cpp (indenting the brace after a try statement).
* Add a password hashing example. It uses PBKDF2/SHA-1 with 10000 iterations,lloyd2007-03-091-0/+76
a 48-bit seed, and a 96-bit hash. The example can both create new hashes and confirm existing ones.
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-18 17:52:50 +0000