Ryan Tandy pushed to branch master at openldap / OpenLDAP
Commits: 5c20342b by Peter Marschall at 2020-04-14T09:26:19-07:00 ITS#9203 contrib/passwd/argon2: add manual page Add manual page slapd-pw-argon2.5 and make sure it gets installed. Signed-off-by: Peter Marschall <[email protected]> - - - - - 2be4576a by Ryan Tandy at 2020-04-14T09:26:19-07:00 ITS#9203 slapd-argon2 -> pw-argon2 Based on initial patch by Peter Marschall. - - - - - 40ce9a46 by Peter Marschall at 2020-04-14T09:26:19-07:00 ITS#9206 contrib/passwd/argon2: consolidate libsodium implementation * use 'crypto_pwhash_str_alg(..., crypto_pwhash_ALG_ARGON2ID13)' to set the algorithm to Argon2. According to libsodium's documentation, the original 'crypto_pwhash_str()' only guarantees a "memory-hard, CPU-intensive hash function", but not necessarily Argon2. Although in released versions of libsodium Argon2 is the only implemented backend, this may chane in the future. * multiply the 'memory' parameter by 1024 to align it with the libargon2 implementation. The objective is to have consistent configuration in OpenLDAP's pw-argon2 module no matter what backend implementation is used. Signed-off-by: Peter Marschall <[email protected]> - - - - - 64856677 by Ryan Tandy at 2020-04-14T09:26:19-07:00 ITS#9206 Initialize libsodium before calling its functions - - - - - 307b06ff by Ryan Tandy at 2020-04-14T09:26:19-07:00 ITS#9206 Convert libsodium default memlimit to KiB - - - - - 0ec42b08 by Ryan Tandy at 2020-04-14T09:26:19-07:00 ITS#9206 Use argon2id default values explicitly - - - - - feb6f21d by Ryan Tandy at 2020-04-14T09:26:19-07:00 ITS#9203 Remove default values from slapd-pw-argon2.5 The defaults vary by crypto library and possibly even version, so it's not worth trying to keep them accurate. - - - - - 4 changed files: - contrib/slapd-modules/passwd/argon2/Makefile - contrib/slapd-modules/passwd/argon2/README - contrib/slapd-modules/passwd/argon2/pw-argon2.c - + contrib/slapd-modules/passwd/argon2/slapd-pw-argon2.5 View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/f6d9fdc4f1ed402083145f56fbf3788ec537a217...feb6f21d2e9d232101eb52931f5983dd05ea1ba9 -- View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/f6d9fdc4f1ed402083145f56fbf3788ec537a217...feb6f21d2e9d232101eb52931f5983dd05ea1ba9 You're receiving this email because of your account on git.openldap.org.
