[Git][openldap/openldap][master] 7 commits: ITS#9203 contrib/passwd/argon2: add manual page - openldap-commit

14 Apr 2020


      Ryan Tandy pushed to branch master at openldap / OpenLDAP
Commits:
5c20342b by Peter Marschall at 2020-04-14T09:26:19-07:00
ITS#9203 contrib/passwd/argon2: add manual page
Add manual page slapd-pw-argon2.5 and make sure it gets installed.
Signed-off-by: Peter Marschall &lt;peter@adpm.de&gt;
- - - - -
2be4576a by Ryan Tandy at 2020-04-14T09:26:19-07:00
ITS#9203 slapd-argon2 -&gt; pw-argon2
Based on initial patch by Peter Marschall.
- - - - -
40ce9a46 by Peter Marschall at 2020-04-14T09:26:19-07:00
ITS#9206 contrib/passwd/argon2: consolidate libsodium implementation
* use &#39;crypto_pwhash_str_alg(..., crypto_pwhash_ALG_ARGON2ID13)&#39; to set
  the algorithm to Argon2.
  According to libsodium&#39;s documentation, the original &#39;crypto_pwhash_str()&#39;
  only guarantees a &quot;memory-hard, CPU-intensive hash function&quot;, but not
  necessarily Argon2.  Although in released versions of libsodium Argon2 is
  the only implemented backend, this may chane in the future.
* multiply the &#39;memory&#39; parameter by 1024 to align it with the libargon2
  implementation. The objective is to have consistent configuration in
  OpenLDAP&#39;s pw-argon2 module no matter what backend implementation is used.
Signed-off-by: Peter Marschall &lt;peter@adpm.de&gt;
- - - - -
64856677 by Ryan Tandy at 2020-04-14T09:26:19-07:00
ITS#9206 Initialize libsodium before calling its functions
- - - - -
307b06ff by Ryan Tandy at 2020-04-14T09:26:19-07:00
ITS#9206 Convert libsodium default memlimit to KiB
- - - - -
0ec42b08 by Ryan Tandy at 2020-04-14T09:26:19-07:00
ITS#9206 Use argon2id default values explicitly
- - - - -
feb6f21d by Ryan Tandy at 2020-04-14T09:26:19-07:00
ITS#9203 Remove default values from slapd-pw-argon2.5
The defaults vary by crypto library and possibly even version, so it&#39;s
not worth trying to keep them accurate.
- - - - -
4 changed files:
- contrib/slapd-modules/passwd/argon2/Makefile
- contrib/slapd-modules/passwd/argon2/README
- contrib/slapd-modules/passwd/argon2/pw-argon2.c
- + contrib/slapd-modules/passwd/argon2/slapd-pw-argon2.5
View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/f6d9fdc4f1ed402083145f5...
-- 
View it on GitLab: https://git.openldap.org/openldap/openldap/-/compare/f6d9fdc4f1ed402083145f5...
You're receiving this email because of your account on git.openldap.org.