password cache: use a better hash algorithm

[sssd-bot]

Cloned from Pagure issue: https://pagure.io/SSSD/sssd/issue/3446

• Created at 2017-07-10 12:40:13 by ftweedal
• Assigned to nobody

---

The SSSD password cache currently uses salted, iterated (5000 times) SHA-512. SHA-512 is designed for speed and is not an ideal password hash.

Investigate switching to a modern hash designed for password storage such as argon2 (or scrypt or bcrypt). Ideally the digest or implementation should be tunable for a particular time cost (e.g. 0.2 seconds) and memory cost.

Comments

---

Comment from jhrozek at 2017-07-19 22:00:02

This sounds like a fine idea, but nothing we need to implement in a hurry.

It would make for a nice thesis topic perhaps?

---

Comment from jhrozek at 2017-07-19 22:00:21

Metadata Update from @jhrozek:

• Issue set to the milestone: SSSD Future releases (no date set yet)

---

Comment from thalman at 2020-03-11 14:10:43

Metadata Update from @thalman:

• Issue tagged with: Future milestone

---

Comment from pbrezina at 2020-03-11 14:11:30

Metadata Update from @pbrezina:

• Issue tagged with: Possible thesis

[andreboscatto]

The default for Fedora since F35 is to use yescrypt as default hashing method for shadow passwords. It does make sense to move into that direction.