Replace hash implementations with Library

[jessek]

I would like to replace the mishmash of hash algorithm implementations with a single library. This will allow us to quickly add support for new algorithms (e.g. SHA-3), remove worries about bug fixes for the algorithms, and simplify the licensing.

From my informal research, Crypto++ looks like a good choice, http://www.cryptopp.com/. But I haven't gotten around to creating a drop-in replacement for it yet.

Does anybody have any experience with crypto libraries? Have a better suggestion?

[gocursor]

There is also a negative side of using external libraries: instead of "removing worries about bug fixes", you can introduce new bugs... Very popular open source crypto library implementations may be targeted by various spy agencies who will try to inject bugs / backdoors...

[bengervais]

Hi Jesse, Crypto++ looks good, with the caveat that gocursor mentions above, another consideration might be that we are moving in our entertainment industry workflows to non-crypto hash functions: namely there is a push in our workflows to use xxhash64. Since we're only focused on data integrity and not cryptographic security, functions like these yield great performance improvements for those workflows that can take advantage of them.

Crypto++ doesn't seem to support any non-crypto hash functions. I've yet to find a library that supports every hash function I've needed to use.