Add support for the yescrypt hash method.

libguestfs / guestfs-tools

Tools for accessing and modifying guest disk images

https://libguestfs.org

GNU General Public License v2.0

14 stars 6 forks source link

Add support for the yescrypt hash method. #3

Closed besser82 closed 3 years ago

besser82 commented 3 years ago

The yescrypt hashing method is considered to be much stronger than sha512crypt and fully supported by libxcrypt >= 4.3.

It is based on NIST-approved primitives, like PBKDF2, and on par with argon2 in strength.

Fresh installed systems, as well as newly computed hashes for the UNIX shadow file should prefer this method, if the crypt() function, the distro ships, is capable of computing such hashes.

See: https://fedoraproject.org/wiki/Changes/yescrypt_as_default_hashing_method_for_shadow

rwmjones commented 3 years ago

Thanks, I have pushed it.

besser82 commented 3 years ago

You're welcome! =)

besser82 commented 3 years ago

Do you plan to cut a new release within the next days, or shall I open a PR for the Fedora package, too?

rwmjones commented 3 years ago

Sure I can do a release tomorrow. No need to file a bug.

besser82 commented 3 years ago

Sure I can do a release tomorrow. No need to file a bug.

That would be great! Thank you!

rwmjones commented 3 years ago

https://koji.fedoraproject.org/koji/taskinfo?taskID=70217260

besser82 commented 3 years ago

That's really cool! Thank you!