Re: crypt_r()?

To: tech-userlevel%NetBSD.org@localhost
Subject: Re: crypt_r()?
From: Konrad Schroder <perseant%hhhh.org@localhost>
Date: Tue, 15 Feb 2022 17:25:10 -0800

On 2/15/2022 5:04 PM, Mouse wrote:

(2) Hashing password, which takes the password and the settings andreturns an allocated string with the resulting hash. [...]
I really don't like making them depend on malloc, though I have a hardtime articulating what bothers me about it.

I can't say what bothers *you* about it :^) but what bothers me is thatit makes it impossible to pre-allocate memory for the purpose. Thismight be a concern, for example, on a system with no swap.

Combine that with a need for thread safety, say for a threaded logindaemon on a system with no swap, and you get crypt_r(3) as described.

Of course the clearest use-case for crypt_r(3) is a password cracker:each thread sets up its own local memory and blasts through calls tocrypt_r(3) as fast as it can. I've run a cracker as a white-hat. But Ican see not wanting to add the capability to base if that's the onlyconvincing use case.


Take care,

    Konrad Schroder
    perseant%hhhh.org@localhost

Follow-Ups:
- Re: crypt_r()?
  - From: Joerg Sonnenberger

References:
- crypt_r()?
  - From: Thomas Klausner
- Re: crypt_r()?
  - From: Niclas Rosenvik
- Re: crypt_r()?
  - From: Joerg Sonnenberger
- Re: crypt_r()?
  - From: Niclas Rosenvik
- Re: crypt_r()?
  - From: Joerg Sonnenberger
- Re: crypt_r()?
  - From: Mouse

Prev by Date: Re: crypt_r()?
Next by Date: Re: crypt_r()?
Previous by Thread: Re: crypt_r()?
Next by Thread: Re: crypt_r()?
Indexes:

Home | Main Index | Thread Index | Old Index