OpenSSL libcrypto/libcrypt

Robert Connolly robert at
Tue May 1 10:29:26 PDT 2007

hmac-sha1 is now using getpid() for iteration counts:

The iteration count doesn't have to be random, just different. The password 
string contains the iteration number, so randomness does very little good. It 
is different with each new password just so folks won't be able to use a 
pre-generated crack dictionary, and they'll need a new dictionary for each 
password hash.

I got sha512 working, but without copying identical code with different 
#define's I need to fix to build the same file twice with 
different cppflags, and doing the autotools comes last.

This patch uses arc4random() for password salt, for the moment.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <>

More information about the hlfs-dev mailing list