Results 1 to 2 of 2

Thread: Can you pass the salt please

Hybrid View

Previous Post Previous Post   Next Post Next Post
  1. #1
    Join Date
    Feb 2009
    Posts
    4,726

    Default Can you pass the salt please

    I was just having a quick look at the security library examples, specifically the passcode playground

    Each time I click on the storage string button I get a different result back, as one would expect

    Looking in the debugger ultimately the process is calling CryptoPwhashArgon2idStr which calls the external function in the library libsodium_crypto_pwhash_argon2id_str

    However no salt is passed

    Clearly the whole process works as does the verify function when called from the library

    My only real question is there must be some random element at play here to give a different result each time but it does not appear to need to be passed when decoding is required

    So what am I missing ?
    Success consists of going from failure to failure without loss of enthusiasm - Winston Churchill

  2. #2
    Join Date
    Mar 2009
    Location
    São Paulo/Brazil
    Posts
    77

    Default Re: Can you pass the salt please

    Hi!

    The random salt is generated automatically by the Argon2 function: https://libsodium.gitbook.io/doc/pas...gon2i_function.

    All information needed to verify the generated hash is part of the encoded string returned by the Argon2 function.

    I hope it helps you.

    Best Regards,
    João Maurício Rinardo
    Data Access Latin America

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •