| ▲ | Havoc 6 days ago |
| One can really sense the pain just reading the headings Also a crypto library that limits passwords to 72 bytes? That’s wild |
|
| ▲ | AstralStorm 6 days ago | parent [-] |
| It's written with constant memory allocation in mind. Silly of them to use such a small buffer though, make it a configuration option. |
| |
| ▲ | mras0 6 days ago | parent | next [-] | | No, it's due to the construction of bcrypt - it ends up using the password more or less directly as the key for blowfish (the underlying cipher) which is why the limit is there. Check wikipedia for details. | |
| ▲ | nothrabannosir 6 days ago | parent | prev [-] | | I assumed all hashes are in O(1) space? Is there any that’s not? |
|
