Are "sodium_crypto_pwhash", "sodium_crypto_pwhash_str", and "sodium_crypto_pwhash_str_verify" implemented?

Question

Are "sodium_crypto_pwhash", "sodium_crypto_pwhash_str", and "sodium_crypto_pwhash_str_verify" implemented?

Closed this issue 3 years ago · 2 comments

Are the below Sodium functions implemented (which are based on Argon2i):

"sodium_crypto_pwhash",
"sodium_crypto_pwhash_str", and
"sodium_crypto_pwhash_str_verify".

Answer 1 · 2021-06-07T14:02:03.000Z

Yes, they are implemented and can be found in the PasswordHash class. However, avoid Argon2i since it's vulnerable to an attack when you use less than 11 iterations.

Answer 2 · 2021-06-07T15:35:48.000Z

Many thanks for the info!
That's good to know.