| version 1.20, 2005/09/05 03:37:15 |
version 1.20.42.1, 2012/04/17 00:05:27 |
|
|
| .\" |
.\" |
| .\" @(#)crypt.3 8.2 (Berkeley) 12/11/93 |
.\" @(#)crypt.3 8.2 (Berkeley) 12/11/93 |
| .\" |
.\" |
| .Dd September 4, 2005 |
.Dd January 1, 2012 |
| .Dt CRYPT 3 |
.Dt CRYPT 3 |
| .Os |
.Os |
| .Sh NAME |
.Sh NAME |
|
|
| .Lb libcrypt |
.Lb libcrypt |
| .Sh SYNOPSIS |
.Sh SYNOPSIS |
| .In unistd.h |
.In unistd.h |
| .Ft char |
.Ft "char *" |
| .Fn *crypt "const char *key" "const char *setting" |
.Fn crypt "const char *key" "const char *setting" |
| .Ft int |
.Ft int |
| .Fn encrypt "char *block" "int flag" |
.Fn encrypt "char *block" "int flag" |
| .Ft int |
.Ft int |
|
|
| followed by the encoded 64-bit encryption. |
followed by the encoded 64-bit encryption. |
| .Pp |
.Pp |
| For compatibility with historical versions of |
For compatibility with historical versions of |
| .Xr crypt 3 , |
.Fn crypt , |
| the |
the |
| .Ar setting |
.Ar setting |
| may consist of 2 bytes of salt, encoded as above, in which case an |
may consist of 2 bytes of salt, encoded as above, in which case an |
| Line 244 for interpretation. |
|
| Line 244 for interpretation. |
|
| .Ss "Blowfish" crypt |
.Ss "Blowfish" crypt |
| The |
The |
| .Tn Blowfish |
.Tn Blowfish |
| version of crypt has 128 bits of |
version of |
| |
.Fn crypt |
| |
has 128 bits of |
| .Fa salt |
.Fa salt |
| in order to make building dictionaries of common passwords space consuming. |
in order to make building dictionaries of common passwords space consuming. |
| The initial state of the |
The initial state of the |
| Line 281 for interpretation. |
|
| Line 283 for interpretation. |
|
| .Sh RETURN VALUES |
.Sh RETURN VALUES |
| The function |
The function |
| .Fn crypt |
.Fn crypt |
| returns a pointer to the encrypted value on success and NULL on failure. |
returns a pointer to the encrypted value on success. |
| |
.Pp |
| |
The behavior of |
| |
.Fn crypt |
| |
on errors isn't well standardized. |
| |
Some implementations simply can't fail (unless the process dies, in which |
| |
case they obviously can't return), others return |
| |
.Dv NULL |
| |
or a fixed string. |
| |
Most implementations don't set |
| |
.Va errno , |
| |
but some do. |
| |
.St -susv2 |
| |
specifies |
| |
only returning |
| |
.Dv NULL |
| |
and setting |
| |
.Va errno |
| |
as a valid behavior, and defines |
| |
only one possible error |
| |
.Er ( ENOSYS , |
| |
.Dq "The functionality is not supported on this implementation." ) |
| |
Unfortunately, most existing applications aren't prepared to handle |
| |
.Dv NULL |
| |
returns from |
| |
.Fn crypt . |
| |
The description below corresponds to this implementation of |
| |
.Fn crypt |
| |
only. |
| |
The behavior may change to match standards, other implementations or existing |
| |
applications. |
| |
.Pp |
| |
.Fn crypt |
| |
may only fail (and return) when passed an invalid or unsupported |
| |
.Fa setting , |
| |
in which case it returns a pointer to a magic string that is shorter than 13 |
| |
characters and is guaranteed to differ from |
| |
.Fa setting . |
| |
This behavior is safe for older applications which assume that |
| |
.Fn crypt |
| |
can't fail, when both setting new passwords and authenticating against |
| |
existing password hashes. |
| |
.Pp |
| The functions |
The functions |
| .Fn setkey , |
.Fn setkey , |
| .Fn encrypt , |
.Fn encrypt , |
| Line 352 a pointer to that object. |
|
| Line 396 a pointer to that object. |
|
| Subsequent calls to |
Subsequent calls to |
| .Fn crypt |
.Fn crypt |
| will modify the same object. |
will modify the same object. |
| |
.Pp |
| |
Before |
| |
.Nx 6.0 |
| |
.Fn crypt |
| |
returned either |
| |
.Dv NULL |
| |
or |
| |
.Dv \&: |
| |
on error. |
![[BACK]](/icons/back.gif){kind=icon}
Return to crypt.3 CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [cvs.NetBSD.org] / src / lib / libcrypt