Jason McIntyre writes: > if correct, we can probably say: > > ...the algorithm used (PBKDF2) to convert... > but someone confirm, please.
It's correct. Look at the bioctl source code, e.g. pbkdf2.[ch]. From bioctl.c:
if (kdfhint->len != sizeof(*kdfhint))
errx(1, "KDF hint has invalid size");
if (kdfhint->type != SR_CRYPTOKDFT_PBKDF2)
errx(1, "unknown KDF type %d", kdfhint->type);
if (kdfhint->rounds < 1000)
errx(1, "number of KDF rounds too low: %d", kdfhint->rounds);
--
http://noncombatant.org/
