Reputation: 308
using crypto.pbkdf2Sync in node 6 return different hash then node4
we are trying upgrading our current project nodeJS version (4.2.4) to the latest version (6.9.1) and we encounter such a problem, we have some authenticated method on user password which does something like this :
return this.password === crypto.pbkdf2Sync(password, this.salt, 10000, 64).toString('base64');
this.password is the user password hash that worked on node 4.2.4 and password is the user input,
since we upgrade to node 6.9.1 it stop working and return false where in node 4.2.4 it return true
we already try to add any digest option(since now it required) but didn't find one that match
maybe there is more things we should change ? can someone help ?
- note in Node 5 it work as usual with no change in code
Upvotes: 2
Views: 1251
Answers (1)
Reputation: 210
You need to change your code to:
crypto.pbkdf2Sync(password, new Buffer(this.salt, 'binary'), 10000, 64).toString('base64');
from node 6 the default salt is not binary
You also need to add digest, for example:
crypto.pbkdf2Sync(password, new Buffer(this.salt, 'binary'), 10000, 64, 'DSA-SHA1').toString('base64')
See the API here: https://nodejs.org/api/crypto.html#crypto_crypto_pbkdf2sync_password_salt_iterations_keylen_digest
Upvotes: 4
Related Questions
- Nodejs crypto.pbkdf2 result is different from CryptoJS.PBKDF2
- PBKDF2 - Unable to generate the same Base64-encoded key with Node and Java
- pbkdf2 returns a hash with 128 characters instead of 64
- crypto, node 6 return different hash than node4
- Python pbkdf2_hmac vs JavaScript crypto.pbkdf2Sync inconsistent hash
- NodeJS pbkdf2Sync password hasing portability from v0.12.7 to v6.9.1
- binding.PBKDF2 error when hashing passwords Node.JS
- Node.js crypto.pbkdf2Sync password does not match with python script
- Node.js crypto PBKDF2 function returns different values on v8 vs v10
- hashing passwords with pbkdf2 crypto does not work correctly