Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / python / cryptography / e51fb935bf27ce56282d8bd9b33f708d2e660449 / . / docs / hazmat / primitives / cryptographic-hashes.rst
blob: de66b7fe90e02dce14f3d3df90e0d498fbe9c647 [file] [log] [blame]
Donald Stufftd8f01182013-10-27 16:59:56 -0400[diff] [blame]1.. danger::
2
3 This is a "Hazardous Materials" module. You should **ONLY** use it if
4 you're 100% absolutely sure that you know what you're doing because this
5 module is full of land mines, dragons, and dinosaurs with laser guns.
6
7
Donald Stuffte51fb932013-10-27 17:26:17 -0400[diff] [blame^]8Message Digests
9===============
10
Donald Stufftf04317a2013-10-27 16:44:30 -0400[diff] [blame]11.. currentmodule:: cryptography.hazmat.primitives.hashes
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]12
13.. class:: BaseHash(data=None)
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]14
Paul Kehrer6b9ddeb2013-10-19 12:28:15 -0500[diff] [blame]15 Abstract base class that implements a common interface for all hash
16 algorithms that follow here.
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]17
Alex Gaynorf3b06cd2013-10-21 21:49:50 -0700[diff] [blame]18 If ``data`` is provided ``update(data)`` is called upon construction.
19
Paul Kehrer6b9ddeb2013-10-19 12:28:15 -0500[diff] [blame]20 .. method:: update(data)
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]21
Alex Gaynorddc62f02013-10-20 06:14:24 -0700[diff] [blame]22 :param bytes data: The bytes you wish to hash.
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]23
24 .. method:: copy()
25
Paul Kehrer6b9ddeb2013-10-19 12:28:15 -0500[diff] [blame]26 :return: a new instance of this object with a copied internal state.
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]27
28 .. method:: digest()
29
30 :return bytes: The message digest as bytes.
31
32 .. method:: hexdigest()
33
34 :return str: The message digest as hex.
35
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]36SHA-1
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]37~~~~~
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]38
39.. attention::
40
41 NIST has deprecated SHA-1 in favor of the SHA-2 variants. New applications
42 are strongly suggested to use SHA-2 over SHA-1.
43
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]44.. class:: SHA1()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]45
46 SHA-1 is a cryptographic hash function standardized by NIST. It has a
47 160-bit message digest.
48
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]49SHA-2 Family
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]50~~~~~~~~~~~~
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]51
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]52.. class:: SHA224()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]53
54 SHA-224 is a cryptographic hash function from the SHA-2 family and
55 standardized by NIST. It has a 224-bit message digest.
56
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]57.. class:: SHA256()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]58
59 SHA-256 is a cryptographic hash function from the SHA-2 family and
60 standardized by NIST. It has a 256-bit message digest.
61
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]62.. class:: SHA384()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]63
64 SHA-384 is a cryptographic hash function from the SHA-2 family and
65 standardized by NIST. It has a 384-bit message digest.
66
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]67.. class:: SHA512()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]68
69 SHA-512 is a cryptographic hash function from the SHA-2 family and
70 standardized by NIST. It has a 512-bit message digest.
71
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]72RIPEMD160
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]73~~~~~~~~~
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]74
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]75.. class:: RIPEMD160()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]76
77 RIPEMD160 is a cryptographic hash function that is part of ISO/IEC
78 10118-3:2004. It has a 160-bit message digest.
79
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]80Whirlpool
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]81~~~~~~~~~
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]82
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]83.. class:: Whirlpool()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]84
85 Whirlpool is a cryptographic hash function that is part of ISO/IEC
86 10118-3:2004. It has a 512-bit message digest.
87
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]88MD5
Matthew Iversen505491b2013-10-19 15:56:17 +1100[diff] [blame]89~~~
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]90
91.. warning::
92
93 MD5 is a deprecated hash algorithm that has practical known collision
94 attacks. You are strongly discouraged from using it.
95
David Reid1f3d7182013-10-22 16:55:18 -0700[diff] [blame]96.. class:: MD5()
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]97
Paul Kehrer2b9b3012013-10-22 17:09:38 -0500[diff] [blame]98 MD5 is a deprecated cryptographic hash function. It has a 128-bit message
Paul Kehrer36e7d0d2013-10-18 18:54:40 -0500[diff] [blame]99 digest and has practical known collision attacks.