NAME
Crypt::Password::StretchedHash - simple library for password hashing and stretching
SYNOPSIS
use Test::More;
use Crypt::Password::StretchedHash;
use Digest::SHA;
# crypt
my $pwhash = Crypt::Password::StretchedHash->crypt(
password => q{password},
hash => Digest::SHA->new("sha256"),
salt => q{salt},
stretch_count => 5000,
format => q{base64},
);
is($pwhash, q{4hvvzqZio+l9vGifQ7xF2+FKiyWRcb4lV3OSo9PsfUw=});
# verify
my $result = Crypt::Password::StretchedHash->verify(
password => q{password},
password_hash => q{4hvvzqZio+l9vGifQ7xF2+FKiyWRcb4lV3OSo9PsfUw=},
hash => Digest::SHA->new("sha256"),
salt => q{salt},
stretch_count => 5000,
format => q{base64},
);
unless ( $result ) {
# password error
}DESCRIPTION
Crypt::Password::StretchedHash is simple library for password hashing and stretching. This module is available in generation and validation of the stretched password hash.
METHODS
crypt( %params ) : String
Generates stretched password hash. This uses the following hash algorithm.
for (1..$params{stretch_count}) {
$hash->add( $pwhash, $params{password}, $salt );
$pwhash = $hash->digest;
}- $params{password}
-
This is password string.
- $params{hash}
-
This is a hash function. This value must be the object of Digest::SHA or Digest::SHA3.
- $params{salt}
-
This is salt string.
- $params{stretch_count}
-
This is stretching count. The value will depend on a kind of hash function and the server load.
- $params{format}
-
This value is optional. If it has none, the password hash is returned with a binary string. If it has "hex", the password hash is returned with hexadecimal representation. If it has "base64", the password hash is returned with base64 representation.
verify( %params ) : Int
Verifies stretched password hash. This compares the value of $params{password_hash} with the generated using crypt method.
LICENSE
Copyright (C) Ryo Ito.
This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.
AUTHOR
Ryo Ito <ritou.06@gmail.com>