| commit | 58d94b23b98cc53a11aaedb83b4d94306d699351 | [log] [tgz] |
|---|---|---|
| author | David de Boer <david@ddeboer.nl> | Fri Jul 14 14:03:44 2017 +0200 |
| committer | David de Boer <david@ddeboer.nl> | Fri Jul 14 14:03:44 2017 +0200 |
| tree | f9a2f3180bc504113ba307e94b2cb4a54bd8ba2e | |
| parent | 47622678ec26c7493825297de8ff39c5e380be8e [diff] |
Convert readme to Markdown
erlang-bcrypt is a wrapper around the OpenBSD Blowfish password hashing algorithm, as described in A Future-Adaptable Password Scheme by Niels Provos and David Mazieres.
Build it (project uses rebar, but I’ve included a Makefile):
make
Run it (simple way, starting sasl, crypto and bcrypt):
erl -pa ebin -boot start_sasl -s crypto -s bcrypt
Hash a password using a salt with the default number of rounds:
1> {ok, Salt} = bcrypt:gen_salt(). {ok,"$2a$12$sSS8Eg.ovVzaHzi1nUHYK."} 2> {ok, Hash} = bcrypt:hashpw("foo", Salt). {ok,"$2a$12$sSS8Eg.ovVzaHzi1nUHYK.HbUIOdlQI0iS22Q5rd5z.JVVYH6sfm6"}
Verify the password:
3> {ok, Hash} =:= bcrypt:hashpw("foo", Hash). true 4> {ok, Hash} =:= bcrypt:hashpw("bar", Hash). false
The bcrypt application is configured by changing values in the application's environment:
default_log_rounds Sets the default number of rounds which define the complexity of the hash function. Defaults to 12.
mechanism Specifies whether to use the NIF implementation ('nif') or a pool of port programs ('port'). Defaults to 'nif'.
Note: the NIF implementation no longer blocks the Erlang VM scheduler threads
pool_size Specifies the size of the port program pool. Defaults to 4.
Hunter Morris & Mrinal Wadhwa.