python-pbkdf2/README at master · badray/python-pbkdf2 · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
PBKDF2 for Python

Example usage:

>> import pbkdf2
>>> pbkdf2.pbkdf2_hex('what i want to hash', 'the random salt')
'fa7cc8a2b0a932f8e6ea42f9787e9d36e592e0c222ada6a9'

How to use this:

1.  Use a constant time string compare function to compare the stored hash
    with the one you're generating::

        def safe_str_cmp(a, b):
            if len(a) != len(b):
                return False
            rv = 0
            for x, y in izip(a, b):
                rv |= ord(x) ^ ord(y)
            return rv == 0

2.  Use `os.urandom` to generate a proper salt of at least 8 byte.
    Use a unique salt per hashed password.

3.  Store ``algorithm$salt:costfactor$hash`` in the database so that
    you can upgrade later easily to a different algorithm if you need
    one.  For instance ``PBKDF2-256$thesalt:10000$deadbeef...``.

To run tests:

1. Install nosetests

2. Entere project directory and run:

$ nosetests


:copyright: (c) Copyright 2011 by Armin Ronacher.
:license: BSD, see LICENSE for more details.