CppSecurity/password__hashing__bcrypt_8cpp_source.html

#include "security/password_hashing_bcrypt.h"


#include "errors/exceptions.h"


#include <libbcrypt.h>


namespace CppSecurity {


std::string BcryptPasswordHashing::_name = "bcrypt";


BcryptPasswordHashing::BcryptPasswordHashing(size_t workfactor)

    : PasswordHashing(64, 64),

      _workfactor(workfactor)

{

}


std::string BcryptPasswordHashing::GenerateSalt() const

{

    std::string salt(salt_length(), 0);

    if (bcrypt_gensalt((int)workfactor(), salt.data()) != 0)

        throwex CppCommon::SecurityException("Cannot generate 'bcrypt' salt!");

    return salt;

}


std::string BcryptPasswordHashing::GenerateHash(std::string_view password, std::string_view salt) const

{

    // Generate the strong password hash

    std::string hash(hash_length(), 0);

    if (bcrypt_hashpw(password.data(), salt.data(), hash.data()) != 0)

        throwex CppCommon::SecurityException("Cannot generate 'bcrypt' hash!");

    return hash;

}


std::string BcryptPasswordHashing::GenerateDigest(std::string_view password) const

{

    std::string salt = GenerateSalt();

    return GenerateHash(password, salt);

}


bool BcryptPasswordHashing::Validate(std::string_view password, std::string_view hash, std::string_view salt) const

{

    // Calculate the digest for the given password and salt

    std::string digest(hash.size(), 0);

    if (bcrypt_hashpw(password.data(), salt.data(), digest.data()) != 0)

        throwex CppCommon::SecurityException("Cannot calculate 'bcrypt' hash!");


    // Compare the digest with the given hash

    return (digest == hash);

}


bool BcryptPasswordHashing::ValidateDigest(std::string_view password, std::string_view digest) const

{

    // Check the digest size (must be hash + salt)

    if (digest.size() != hash_length())

        return false;


    // Perform the password validation

    return (bcrypt_checkpw(password.data(), digest.data()) == 0);

}


} // namespace CppSecurity

CppSecurity::BcryptPasswordHashing::ValidateDigest
bool ValidateDigest(std::string_view password, std::string_view digest) const override
Validate the user password over the given secure digest string.
Definition password_hashing_bcrypt.cpp:59

CppSecurity::BcryptPasswordHashing::GenerateDigest
std::string GenerateDigest(std::string_view password) const override
Generate the secure digest string for the given user password.
Definition password_hashing_bcrypt.cpp:42

CppSecurity::BcryptPasswordHashing::GenerateHash
std::string GenerateHash(std::string_view password, std::string_view salt) const override
Generate the strong password hash for the given user password and unique salt.
Definition password_hashing_bcrypt.cpp:33

CppSecurity::BcryptPasswordHashing::GenerateSalt
std::string GenerateSalt() const override
Generate the unique password salt.
Definition password_hashing_bcrypt.cpp:25

CppSecurity::BcryptPasswordHashing::Validate
bool Validate(std::string_view password, std::string_view hash, std::string_view salt) const override
Validate the user password over the given strong password hash and unique salt.
Definition password_hashing_bcrypt.cpp:48

CppSecurity::BcryptPasswordHashing::workfactor
size_t workfactor() const noexcept
Get the work factor.
Definition password_hashing_bcrypt.h:47

CppSecurity::BcryptPasswordHashing::BcryptPasswordHashing
BcryptPasswordHashing(size_t workfactor=4)
Initialize 'bcrypt' password hashing with required parameters.
Definition password_hashing_bcrypt.cpp:19

CppSecurity::PasswordHashing
Password hashing interface.
Definition password_hashing.h:27

CppSecurity::PasswordHashing::salt_length
size_t salt_length() const noexcept
Get the unique password salt length.
Definition password_hashing.h:45

CppSecurity::PasswordHashing::hash_length
size_t hash_length() const noexcept
Get the strong password hash length.
Definition password_hashing.h:43

CppSecurity
Definition cipher.h:18

password_hashing_bcrypt.h
'bcrypt' password hashing algorithm definition