我如何利用 werkzeug.security 的 check_password_hash 函数根据现有的加盐 sha1 密码哈希值验证密码是否正确
How can I utilize werkzeug.security's check_password_hash function to verify correct password against existing salted sha1 password hashes
我正在开发一个新的 python 应用程序,用于需要验证我们数据库中现有用户凭据的工作。我们的许多遗留应用程序都是基于 PHP 的 Symfony 框架构建的,这些密码散列和盐就是从这里产生的。在数据库中,保留了算法 (sha1)、salt 和用户的散列密码。我试图弄清楚如何结合 werkzeug.security 模块的 check_password_hash 函数使用此信息正确验证密码。然而,到目前为止,我一直没有成功。
出于演示目的,我创建了一个测试用户,数据库包含该用户的以下值。
测试用户价值观
algorithm: sha1
salt:e40e1e9addc186828a5554a71527342c
password(散列):784517f57fbe61179960739e29d7ae925aa4fd5b
测试用户实际密码为123456
我尝试了以下方法来验证密码。
备注:
1. 哈希格式改编自 werkzeug.security 文档
2. Comparative Hash方法改编自
from werkzeug.security import generate_password_hash
from werkzeug.security import check_password_hash
# Attempt 1 - Results in False
check_password_hash('sha1$e40e1e9addc186828a5554a71527342c4517f57fbe61179960739e29d7ae925aa4fd5b','123456')
# Attempt 2 - Results in False
check_password_hash('pbkdf2:sha1$e40e1e9addc186828a5554a71527342c4517f57fbe61179960739e29d7ae925aa4fd5b','123456')
# Attempt 3
# Step 1: Append the salt_value to the given password and hash it using the same hash function.
generate_password_hash('123456$e40e1e9addc186828a5554a71527342c','sha1')
# sha1lUceSsdf7dcb3ff9c22d4613e59fcbfed0c463ee4189e
# Step 2: Compare the hash to the hash in the database
# 60f7dcb3ff9c22d4613e59fcbfed0c463ee4189e != 784517f57fbe61179960739e29d7ae925aa4fd5b
# Attempt 4 - Same steps as Attempt 3 except adding salt_length argument
# Step 1: Append the salt_value to the given password and hash it using the same hash function.
generate_password_hash('123456$e40e1e9addc186828a5554a71527342c','sha1',len('e40e1e9addc186828a5554a71527342c'))
# sha1$EbPv6DP0wMyu02UpA6ZYazFvvYvZTVI1$b8252583fea027d42af20c0d0f3eac3fbf468bd1
# Step 2: Compare the hash to the hash in the database
# b8252583fea027d42af20c0d0f3eac3fbf468bd1 != 784517f57fbe61179960739e29d7ae925aa4fd5b
任何人都可以提供一些关于我做错了什么的见解吗?我应该尝试使用 passlib 等不同的库吗?我希望这个模块足够了,因为我很熟悉它,已经创建了一些我们现有的 python 应用程序,这些应用程序将它用于 new 用户注册,但是在一个单独的数据库中。
编辑 - 显示使用 werkzeug.security 的 check_password_hash 函数的替代方法
import hashlib
# hashlib.sha1('{salt}{pw}'.encode()).hexdigest() == {pw_hash}
hashlib.sha1('e40e1e9addc186828a5554a71527342c123456'.encode()).hexdigest() == '784517f57fbe61179960739e29d7ae925aa4fd5b'
# True
werkzeug.generate_password_hash 想要生成盐值。查看源代码,我们可以看到 _hash_internal 使用生成的 salt 值调用。
def generate_password_hash(password, method="pbkdf2:sha256", salt_length=8):
"""Hash a password with the given method and salt with a string of
the given length. The format of the string returned includes the method
that was used so that :func:`check_password_hash` can check the hash.
The format for the hashed string looks like this::
method$salt$hash
This method can **not** generate unsalted passwords but it is possible
to set param method='plain' in order to enforce plaintext passwords.
If a salt is used, hmac is used internally to salt the password.
If PBKDF2 is wanted it can be enabled by setting the method to
``pbkdf2:method:iterations`` where iterations is optional::
pbkdf2:sha256:80000$salt$hash
pbkdf2:sha256$salt$hash
:param password: the password to hash.
:param method: the hash method to use (one that hashlib supports). Can
optionally be in the format ``pbkdf2:<method>[:iterations]``
to enable PBKDF2.
:param salt_length: the length of the salt in letters.
"""
salt = gen_salt(salt_length) if method != "plain" else ""
h, actual_method = _hash_internal(method, salt, password)
return "%s$%s$%s" % (actual_method, salt, h)
如果我们使用您的 sha1 方法调用 _hash_internal,并提供 salt/password,我们会得到一个不同的哈希值
In [83]: import werkzeug.security
In [84]: h, method = werkzeug.security._hash_internal('sha1', 'e40e1e9addc186828a5554a71527342c', '123456')
In [86]: h == '784517f57fbe61179960739e29d7ae925aa4fd5b'
Out[86]: False
In [85]: h
Out[85]: 'e8c2de9bdc1ab92479e3e55b608a040dad7bf656'
我认为您需要重新访问 PHP 代码以了解这些值是如何生成的。
编辑:根据您的评论
In [138]: werkzeug.security._hash_internal('sha1', '', 'e40e1e9addc186828a5554a71527342c123456')
Out[138]: ('784517f57fbe61179960739e29d7ae925aa4fd5b', 'sha1')
如果你想使用 check_password_hash,你不必在你的哈希上设置盐,而是将它添加到你的密码前:
In [148]: werkzeug.check_password_hash('sha1$4517f57fbe61179960739e29d7ae925aa4fd5b', 'e40e1e9addc186828a5554a71527342c123456')
Out[148]: True
如果我们查看源代码,我们可以看到 check_password_hash 从 pwhash 中提取 method、salt 和 hashval,然后验证散列 password 匹配 hashval。我不熟悉 PHP 中的散列,但看起来密码是 "salted" 然后不加盐散列(就 werkzeug.security 而言)。
def check_password_hash(pwhash, password):
"""check a password against a given salted and hashed password value.
In order to support unsalted legacy passwords this method supports
plain text passwords, md5 and sha1 hashes (both salted and unsalted).
Returns `True` if the password matched, `False` otherwise.
:param pwhash: a hashed string like returned by
:func:`generate_password_hash`.
:param password: the plaintext password to compare against the hash.
"""
if pwhash.count("$") < 2:
return False
method, salt, hashval = pwhash.split("$", 2)
return safe_str_cmp(_hash_internal(method, salt, password)[0], hashval)
我正在开发一个新的 python 应用程序,用于需要验证我们数据库中现有用户凭据的工作。我们的许多遗留应用程序都是基于 PHP 的 Symfony 框架构建的,这些密码散列和盐就是从这里产生的。在数据库中,保留了算法 (sha1)、salt 和用户的散列密码。我试图弄清楚如何结合 werkzeug.security 模块的 check_password_hash 函数使用此信息正确验证密码。然而,到目前为止,我一直没有成功。
出于演示目的,我创建了一个测试用户,数据库包含该用户的以下值。
测试用户价值观
algorithm: sha1
salt:e40e1e9addc186828a5554a71527342c
password(散列):784517f57fbe61179960739e29d7ae925aa4fd5b
测试用户实际密码为123456
我尝试了以下方法来验证密码。
备注:
1. 哈希格式改编自 werkzeug.security 文档
2. Comparative Hash方法改编自
from werkzeug.security import generate_password_hash
from werkzeug.security import check_password_hash
# Attempt 1 - Results in False
check_password_hash('sha1$e40e1e9addc186828a5554a71527342c4517f57fbe61179960739e29d7ae925aa4fd5b','123456')
# Attempt 2 - Results in False
check_password_hash('pbkdf2:sha1$e40e1e9addc186828a5554a71527342c4517f57fbe61179960739e29d7ae925aa4fd5b','123456')
# Attempt 3
# Step 1: Append the salt_value to the given password and hash it using the same hash function.
generate_password_hash('123456$e40e1e9addc186828a5554a71527342c','sha1')
# sha1lUceSsdf7dcb3ff9c22d4613e59fcbfed0c463ee4189e
# Step 2: Compare the hash to the hash in the database
# 60f7dcb3ff9c22d4613e59fcbfed0c463ee4189e != 784517f57fbe61179960739e29d7ae925aa4fd5b
# Attempt 4 - Same steps as Attempt 3 except adding salt_length argument
# Step 1: Append the salt_value to the given password and hash it using the same hash function.
generate_password_hash('123456$e40e1e9addc186828a5554a71527342c','sha1',len('e40e1e9addc186828a5554a71527342c'))
# sha1$EbPv6DP0wMyu02UpA6ZYazFvvYvZTVI1$b8252583fea027d42af20c0d0f3eac3fbf468bd1
# Step 2: Compare the hash to the hash in the database
# b8252583fea027d42af20c0d0f3eac3fbf468bd1 != 784517f57fbe61179960739e29d7ae925aa4fd5b
任何人都可以提供一些关于我做错了什么的见解吗?我应该尝试使用 passlib 等不同的库吗?我希望这个模块足够了,因为我很熟悉它,已经创建了一些我们现有的 python 应用程序,这些应用程序将它用于 new 用户注册,但是在一个单独的数据库中。
编辑 - 显示使用 werkzeug.security 的 check_password_hash 函数的替代方法
import hashlib
# hashlib.sha1('{salt}{pw}'.encode()).hexdigest() == {pw_hash}
hashlib.sha1('e40e1e9addc186828a5554a71527342c123456'.encode()).hexdigest() == '784517f57fbe61179960739e29d7ae925aa4fd5b'
# True
werkzeug.generate_password_hash 想要生成盐值。查看源代码,我们可以看到 _hash_internal 使用生成的 salt 值调用。
def generate_password_hash(password, method="pbkdf2:sha256", salt_length=8):
"""Hash a password with the given method and salt with a string of
the given length. The format of the string returned includes the method
that was used so that :func:`check_password_hash` can check the hash.
The format for the hashed string looks like this::
method$salt$hash
This method can **not** generate unsalted passwords but it is possible
to set param method='plain' in order to enforce plaintext passwords.
If a salt is used, hmac is used internally to salt the password.
If PBKDF2 is wanted it can be enabled by setting the method to
``pbkdf2:method:iterations`` where iterations is optional::
pbkdf2:sha256:80000$salt$hash
pbkdf2:sha256$salt$hash
:param password: the password to hash.
:param method: the hash method to use (one that hashlib supports). Can
optionally be in the format ``pbkdf2:<method>[:iterations]``
to enable PBKDF2.
:param salt_length: the length of the salt in letters.
"""
salt = gen_salt(salt_length) if method != "plain" else ""
h, actual_method = _hash_internal(method, salt, password)
return "%s$%s$%s" % (actual_method, salt, h)
如果我们使用您的 sha1 方法调用 _hash_internal,并提供 salt/password,我们会得到一个不同的哈希值
In [83]: import werkzeug.security
In [84]: h, method = werkzeug.security._hash_internal('sha1', 'e40e1e9addc186828a5554a71527342c', '123456')
In [86]: h == '784517f57fbe61179960739e29d7ae925aa4fd5b'
Out[86]: False
In [85]: h
Out[85]: 'e8c2de9bdc1ab92479e3e55b608a040dad7bf656'
我认为您需要重新访问 PHP 代码以了解这些值是如何生成的。
编辑:根据您的评论
In [138]: werkzeug.security._hash_internal('sha1', '', 'e40e1e9addc186828a5554a71527342c123456')
Out[138]: ('784517f57fbe61179960739e29d7ae925aa4fd5b', 'sha1')
如果你想使用 check_password_hash,你不必在你的哈希上设置盐,而是将它添加到你的密码前:
In [148]: werkzeug.check_password_hash('sha1$4517f57fbe61179960739e29d7ae925aa4fd5b', 'e40e1e9addc186828a5554a71527342c123456')
Out[148]: True
如果我们查看源代码,我们可以看到 check_password_hash 从 pwhash 中提取 method、salt 和 hashval,然后验证散列 password 匹配 hashval。我不熟悉 PHP 中的散列,但看起来密码是 "salted" 然后不加盐散列(就 werkzeug.security 而言)。
def check_password_hash(pwhash, password):
"""check a password against a given salted and hashed password value.
In order to support unsalted legacy passwords this method supports
plain text passwords, md5 and sha1 hashes (both salted and unsalted).
Returns `True` if the password matched, `False` otherwise.
:param pwhash: a hashed string like returned by
:func:`generate_password_hash`.
:param password: the plaintext password to compare against the hash.
"""
if pwhash.count("$") < 2:
return False
method, salt, hashval = pwhash.split("$", 2)
return safe_str_cmp(_hash_internal(method, salt, password)[0], hashval)