76 lines
1.8 KiB
Go
76 lines
1.8 KiB
Go
|
// Copyright 2015 Apcera Inc. All rights reserved.
|
||
|
// +build ignore
|
||
|
|
||
|
package main
|
||
|
|
||
|
import (
|
||
|
"bytes"
|
||
|
"crypto/rand"
|
||
|
"flag"
|
||
|
"fmt"
|
||
|
"log"
|
||
|
"math/big"
|
||
|
|
||
|
"golang.org/x/crypto/bcrypt"
|
||
|
"golang.org/x/crypto/ssh/terminal"
|
||
|
)
|
||
|
|
||
|
func usage() {
|
||
|
log.Fatalf("Usage: mkpasswd [-p <stdin password>] [-c COST] \n")
|
||
|
}
|
||
|
|
||
|
const (
|
||
|
// Make sure the password is reasonably long to generate enough entropy.
|
||
|
PasswordLength = 22
|
||
|
// Common advice from the past couple of years suggests that 10 should be sufficient.
|
||
|
// Up that a little, to 11. Feel free to raise this higher if this value from 2015 is
|
||
|
// no longer appropriate. Min is 4, Max is 31.
|
||
|
DefaultCost = 11
|
||
|
)
|
||
|
|
||
|
func main() {
|
||
|
var pw = flag.Bool("p", false, "Input password via stdin")
|
||
|
var cost = flag.Int("c", DefaultCost, "The cost weight, range of 4-31 (11)")
|
||
|
|
||
|
log.SetFlags(0)
|
||
|
flag.Usage = usage
|
||
|
flag.Parse()
|
||
|
|
||
|
var password string
|
||
|
|
||
|
if *pw {
|
||
|
fmt.Printf("Enter Password: ")
|
||
|
bytePassword, _ := terminal.ReadPassword(0)
|
||
|
fmt.Printf("\nReenter Password: ")
|
||
|
bytePassword2, _ := terminal.ReadPassword(0)
|
||
|
if !bytes.Equal(bytePassword, bytePassword2) {
|
||
|
log.Fatalf("Error, passwords do not match\n")
|
||
|
}
|
||
|
password = string(bytePassword)
|
||
|
fmt.Printf("\n")
|
||
|
} else {
|
||
|
password = genPassword()
|
||
|
fmt.Printf("pass: %s\n", password)
|
||
|
}
|
||
|
|
||
|
cb, err := bcrypt.GenerateFromPassword([]byte(password), *cost)
|
||
|
if err != nil {
|
||
|
log.Fatalf("Error producing bcrypt hash: %v\n", err)
|
||
|
}
|
||
|
fmt.Printf("bcrypt hash: %s\n", cb)
|
||
|
}
|
||
|
|
||
|
func genPassword() string {
|
||
|
var ch = []byte("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@$#%^&*()")
|
||
|
b := make([]byte, PasswordLength)
|
||
|
max := big.NewInt(int64(len(ch)))
|
||
|
for i := range b {
|
||
|
ri, err := rand.Int(rand.Reader, max)
|
||
|
if err != nil {
|
||
|
log.Fatalf("Error producing random integer: %v\n", err)
|
||
|
}
|
||
|
b[i] = ch[int(ri.Int64())]
|
||
|
}
|
||
|
return string(b)
|
||
|
}
|