java - SHA hash does not seem to be working correctly -


i trying build simple password authenticator passwords have been hashed using sha-256 .

i found couple calculators online (http://onlinemd5.com/) hashed "password" "5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8"

i tried couple other passwords expected results.

so tried implement straight forward set of code (or thought)

string pswd="password"; string storedpswd="5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8"; //first byte[]  arrays.equals(hashword(pswd),storedpswd.getbytes("utf-8") ); ... private byte[] hashword(string word)     {     try {         return messagedigest.getinstance("sha-256").digest(word.getbytes("utf-8"));     } catch (exception e)        {        throw new badcredentialsexception("could not hash supplied password", e);     } }

i tried without success.

return storedpswd.touppercase().equals(digestutils.sha256hex(password));

the apache codec library (v1.10) , java 1.6 gives me : 

113459eb7bb31bddee85ade5230d6ad5d8b2fb52879e00a84ff6ae1067a210d3

instead of 

5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8

what missing ??

the solution (wrong inputs):

updated test code:

string passwordsha="5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8"; string complexsha="8849fb9b221ddec0117e2796d16929179accf3a6012f738e1ed6c11af9cc2081"; @test public void testdigest() throws interruptedexception{     system.out.println("starting digest test");     string complexpassword = "a7$h1uc8";     try {         assert.asserttrue(authenticateuser(complexpassword, complexsha));         assert.asserttrue(authenticateuser("password", passwordsha));                    assert.asserttrue( hashword(complexpassword).equals(complexsha) );     } catch (exception e) {         assert.fail();     } } public boolean authenticateuser(string word, string stored) throws exception {     string apache2pswd = hashapache(word);     system.out.println(apache2pswd);                     return stored.equals(apache2pswd); } private string hashapache(string pswd){     return digestutils.sha256hex(pswd);      } public static string hashword(string word) throws exception{     byte[] digest = messagedigest.getinstance("sha-256").digest(word.getbytes("utf-8"));     stringbuilder sb = new stringbuilder();     (byte b : digest) {         sb.append(string.format("%02x", b));     }     system.out.println(sb.tostring());     return sb.tostring(); }

with results:

starting digest test 8849fb9b221ddec0117e2796d16929179accf3a6012f738e1ed6c11af9cc2081 5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8 8849fb9b221ddec0117e2796d16929179accf3a6012f738e1ed6c11af9cc2081

the hashword method posted not correct, not compile (is actual code?); it's not returning value.

with this:

byte[] digest = messagedigest.getinstance("sha-256").digest("password".getbytes("utf-8"));  (byte b : digest) {     system.out.printf("%02x", b); }

i expected output:

5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8

the output 113459eb7bb31bddee85ade5230d6ad5d8b2fb52879e00a84ff6ae1067a210d3 when calculate sha-256 hash on string 5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8 instead of original string password.

you calculating hash on hex string containing hash, instead of hash of original password.


Comments

Post a Comment

Popular posts from this blog

twig - Using Twigbridge in a Laravel 5.1 Package -

i'm trying create laravel 5.1 package uses twigbridge instead of .php views. can normal .php views display fine, when try make use of .twig templates i'm met error. possible use twigbridge templates when creating views laravel package or pretty stuck blade , php ? edit 1: loading twig template without extending works. it's when start using {% extends 'file' %} error comes out. i error error loading /virtual/laravel/packages/username/mypackage/src/views/sample.twig: template "templates.master" not defined () in "/virtual/laravel/packages/username/mypackage/src/views/sample.twig" @ line 1. my folders username |_ mypackage |_ src |_ controllers - samplecontroller.php |_ views |_ templates - master.twig - sample.twig twig template sample.twig {% extends 'templates.master' %} {% block content %} {{ parent()
Read more

firemonkey - How do I make a beep sound in Android using Delphi and the API? -

after having @ androidapi.jni.media.pas, coded following procedure: uses androidapi.jnibridge, androidapi.jni.media; procedure sound(aduration: integer); implementation procedure sound(aduration: integer); var volume: integer; streamtype: integer; tonetype: integer; tonegenerator: jtonegenerator; begin volume := tjtonegenerator.javaclass.max_volume; streamtype := ? tonetype := tjtonegenerator.javaclass.tone_dtmf_0; tonegenerator := tjtonegenerator.javaclass.init(streamtype, volume); tonegenerator.starttone(tonetype, aduration); end; but can't figure out how set value streamtype? thanks the stream type identify stream on beep must played. integer between 0 , 4 : stream_voice_call (0) stream_system (1) stream_ring (2) stream_music(3) stream_alarm(4)
Read more

jdbc - Not able to establish database connection in eclipse -

i want make new database connection (db2) in eclipse purpose of using jpa. in jpa perspective, in data source explorer view, when try create new db connection, receive following logs when try ping server. org.eclipse.datatools.connectivity.exceptions.dbnotstartexception: no start database command issued. errorcode = -4499, sqlstate = 08001. @ org.eclipse.datatools.enablement.ibm.db2.internal.luw.jdbcluwjdbcconnection.getconnectexception(jdbcluwjdbcconnection.java:74) @ org.eclipse.datatools.connectivity.ui.pingjob.gettestconnectionexception(pingjob.java:81) @ org.eclipse.datatools.connectivity.ui.pingjob.run(pingjob.java:63) @ org.eclipse.core.internal.jobs.worker.run(worker.java:54) caused by: com.ibm.db2.jcc.am.ro: [jcc][t4][2043][11550][4.8.87] exception java.net.connectexception: error opening socket server example.example.com/51.37.93.117 on port 50,000 message: connection timed out: connect. errorcode=-4499, sqlstate=08001 @ com.ibm.db2.jcc.am.gd.a(gd.j
Read more