Find Usages Diff Raw Download HTML Widget Stack Overflow Q&A
Start line:  
End line:  

Snippet Preview

Snippet HTML Code

Stack Overflow Questions
1. Generate MD5 hash in Java
Is there any method to generate MD5 hash of a string in Java?
2. Using Java to get a file's md5 checksum?
I am looking to use java to get the md5 checksum of a file. I was really surprised but I haven't been able to find anything that shows how (and the best way) to get the md5 checksum of a file. Any ideas on how to go forward? Thanks.
3. What is a good 64bit hash function in Java for textual strings?
I'm looking for a hash function that: Hashes textual strings well (e.g. few collisions) Is written in Java, and widely used Bonus: works on several fields (instead of me concatenating them and applying the hash on the concatenated string) Bonus: Has a 128-bit variant. Bonus: Not CPU intensive.
4. Hibernate authentication without passwords stored in plain text
My goal is to authenticate to the database using a JDBC/Hibernate in a secure manner, without storing passwords in plain text. Code examples appreciated. I'm already using waffle to authenticate the user so if there was some way to use the credentials that waffle obtained from the user, and forward those to the DB, that would be good. Two questions: What is the recommended way to do multi ho...
5. Can SHA-1 algorithm be computed on a stream? With low memory footprint?
I am looking for a way to compute SHA-1 checksums of very large files without having to fully load them into memory at once. I don't know the details of the SHA-1 implementation and therefore would like to know if it is even possible to do that. If you know the SAX XML parser, then what I look for would be something similar: Computing the SHA-1 checksum by only always loading a small part i...
6. Suggestions for library to hash passwords in Java
What Java library should I be using to Hash passwords for storage in a database? I was hoping to just take the plain text password, add a random salt, then store the salt and the hashed password in the database. Then when a user wanted to log in, I could just take their submitted password, add the random salt from their account information, hash it and see if it equates to the stored hash pas...
7. Can I use Object#hashCode to store the hash of a password?
To save a file i defined the following method public int encrypt(String fileName, String password) { return (fileName.concat(password)).hashCode(); } This returns a hashvalue that is stored in a file. Whenever the user wants to access the file, he enters the password, and if the same hash is generated, he can access the file. I suppose this isn't really safe, but how safe it is? How high...
8. Equivalent of PHP's crypt function in Java
I am migrating my PHP code to Google App Engine - Java. So I need an equivalent of PHP's crypt function in Java, since I have stored all the passwords of registered users using crypt in my DB. Edit 1: Here is my php code for encrypting passwords : $password = "test123"; $pwd = crypt($password,$password); echo $pwd; Output is (On Windows as well as a linux based server on HostMonser...
9. Java Compute SHA-1
I'm looking for a way of getting an SHA-1 checksum with a Java byte array as the message Should I use a third party tool or is there something built in to the JVM that can help?
10. Which hash to use for file uniqueness in Java
I'm trying to keep track of a set of files, which may have the same name and metadata. I'd like to use a hash to differentiate and use it as a unique ID, but I'm not sure which one to use? The files are relatively small (in the 100 kb range) and I'd like to be able to hash that in less than 10 seconds. Which hash (that comes built in in Java 1.5) would best suite my needs?
11. How to efficiently identify a binary file
What's the most efficient way to identify a binary file? I would like to extract some kind of signature from a binary file and use it to compare it with others. The brute-force approach would be to use the whole file as a signature, which would take too long and too much memory. I'm looking for a smarter approach to this problem, and I'm willing to sacrifice a little accuracy (but not too much...
12. Encrypt and decrypt a password in Java
I want to encrypt and decrypt a password in Java and store into database in the form of encrypted. It will great if it is open source. Any suggestions / pointers ? Thanks, Amitm
13. Security Features in Android
I want to learn the (maximum) security features in android. Whatever security feature may be. Can you please guide me for that ? If you know security features please list it here. So that i can learn it very well. So far i have gone through : http://developer.android.com/guide/topics/security/security.html http://www.androidauthority.com/ Thanks, Kartik
14. Securely saving password locally java?
I am working on a java application and would like to save password locally on a file. I am not sure how to achieve this, any help would be appreciated.
15. How to implement encrypted Android login authentication?
I have a login database, from my Android client I have to pass the password in a secure manner. I want to implement a login screen which is capable of doing encryption. How to implement the security encryption in my application?
16. How do I resemble the typical "confirmation of account" procedure seen in multiple websites?
I want to resemble the typical "confirmation of account" procedure seen in multiple websites. When a user registers an email is sent to him with a confirmation link. Once the user goes to that confirmation link its account gets confirmed. Don't worry about the email sending process. The thing is that I need to generate a URL to which the user can then enter to get his new account confirmed. Thi...
17. Hash String via SHA-256 in Java
By looking around here as well as the internet in general, I have found Bouncy Castle. I want to use Bouncy Castle (or some other freely available utility) to generate a SHA-256 Hash of a String in Java. Looking at their documentation I can't seem to find any good examples of what I want to do. Can anybody here help me out?
18. Md5 and salt
Grails 1.1 onwards has 'encodeAsMD5' available on Strings -- is there a way to provide a salt for the function? Typical usage: ${myString.encodeAsMD5()} Another option would be to use the Apache DigestUtils class. I'm not using this to do password hashing -- instead, I'm using it for a verification mechanism to determine when a request was created and how much time elapsed when the respons...
19. How to set MessageDigest seed?
The MessageDigest class implements the SHA-1 algorithm (among many others). The SHA-1 algorithm allows one to use different "seeds" or initial digests. See SHA-1 Psuedocode The algorithm initializes variables, or the seed: Initialize variables: h0 = 0x67452301 h1 = 0xEFCDAB89 h2 = 0x98BADCFE h3 = 0x10325476 h4 = 0xC3D2E1F0 However the MessageDigest class, as described in the Online Jav...
20. How to use md5 hashing in Jboss 6 for JAAS WebAuthentication?
writing a Java EE 6 application i need some help using the DatabaseServerLoginModule with md5 hashing. Setup: login-config.xml: <application-policy name = "app"> <authentication> <login-module code = "org.jboss.security.auth.spi.DatabaseServerLoginModule" flag = "required"> <module-option name = "dsJndiName">java:/MySQLDS</module-option> ...
21. Saving Password with Md5
I am using Postgresql,hibernate and Java and I need to store a password. Can someone suggest me how to encrypt the password with md5. Else is there a better way to store secure password in the database Thanks 
1
  /*
2
   * Copyright 1996-2006 Sun Microsystems, Inc.  All Rights Reserved.
3
   * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
4
   *
5
   * This code is free software; you can redistribute it and/or modify it
6
   * under the terms of the GNU General Public License version 2 only, as
7
   * published by the Free Software Foundation.  Sun designates this
8
   * particular file as subject to the "Classpath" exception as provided
9
   * by Sun in the LICENSE file that accompanied this code.
10
  *
11
  * This code is distributed in the hope that it will be useful, but WITHOUT
12
  * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
13
  * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License
14
  * version 2 for more details (a copy is included in the LICENSE file that
15
  * accompanied this code).
16
  *
17
  * You should have received a copy of the GNU General Public License version
18
  * 2 along with this work; if not, write to the Free Software Foundation,
19
  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
20
  *
21
  * Please contact Sun Microsystems, Inc., 4150 Network Circle, Santa Clara,
22
  * CA 95054 USA or visit www.sun.com if you need additional information or
23
  * have any questions.
24
  */
25
 
26
 package java.security;
27
 
28
 import java.util.*;
29
 import java.lang.*;
35
 
This MessageDigest class provides applications the functionality of a message digest algorithm, such as MD5 or SHA. Message digests are secure one-way hash functions that take arbitrary-sized data and output a fixed-length hash value.

A MessageDigest object starts out initialized. The data is processed through it using the update methods. At any point reset can be called to reset the digest. Once all the data to be updated has been updated, one of the digest methods should be called to complete the hash computation.

The digest method can be called once for a given number of updates. After digest has been called, the MessageDigest object is reset to its initialized state.

Implementations are free to implement the Cloneable interface. Client applications can test cloneability by attempting cloning and catching the CloneNotSupportedException: 

 MessageDigest md = MessageDigest.getInstance("SHA");

 try {
     md.update(toChapter1);
     MessageDigest tc1 = md.clone();
     byte[] toChapter1Digest = tc1.digest();
     md.update(toChapter2);
     ...etc.
 } catch (CloneNotSupportedException cnse) {
     throw new DigestException("couldn't make digest of partial content");
 }

Note that if a given implementation is not cloneable, it is still possible to compute intermediate digests by instantiating several instances, if the number of digests is known in advance.

Note that this class is abstract and extends from MessageDigestSpi for historical reasons. Application developers should only take notice of the methods defined in this MessageDigest class; all the methods in the superclass are intended for cryptographic service providers who wish to supply their own implementations of message digest algorithms.

Author(s):
Benjamin Renaud
See also:
DigestInputStream
DigestOutputStream
89
 
90
 
91
 public abstract class MessageDigest extends MessageDigestSpi {
92
 
93
     private String algorithm;
94
 
95
     // The state of this digest
96
     private static final int INITIAL = 0;
97
     private static final int IN_PROGRESS = 1;
98
     private int state = ;
99
 
100
    // The provider
101
    private Provider provider;

    
Creates a message digest with the specified algorithm name.

Parameters:
algorithm the standard name of the digest algorithm. See Appendix A in the Java Cryptography Architecture API Specification & Reference for information about standard algorithm names.
112
    protected MessageDigest(String algorithm) {
113
        this. = algorithm;
114
    }

    
Returns a MessageDigest object that implements the specified digest algorithm.

This method traverses the list of registered security Providers, starting with the most preferred Provider. A new MessageDigest object encapsulating the MessageDigestSpi implementation from the first Provider that supports the specified algorithm is returned.

Note that the list of registered providers may be retrieved via the Security.getProviders() method.

Parameters:
algorithm the name of the algorithm requested. See Appendix A in the Java Cryptography Architecture API Specification & Reference for information about standard algorithm names.
Returns:
a Message Digest object that implements the specified algorithm.
Throws:
NoSuchAlgorithmException if no Provider supports a MessageDigestSpi implementation for the specified algorithm.
See also:
Provider
143
    public static MessageDigest getInstance(String algorithm)
144
    throws NoSuchAlgorithmException {
145
        try {
146
            Object[] objs = Security.getImpl(algorithm"MessageDigest",
147
                                             (String)null);
148
            if (objs[0] instanceof MessageDigest) {
149
                MessageDigest md = (MessageDigest)objs[0];
150
                md.provider = (Provider)objs[1];
151
                return md;
152
            } else {
153
                MessageDigest delegate =
154
                    new Delegate((MessageDigestSpi)objs[0], algorithm);
155
                delegate.provider = (Provider)objs[1];
156
                return delegate;
157
            }
158
        } catch(NoSuchProviderException e) {
159
            throw new NoSuchAlgorithmException(algorithm + " not found");
160
        }
161
    }

    
Returns a MessageDigest object that implements the specified digest algorithm.

A new MessageDigest object encapsulating the MessageDigestSpi implementation from the specified provider is returned. The specified provider must be registered in the security provider list.

Note that the list of registered providers may be retrieved via the Security.getProviders() method.

Parameters:
algorithm the name of the algorithm requested. See Appendix A in the Java Cryptography Architecture API Specification & Reference for information about standard algorithm names.
provider the name of the provider.
Returns:
a MessageDigest object that implements the specified algorithm.
Throws:
NoSuchAlgorithmException if a MessageDigestSpi implementation for the specified algorithm is not available from the specified provider.
NoSuchProviderException if the specified provider is not registered in the security provider list.
java.lang.IllegalArgumentException if the provider name is null or empty.
See also:
Provider
197
    public static MessageDigest getInstance(String algorithmString provider)
199
    {
200
        if (provider == null || provider.length() == 0)
201
            throw new IllegalArgumentException("missing provider");
202
        Object[] objs = Security.getImpl(algorithm"MessageDigest"provider);
203
        if (objs[0] instanceof MessageDigest) {
204
            MessageDigest md = (MessageDigest)objs[0];
205
            md.provider = (Provider)objs[1];
206
            return md;
207
        } else {
208
            MessageDigest delegate =
209
                new Delegate((MessageDigestSpi)objs[0], algorithm);
210
            delegate.provider = (Provider)objs[1];
211
            return delegate;
212
        }
213
    }

    
Returns a MessageDigest object that implements the specified digest algorithm.

A new MessageDigest object encapsulating the MessageDigestSpi implementation from the specified Provider object is returned. Note that the specified Provider object does not have to be registered in the provider list.

Parameters:
algorithm the name of the algorithm requested. See Appendix A in the Java Cryptography Architecture API Specification & Reference for information about standard algorithm names.
provider the provider.
Returns:
a MessageDigest object that implements the specified algorithm.
Throws:
NoSuchAlgorithmException if a MessageDigestSpi implementation for the specified algorithm is not available from the specified Provider object.
java.lang.IllegalArgumentException if the specified provider is null.
Since:
1.4
See also:
Provider
244
    public static MessageDigest getInstance(String algorithm,
245
                                            Provider provider)
246
        throws NoSuchAlgorithmException
247
    {
248
        if (provider == null)
249
            throw new IllegalArgumentException("missing provider");
250
        Object[] objs = Security.getImpl(algorithm"MessageDigest"provider);
251
        if (objs[0] instanceof MessageDigest) {
252
            MessageDigest md = (MessageDigest)objs[0];
253
            md.provider = (Provider)objs[1];
254
            return md;
255
        } else {
256
            MessageDigest delegate =
257
                new Delegate((MessageDigestSpi)objs[0], algorithm);
258
            delegate.provider = (Provider)objs[1];
259
            return delegate;
260
        }
261
    }

    
Returns the provider of this message digest object.

Returns:
the provider of this message digest object
268
    public final Provider getProvider() {
269
        return this.;
270
    }

    
Updates the digest using the specified byte.

Parameters:
input the byte with which to update the digest.
277
    public void update(byte input) {
278
        engineUpdate(input);
279
         = ;
280
    }

    
Updates the digest using the specified array of bytes, starting at the specified offset.

Parameters:
input the array of bytes.
offset the offset to start from in the array of bytes.
len the number of bytes to use, starting at offset.
293
    public void update(byte[] inputint offsetint len) {
294
        if (input == null) {
295
            throw new IllegalArgumentException("No input buffer given");
296
        }
297
        if (input.length - offset < len) {
298
            throw new IllegalArgumentException("Input buffer too short");
299
        }
300
        engineUpdate(inputoffsetlen);
301
         = ;
302
    }

    
Updates the digest using the specified array of bytes.

Parameters:
input the array of bytes.
309
    public void update(byte[] input) {
310
        engineUpdate(input, 0, input.length);
311
         = ;
312
    }

    
Update the digest using the specified ByteBuffer. The digest is updated using the input.remaining() bytes starting at input.position(). Upon return, the buffer's position will be equal to its limit; its limit will not have changed.

Parameters:
input the ByteBuffer
Since:
1.5
324
    public final void update(ByteBuffer input) {
325
        if (input == null) {
326
            throw new NullPointerException();
327
        }
328
        engineUpdate(input);
329
         = ;
330
    }

    
Completes the hash computation by performing final operations such as padding. The digest is reset after this call is made.

Returns:
the array of bytes for the resulting hash value.
338
    public byte[] digest() {
339
        /* Resetting is the responsibility of implementors. */
340
        byte[] result = engineDigest();
341
         = ;
342
        return result;
343
    }

    
Completes the hash computation by performing final operations such as padding. The digest is reset after this call is made.

Parameters:
buf output buffer for the computed digest
offset offset into the output buffer to begin storing the digest
len number of bytes within buf allotted for the digest
Returns:
the number of bytes placed into buf
Throws:
DigestException if an error occurs.
359
    public int digest(byte[] bufint offsetint lenthrows DigestException {
360
        if (buf == null) {
361
            throw new IllegalArgumentException("No output buffer given");
362
        }
363
        if (buf.length - offset < len) {
364
            throw new IllegalArgumentException
365
                ("Output buffer too small for specified offset and length");
366
        }
367
        int numBytes = engineDigest(bufoffsetlen);
368
         = ;
369
        return numBytes;
370
    }

    
Performs a final update on the digest using the specified array of bytes, then completes the digest computation. That is, this method first calls update(input), passing the input array to the update method, then calls digest().

Parameters:
input the input to be updated before the digest is completed.
Returns:
the array of bytes for the resulting hash value.
384
    public byte[] digest(byte[] input) {
385
        update(input);
386
        return digest();
387
    }

    
Returns a string representation of this message digest object. 
392
    public String toString() {
393
        ByteArrayOutputStream baos = new ByteArrayOutputStream();
394
        PrintStream p = new PrintStream(baos);
395
        p.print(+" Message Digest from "+.getName()+", ");
396
        switch () {
397
        case :
398
            p.print("<initialized>");
399
            break;
400
        case :
401
            p.print("<in progress>");
402
            break;
403
        }
404
        p.println();
405
        return (baos.toString());
406
    }

    
Compares two digests for equality. Does a simple byte compare.

Parameters:
digesta one of the digests to compare.
digestb the other digest to compare.
Returns:
true if the digests are equal, false otherwise.
417
    public static boolean isEqual(byte digesta[], byte digestb[]) {
418
        if (digesta.length != digestb.length)
419
            return false;
421
        for (int i = 0; i < digesta.lengthi++) {
422
            if (digesta[i] != digestb[i]) {
423
                return false;
424
            }
425
        }
426
        return true;
427
    }

    
Resets the digest for further use. 
432
    public void reset() {
433
        engineReset();
434
         = ;
435
    }

    
Returns a string that identifies the algorithm, independent of implementation details. The name should be a standard Java Security name (such as "SHA", "MD5", and so on). See Appendix A in the Java Cryptography Architecture API Specification & Reference for information about standard algorithm names.

Returns:
the name of the algorithm
448
    public final String getAlgorithm() {
449
        return this.;
450
    }

    
Returns the length of the digest in bytes, or 0 if this operation is not supported by the provider and the implementation is not cloneable.

Returns:
the digest length in bytes, or 0 if this operation is not supported by the provider and the implementation is not cloneable.
Since:
1.2
461
    public final int getDigestLength() {
462
        int digestLen = engineGetDigestLength();
463
        if (digestLen == 0) {
464
            try {
465
                MessageDigest md = (MessageDigest)clone();
466
                byte[] digest = md.digest();
467
                return digest.length;
468
            } catch (CloneNotSupportedException e) {
469
                return digestLen;
470
            }
471
        }
472
        return digestLen;
473
    }

    
Returns a clone if the implementation is cloneable.

Returns:
a clone if the implementation is cloneable.
Throws:
java.lang.CloneNotSupportedException if this is called on an implementation that does not support Cloneable.
483
    public Object clone() throws CloneNotSupportedException {
484
        if (this instanceof Cloneable) {
485
            return super.clone();
486
        } else {
487
            throw new CloneNotSupportedException();
488
        }
489
    }
494
    /*
495
     * The following class allows providers to extend from MessageDigestSpi
496
     * rather than from MessageDigest. It represents a MessageDigest with an
497
     * encapsulated, provider-supplied SPI object (of type MessageDigestSpi).
498
     * If the provider implementation is an instance of MessageDigestSpi,
499
     * the getInstance() methods above return an instance of this class, with
500
     * the SPI object encapsulated.
501
     *
502
     * Note: All SPI methods from the original MessageDigest class have been
503
     * moved up the hierarchy into a new class (MessageDigestSpi), which has
504
     * been interposed in the hierarchy between the API (MessageDigest)
505
     * and its original parent (Object).
506
     */
508
    static class Delegate extends MessageDigest {
510
        // The provider implementation (delegate)
511
        private MessageDigestSpi digestSpi;
513
        // constructor
514
        public Delegate(MessageDigestSpi digestSpiString algorithm) {
515
            super(algorithm);
516
            this. = digestSpi;
517
        }

        
Returns a clone if the delegate is cloneable.

Returns:
a clone if the delegate is cloneable.
Throws:
java.lang.CloneNotSupportedException if this is called on a delegate that does not support Cloneable.
527
        public Object clone() throws CloneNotSupportedException {
528
            if ( instanceof Cloneable) {
529
                MessageDigestSpi digestSpiClone =
530
                    (MessageDigestSpi).clone();
531
                // Because 'algorithm', 'provider', and 'state' are private
532
                // members of our supertype, we must perform a cast to
533
                // access them.
534
                MessageDigest that =
535
                    new Delegate(digestSpiClone,
536
                                 ((MessageDigest)this).);
537
                that.provider = ((MessageDigest)this).;
538
                that.state = ((MessageDigest)this).;
539
                return that;
540
            } else {
541
                throw new CloneNotSupportedException();
542
            }
543
        }
545
        protected int engineGetDigestLength() {
546
            return .engineGetDigestLength();
547
        }
549
        protected void engineUpdate(byte input) {
550
            .engineUpdate(input);
551
        }
553
        protected void engineUpdate(byte[] inputint offsetint len) {
554
            .engineUpdate(inputoffsetlen);
555
        }
557
        protected void engineUpdate(ByteBuffer input) {
558
            .engineUpdate(input);
559
        }
561
        protected byte[] engineDigest() {
562
            return .engineDigest();
563
        }
565
        protected int engineDigest(byte[] bufint offsetint len)
566
            throws DigestException {
567
                return .engineDigest(bufoffsetlen);
568
        }
570
        protected void engineReset() {
571
            .engineReset();
572
        }
573
    }
New to GrepCode? Check out our FAQ X