Generate password hash in java as openssl passwd -1

Question

Generate password hash in java as openssl passwd -1

Is there an easy way in Java to generate password hashes in the same way as the generated "openssl passwd -1".

Example:

# openssl passwd -1 test $1$Gt24/BL6$E4ZsrluohHFxtcdqCH7jo.

I am looking for a pure Java solution that does not call openssl or any other external program.

Thanks Raffael

+4

java passwords openssl

raffael Jan 18 '10 at 11:49

source share

3 answers

Jordan stewart · Answer 1 · 2010-01-18T12:55:13+0000

The openssl docs describe option -1 as: "Use the BSD password algorithm based on MD5 1".

Jasypt is a java cryptogrqphy library like jBCrypt . Jasypt is a bit more complicated, but more customizable.

I don’t know much about cryptography, but I assume that the password generated by openssl breaks up like:
$1$ - indicates that this was generated using the MD5 scheme
Gt24/BL6 - 8 byte salt
$ - delimiter
E4ZsrluohHFxtcdqCH7jo. - hash

so it looks like Jasypt BasicPasswordEncryptor might be what you want -

Waverick · Answer 2 · 2010-01-18T11:55:52+0000

Perhaps something like this?

 MessageDigest md = null; md = MessageDigest.getInstance("SHA"); md.update(pPassword.getBytes("UTF-8")); byte raw[] = md.digest(); String hash = BASE64Encoder.encodeBuffer(raw);

The Java source BASE64Encoder can be found on the net.

James k polk · Answer 3 · 2010-01-18T12:58:32+0000

You can find the source code for the C version here . It should be simple to convert it to pure Java.

Generate password hash in java as openssl passwd -1

More articles: