org.apache.commons.codec.digest
Class Sha2Crypt
- java.lang.Object
-
- org.apache.commons.codec.digest.Sha2Crypt
-
public class Sha2Crypt extends Object
SHA2-based Unix crypt implementation.Based on the C implementation released into the Public Domain by Ulrich Drepper <[email protected]> http://www.akkadia.org/drepper/SHA-crypt.txt
Conversion to Kotlin and from there to Java in 2012 by Christian Hammers <[email protected]> and likewise put into the Public Domain.
This class is immutable and thread-safe.
- Since:
- 1.7
-
-
Constructor Summary
Constructors Constructor and Description Sha2Crypt()
-
Method Summary
All Methods Static Methods Concrete Methods Modifier and Type Method and Description static Stringsha256Crypt(byte[] keyBytes)Generates a libc crypt() compatible "$5$" hash value with random salt.static Stringsha256Crypt(byte[] keyBytes, String salt)Generates a libc6 crypt() compatible "$5$" hash value.static Stringsha256Crypt(byte[] keyBytes, String salt, Random random)Generates a libc6 crypt() compatible "$5$" hash value.static Stringsha512Crypt(byte[] keyBytes)Generates a libc crypt() compatible "$6$" hash value with random salt.static Stringsha512Crypt(byte[] keyBytes, String salt)Generates a libc6 crypt() compatible "$6$" hash value.static Stringsha512Crypt(byte[] keyBytes, String salt, Random random)Generates a libc6 crypt() compatible "$6$" hash value.
-
-
-
Method Detail
-
sha256Crypt
public static String sha256Crypt(byte[] keyBytes)
Generates a libc crypt() compatible "$5$" hash value with random salt.See
Crypt.crypt(String, String)for details.A salt is generated for you using
ThreadLocalRandom; for more secure salts consider usingSecureRandomto generate your own salts and callingsha256Crypt(byte[], String).- Parameters:
-
keyBytes- plaintext to hash - Returns:
- complete hash value
- Throws:
-
IllegalArgumentException- when aNoSuchAlgorithmExceptionis caught.
-
sha256Crypt
public static String sha256Crypt(byte[] keyBytes, String salt)
Generates a libc6 crypt() compatible "$5$" hash value.See
Crypt.crypt(String, String)for details.- Parameters:
-
keyBytes- plaintext to hash -
salt- real salt value without prefix or "rounds=". The salt may be null, in which case a salt is generated for you usingSecureRandom. If one does not want to useSecureRandom, you can pass your ownRandominsha256Crypt(byte[], String, Random). - Returns:
- complete hash value including salt
- Throws:
-
IllegalArgumentException- if the salt does not match the allowed pattern -
IllegalArgumentException- when aNoSuchAlgorithmExceptionis caught.
-
sha256Crypt
public static String sha256Crypt(byte[] keyBytes, String salt, Random random)
Generates a libc6 crypt() compatible "$5$" hash value.See
Crypt.crypt(String, String)for details.- Parameters:
-
keyBytes- plaintext to hash -
salt- real salt value without prefix or "rounds=". -
random- the instance ofRandomto use for generating the salt. Consider usingSecureRandomorThreadLocalRandom. - Returns:
- complete hash value including salt
- Throws:
-
IllegalArgumentException- if the salt does not match the allowed pattern -
IllegalArgumentException- when aNoSuchAlgorithmExceptionis caught. - Since:
- 1.12
-
sha512Crypt
public static String sha512Crypt(byte[] keyBytes)
Generates a libc crypt() compatible "$6$" hash value with random salt.See
Crypt.crypt(String, String)for details.A salt is generated for you using
ThreadLocalRandom; for more secure salts consider usingSecureRandomto generate your own salts and callingsha512Crypt(byte[], String).- Parameters:
-
keyBytes- plaintext to hash - Returns:
- complete hash value
- Throws:
-
IllegalArgumentException- when aNoSuchAlgorithmExceptionis caught.
-
sha512Crypt
public static String sha512Crypt(byte[] keyBytes, String salt)
Generates a libc6 crypt() compatible "$6$" hash value.See
Crypt.crypt(String, String)for details.- Parameters:
-
keyBytes- plaintext to hash -
salt- real salt value without prefix or "rounds=". The salt may be null, in which case a salt is generated for you usingSecureRandom; if you want to use aRandomobject other thanSecureRandomthen we suggest you provide it usingsha512Crypt(byte[], String, Random). - Returns:
- complete hash value including salt
- Throws:
-
IllegalArgumentException- if the salt does not match the allowed pattern -
IllegalArgumentException- when aNoSuchAlgorithmExceptionis caught.
-
sha512Crypt
public static String sha512Crypt(byte[] keyBytes, String salt, Random random)
Generates a libc6 crypt() compatible "$6$" hash value.See
Crypt.crypt(String, String)for details.- Parameters:
-
keyBytes- plaintext to hash -
salt- real salt value without prefix or "rounds=". The salt may be null, in which case a salt is generated for you usingThreadLocalRandom; for more secure salts consider usingSecureRandomto generate your own salts. -
random- the instance ofRandomto use for generating the salt. Consider usingSecureRandomorThreadLocalRandom. - Returns:
- complete hash value including salt
- Throws:
-
IllegalArgumentException- if the salt does not match the allowed pattern -
IllegalArgumentException- when aNoSuchAlgorithmExceptionis caught. - Since:
- 1.12
-
-
Copyright © 2002–2020 The Apache Software Foundation. All rights reserved.