at.favre.lib.crypto.bcrypt

Class BCrypt.Hasher

java.lang.Object

at.favre.lib.crypto.bcrypt.BCrypt.Hasher

Enclosing class:

BCrypt

public static final class BCrypt.Hasher
extends Object

Can create bcrypt hashes

Method Summary

Modifier and Type	Method and Description
byte[]	hash(int cost, byte[] password) Hashes given password with the OpenBSD bcrypt schema.
byte[]	hash(int cost, byte[] salt, byte[] password) Hashes given password with the OpenBSD bcrypt schema.
byte[]	hash(int cost, char[] password) Hashes given password with the OpenBSD bcrypt schema.
BCrypt.HashData	hashRaw(int cost, byte[] salt, byte[] password) Hashes given password with the OpenBSD bcrypt schema.
char[]	hashToChar(int cost, char[] password) Hashes given password with the OpenBSD bcrypt schema.
String	hashToString(int cost, char[] password) Hashes given password with the OpenBSD bcrypt schema.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Method Detail

hashToChar

public char[] hashToChar(int cost,
                         char[] password)

Hashes given password with the OpenBSD bcrypt schema. The cost factor will define how expensive the hash will be to generate. This method will use a SecureRandom to generate the internal 16 byte hash.

This implementation will add a null-terminator to the password and return a 23 byte length hash in accordance with the OpenBSD implementation.

The random salt will be created internally with a SecureRandom instance.

Parameters:

cost - exponential cost (log2 factor) between BCrypt.MIN_COST and BCrypt.MAX_COST e.g. 12 --> 2^12 = 4,096 iterations

password - to hash, will be internally converted to a utf-8 byte array representation

Returns:

bcrypt hash as a char array utf-8 encoded which includes version, cost-factor, salt and the raw hash (as radix64)

hashToString

public String hashToString(int cost,
                           char[] password)

Hashes given password with the OpenBSD bcrypt schema. The cost factor will define how expensive the hash will be to generate. This method will use a SecureRandom to generate the internal 16 byte hash.

This implementation will add a null-terminator to the password and return a 23 byte length hash in accordance with the OpenBSD implementation.

The random salt will be created internally with a SecureRandom instance.

This is the same as calling new String(hash(cost, password), StandardCharsets.UTF-8)

Parameters:

cost - exponential cost (log2 factor) between BCrypt.MIN_COST and BCrypt.MAX_COST e.g. 12 --> 2^12 = 4,096 iterations

password - to hash, will be internally converted to a utf-8 byte array representation

Returns:

bcrypt as utf-8 encoded String, which includes version, cost-factor, salt and the raw hash (as radix64)

hash

public byte[] hash(int cost,
                   char[] password)

Hashes given password with the OpenBSD bcrypt schema. The cost factor will define how expensive the hash will be to generate. This method will use a SecureRandom to generate the internal 16 byte hash.

This implementation will add a null-terminator to the password and return a 23 byte length hash in accordance with the OpenBSD implementation.

The random salt will be created internally with a SecureRandom instance.

Parameters:

cost - exponential cost (log2 factor) between BCrypt.MIN_COST and BCrypt.MAX_COST e.g. 12 --> 2^12 = 4,096 iterations

password - to hash, will be internally converted to a utf-8 byte array representation

Returns:

bcrypt hash utf-8 encoded byte array which includes version, cost-factor, salt and the raw hash (as radix64)

hash

public byte[] hash(int cost,
                   byte[] password)

Hashes given password with the OpenBSD bcrypt schema. The cost factor will define how expensive the hash will be to generate. This method will use a SecureRandom to generate the internal 16 byte hash.

This implementation will add a null-terminator to the password and return a 23 byte length hash in accordance with the OpenBSD implementation.

The random salt will be created internally with a SecureRandom instance.

Parameters:

cost - exponential cost (log2 factor) between BCrypt.MIN_COST and BCrypt.MAX_COST e.g. 12 --> 2^12 = 4,096 iterations

password - the utf-8 encoded byte array representation

Returns:

bcrypt hash utf-8 encoded byte array which includes version, cost-factor, salt and the raw hash (as radix64)

hash

public byte[] hash(int cost,
                   byte[] salt,
                   byte[] password)

Hashes given password with the OpenBSD bcrypt schema. The cost factor will define how expensive the hash will be to generate. This method will use given salt byte array

This implementation will add a null-terminator to the password and return a 23 byte length hash in accordance with the OpenBSD implementation.

Note: This is part of the advanced APIs, only use if you know what you are doing.

Parameters:

cost - exponential cost factor between BCrypt.MIN_COST and BCrypt.MAX_COST e.g. 12 --> 2^12 = 4,096 iterations

salt - a random 16 byte long word, only used once

password - the utf-8 encoded byte array representation

Returns:

bcrypt hash utf-8 encoded byte array which includes version, cost-factor, salt and the raw hash (as radix64)

hashRaw

public BCrypt.HashData hashRaw(int cost,
                               byte[] salt,
                               byte[] password)

Hashes given password with the OpenBSD bcrypt schema. The cost factor will define how expensive the hash will be to generate. This method will use given salt byte array

This implementation will add a null-terminator to the password and return a 23 byte length hash in accordance with the OpenBSD implementation.

Note: This is part of the advanced APIs, only use if you know what you are doing.

Parameters:

cost - exponential cost (log2 factor) between BCrypt.MIN_COST and BCrypt.MAX_COST e.g. 12 --> 2^12 = 4,096 iterations

salt - a random 16 byte long word, only used once

password - the utf-8 encoded byte array representation

Returns:

the parts needed to parse the bcrypt hash message as raw byte arrays (salt, hash, cost, etc.)